cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.7.12.88 Par Nicolas Coolman (2015/07/12)
~ Démarré par TM 161 (Administrator) (2015/07/12 23:52:26)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\TM 161\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\TM 161\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
~ Windows 8.1, 64-bit (Build 9600)

---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v43.0.2357.132
MFIE: Mozilla Firefox 38.0.5 (x86 fr) v38.0.5
MSIE: Internet Explorer v11.0.9600.17031

---\\ Informations sur les produits Windows (3) - 2s
~ Windows Server License Manager Script : OK
System - VBScript Engine not found
Windows Activation Technologies : OK

---\\ Logiciels de protection (2) - 0s
Kaspersky Total Security v15.0.1.415
Malwarebytes Anti-Malware version 2.1.8.1057

---\\ Surveillance de Logiciels (1) - 0s
Adobe Flash Player 17 NPAPI

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 4054136
~ System Restore: Activé (Enable)
~ System drive C: has 54 GB free of 120 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: TEAM161
~ User Name: TM 161
~ Logged in as Administrator

---\\ Enumération des unités disques (4) - 0s
~ Drive C: has 54 GB free of 120 GB (System)
~ Drive D: has 69 GB free of 119 GB
~ Drive E: has 72 GB free of 120 GB
~ Drive F: has 13 GB free of 116 GB

---\\ Recherche particulière de fichiers génériques (23) - 0s
[MD5.4CE0C733CDCF1D2F78532BBD9CE3441D] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2373784]
[MD5.6E0BDFBEEED65B017F2E4C2C910B0520] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [52736]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [144384]
[MD5.65C36A29A131A3A5D64B29FAC4EF6DD6] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2262016]
[MD5.306EB21E5B480AE9065EA55AC8C35936] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [562176]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [19456]
[MD5.239268BAB58EAE9A3FF4E08334C00451] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [567296]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [164352]
[MD5.414686EF104910BA41DF66E83BDCD495] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [134656]
[MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [78336]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [142848]
[MD5.16FFC07D36FD83ACA189A641385168B3] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\Windows\System32\drivers\MRxSmb.sys [402944]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [282624]
[MD5.9AEB38B451A7B84ACB7CD3D664F87BF0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [2013016]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\Windows\System32\drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [107520]
[MD5.3595FBDF25F8BA6256072D103937D7D6] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [311640]

---\\ Processus lancés (26) - 1s
[MD5.C5647FB500C2A1F946B77C953528042D] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) -- C:\Windows\system32\nvvsvc.exe [932040] [PID.300]
[MD5.32B37DD6E7D423DF3CF3B196C8005F85] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [409800] [PID.600]
[MD5.90B24138CAA9A068B2E1C3B2A913789A] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1200328] [PID.896]
[MD5.C5647FB500C2A1F946B77C953528042D] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) -- C:\Windows\system32\nvvsvc.exe [932040] [PID.864]
[MD5.760CE443E09282AC4C0B67D67BA5E7FA] - (.The Within Network, LLC - Unsigned themes service executable.) -- C:\Windows\unsignedthemes.exe [13824] [PID.1160]
[MD5.ECFDDEBFD613A849763EDDA3B1DF5FA7] - (.Stardock Software, Inc - Stardock ModernMix Service.) -- C:\Program Files (x86)\Stardock\ModernMix\MMixSrv.exe [74864] [PID.1248]
[MD5.AB1AF0BA03DCB6A879BC22F472EACEEA] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\avp.exe [234520] [PID.1688]
[MD5.C2730FE9713C1C474257A7085386B11E] - (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656] [PID.1716]
[MD5.F9CF3FB8DD81B390783532B3C98D6976] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304] [PID.2012]
[MD5.1BAA6C0AAB6263A55980B7BA4E8D7D54] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648] [PID.1228]
[MD5.05972058A9E72F2C4C86EEF450BB38AD] - (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\SysWOW64\vmnat.exe [437976] [PID.1964]
[MD5.F87D407DCCB76C3355546547792DD317] - (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\SysWOW64\vmnetdhcp.exe [359128] [PID.2120]
[MD5.9D88591D3B97D30234F5B965B8E0ABD6] - (.VMware, Inc. - VMware USB Arbitration Service.) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [906432] [PID.2148]
[MD5.94E23AF29A0D0D6376B87A66C00BFFE1] - (.NVIDIA Corporation - NVIDIA Network Stream Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [7896720] [PID.2180]
[MD5.8F840F58C3C93CBB9F6326DE242BE254] - (.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [87256] [PID.2236]
[MD5.855EBDDCFC5DE12F730C6C1DC994410B] - (.CyberGhost S.R.L - CyberGhost VPN Service.) -- C:\Program Files\CyberGhost 5\Service.exe [64624] [PID.2372]
[MD5.5FFB6E8739D0603A8604C0FEF26FC2F8] - (.Stardock Software, Inc - ModernMix.) -- C:\Program Files (x86)\Stardock\ModernMix\MMix_64.exe [589936] [PID.3040]
[MD5.27E9C689B3FC1BDAED9B2B3681D833F3] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2446992] [PID.3244]
[MD5.3D2496BCA132B08D9B23856D65F30513] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\avpui.exe [193128] [PID.3124]
[MD5.046DDF9B31BEC14D03CCC97DD728A4D1] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072] [PID.2156]
[MD5.1BAA6C0AAB6263A55980B7BA4E8D7D54] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648] [PID.4360]
[MD5.3AE97CB476F6DF4DFA0B4378E9DD9A81] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3898960] [PID.5332]
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.5828]
[MD5.9F328FCA759CA47A04E3FCAB4691AFEC] - (.Wondershare - MobileGoService.) -- C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe [230288] [PID.5628]
[MD5.BAC15D03EFC8249216D1D610F3B1E67F] - (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files (x86)\USB Disk Security\USBGuard.exe [695528] [PID.5732]
[MD5.59499B4B9127191704FAAF58E220F85D] - (.Internet Download Manager, Tonec Inc. - Broker for reading of IDM settings.) -- C:\Program Files (x86)\Internet Download Manager\idmBroker.exe [69144] [PID.6516]

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) (18) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] "http://powerbundle.systweak.com/" =>PUP.Optional.SystSupportDock
G0 - GCSP: Preferences [User Data\Default][HomePage] "http://www.google-analytics.com/"
G0 - GCSP: Preferences [User Data\Default][HomePage] "https://clients2.google.com/"
G0 - GCSP: Preferences [User Data\Default][HomePage] "https://clients4.google.com/"
G2 - GCE: Extension [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [bknbnapaddjdnbilpmlacdkjdkjmbjhd] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] __MSG_ExtensionName__
G2 - GCE: Extension [User Data\Default] [fabcmochhfpldjekobfaaggijgohadih] Bitdefender Wallet
G2 - GCE: Extension [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [hlpfbladobbejblkbfleiljmikcfhkem] __MSG_extension_name__
G2 - GCE: Extension [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Extension [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module
G2 - GCE: Extension [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (18) - 0s
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.AnchorFree Inc - Hotspot Shield Extension.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKCU] [kaspersky.com/KPMPlugin] - (.Kaspersky Lab.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8\npKPMPlugin.dll
P2 - FPN: [HKCU] [kpm@kaspersky.com] - (.kaspersky.com.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8\kpm@kaspersky.com
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_191.dll
P2 - FPN: [HKLM] [@kaspersky.com/content_blocker_6418E0D362104DADA084DC312DFA8ABC] - (.kaspersky.com.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\content_blocker@kaspersky.com
P2 - FPN: [HKLM] [@kaspersky.com/online_banking_69A4E213815F42BD863D889007201D82] - (.kaspersky.com.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\online_banking@kaspersky.com
P2 - FPN: [HKLM] [@kaspersky.com/virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB] - (.kaspersky.com.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com
P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (13) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://linkzb.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 0
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 0

---\\ Internet Explorer, Proxy Management (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 1s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object de navigateur (BHO) (O2) (6) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2 - BHO: ContentBlockerBrowserHelperObject [64Bits] - {03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} . (.Kaspersky Lab ZAO - Cumulative module contains VK, CB and OB pl.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\x64\IEExt\ie_plugin.dll
O2 - BHO: (no name) [64Bits] - {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} . (.www.startisback.com - OldNewExplorer shell enhancements.) -- C:\Program Files\OldNewExplorer\OldNewExplorer64.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject [64Bits] - {B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} . (.Kaspersky Lab ZAO - Cumulative module contains VK, CB and OB pl.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\x64\IEExt\ie_plugin.dll
O2 - BHO: Safe Money Plugin [64Bits] - {E3D96E85-529D-4269-AC6A-97CF9E2221E3} . (.Kaspersky Lab ZAO - Cumulative module contains VK, CB and OB pl.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\x64\IEExt\ie_plugin.dll
O2 - BHO: Kaspersky Password Manager [64Bits] - {F710F7E5-A520-471D-989C-F653AC328FB2} (Orphean)

---\\ Internet Explorer Toolbars (O3) (2) - 0s
O3 - Toolbar: 0x530CAC1D237DB34A856AB04D98CD982A - [HKCU]{1DAC0C53-7D23-4AB3-856A-B04D98CD982A} . (...) -- (.not file.)
O3 - Toolbar: (no name) - [HKLM]{1DAC0C53-7D23-4AB3-856A-B04D98CD982A} (Orphean) (.not file.)

