cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2016.1.8.8 Par Nicolas Coolman (2016/01/08)
~ Démarré par WIN8.1 (Administrator) (2016/01/08 14:13:23)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\WIN8.1\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\WIN8.1\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 8.1 Pro, 64-bit (Build 9600)

---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v47.0.2526.106
MFIE: Mozilla Firefox 40.0.2 (x86 fr) v40.0.2
MSIE: Internet Explorer v11.0.9600.18125

---\\ Informations sur les produits Windows (9) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, VOLUME_KMSCLIENT channel
Windows ID Activation : OK
~ Windows Partial Key : 9D6T9
Windows License : OK
Expiration Licence Windows : 258132 minute(s) (180 jour(s))
~ Windows Remaining Initializations Number : 999
Windows Automatic Updates : OK

---\\ Logiciels de protection (2) - 2s
Malwarebytes Anti-Malware version 2.2.0.1024
Windows Defender (Deactivate)

---\\ Surveillance de Logiciels (2) - 2s
Adobe Flash Player 20 NPAPI
Adobe Reader 9 - Français

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 69 Stepping 1, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8290.128 MB (69% free)
System Restore: Activé (Enable)
System drive C: has 262 GB () free of 372 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: WIN8
~ User Name: WIN8.1
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 262 GB free of 372 GB (System)
~ Drive D: has 521 GB free of 580 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (25) - 2s
[MD5.C10A66189DC8C090E7C84873EDCEBC88] - 28/01/2015 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2501368] =>.Microsoft Windows®
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - 29/10/2014 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [54784] =>.Microsoft Corporation
[MD5.EC302D06155F8E3C383750993FCB6B27] - 05/10/2015 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [146432] =>.Microsoft Corporation
[MD5.E2C385B0D816AD37616BD4C4204D0633] - 08/11/2015 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2487808] =>.Microsoft Corporation
[MD5.3F8645885823692D93765817759BE21C] - 05/10/2015 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [572928] =>.Microsoft Corporation
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - 21/12/2013 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [447488] =>.Microsoft Corporation
[MD5.A5675939CF0F99B20B5A3CFCC3C1B46A] - 29/10/2014 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [657920] =>.Microsoft Corporation
[MD5.BD9C7A068C46053F8747CEA73B5930AB] - 29/10/2014 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [498688] =>.Microsoft Corporation
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - 30/09/2013 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19456] =>.Microsoft Corporation
[MD5.A460C3AF3755A2A79A3C8EFE72E147B5] - 13/10/2015 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\drivers\AFD.sys [559616] =>.Microsoft Corporation
[MD5.74B14192CF79A72F7536B27CB8814FBD] - 22/08/2013 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [26464] =>.Microsoft Windows®
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - 22/08/2013 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [88576] =>.Microsoft Corporation
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - 22/08/2013 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [164352] =>.Microsoft Corporation
[MD5.A03F362C5557E238CBFA914689C77248] - 06/03/2014 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [134144] =>.Microsoft Corporation
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - 24/07/2014 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [76800] =>.Microsoft Corporation
[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - 04/11/2014 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [108544] =>.Microsoft Corporation
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - 27/11/2013 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [142848] =>.Microsoft Corporation
[MD5.89DE71940A0E7F5BA617AE08321EF5C3] - 10/10/2015 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\drivers\MRxSmb.sys [401408] =>.Microsoft Corporation
[MD5.0217532E19A748F0E5D569307363D5FD] - 22/08/2013 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [282624] =>.Microsoft Corporation
[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - 15/10/2014 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [2025792] =>.Microsoft Windows®
[MD5.764B1121867B2D9B31C491668AC72B2B] - 22/08/2013 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [94208] =>.Microsoft Corporation
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - 22/08/2013 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [120832] =>.Microsoft Corporation
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - 30/09/2013 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\Windows\System32\drivers\rdpdr.sys [195584] =>.Microsoft Corporation
[MD5.E0BD2D83875464FEEEB242CBA8B7E073] - 13/10/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [108032] =>.Microsoft Corporation
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - 19/06/2014 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [310080] =>.Microsoft Windows®