---\\ Applications lancées au démarrage du sytème (O4) (22) - 0s
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [ShadowPlay] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe
O4 - HKCU\..\Run: [EPSON Stylus CX4300] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAR.EXE
O4 - HKCU\..\Run: [CyberGhost] . (.CyberGhost S.R.L. - CyberGhost.) -- C:\Program Files\CyberGhost 5\CyberGhost.EXE
O4 - HKCU\..\Run: [kpm.exe] . (.Kaspersky Lab ZAO - Kaspersky Password Manager.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8\kpm.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\TM 161\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKCU\..\Run: [Viber] . (. - Viber.) -- C:\Users\TM 161\AppData\Local\Viber\Viber.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [USB Security] . (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files (x86)\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Wow6432Node\Run: [PWRISOVM.EXE] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Wow6432Node\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
O4 - HKUS\.DEFAULT\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-18\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-1851370679-1878591111-1958211988-1001\..\Run: [EPSON Stylus CX4300] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICAR.EXE
O4 - HKUS\S-1-5-21-1851370679-1878591111-1958211988-1001\..\Run: [CyberGhost] . (.CyberGhost S.R.L. - CyberGhost.) -- C:\Program Files\CyberGhost 5\CyberGhost.EXE
O4 - HKUS\S-1-5-21-1851370679-1878591111-1958211988-1001\..\Run: [kpm.exe] . (.Kaspersky Lab ZAO - Kaspersky Password Manager.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8\kpm.exe
O4 - HKUS\S-1-5-21-1851370679-1878591111-1958211988-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\TM 161\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-1851370679-1878591111-1958211988-1001\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-1851370679-1878591111-1958211988-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-21-1851370679-1878591111-1958211988-1001\..\Run: [Viber] . (. - Viber.) -- C:\Users\TM 161\AppData\Local\Viber\Viber.exe

---\\ Raccourcis Global Startup (O4G) (6) - 2s
O4 - GS\Desktop [Administrateur]: QQPlayer.lnk . (.Tencent Inc - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Quicklaunch [Administrateur]: QQPlayer.lnk . (.Tencent Inc - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Desktop [Invité]: QQPlayer.lnk . (.Tencent Inc - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Quicklaunch [Invité]: QQPlayer.lnk . (.Tencent Inc - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Desktop [TM 161]: QQPlayer.lnk . (.Tencent Inc - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Quicklaunch [TM 161]: QQPlayer.lnk . (.Tencent Inc - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar

---\\ Modification Domaine/Adresses DNS (O17) (10) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.4.4,4.2.2.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.222.222,4.2.2.5,192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.4.4,4.2.2.4
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.222.222,4.2.2.5,192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 8.8.4.4
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.4.4,4.2.2.4,
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 208.67.222.222,4.2.2.5,192.168.1.1

---\\ Liste des services NT non Microsoft et non désactivés (O23) (20) - 1s
O23 - Service: Kaspersky Anti-Virus Service 15.0.1 (AVP15.0.1) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\avp.exe
O23 - Service: CyberGhost 5 Client Service (CGVPNCliService) . (.CyberGhost S.R.L - CyberGhost VPN Service.) - C:\Program Files\CyberGhost 5\Service.exe
O23 - Service: Search Protect Service (CltMngSvc) . (...) - C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe (.not file.) =>PUP.Optional.SearchProtect
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Stardock ModernMix (ModernMix) . (.Stardock Software, Inc - Stardock ModernMix Service.) - C:\Program Files (x86)\Stardock\ModernMix\MMixSrv.exe
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) . (.Nero AG - NeroUpdate.) - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Unsigned Themes (UnsignedThemes) . (.The Within Network, LLC - Unsigned themes service executable.) - C:\Windows\unsignedthemes.exe
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) . (...) - C:\Windows\System32\vmnetdhcp.exe (.not file.)
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service (VMware NAT Service) . (...) - C:\Windows\System32\vmnat.exe (.not file.)
O23 - Service: VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe

---\\ Tâches planifiées en automatique (O39) (8) - 0s
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1088]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1092]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3890]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\AutoKMS [3758] =>HackTool.AutoKMS
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3828]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4064]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\klcp_update [3796]

---\\ Logiciels installés (O42) (94) - 7s
O42 - Logiciel: CyberGhost 5 - (.CyberGhost S.R.L..) [HKLM][64Bits] -- CyberGhost 5_is1
O42 - Logiciel: EPSON Printer Software - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON Printer and Utilities
O42 - Logiciel: Stardock ModernMix - (.Stardock Software, Inc..) [HKLM][64Bits] -- ModernMix_is1
O42 - Logiciel: TAP-Windows 9.9.2 - (...) [HKLM][64Bits] -- TAP-Windows
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker
O42 - Logiciel: Windows Desktop Gadgets - (.http://gadgetsrevived.com.) [HKLM][64Bits] -- Windows Desktop Gadgets_is1
O42 - Logiciel: WinRAR 5.01 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM][64Bits] -- {0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}
O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000}
O42 - Logiciel: Java 8 Update 5 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418005FF}
O42 - Logiciel: UxStyle - (.The Within Network, LLC.) [HKLM][64Bits] -- {86D24646-DAF6-4F5E-BCAD-CF7EF8E362E1}
O42 - Logiciel: NVIDIA Pilote 3D Vision 341.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote graphique 341.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA GeForce Experience 2.4.3.22 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 340.50 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.13.1220 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.30.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: Microsoft Games for Windows 8 x64 - (.Microsoft.) [HKLM][64Bits] -- {B6047A78-062F-4C6F-A82D-B94DAF72FB73}
O42 - Logiciel: Adobe Flash Player 17 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: FastStone Capture 6.6 - (.FastStone Soft.) [HKLM][64Bits] -- FastStone Capture
O42 - Logiciel: FormatFactory 3.6.0.0 - (.Format Factory.) [HKLM][64Bits] -- FormatFactory
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Hotspot Shield 3.42 - (.AnchorFree Inc..) [HKLM][64Bits] -- HotspotShield
O42 - Logiciel: Kaspersky Total Security - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{8ED07EBD-22AD-415A-B71E-C1AD86862C2E}
O42 - Logiciel: Kaspersky Password Manager - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{E522EB0E-20CC-42A9-82EA-50968D01E7A2}
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager
O42 - Logiciel: K-Lite Codec Pack 11.2.0 Full - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Mozilla Firefox 38.0.5 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 38.0.5 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: NirSoft Wireless Network Watcher - (...) [HKLM][64Bits] -- NirSoft Wireless Network Watcher
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO
O42 - Logiciel: RarmaRadio 2.69.1 - (.RaimerSoft.) [HKLM][64Bits] -- RarmaRadio_is1
O42 - Logiciel: Search Protect - (.Client Connect LTD.) [HKLM][64Bits] -- SearchProtect =>PUP.Optional.Sambreel
O42 - Logiciel: SPlayer - (...) [HKLM][64Bits] -- SPlayer
O42 - Logiciel: StartIsBack+ - (.startisback.com.) [HKLM][64Bits] -- StartIsBack
O42 - Logiciel: UltraUXThemePatcher - (.Manuel Hoefs (Zottel).) [HKLM][64Bits] -- UltraUXThemePatcher
O42 - Logiciel: Upgrade Tools 2.01 - (...) [HKLM][64Bits] -- Upgrade Tools_is1
O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM][64Bits] -- USB Disk Security_is1
O42 - Logiciel: VMware Workstation - (.VMware, Inc.) [HKLM][64Bits] -- VMware_Workstation
O42 - Logiciel: WinSCP 5.1 - (.Martin Prikryl.) [HKLM][64Bits] -- winscp3_is1
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPFix_is1
O42 - Logiciel: tools-freebsd - (.VMware, Inc..) [HKLM][64Bits] -- {003BFBBD-6C67-419E-A24D-0DCAFC3A5249}
O42 - Logiciel: TV 3L PC version 1.3.5.0 - (.Smart PC Soft, Ltd..) [HKLM][64Bits] -- {0BBD0F9C-12E5-456A-A6FC-372324F3D082}_is1
O42 - Logiciel: Nero Recode Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {0CF7D22B-977C-43B2-9219-E03017FBAC6D}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: tools-netware - (.VMware, Inc..) [HKLM][64Bits] -- {197597A7-AD33-4898-9D8E-73066818B464}
O42 - Logiciel: Nero Kwik Themes Basic - (.Nero AG.) [HKLM][64Bits] -- {1B6F5E51-575E-4693-BCA2-7543570D076D}
O42 - Logiciel: Wondershare MobileGo(Version 7.7.0) - (.Wondershare.) [HKLM][64Bits] -- {1E04C795-7359-4E05-8A0E-5644F777AA09}_is1
O42 - Logiciel: Nero SharedVideoCodecs - (.Nero AG.) [HKLM][64Bits] -- {2432E589-6256-4513-B0BF-EFA8E325D5F0}
O42 - Logiciel: Nero Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {29F67D84-3A70-456E-806A-52301B02070B}
O42 - Logiciel: Nero Blu-ray Player Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {36DA8969-4DCD-48FF-894A-6BD3936050C3}
O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM][64Bits] -- {40E51513-D917-4563-84F6-4EF6ADD46E2F}
O42 - Logiciel: Nero Express Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {4CA46F9F-174C-4766-9EA2-2325DF414B9E}
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}
O42 - Logiciel: Nero MediaHome - (.Nero AG.) [HKLM][64Bits] -- {4DB136AF-389B-4A34-AE34-50123559D08E}
O42 - Logiciel: Nero Video - (.Nero AG.) [HKLM][64Bits] -- {511B5F54-CB1D-4F5B-BE0E-09B1D86BE586}
O42 - Logiciel: Nero Video Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {5446D3AF-B060-49B6-9535-F300E1532022}
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {581DCE84-1948-4891-A4A7-A1222CC137C5}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: iSkysoft Data Recovery(Build 1.3.0.1) - (.iSkysoft Software Co.,Ltd..) [HKLM][64Bits] -- {656DB838-DB63-4acd-82E3-BB363ED99116}_is1
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: Nero MediaHome Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {75CA8AAE-5346-4312-A9A8-5CF89955930F}
O42 - Logiciel: Skype™ 6.14 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {80407BA7-7763-4395-AB98-5233F1B34E65}
O42 - Logiciel: Realtek Ethernet Controller Driver For Windows Vista and Later - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Kaspersky Total Security - (.Kaspersky Lab.) [HKLM][64Bits] -- {8ED07EBD-22AD-415A-B71E-C1AD86862C2E}
O42 - Logiciel: CuteFTP 8 Professional - (.GlobalSCAPE.) [HKLM][64Bits] -- {91F34319-08DE-457a-99C0-0BCDFAC145B9}
O42 - Logiciel: Nero Blu-ray Player - (.Nero AG.) [HKLM][64Bits] -- {A2FE691E-3F8E-4E30-AA7D-FF17AC77EA87}
O42 - Logiciel: Nero Audio Pack 1 - (.Nero AG.) [HKLM][64Bits] -- {A7A0BF2E-31CC-49E3-9913-52C503EB969D}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: tools-solaris - (.VMware, Inc..) [HKLM][64Bits] -- {AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63}
O42 - Logiciel: Nero PiP Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {ACE49D50-19CD-44A6-B192-46F985283B26}
O42 - Logiciel: tools-winPre2k - (.VMware, Inc..) [HKLM][64Bits] -- {AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D}
O42 - Logiciel: Nero Burning Core - (.Nero AG.) [HKLM][64Bits] -- {B166374C-105E-445E-8E5D-A86CA5742645}
O42 - Logiciel: Nero Info - (.Nero AG.) [HKLM][64Bits] -- {B791E0AB-87A9-41A4-8D98-D13C2E37D928}
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
O42 - Logiciel: Nero Disc to Device - (.Nero AG.) [HKLM][64Bits] -- {C03E2FB3-250B-44A1-8B9E-61DFCD544133}
O42 - Logiciel: Windows 7 USB/DVD Download Tool - (.Microsoft Corporation.) [HKLM][64Bits] -- {CCF298AF-9CE1-4B26-B251-486E98A34789}
O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {CDFE8F95-F80F-4115-9C3F-0E1FD8F9F58C}
O42 - Logiciel: Nero 2014 - (.Nero AG.) [HKLM][64Bits] -- {CE1948D9-E55B-447D-BA32-A031889B67DB}
O42 - Logiciel: tools-linux - (.VMware, Inc..) [HKLM][64Bits] -- {D102611A-6466-4101-A51D-51069303AC65}
O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {D5115C78-2D22-4668-A5E2-6C87DED3ED1B}
O42 - Logiciel: Nero Disc Menus Basic - (.Nero AG.) [HKLM][64Bits] -- {E17BCB76-9924-4BD5-B6D6-50D3407B4E74}
O42 - Logiciel: Kaspersky Password Manager - (.Kaspersky Lab.) [HKLM][64Bits] -- {E522EB0E-20CC-42A9-82EA-50968D01E7A2}
O42 - Logiciel: Nero Express - (.Nero AG.) [HKLM][64Bits] -- {ED7943A4-2FF0-4096-BBEA-DE3CC206E3D4}
O42 - Logiciel: Nero Burning ROM - (.Nero AG.) [HKLM][64Bits] -- {F2B9C8D6-C69C-4BA7-95D2-66F1C68D15DA}
O42 - Logiciel: Nero RescueAgent Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {F69D4104-5394-4F7C-801C-D96DC92E7F69}
O42 - Logiciel: Nero Burning ROM Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {FA78CC15-9F90-443B-BA61-A66595F06432}
O42 - Logiciel: tools-windows - (.VMware, Inc..) [HKLM][64Bits] -- {FFD9383C-01D5-4897-A954-43AF599AED30}
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
O42 - Logiciel: Viber - (.Viber Media Inc.) [HKCU][64Bits] -- Viber