---\\ Liste des services NT non Microsoft et non désactivés (11) - 3s
O23 - Service: Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe =>.Andrea Electronics®
O23 - Service: Digital Wave Update Service (DigitalWave.Update.Service) . (.Digital Wave Ltd. - Digital Wave Update Service.) - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe =>.Digital Wave Ltd®
O23 - Service: egGetSvc (egGetSvc) . (.Copyright (C) eagleGet 2014 - EGMonito Application.) - C:\Program Files (x86)\EagleGet\EGMonitor.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: InterBase Guardian (InterBaseGuardian) . (.Borland Software Corporation - InterBase Server.) - C:\Program Files (x86)\Borland\InterBase\bin\ibguard.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe =>.Malwarebytes Corporation®
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.5.) - C:\Windows\System32\nvvsvc.exe =>.NVIDIA Corporation®
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp®
O23 - Service: Service KMSELDI (Service KMSELDI) . (. - Service_KMS.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®

---\\ Tâches planifiées en automatique (19) - 5s
[MD5.F54564025D2284AE498E51D7C139F971] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504] =>.Adobe Systems Incorporated®
[MD5.2C829C2E609D0DD4900D3A0B7868C772] [APT] [AutoPico Daily Restart] (...) -- C:\Program Files\KMSpico\AutoPico.exe [687616] =>HackTool.KMSpico
[MD5.C6FF00DA1605982E616C03BE809FFE2D] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.C6FF00DA1605982E616C03BE809FFE2D] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.88DD62DC78E4105269641CB57BF60527] [APT] [JetCleanLoginCheckUpdate] (.BlueSprig.) -- C:\Program Files (x86)\BlueSprig\JetClean\AutoUpdate.exe [1050480] {589D023EC02E552CDAA00B1FA0FDCA85} =>.BlueSprig
[MD5.00000000000000000000000000000000] [APT] [smadav] (...) -- C:\Program Files (x86)\Smadav\SM?RTP.exe [1679360]
[MD5.141E04D88C4F3A14342395F31D540829] [APT] [AVAST Software\Avast settings backup] (.AVAST Software.) -- C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [635368] =>.AVAST Software a.s.®
[MD5.6F1EB36D59455B5B2F832F6D823F0596] [APT] [Lenovo\Lenovo Customer Feedback Program 64] (.Lenovo.) -- C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832] =>.LENOVO®
[MD5.88A190ED34444484DB0DF6C436855B4C] [APT] [Lenovo\REACHit Agent Startup] (.Lenovo.) -- C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [684032] =>.Lenovo
[MD5.88A190ED34444484DB0DF6C436855B4C] [APT] [Lenovo\REACHit Agent Update] (.Lenovo.) -- C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [684032] =>.Lenovo
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] =>.Adobe Systems Incorporated
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1082] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1086] =>.Google Inc.
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3890] =>.Adobe Systems Incorporated
O39 - APT: AutoPico Daily Restart - (...) -- C:\Windows\System32\Tasks\AutoPico Daily Restart [3706] =>HackTool.KMSpico
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3822] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4058] =>.Google Inc.
O39 - APT: JetCleanLoginCheckUpdate - (.BlueSprig.) -- C:\Windows\System32\Tasks\JetCleanLoginCheckUpdate [3162] =>.BlueSprig
O39 - APT: smadav - (...) -- C:\Windows\System32\Tasks\smadav [3242]

---\\ Processus lancés (10) - 4s
[MD5.F58D8EF3D24B61CA4E822C81E75643B0] - (.Copyright (C) eagleGet 2014 - EGMonito Application.) -- C:\Program Files (x86)\EagleGet\EGMonitor.exe [229376] [PID.1952]
[MD5.692BCDCEAB912922A6BB015F45ABE862] - (.Borland Software Corporation - InterBase Server.) -- C:\Program Files (x86)\Borland\InterBase\bin\ibguard.exe [32768] [PID.2016]
[MD5.1DF5DB8996EC9D5FFCE0A60135C33F8F] - (.Borland Software Corporation - InterBase Server.) -- C:\Program Files (x86)\Borland\InterBase\bin\ibserver.exe [1769472] [PID.2540]
[MD5.F58D8EF3D24B61CA4E822C81E75643B0] - (.Copyright (C) eagleGet 2014 - EGMonito Application.) -- C:\Program Files (x86)\EagleGet\EGMonitor.exe [229376] [PID.3020]
[MD5.7904B8331324003F34CB6055230D349E] - (.Smadsoft - Smadav USB Antivirus & Additional Protectio.) -- C:\Program Files (x86)\SMADAV\SMΔRTP.exe [1679360] [PID.792]
[MD5.C1F24E96BCF43327BC6D47F4A72092F7] - (.Waves Audio Ltd. - Waves MaxxAudio Service Application.) -- C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe [519256] [PID.1356] =>.Waves Audio Ltd.
[MD5.C394EE4969CAB94137CAED70B78CEDF0] - (.EagleGet.com - EagleGet Free Downloader.) -- C:\Program Files (x86)\EagleGet\EagleGet.exe [1767936] [PID.3692]
[MD5.B4531BF13B3DDC19A50A71952E6AD198] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3301376] [PID.3864] =>.Tonec Inc.
[MD5.1FC71A719B45A6A90BAFE2387EA07984] - (.Copyright (C) 2010 - HSDPALauncher MFC Application.) -- C:\Program Files (x86)\HSPA USB Modem\HSPALauncher.exe [233472] [PID.1008]
[MD5.0665ED990AF87C35FC031483CF941674] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\WIN8.1\Desktop\ZHPDiag3.exe [2064896] [PID.6592] =>.Nicolas Coolman

---\\ Google Chrome, Démarrage,Recherche,Extensions (16) - 1s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.yoursearching.com/ =>PUP.Optional.YourSearching
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [hgiidlnejdlfoacoeleopkljhbckmlko] Facebook - Delete All Messages
G2 - GCE: Preference [User Data\Default] [jeaohhlajejodfjadcponpnjgkiikocn] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [kaebhgioafceeldhgjmendlfhbfjefmo] EagleGet Free Downloader
G2 - GCE: Preference [User Data\Default] [klmpnhheahecaojonebajllddfhpilan] __MSG_name__
G2 - GCE: Preference [User Data\Default] [nccllfnllopfpcbjdgjdlfmomnfgnnbk] MultiLogin
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pdnkcidphdcakpkheohlhocaicfamjie] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (4) - 1s
M0 - MFSP: prefs.js [WIN8.1 - kw8ky7rt.default] https://www.malwarebytes.org/restorebrowser//?type=hp&ts=1449611705&z=a24c6d19fc1c1d7330b8d71g3z6z6t3qeg2gfm6e1w&from=cor&uid=WDCXWD10JPVX-75JC3T0_WXA1E54CCPP3E54CCPP3
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla
P2 - EXT: (.EagleGet - EagleGet.) -- C:\Users\WIN8.1\AppData\Roaming\Mozilla\Firefox\Profiles\kw8ky7rt.default\extensions\eagleget_ffext@eagleget.com =>.EagleGet
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll =>.Adobe Systems Incorporated

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation

---\\ Etude du fichier hosts (3) - 0s
205.199
205.199

~ Nombre lignes détournées 205.199

24 (Hosts file redirected)

---\\ Browser Helper Object de navigateur (BHO) (2) - 1s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll {4660FC32BD521D77F211C1336AA98B9E} =>.Internet Download Manager, Tonec Inc.
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll =>.Skype Software Sarl®