---\\ HKCU & HKLM Software Keys (132) - 7s
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\AviSynth
HKLM\SOFTWARE\Wow6432Node\CoreCodec
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\EPSON
HKLM\SOFTWARE\Wow6432Node\Foxconn
HKLM\SOFTWARE\Wow6432Node\GlobalSCAPE
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\GRETECH
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\HotspotShield
HKLM\SOFTWARE\Wow6432Node\Icaros
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\InterVideo
HKLM\SOFTWARE\Wow6432Node\iSkysoft
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack
HKLM\SOFTWARE\Wow6432Node\Lake
HKLM\SOFTWARE\Wow6432Node\LAV
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Martin Prikryl
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nero
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Oracle
HKLM\SOFTWARE\Wow6432Node\PowerISO
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Sonic
HKLM\SOFTWARE\Wow6432Node\SPlayer
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Tencent =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\ThinPrint
HKLM\SOFTWARE\Wow6432Node\UltraUXThemePatcher
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WafCX
HKLM\SOFTWARE\Wow6432Node\Wondershare
HKLM\SOFTWARE\Wow6432Node\zbshareware
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\8322898
HKCU\SOFTWARE\Akeo Consulting
HKCU\SOFTWARE\ALICE
HKCU\SOFTWARE\AnchorFree
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\B1nks reader
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Camfrog
HKCU\SOFTWARE\CoreAAC
HKCU\SOFTWARE\CoreCodec
HKCU\SOFTWARE\CyberGhost
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DAUM
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\DRPSu Updater
HKCU\SOFTWARE\DScaler5
HKCU\SOFTWARE\Dz4-EvEr
HKCU\SOFTWARE\EPSON
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\FinalWire
HKCU\SOFTWARE\Fixit Tools
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\Geek Uninstaller
HKCU\SOFTWARE\GlobalSCAPE
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GRETECH
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Icaros
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\InterVideo
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Kaspersky Lab
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\madshi
HKCU\SOFTWARE\Magical Jelly Bean Software
HKCU\SOFTWARE\Martin Prikryl
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\MMBPlayer
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Nero
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\PowerISO
HKCU\SOFTWARE\RaimaSoft
HKCU\SOFTWARE\RealNetworks
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SPlayer
HKCU\SOFTWARE\Stardock
HKCU\SOFTWARE\StartIsBack
HKCU\SOFTWARE\SuperChainMedia
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKCU\SOFTWARE\The Silicon Realms Toolworks
HKCU\SOFTWARE\Tihiy
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Ubisoft
HKCU\SOFTWARE\USB Disk Security
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\Viber
HKCU\SOFTWARE\WICRESET
HKCU\SOFTWARE\Winaero.com
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wondershare
HKCU\SOFTWARE\Xirrus
HKCU\SOFTWARE\Yahoo
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\ThinPrint