---\\ Applications lancées au démarrage du système (19) - 1s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe =>.Intel Corporation - Software and Firmware Products®
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe =>.Intel Corporation - Software and Firmware Products®
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe =>.Intel Corporation - Software and Firmware Products®
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [WavesSvc] . (.Waves Audio Ltd. - Waves MaxxAudio Service Application.) -- C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe =>.Waves Audio Ltd.
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKLM\..\Run: [Bdagent] C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe (.not file.)
O4 - HKLM\..\Run: [InstallerLauncher] . (.Bitdefender - Bitdefender Setup Launcher.) -- C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe =>.Bitdefender SRL®
O4 - HKCU\..\Run: [EagleGet] . (.EagleGet.com - EagleGet Free Downloader.) -- C:\Program Files (x86)\EagleGet\EagleGet.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\WIN8.1\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - HKCU\..\RunOnce: [BeginInteractiveOSUpgrade] . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe =>.Microsoft Windows®
O4 - HKLM\..\Wow6432Node\Run: [HSPALauncher] . (.Copyright (C) 2010 - HSDPALauncher MFC Application.) -- C:\Program Files (x86)\HSPA USB Modem\HSPALauncher.exe
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe =>.Adobe Systems Incorporated®
O4 - HKUS\S-1-5-21-180574203-2069111456-3747865505-1001\..\Run: [EagleGet] . (.EagleGet.com - EagleGet Free Downloader.) -- C:\Program Files (x86)\EagleGet\EagleGet.exe
O4 - HKUS\S-1-5-21-180574203-2069111456-3747865505-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKUS\S-1-5-21-180574203-2069111456-3747865505-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\WIN8.1\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - HKUS\S-1-5-21-180574203-2069111456-3747865505-1001\..\RunOnce: [BeginInteractiveOSUpgrade] . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe =>.Microsoft Windows®

---\\ Modification Domaine/Adresses DNS (6) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = domain.name
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{09052F67-EC8E-43BA-9B47-FED94A43B54A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AE4EB3C5-D532-4483-A04B-6103B8FDE164}: DhcpNameServer = 192.168.100.100 192.168.100.103
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{09052F67-EC8E-43BA-9B47-FED94A43B54A}: DhcpDomain = domain.name
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AE4EB3C5-D532-4483-A04B-6103B8FDE164}: DhcpDomain = univ-usto.dz

---\\ Protocole additionnel (23) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: skypec2c [64Bits] - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll =>.Skype Software Sarl®
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 331.) - C:\Windows\System32\nvinitx.dll

---\\ Logiciels installés (64) - 28s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {31B9D218-FED2-4C6C-B19F-7294FFC130B0} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Dreamweaver CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 20 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Reader 9 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A90000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6} =>.Adobe Systems Incorporated.
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser =>.Adobe Systems Incorporated.
O42 - Logiciel: Ashampoo Burning Studio 16 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {91B33C97-A730-69CE-7A4F-4ADF378BB993}_is1 =>.Ashampoo GmbH & Co. KG®
O42 - Logiciel: Bitdefender Internet Security 2015 - (.Bitdefender.) [HKLM][64Bits] -- Bitdefender =>.Bitdefender SRL®
O42 - Logiciel: Borland C++Builder 6 - (.Borland Software Corporation.) [HKLM][64Bits] -- {2864C41B-EF2D-4640-95A2-526276524519}
O42 - Logiciel: CodeBlocks - (.The Code::Blocks Team.) [HKCU][64Bits] -- CodeBlocks =>.The Code::Blocks Team
O42 - Logiciel: Combined Community Codec Pack 2008-09-21 16:18 - (.CCCP Project.) [HKLM][64Bits] -- Combined Community Codec Pack_is1 =>.CCCP Project
O42 - Logiciel: Counter-Strike 1.6 - (...) [HKLM][64Bits] -- Counter-Strike 1.6
O42 - Logiciel: Dev-C++ 5 beta 9 release (4.9.9.2) - (...) [HKLM][64Bits] -- Dev-C++
O42 - Logiciel: EagleGet version 2.0.1.6 - (.EagleGet.) [HKLM][64Bits] -- {F6D8142A-B30B-454B-9EE0-08A7B997DFE4}_is1 =>.EagleGet
O42 - Logiciel: FlowStone FL 3.0 - (...) [HKLM][64Bits] -- FlowStone
O42 - Logiciel: Free Video to MP3 Converter - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free Video to MP3 Converter_is1 =>.Digital Wave Ltd®
O42 - Logiciel: GOM Player - (.Gretech Corporation.) [HKLM][64Bits] -- GOM Player =>.Gretech Corporation
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc.
O42 - Logiciel: HSPA USB Modem - (...) [HKLM][64Bits] -- {06ADE2A0-E46A-4A84-A211-64CF50520185}
O42 - Logiciel: HSPA USB Modem - (...) [HKLM][64Bits] -- InstallShield_{06ADE2A0-E46A-4A84-A211-64CF50520185}
O42 - Logiciel: IL Download Manager - (.Image-Line.) [HKLM][64Bits] -- IL Download Manager =>.Image-Line
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - Software and Firmware Products®
O42 - Logiciel: InterBase 6.5 - (...) [HKLM][64Bits] -- InterBase
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager {4660FC32BD521D77F211C1336AA98B9E} =>.Tonec Inc.
O42 - Logiciel: Java 2 Runtime Environment Standard Edition v1.2.2 - (...) [HKLM][64Bits] -- JRE 1.2
O42 - Logiciel: JetClean - (.BlueSprig.) [HKLM][64Bits] -- BlueSprig_JetClean_is1 {589D023EC02E552CDAA00B1FA0FDCA85} =>.BlueSprig
O42 - Logiciel: KMSpico v9.0.5.20131112 - (...) [HKLM][64Bits] -- KMSpico_is1 =>HackTool.KMSpico
O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM][64Bits] -- {3677B336-9F6D-45DF-9543-C049E35EE590} =>.MAGIX AG
O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- {A72DAA6B-A81F-4EE5-B1B2-C7620888776B} =>.MAGIX AG
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes
O42 - Logiciel: Metric Collection SDK - (.Lenovo Group Limited.) [HKLM][64Bits] -- {DDAA788F-52E6-44EA-ADB8-92837B11BF26} =>.Lenovo Group Limited
O42 - Logiciel: Metric Collection SDK 35 - (.Lenovo Group Limited.) [HKLM][64Bits] -- {C2B5B5B0-2545-4E94-B4BA-548D4BF0B196} =>.Lenovo Group Limited
O42 - Logiciel: MotioninJoy DS3 driver version 0.6.0005 - (.www.motioninjoy.com.) [HKLM][64Bits] -- {330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1 =>.www.motioninjoy.com
O42 - Logiciel: Mozilla Firefox 40.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 40.0.2 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MPC-HC 1.7.8 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1 =>.Open Source Developer, Fotis Zafiropoulos®
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D4BD27CF-BFBC-11E3-9B8F-F04DA23A5C58} =>.Sony Creative Software Inc.
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ =>.Notepad++ Team
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote graphique 331.56 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation
O42 - Logiciel: Panneau de configuration NVIDIA 331.56 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation
O42 - Logiciel: PhotoFiltre Studio X - (...) [HKCU][64Bits] -- PhotoFiltre Studio X
O42 - Logiciel: Pro Evolution Soccer 2013 - (.KONAMI.) [HKLM][64Bits] -- {C2523AE6-F335-4D0B-BC15-1C07E4ACE629} =>.Konami
O42 - Logiciel: Pro Evolution Soccer 2015 - (...) [HKLM][64Bits] -- UHJvRXZvbHV0aW9uU29jY2VyMjAxNQ==_is1
O42 - Logiciel: REACHit - (.Lenovo.) [HKLM][64Bits] -- {4532E4C5-C84D-4040-A044-ECFCC5C6995B} =>.Lenovo
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Ruby 2.2.3-p173-x64 - (.RubyInstaller Team.) [HKCU][64Bits] -- {A98E44F8-6401-400F-830E-B1A2919C22BD}_is1
O42 - Logiciel: Search App by Ask - (.APN, LLC.) [HKLM][64Bits] -- {4254522D-5350-006A-76A7-A75C790C1D00} =>PUP.Optional.BrowserTabSearch
O42 - Logiciel: SHAREit - (.Lenovo Group Limited.) [HKLM][64Bits] -- SHAREit_is1 =>.LENOVO®
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} =>.Microsoft Corporation
O42 - Logiciel: Skype™ 7.8 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19} =>.Skype Technologies S.A.
O42 - Logiciel: TAP-Windows 9.9.2 - (...) [HKLM][64Bits] -- TAP-Windows
O42 - Logiciel: The KMPlayer (remove only) - (...) [HKLM][64Bits] -- The KMPlayer
O42 - Logiciel: UmmyVideoDownloader - (...) [HKLM][64Bits] -- {E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1
O42 - Logiciel: Vegas Pro 13.0 (64-bit) - (.Sony.) [HKLM][64Bits] -- {CE20A68F-BFBC-11E3-AA73-F04DA23A5C58} =>.Sony
O42 - Logiciel: VisiBroker for Cpp 4.5 - (...) [HKLM][64Bits] -- vbcpp40
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: WinRAR archiver - (...) [HKLM][64Bits] -- WinRAR archiver