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (204) - 5s
O43 - CFD: 2014/05/22 04:35:57 - [] D -- C:\Program Files (x86)\7tsp
O43 - CFD: 2014/05/28 18:37:05 - [0] D -- C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 2015/03/17 13:16:29 - [] D -- C:\Program Files (x86)\Bing Bar Installer
O43 - CFD: 2015/06/25 18:15:49 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2014/06/10 11:02:36 - [] D -- C:\Program Files (x86)\FastStone Capture
O43 - CFD: 2015/05/27 18:16:42 - [] D -- C:\Program Files (x86)\FreeTime
O43 - CFD: 2014/08/16 18:29:57 - [] D -- C:\Program Files (x86)\GlobalSCAPE
O43 - CFD: 2015/01/10 18:39:19 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/06/10 18:51:57 - [0] D -- C:\Program Files (x86)\GRETECH
O43 - CFD: 2014/10/07 18:31:46 - [] D -- C:\Program Files (x86)\Hotspot Shield
O43 - CFD: 2014/10/07 18:42:05 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/05/05 13:47:17 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 2014/03/18 11:33:39 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/06/25 18:15:41 - [] D -- C:\Program Files (x86)\iSkysoft
O43 - CFD: 2015/06/10 19:27:33 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 2015/01/19 18:10:24 - [] D -- C:\Program Files (x86)\Kaspersky Lab
O43 - CFD: 2015/07/03 18:48:19 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2014/05/28 20:21:27 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2014/05/28 20:21:26 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 2014/05/28 20:19:49 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 2014/05/28 20:21:50 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2014/05/28 20:21:15 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/06/30 13:18:54 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/06/30 13:18:54 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2014/05/28 20:21:41 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2014/06/13 21:36:49 - [] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2014/09/07 16:08:24 - [] D -- C:\Program Files (x86)\Nero
O43 - CFD: 2015/05/05 14:00:54 - [] D -- C:\Program Files (x86)\NirSoft
O43 - CFD: 2014/05/29 15:57:09 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2014/12/25 16:35:50 - [] D -- C:\Program Files (x86)\RarmaRadio
O43 - CFD: 2014/08/14 11:47:16 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2014/05/22 03:30:49 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2014/05/28 20:22:35 - [] D -- C:\Program Files (x86)\SearchProtect =>PUP.SearchProtect
O43 - CFD: 2015/06/30 13:36:08 - [0] D -- C:\Program Files (x86)\SecurityXploded
O43 - CFD: 2014/05/22 03:40:50 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2015/06/10 19:08:05 - [] D -- C:\Program Files (x86)\SPlayer
O43 - CFD: 2014/05/22 04:04:43 - [] D -- C:\Program Files (x86)\Stardock
O43 - CFD: 2014/05/22 03:50:53 - [] D -- C:\Program Files (x86)\StartIsBack
O43 - CFD: 2014/09/18 17:04:31 - [] D -- C:\Program Files (x86)\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 2014/06/17 10:14:07 - [] D -- C:\Program Files (x86)\TOP TV
O43 - CFD: 2015/01/24 11:35:26 - [] D -- C:\Program Files (x86)\TV 3L PC
O43 - CFD: 2014/05/22 04:24:43 - [] D -- C:\Program Files (x86)\UltraUXThemePatcher
O43 - CFD: 2015/02/28 08:10:19 - [] D -- C:\Program Files (x86)\USB Disk Security
O43 - CFD: 2015/06/10 18:53:39 - [0] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2015/02/22 17:42:19 - [] D -- C:\Program Files (x86)\VMware
O43 - CFD: 2015/05/01 17:55:35 - [] D -- C:\Program Files (x86)\Win - Tools 161
O43 - CFD: 2014/03/18 11:33:29 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2014/03/18 10:26:19 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2014/03/18 11:33:29 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2014/03/18 11:33:30 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2013/08/22 16:36:30 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2014/03/18 10:26:19 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2014/03/18 11:33:30 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2015/03/01 11:47:21 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2013/08/22 16:36:30 - [] D -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 2014/08/15 12:03:12 - [] D -- C:\Program Files (x86)\WinSCP
O43 - CFD: 2015/06/22 17:57:15 - [] D -- C:\Program Files (x86)\Wondershare
O43 - CFD: 2015/07/12 23:48:11 - [] D -- C:\Program Files (x86)\ZHPFix
O43 - CFD: 2014/05/22 03:46:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2013/08/22 16:36:33 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2014/05/28 19:19:04 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/03/18 11:33:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/07/17 12:58:21 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
O43 - CFD: 2014/10/07 19:17:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 5
O43 - CFD: 2014/08/06 19:25:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
O43 - CFD: 2014/06/10 11:02:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Capture
O43 - CFD: 2014/08/16 18:29:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GlobalSCAPE
O43 - CFD: 2014/05/22 03:32:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/01/10 18:39:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
O43 - CFD: 2014/10/07 18:31:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
O43 - CFD: 2015/05/05 13:47:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2015/06/25 18:15:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSkysoft
O43 - CFD: 2014/05/22 03:38:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015/06/10 19:27:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 2015/01/19 18:10:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager
O43 - CFD: 2015/01/18 18:30:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
O43 - CFD: 2013/08/22 16:36:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/03 18:48:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2014/05/28 20:22:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2014/09/07 16:07:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
O43 - CFD: 2015/02/28 12:10:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2014/05/29 12:57:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
O43 - CFD: 2015/05/15 18:29:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project CARS
O43 - CFD: 2014/12/25 16:35:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RarmaRadio
O43 - CFD: 2014/05/28 18:59:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/06/10 19:07:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SPlayer
O43 - CFD: 2014/05/22 04:04:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
O43 - CFD: 2015/06/22 17:57:10 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2014/03/18 11:33:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2014/03/18 10:41:55 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/01/24 11:33:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TV 3L PC
O43 - CFD: 2014/06/04 17:05:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UpgradeTool
O43 - CFD: 2014/05/28 19:00:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security
O43 - CFD: 2015/02/22 17:43:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
O43 - CFD: 2014/05/22 04:07:56 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2014/08/15 12:03:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP
O43 - CFD: 2015/06/22 17:57:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
O43 - CFD: 2015/07/12 23:47:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
O43 - CFD: 2015/07/12 11:54:32 - [0] D -- C:\ProgramData\APN
O43 - CFD: 2015/06/10 18:53:09 - [0] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2013/08/22 15:45:52 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/05/27 18:15:14 - [] D -- C:\ProgramData\Baidu
O43 - CFD: 2014/07/13 16:16:22 - [] D -- C:\ProgramData\BDLogging
O43 - CFD: 2014/06/03 11:16:17 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 2014/05/22 02:17:38 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2013/08/22 15:45:52 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2013/08/22 15:45:52 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2014/08/06 19:25:28 - [] D -- C:\ProgramData\EPSON
O43 - CFD: 2015/04/30 14:57:09 - [] D -- C:\ProgramData\ESET
O43 - CFD: 2014/08/16 18:34:30 - [] D -- C:\ProgramData\GlobalSCAPE
O43 - CFD: 2014/10/07 18:31:45 - [] D -- C:\ProgramData\Hotspot Shield
O43 - CFD: 2014/05/22 03:53:41 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 2015/07/12 23:41:14 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 2014/05/22 04:45:21 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2014/05/22 02:17:38 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2014/05/28 23:00:07 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2014/05/28 20:22:22 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2014/05/22 03:47:32 - [] D -- C:\ProgramData\Microsoft Toolkit
O43 - CFD: 2014/05/22 02:17:38 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2014/05/22 03:49:24 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2014/08/22 17:16:45 - [] D -- C:\ProgramData\MumboJumbo
O43 - CFD: 2014/09/07 16:06:47 - [] D -- C:\ProgramData\Nero
O43 - CFD: 2015/07/12 23:39:37 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2014/05/29 15:57:49 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/05/20 18:21:38 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2014/05/28 19:18:59 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/06/19 19:16:16 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 2014/05/28 18:59:15 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2014/05/22 04:04:45 - [] D -- C:\ProgramData\Stardock
O43 - CFD: 2013/08/22 15:45:52 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2015/05/15 18:32:51 - [] D -- C:\ProgramData\Steam
O43 - CFD: 2014/06/27 21:23:47 - [] D -- C:\ProgramData\TEMP
O43 - CFD: 2013/08/22 15:45:52 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/07/12 23:40:02 - [] D -- C:\ProgramData\VMware
O43 - CFD: 2015/05/17 20:55:18 - [] D -- C:\ProgramData\WebcamMax
O43 - CFD: 2015/06/22 17:57:56 - [] D -- C:\ProgramData\wondershare
O43 - CFD: 2014/05/28 20:21:26 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2014/08/16 18:28:49 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2015/06/25 18:15:49 - [] D -- C:\Program Files (x86)\Common Files\iSkysoft
O43 - CFD: 2014/05/22 03:38:12 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2015/04/30 15:38:26 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2014/09/07 16:08:58 - [] D -- C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 2013/08/22 16:36:33 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2014/05/22 03:40:50 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2014/05/28 20:19:41 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/02/22 17:42:19 - [] D -- C:\Program Files (x86)\Common Files\VMware