---\\ HKCU & HKLM Software Keys (115) - 28s
HKLM\SOFTWARE\Wow6432Node\4shared Desktop
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Ashampoo
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\Bitdefender
HKLM\SOFTWARE\Wow6432Node\Borland
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\Combined-Community-Codec-Pack
HKLM\SOFTWARE\Wow6432Node\Dev-C++
HKLM\SOFTWARE\Wow6432Node\DigitalWave
HKLM\SOFTWARE\Wow6432Node\DSPRobotics
HKLM\SOFTWARE\Wow6432Node\DVDVideoSoft
HKLM\SOFTWARE\Wow6432Node\EagleGet
HKLM\SOFTWARE\Wow6432Node\Gabest
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\GRETECH
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\HSPA
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Image-Line
HKLM\SOFTWARE\Wow6432Node\Inmatrix
HKLM\SOFTWARE\Wow6432Node\Inprise Corporation
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\KMPlayer
HKLM\SOFTWARE\Wow6432Node\KONAMI
HKLM\SOFTWARE\Wow6432Node\Lenovo
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\MAGIX
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\ORACLE
HKLM\SOFTWARE\Wow6432Node\Propellerhead Software
HKLM\SOFTWARE\Wow6432Node\QQQQQQ
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SoftVoice
HKLM\SOFTWARE\Wow6432Node\Sony Creative Software
HKLM\SOFTWARE\Wow6432Node\TechSmith
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo!
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Allround Automations
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Ashampoo
HKCU\SOFTWARE\Binary Noise
HKCU\SOFTWARE\Bitdefender
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Borland
HKCU\SOFTWARE\CodeBlocks
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\DSPRobotics
HKCU\SOFTWARE\DVDVideoSoft
HKCU\SOFTWARE\EagleGet
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GRETECH
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Image-Line
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\KMPlayer
HKCU\SOFTWARE\Lenovo
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Magicbit
HKCU\SOFTWARE\Magix
HKCU\SOFTWARE\MAGIX AG
HKCU\SOFTWARE\MainConcept
HKCU\SOFTWARE\MainConcept (Magix)
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\PhotoFiltre Studio X
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\RubyInstaller
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SMADΔV
HKCU\SOFTWARE\SoftVoice
HKCU\SOFTWARE\Sony Creative Software
HKCU\SOFTWARE\TechSmith
HKCU\SOFTWARE\TeleCharger =>.Superfluous.Downloader
HKCU\SOFTWARE\UsbFix
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VirtuaMedia
HKCU\SOFTWARE\Waves Audio
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\Yahoo =>.Yahoo!
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Yahoo