O43 - CFD: 2015/05/15 18:38:07 - [] D -- C:\Users\TM 161\AppData\Roaming\Adobe
O43 - CFD: 2015/07/12 11:33:06 - [] D -- C:\Users\TM 161\AppData\Roaming\DMCache
O43 - CFD: 2015/06/22 17:58:04 - [] D -- C:\Users\TM 161\AppData\Roaming\HMYGSetting
O43 - CFD: 2015/05/31 18:07:36 - [] D -- C:\Users\TM 161\AppData\Roaming\IDM
O43 - CFD: 2015/05/16 18:29:48 - [] D -- C:\Users\TM 161\AppData\Roaming\Macromedia
O43 - CFD: 2015/01/24 17:02:10 - [] SD -- C:\Users\TM 161\AppData\Roaming\Microsoft
O43 - CFD: 2015/05/17 13:17:57 - [] D -- C:\Users\TM 161\AppData\Roaming\Mozilla
O43 - CFD: 2015/05/17 19:26:51 - [] D -- C:\Users\TM 161\AppData\Roaming\MPC-HC
O43 - CFD: 2015/06/19 18:17:10 - [] D -- C:\Users\TM 161\AppData\Roaming\Nero
O43 - CFD: 2015/06/10 19:31:04 - [] D -- C:\Users\TM 161\AppData\Roaming\SPlayer
O43 - CFD: 2015/07/12 14:14:27 - [0] D -- C:\Users\TM 161\AppData\Roaming\Systweak =>PUP.Optional.Systweak
O43 - CFD: 2015/05/27 19:05:07 - [] D -- C:\Users\TM 161\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 2015/06/30 13:17:55 - [] D -- C:\Users\TM 161\AppData\Roaming\uTorrent
O43 - CFD: 2015/07/12 23:41:59 - [] D -- C:\Users\TM 161\AppData\Roaming\ViberPC
O43 - CFD: 2015/05/17 17:02:30 - [] D -- C:\Users\TM 161\AppData\Roaming\VMware
O43 - CFD: 2015/05/17 20:55:04 - [] D -- C:\Users\TM 161\AppData\Roaming\WebcamMax
O43 - CFD: 2015/05/16 18:31:11 - [] D -- C:\Users\TM 161\AppData\Roaming\WinRAR
O43 - CFD: 2015/06/22 18:08:47 - [] D -- C:\Users\TM 161\AppData\Roaming\Wondershare
O43 - CFD: 2015/05/16 16:54:33 - [] D -- C:\Users\TM 161\AppData\Roaming\Zbshareware Lab
O43 - CFD: 2015/07/12 23:52:31 - [] D -- C:\Users\TM 161\AppData\Roaming\ZHP
O43 - CFD: 2014/05/22 02:22:26 - [0] SHD -- C:\Users\TM 161\AppData\Local\Application Data
O43 - CFD: 2015/06/25 19:17:48 - [] D -- C:\Users\TM 161\AppData\Local\CyberGhost
O43 - CFD: 2015/07/12 14:11:17 - [] D -- C:\Users\TM 161\AppData\Local\Diagnostics
O43 - CFD: 2015/05/23 19:26:53 - [] D -- C:\Users\TM 161\AppData\Local\Downloaded Installations
O43 - CFD: 2014/05/28 18:33:54 - [] SHD -- C:\Users\TM 161\AppData\Local\EmieSiteList
O43 - CFD: 2014/05/28 18:33:54 - [] SHD -- C:\Users\TM 161\AppData\Local\EmieUserList
O43 - CFD: 2015/06/30 14:05:58 - [] D -- C:\Users\TM 161\AppData\Local\Google
O43 - CFD: 2014/05/22 02:22:26 - [0] SHD -- C:\Users\TM 161\AppData\Local\Historique
O43 - CFD: 2015/06/25 18:15:51 - [] D -- C:\Users\TM 161\AppData\Local\iSkysoft
O43 - CFD: 2015/05/15 18:29:32 - [] D -- C:\Users\TM 161\AppData\Local\Microsoft
O43 - CFD: 2015/05/17 13:17:57 - [] D -- C:\Users\TM 161\AppData\Local\Mozilla
O43 - CFD: 2015/06/07 20:52:25 - [] D -- C:\Users\TM 161\AppData\Local\Nero
O43 - CFD: 2015/06/07 20:52:29 - [] D -- C:\Users\TM 161\AppData\Local\Nero_AG
O43 - CFD: 2014/05/29 12:49:48 - [] D -- C:\Users\TM 161\AppData\Local\NVIDIA
O43 - CFD: 2015/05/16 17:34:01 - [] D -- C:\Users\TM 161\AppData\Local\NVIDIA Corporation
O43 - CFD: 2014/05/22 05:49:38 - [] D -- C:\Users\TM 161\AppData\Local\Packages
O43 - CFD: 2015/05/24 17:35:57 - [] D -- C:\Users\TM 161\AppData\Local\Programs
O43 - CFD: 2015/07/12 23:52:25 - [] D -- C:\Users\TM 161\AppData\Local\Temp
O43 - CFD: 2014/05/22 02:22:26 - [0] SHD -- C:\Users\TM 161\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/06/07 15:03:17 - [] D -- C:\Users\TM 161\AppData\Local\Viber
O43 - CFD: 2015/06/25 19:17:48 - [] D -- C:\Users\TM 161\AppData\Local\VirtualStore
O43 - CFD: 2015/05/17 17:02:30 - [] D -- C:\Users\TM 161\AppData\Local\VMware
O43 - CFD: 2014/03/18 11:33:35 - [] RD -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2013/08/22 16:36:32 - [] RD -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/05/22 02:22:43 - [] RD -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/05/27 18:16:52 - [] D -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 2014/05/22 03:43:14 - [] D -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/05/05 13:47:14 - [] D -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2013/08/22 16:36:32 - [] D -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/05/05 14:00:54 - [] D -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft Wireless Network Watcher
O43 - CFD: 2014/05/22 05:34:13 - [0] D -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox Guest Additions
O43 - CFD: 2014/05/22 04:02:19 - [] RD -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/03/18 11:33:35 - [] RD -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2014/09/18 17:04:34 - [] D -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 2014/05/22 04:24:44 - [] D -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UltraUXThemePatcher
O43 - CFD: 2014/05/22 03:41:31 - [] D -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
O43 - CFD: 2014/09/05 17:05:31 - [] D -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
O43 - CFD: 2014/05/22 04:07:56 - [] D -- C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Liste des pilotes du système (SDL) (O58) (134) - 3s
O58 - SDL:2015/03/17 06:29:22 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\04E54200.sys [129752]
O58 - SDL:2014/12/14 07:07:37 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\05327CE9.sys [129752]
O58 - SDL:2014/08/09 17:44:38 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\0E654AD4.sys [122584]
O58 - SDL:2015/01/11 17:54:06 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\0F0E776E.sys [129752]
O58 - SDL:2015/03/11 19:49:54 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\0FB551E8.sys [129752]
O58 - SDL:2014/10/01 20:33:48 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\10CE1B64.sys [122584]
O58 - SDL:2014/11/09 14:33:18 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\115E235E.sys [129752]
O58 - SDL:2015/03/17 07:05:36 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\12605DBC.sys [129752]
O58 - SDL:2014/12/30 18:03:31 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\1341550B.sys [129752]
O58 - SDL:2014/07/06 22:26:50 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\15976081.sys [122584]
O58 - SDL:2014/10/17 17:49:23 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\15A23462.sys [129752]
O58 - SDL:2015/06/03 17:50:48 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\191A19EC.sys [136408]
O58 - SDL:2014/11/21 17:30:35 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\19EF54A3.sys [129752]
O58 - SDL:2015/01/06 17:03:41 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\1FBD4A2E.sys [129752]
O58 - SDL:2014/11/04 17:01:25 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\20DA0E0E.sys [129752]
O58 - SDL:2014/06/22 13:41:47 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\22934558.sys [122584]
O58 - SDL:2014/06/06 10:33:55 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\27DE00BE.sys [122584]
O58 - SDL:2014/09/07 19:15:17 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\2B4506DD.sys [122584]
O58 - SDL:2014/07/08 17:55:10 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\2BB21830.sys [122584]
O58 - SDL:2014/09/01 21:27:38 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\2BF976B2.sys [122584]
O58 - SDL:2014/10/15 13:06:35 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\2D833FAC.sys [129752]
O58 - SDL:2014/08/15 12:09:08 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\2F712138.sys [122584]
O58 - SDL:2015/04/27 16:05:24 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\351D7E55.sys [136408]
O58 - SDL:2015/03/10 12:57:49 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\36BC454D.sys [129752]
O58 - SDL:2014/07/16 13:57:37 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\398634A4.sys [122584]
O58 - SDL:2015/04/24 11:37:45 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\3EF70050.sys [136408]
O58 - SDL:2013/08/22 13:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [108896]
O58 - SDL:2014/11/06 11:21:14 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\41AB25F7.sys [129752]
O58 - SDL:2014/10/15 13:07:03 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\451E4007.sys [129752]
O58 - SDL:2015/02/10 09:00:13 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\456406CD.sys [129752]
O58 - SDL:2015/03/17 06:28:47 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\4763418E.sys [129752]
O58 - SDL:2015/04/01 11:22:17 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\478E7FE4.sys [136408]
O58 - SDL:2014/10/07 17:43:02 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\48230029.sys [122584]
O58 - SDL:2015/03/31 20:04:38 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\4A6A77D8.sys [136408]
O58 - SDL:2015/05/31 17:24:50 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\4BA95527.sys [136408]
O58 - SDL:2014/11/04 17:02:26 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\4BFB0ED8.sys [129752]
O58 - SDL:2014/07/05 19:08:44 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\4D242768.sys [122584]
O58 - SDL:2015/02/23 10:53:11 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\534554FE.sys [129752]
O58 - SDL:2014/08/20 17:39:34 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\54F935F8.sys [122584]
O58 - SDL:2015/02/05 07:52:02 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\570E4BF0.sys [129752]
O58 - SDL:2015/04/01 11:22:35 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\5745366A.sys [136408]
O58 - SDL:2015/01/12 07:26:05 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\592964E6.sys [129752]
O58 - SDL:2015/06/23 10:59:05 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\5CFC7977.sys [136408]
O58 - SDL:2015/01/21 18:54:26 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\63CC32F0.sys [129752]
O58 - SDL:2015/05/12 18:11:17 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\646C72AD.sys [136408]
O58 - SDL:2014/12/25 17:58:30 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\65B34A8A.sys [129752]
O58 - SDL:2015/04/07 19:49:16 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\69720F03.sys [136408]
O58 - SDL:2015/04/22 18:58:40 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\6B667C48.sys [136408]
O58 - SDL:2014/07/31 22:15:29 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\6CC57DA6.sys [122584]
O58 - SDL:2015/06/19 18:25:08 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\769C52F0.sys [136408]
O58 - SDL:2014/09/25 19:56:40 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\79081D35.sys [122584]
O58 - SDL:2015/05/20 19:00:22 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\7E54094E.sys [136408]
O58 - SDL:2015/07/12 11:35:47 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\7EE27342.sys [113880]
O58 - SDL:2015/01/19 07:52:21 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\7F241BEC.sys [129752]
O58 - SDL:2013/08/22 13:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [782176]
O58 - SDL:2013/08/22 13:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [79200]
O58 - SDL:2013/08/22 13:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259424]
O58 - SDL:2013/08/22 13:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [25952]
O58 - SDL:2011/11/28 14:51:44 A . (.AnvSoft Inc. - AnvSoft Virtual Audio Device.) -- C:\Windows\System32\drivers\anvsnddrv.sys [33872]
O58 - SDL:2013/08/22 13:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [114016]
O58 - SDL:2013/08/13 00:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [17624]
O58 - SDL:2013/08/22 13:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [531296]
O58 - SDL:2013/01/14 20:10:52 A . (.Kaspersky Lab UK Ltd - Cryptographic Module.) -- C:\Windows\System32\drivers\cm_km_w.sys [238288]
O58 - SDL:2013/06/18 15:45:28 A . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserializ.) -- C:\Windows\System32\drivers\E1G6032E.sys [147584]
O58 - SDL:2015/03/10 17:24:42 A . (.ESET - Epfw NDIS LightWeight Filter.) -- C:\Windows\System32\drivers\EpfwLWF.sys [44632]
O58 - SDL:2015/04/30 15:36:38 A . (.ESET - ESET Cleaners Driver.) -- C:\Windows\System32\drivers\ESETCleanersDriver.sys [170280]
O58 - SDL:2013/08/22 13:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3357024]
O58 - SDL:2014/08/21 08:07:02 A . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\drivers\hcmon.sys [54976]
O58 - SDL:2009/09/17 18:54:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [56344]
O58 - SDL:2013/08/22 13:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64352]
O58 - SDL:2014/05/17 03:35:04 A . (.AnchorFree Inc. - Hotspot Shield Routing Driver.) -- C:\Windows\System32\drivers\hssdrv6.sys [44744]
O58 - SDL:2013/07/30 19:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568]
O58 - SDL:2013/07/25 20:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320]
O58 - SDL:2013/08/10 01:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\Windows\System32\drivers\iaStorAV.sys [651248]
O58 - SDL:2013/08/22 13:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [412000]
O58 - SDL:2015/04/18 02:06:24 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [195056]
O58 - SDL:2014/03/31 10:47:10 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\Windows\System32\drivers\kl1.sys [468576]
O58 - SDL:2014/07/02 15:10:42 A . (.Kaspersky Lab ZAO - Virtual Disk fre_win8_x64.) -- C:\Windows\System32\drivers\kldisk.sys [46144]
O58 - SDL:2012/07/27 17:38:24 A . (.Kaspersky Lab - Klelam Mini-Filter [fre_win8_x64].) -- C:\Windows\System32\drivers\klelam.sys [29616]
O58 - SDL:2014/12/05 00:10:20 A . (.Kaspersky Lab ZAO - Filter Core [fre_win8_x64].) -- C:\Windows\System32\drivers\klflt.sys [150536]
O58 - SDL:2014/08/12 17:32:58 A . (.Kaspersky Lab ZAO - KLHK [fre_win8_x64].) -- C:\Windows\System32\drivers\klhk.sys [247480]
O58 - SDL:2015/03/11 09:08:03 A . (.Kaspersky Lab ZAO - Klif Mini-Filter [fre_win8_x64].) -- C:\Windows\System32\drivers\klif.sys [800440]
O58 - SDL:2014/02/25 12:09:02 A . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) -- C:\Windows\System32\drivers\klim6.sys [30304]
O58 - SDL:2014/03/28 16:51:02 A . (.Kaspersky Lab ZAO - KLKBDFLT Keyboard Device Filter [fre_win8_x.) -- C:\Windows\System32\drivers\klkbdflt.sys [28768]
O58 - SDL:2013/08/08 16:11:00 A . (.Kaspersky Lab ZAO - KLMOUFLT Mouse Device Filter [fre_win8_x64].) -- C:\Windows\System32\drivers\klmouflt.sys [29280]
O58 - SDL:2013/04/12 14:34:48 A . (.Kaspersky Lab ZAO - KLPD [fre_wnet_x64].) -- C:\Windows\System32\drivers\klpd.sys [15456]
O58 - SDL:2014/12/05 00:10:20 A . (.Kaspersky Lab ZAO - Network filtering component [fre_win8_x64].) -- C:\Windows\System32\drivers\klwfp.sys [68616]
O58 - SDL:2014/12/05 00:10:20 A . (.Kaspersky Lab ZAO - Network filtering component.) -- C:\Windows\System32\drivers\klwtp.sys [77512]
O58 - SDL:2014/07/09 15:23:54 A . (.Kaspersky Lab ZAO - KNEPS Power [fre_wnet_amd64].) -- C:\Windows\System32\drivers\kneps.sys [179776]
O58 - SDL:2013/08/22 13:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [109408]
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [93536]
O58 - SDL:2013/08/22 13:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3.sys [81760]
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [82784]
O58 - SDL:2015/06/18 08:41:40 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816]
O58 - SDL:2015/06/18 08:41:44 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272]
O58 - SDL:2015/07/12 23:41:17 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [113880]
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [56672]
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575840]
O58 - SDL:2013/08/22 13:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63840]
O58 - SDL:2015/06/18 08:42:02 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [64216]
O58 - SDL:2010/01/12 04:19:32 A . (.Windows (R) Codename Longhorn DDK provider - Parallel Port Driver.) -- C:\Windows\System32\drivers\NmPar.sys [95744]
O58 - SDL:2010/01/07 10:31:20 A . (.Windows (R) Codename Longhorn DDK provider - Serial Device Driver.) -- C:\Windows\System32\drivers\NmSerial.sys [75264]
O58 - SDL:2013/11/28 14:38:18 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [197408]
O58 - SDL:2015/02/04 04:56:28 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [12894024]
O58 - SDL:2013/08/22 13:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150368]
O58 - SDL:2013/08/22 13:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [168288]
O58 - SDL:2014/11/22 11:46:30 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\drivers\nvvad64v.sys [38032]
O58 - SDL:2013/06/18 15:46:17 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\Windows\System32\drivers\Rt630x64.sys [591360]
O58 - SDL:2009/11/25 19:53:00 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [239616]
O58 - SDL:2013/05/15 07:50:12 A . (.Realtek Semiconductor Corporation - Realtek 10/100/1000 X64 Driver.) -- C:\Windows\System32\drivers\Rtenic64.sys [506952]
O58 - SDL:2010/01/07 03:20:22 A . (.Realtek Semiconductor Corporation - Realtek RTL8187 NDIS Driver.) -- C:\Windows\System32\drivers\RTL8187.sys [448512]
O58 - SDL:2014/03/30 07:26:02 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [129944]
O58 - SDL:2013/08/22 16:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2013/08/22 13:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44896]
O58 - SDL:2013/08/22 13:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81760]
O58 - SDL:2014/01/22 08:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys [108800]
O58 - SDL:2014/01/22 08:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudmdm.sys [206080]
O58 - SDL:2014/01/22 08:52:12 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Mobile OBEX Device Driver (MSS.) -- C:\Windows\System32\drivers\ssudobex.sys [206080]
O58 - SDL:2014/01/22 08:52:12 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Mobile Logging Device Driver (M.) -- C:\Windows\System32\drivers\ssudserd.sys [206080]
O58 - SDL:2013/08/22 13:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31072]
O58 - SDL:2013/08/22 13:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\tap0901.sys [40664]
O58 - SDL:2014/05/17 01:42:36 A . (.Anchorfree Inc. - Anchorfree HSS VPN Adapter.) -- C:\Windows\System32\drivers\taphss6.sys [42184]
O58 - SDL:2013/09/23 03:19:04 A . (.The Within Network, LLC - UxStyle Kernel Driver.) -- C:\Windows\System32\drivers\uxstyle.sys [31440]
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [19808]
O58 - SDL:2013/10/08 18:21:06 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\drivers\vmci.sys [85584]
O58 - SDL:2015/01/16 18:14:56 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\Windows\System32\drivers\vmnet.sys [24656]
O58 - SDL:2015/01/16 18:14:56 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\Windows\System32\drivers\vmnetadapter.sys [20560]
O58 - SDL:2015/01/16 18:14:56 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\Windows\System32\drivers\vmnetbridge.sys [46160]
O58 - SDL:2015/01/16 18:15:20 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\Windows\System32\drivers\vmnetuserif.sys [31448]
O58 - SDL:2015/01/16 18:15:10 A . (.VMware, Inc. - VMware parallel port driver.) -- C:\Windows\System32\drivers\VMparport.sys [32472]
O58 - SDL:2015/01/16 18:15:38 A . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\System32\drivers\vmx86.sys [64728]
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [168800]
O58 - SDL:2013/10/08 18:21:10 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\drivers\vsock.sys [73296]
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305504]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (14) - 26s
O61 - LFC: 2015/07/12 23:41:37 A . (.Tonec Inc..) -- C:\Users\TM 161\AppData\Roaming\IDM\idmmzcc5\components2\idmcchandler2.dll [332824]
O61 - LFC: 2015/07/12 23:41:37 A . (.Tonec Inc..) -- C:\Users\TM 161\AppData\Roaming\IDM\idmmzcc5\components2\idmcchandler2_64.dll [460824]
O61 - LFC: 2015/07/12 23:41:37 A . (.Tonec Inc..) -- C:\Users\TM 161\AppData\Roaming\IDM\idmmzcc5\components2\idmmzcc.dll [34216]
O61 - LFC: 2015/07/12 23:41:37 A . (.Tonec Inc..) -- C:\Users\TM 161\AppData\Roaming\IDM\idmmzcc5\components2\idmmzcc64.dll [28512]
O61 - LFC: 2015/07/12 23:41:37 A . (.Tonec Inc..) -- C:\Users\TM 161\AppData\Roaming\IDM\idmmzcc5\components12\idmmzcc.dll [26648]
O61 - LFC: 2015/07/12 23:41:37 A . (.Tonec Inc..) -- C:\Users\TM 161\AppData\Roaming\IDM\idmmzcc5\components12\idmmzcc64.dll [31768]
O61 - LFC: 2015/07/12 23:41:37 A . (.Tonec Inc..) -- C:\Users\TM 161\AppData\Roaming\IDM\idmmzcc5\components\idmmzcc.dll [34216]
O61 - LFC: 2015/07/07 11:00:22 A . (..) -- C:\Users\TM 161\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [4457027]
O61 - LFC: 2015/07/12 11:38:49 A . (..) -- C:\Users\TM 161\AppData\Local\NVIDIA\NvBackend\Packages\000079d8\DAO.19750200.exe [5900040]
O61 - LFC: 2015/07/12 11:37:50 A . (..) -- C:\Users\TM 161\AppData\Local\NVIDIA\NvBackend\Packages\000079a6\CoProc update.19741457.exe [456720]
O61 - LFC: 2015/07/09 16:30:20 A . (.NVIDIA Corporation.) -- C:\Users\TM 161\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe [628664]
O61 - LFC: 2015/07/09 16:30:16 A . (.NVIDIA Corporation.) -- C:\Users\TM 161\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe [172984]
O61 - LFC: 2015/07/09 16:30:12 A . (.NVIDIA Corporation.) -- C:\Users\TM 161\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\Ontology.dll [1357240]
O61 - LFC: 2015/07/12 13:32:30 A . (..) -- C:\Users\TM 161\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]