---\\ Contenu des dossiers Programmes (231) - 64s
O43 - CFD: 03/03/2015 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Ashampoo =>.Ashampoo GmbH & Co. KG®
O43 - CFD: 13/02/2015 - [] D -- C:\Program Files (x86)\Bing Bar Installer
O43 - CFD: 23/04/2015 - [] D -- C:\Program Files (x86)\BlueSprig {589D023EC02E552CDAA00B1FA0FDCA85}
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\Borland
O43 - CFD: 20/02/2015 - [] D -- C:\Program Files (x86)\CodeBlocks
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\Combined Community Codec Pack
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 16/12/2015 - [] D -- C:\Program Files (x86)\Counter-Strike 1.6
O43 - CFD: 22/01/2015 - [] D -- C:\Program Files (x86)\DSPRobotics
O43 - CFD: 26/11/2015 - [] D -- C:\Program Files (x86)\DVDVideoSoft =>.Digital Wave Ltd®
O43 - CFD: 13/02/2015 - [] D -- C:\Program Files (x86)\EagleGet
O43 - CFD: 30/07/2015 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\GRETECH {78A2255D0AB283A4DC76EF94B250B7ED}
O43 - CFD: 30/08/2015 - [] D -- C:\Program Files (x86)\GUMB6B3.tmp =>.Google Inc®
O43 - CFD: 26/01/2015 - [] D -- C:\Program Files (x86)\HSPA USB Modem
O43 - CFD: 22/01/2015 - [] D -- C:\Program Files (x86)\Image-Line
O43 - CFD: 06/03/2015 - [] D -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation - Software and Firmware Products®
O43 - CFD: 14/02/2015 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 11/12/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\JavaSoft
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Lenovo =>.LENOVO®
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files (x86)\MAGIX
O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes Corporation®
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 07/02/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 23/03/2015 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 08/05/2015 - [] D -- C:\Program Files (x86)\Oracle
O43 - CFD: 16/07/2015 - [] D -- C:\Program Files (x86)\PES 13
O43 - CFD: 01/03/2015 - [] D -- C:\Program Files (x86)\PhotoFiltre Studio X
O43 - CFD: 06/03/2015 - [] D -- C:\Program Files (x86)\PLSQL Developer
O43 - CFD: 22/11/2015 - [] D -- C:\Program Files (x86)\Pro Evolution Soccer 2015
O43 - CFD: 07/02/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 27/11/2015 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 08/01/2016 - [] D -- C:\Program Files (x86)\SMADAV
O43 - CFD: 31/07/2015 - [] D -- C:\Program Files (x86)\Sony
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\The KMPlayer {286F8A30E2EAC6965B936F826A05305D}
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 04/01/2016 - [] D -- C:\Program Files (x86)\VstPlugins
O43 - CFD: 13/08/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 27/05/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 27/05/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 27/05/2015 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 27/05/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 27/05/2015 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 22/08/2013 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\Yahoo! {5A2D0E95592B515A5CF3F5C5D59C88B7}
O43 - CFD: 27/05/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 27/05/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 27/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 08/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
O43 - CFD: 17/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Borland C++Builder 6
O43 - CFD: 20/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
O43 - CFD: 21/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack
O43 - CFD: 16/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
O43 - CFD: 26/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
O43 - CFD: 13/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EagleGet
O43 - CFD: 16/07/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasyPHP DevServer 14.1 VC11
O43 - CFD: 23/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player
O43 - CFD: 30/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 26/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HSPA USB Modem
O43 - CFD: 02/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InterBase
O43 - CFD: 14/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 23/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetClean
O43 - CFD: 21/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
O43 - CFD: 08/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
O43 - CFD: 15/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
O43 - CFD: 22/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 04/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 07/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy
O43 - CFD: 07/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
O43 - CFD: 23/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 08/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle - OraClient10g_home1
O43 - CFD: 16/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle - OraClient10g_home2
O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PES 13
O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PESEdit.com 2013 Patch
O43 - CFD: 01/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
O43 - CFD: 13/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 04/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMADAV Antivirus
O43 - CFD: 31/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 22/08/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 27/05/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 30/09/2013 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 23/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UmmyVideoDownloader
O43 - CFD: 30/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VisiBroker
O43 - CFD: 21/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 04/03/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 08/12/2015 - [] D -- C:\ProgramData\Ashampoo
O43 - CFD: 04/01/2016 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 07/07/2015 - [] D -- C:\ProgramData\Bitdefender
O43 - CFD: 21/01/2015 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 06/11/2015 - [0] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 13/02/2015 - [] D -- C:\ProgramData\EagleGet