---\\ Associations Shell Spawning (O67) (9) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Editeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (SMI) (O68) (12) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (1) - 2s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/

---\\ Enumère les services démarrés par Svchost (SSS) (O83) (36) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [208896]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [155136]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [155136]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [324608]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1311744]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1104384]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [903168]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [109568]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [150528]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [107008]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1214976]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [220672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [70656]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [134144]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [220160]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [326656]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [81408]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [97792]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [339456]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [491520]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\system32\wlidsvc.dll [1576960]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [50688]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [201728]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\ncasvc.dll [164352]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [101376]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [534528]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [223744]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\sens.dll [71680]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [433664]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [306688]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [3408384]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1017856]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [629760]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [183296]
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filt.) -- C:\Windows\System32\KeyboardFilterSvc.dll [90464]

---\\ Liste des exceptions du parefeu (FirewallRules) (O87) (16) - 1s
O87 - FAEL: "{F0CC192C-6EE3-4418-B10B-8D6DA6C40D73}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\TM 161\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{A4C43A27-ADF5-4D9E-8464-4414952DA901}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\TM 161\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{76EB6011-907C-4035-837C-89A750027B19}" [In-None-P6-TRUE] .(.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O87 - FAEL: "{9F0EE9A9-FF70-4234-9A29-0A1A0DFBE0A7}" [In-None-P6-TRUE] .(.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O87 - FAEL: "{F64B5638-8DA6-4D90-8BBB-62F1E86746B9}" [In-None-P6-TRUE] .(.NVIDIA Corporation - NVIDIA Network Stream Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O87 - FAEL: "{201C1004-35DD-4244-8A50-8150E15D0583}" [In-None-P17-TRUE] .(.NVIDIA Corporation - NVIDIA Network Stream Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O87 - FAEL: "{D92BB7DF-6B25-4CC2-96A6-76AD3516D612}" [In-None-P6-TRUE] .(.NVIDIA Corporation - NVIDIA Streamer Server Component.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
O87 - FAEL: "{C268B5DA-940D-4E95-B140-A1C400A3F080}" [In-None-P17-TRUE] .(.NVIDIA Corporation - NVIDIA Streamer Server Component.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
O87 - FAEL: "TCP Query User{4056ADBB-9402-458F-A093-9452E2798D3E}C:\program files (x86)\top tv\rtmpgw.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\top tv\rtmpgw.exe
O87 - FAEL: "UDP Query User{748F1465-2B4D-4134-B8C4-506F6403B8AB}C:\program files (x86)\top tv\rtmpgw.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\top tv\rtmpgw.exe
O87 - FAEL: "{4C343294-AFED-405C-9DA9-A0C0E0FAF16F}" [In-None-P17-TRUE] .(.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
O87 - FAEL: "{17608A2B-1076-4B53-AEC3-2A641AA98CCD}" [In-None-P17-TRUE] .(.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
O87 - FAEL: "{A12A1F08-66CB-431E-84A1-812C95420CC8}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
O87 - FAEL: "{72BBF833-DB19-45A4-A238-3B7CA67A900D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
O87 - FAEL: "TCP Query User{CCFD636E-EC9F-43DD-B9C3-A4CBF7D06B35}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe" [In-None-P6-TRUE] .(.Wondershare - MobileGoService.) -- C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe
O87 - FAEL: "UDP Query User{018B642C-925C-4223-B403-7AB1E0E0ED0B}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe" [In-None-P17-TRUE] .(.Wondershare - MobileGoService.) -- C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) (25) - 12s
SS - Demand [2015/07/12 13:23:44] [ 268464] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - Auto [2014/08/30 16:48:46] [ 234520] Kaspersky Anti-Virus Service 15.0.1 (AVP15.0.1) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.1\avp.exe
SR - Auto [2014/06/12 09:02:10] [ 64624] CyberGhost 5 Client Service (CGVPNCliService) . (.CyberGhost S.R.L.) - C:\Program Files\CyberGhost 5\Service.exe
SR - Auto [2015/05/01 17:52:25] [ 1152656] NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
SS - Auto [2014/05/22 03:31:55] [ 116648] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2014/05/22 03:31:55] [ 116648] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Disabled [2014/05/17 00:32:48] [ 919040] Hotspot Shield Service (hshld) . (.AnchorFree Inc..) - C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
SS - Disabled [2014/05/17 01:44:24] [ 78512] Hotspot Shield Tray Service (HssTrayService) . (...) - C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE
SS - Disabled [2014/05/16 23:34:14] [ 430344] Hotspot Shield Monitoring Service (HssWd) . (...) - C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
SR - Auto [2015/06/18 08:39:46] [ 1871160] (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
SR - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
SR - Auto [2013/02/28 19:15:32] [ 74864] Stardock ModernMix (ModernMix) . (.Stardock Software, Inc.) - C:\Program Files (x86)\Stardock\ModernMix\MMixSrv.exe
SS - Demand [2015/06/25 18:39:54] [ 148080] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - Auto [2013/07/18 16:39:40] [ 762192] @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exe
SR - Auto [2015/05/01 17:52:25] [ 1884304] NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
SR - Auto [2015/05/01 17:52:24] [22997648] NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
SR - Auto [// ::] [ 932040] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SS - Auto [2013/10/23 07:15:08] [ 172192] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - Auto [2015/02/04 01:00:09] [ 409800] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - Auto [2013/09/23 03:19:06] [ 13824] Unsigned Themes (UnsignedThemes) . (.The Within Network, LLC.) - C:\Windows\unsignedthemes.exe
SR - Auto [2015/01/16 17:12:26] [ 87256] VMware Authorization Service (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
SR - Auto [2014/08/21 08:07:12] [ 906432] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
SS - Auto [2015/01/16 17:35:52] [14400728] VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
SS - Demand [2015/05/27 15:17:52] [ 256912] Wondershare Application Framework Service (WsAppService) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\WAF\WsAppService.exe
SS - Demand [2015/06/18 16:58:10] [ 100752] Wondershare Driver Install Service (WsDrvInst) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe

---\\ Recherche de clés de registre Tracing (O100) (2) - 1s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector

---\\ Scan Additionnel (O88) (14) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\CltMngSvc =>PUP.Optional.SearchProtect
C:\Windows\System32\Tasks\AutoKMS =>HackTool.AutoKMS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Tencent =>PUP.Optional.TencentAddressBar
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\SearchProtect =>PUP.SearchProtect
C:\Program Files (x86)\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\TM 161\AppData\Roaming\Systweak =>PUP.Optional.Systweak
C:\Users\TM 161\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\TM 161\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tencent =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector

---\\ Récapitulatif des détections trouvées sur votre station (9) - 0s
http://www.nicolascoolman.fr/pup-systsupportdock/ =>PUP.Optional.SystSupportDock
http://www.nicolascoolman.fr/adware-tencentaddressbar/ =>PUP.Optional.TencentAddressBar
http://www.nicolascoolman.fr/pup-searchprotect/ =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS
http://www.nicolascoolman.fr/blog =>PUP.Optional.Sambreel
http://www.nicolascoolman.fr/pup-systweak/ =>PUP.Optional.Systweak
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/blog =>PUP.SearchProtect
http://www.nicolascoolman.fr/pup-advancedsystemprotector/ =>PUP.Optional.AdvancedSystemProtector

~ End of the scan, 52168 items in 67 seconds (939)(0)()

Publicité


Signaler le contenu de ce document

Publicité