O43 - CFD: 25/05/2015 - [] D -- C:\ProgramData\GRETECH
O43 - CFD: 21/01/2015 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 22/11/2015 - [] D -- C:\ProgramData\KONAMI
O43 - CFD: 23/03/2015 - [] D -- C:\ProgramData\MAGIX
O43 - CFD: 13/07/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 21/01/2015 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 13/02/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 15/06/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 21/01/2015 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 21/01/2015 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 21/01/2015 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 21/01/2015 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 08/12/2015 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 03/03/2015 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 27/05/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 13/08/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 31/07/2015 - [] D -- C:\ProgramData\Sony
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 22/11/2015 - [] D -- C:\ProgramData\Steam
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 03/03/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 13/08/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Common Files\AV
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\Common Files\Bitdefender
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Borland Shared
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 26/11/2015 - [] D -- C:\Program Files (x86)\Common Files\DVDVideoSoft
O43 - CFD: 13/02/2015 - [] D -- C:\Program Files (x86)\Common Files\EagleGet
O43 - CFD: 06/03/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\Common Files\LENOVO
O43 - CFD: 15/06/2015 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 22/01/2015 - [] D -- C:\Program Files (x86)\Common Files\Propellerhead Software
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 13/08/2015 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 27/05/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 29/09/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Adobe
O43 - CFD: 08/12/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Ashampoo
O43 - CFD: 07/07/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Bitdefender
O43 - CFD: 23/04/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\BlueSprig
O43 - CFD: 12/11/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\codeblocks
O43 - CFD: 20/02/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Dev-Cpp
O43 - CFD: 08/01/2016 - [] D -- C:\Users\WIN8.1\AppData\Roaming\DMCache
O43 - CFD: 26/11/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\DVDVideoSoft
O43 - CFD: 13/02/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\EagleGet
O43 - CFD: 26/11/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\FastStone
O43 - CFD: 24/01/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\FlowStone
O43 - CFD: 14/04/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\GRETECH
O43 - CFD: 27/05/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Identities
O43 - CFD: 02/01/2016 - [] D -- C:\Users\WIN8.1\AppData\Roaming\IDM
O43 - CFD: 16/02/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Image-Line
O43 - CFD: 21/01/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Macromedia
O43 - CFD: 23/03/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\MAGIX
O43 - CFD: 02/01/2016 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\Media Player Classic
O43 - CFD: 08/12/2015 - [] SD -- C:\Users\WIN8.1\AppData\Roaming\Microsoft
O43 - CFD: 07/02/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\MotioninJoy
O43 - CFD: 21/01/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Mozilla
O43 - CFD: 07/02/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\MPC-HC
O43 - CFD: 04/07/2015 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\notepad
O43 - CFD: 23/03/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Notepad++
O43 - CFD: 25/05/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\NVIDIA
O43 - CFD: 30/11/2015 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\Opera Software
O43 - CFD: 01/03/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\PhotoFiltre Studio X
O43 - CFD: 28/02/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\PLSQL Developer
O43 - CFD: 21/06/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\QuickScan
O43 - CFD: 26/11/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\RPEng =>PUP.Optional.Generic
O43 - CFD: 06/01/2016 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Skype
O43 - CFD: 04/07/2015 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\Smadav
O43 - CFD: 31/07/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Sony
O43 - CFD: 26/11/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\TechSmith
O43 - CFD: 06/01/2016 - [] D -- C:\Users\WIN8.1\AppData\Roaming\uTorrent
O43 - CFD: 16/12/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\vlc
O43 - CFD: 21/01/2015 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\WinRAR
O43 - CFD: 21/01/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Yahoo!
O43 - CFD: 08/01/2016 - [] D -- C:\Users\WIN8.1\AppData\Roaming\ZHP
O43 - CFD: 30/11/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\1BN_Software_&_IT_Solutio
O43 - CFD: 08/01/2016 - [] D -- C:\Users\WIN8.1\AppData\Local\Adobe
O43 - CFD: 21/01/2015 - [0] SHD -- C:\Users\WIN8.1\AppData\Local\Application Data
O43 - CFD: 02/08/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\ashampoo
O43 - CFD: 01/09/2015 - [0] D -- C:\Users\WIN8.1\AppData\Local\Diagnostics
O43 - CFD: 20/12/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\Downloaded Installations
O43 - CFD: 07/03/2015 - [0] D -- C:\Users\WIN8.1\AppData\Local\ElevatedDiagnostics
O43 - CFD: 12/06/2015 - [0] SHD -- C:\Users\WIN8.1\AppData\Local\EmieBrowserModeList
O43 - CFD: 12/06/2015 - [0] SHD -- C:\Users\WIN8.1\AppData\Local\EmieSiteList
O43 - CFD: 12/06/2015 - [0] SHD -- C:\Users\WIN8.1\AppData\Local\EmieUserList
O43 - CFD: 17/09/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\Google
O43 - CFD: 13/06/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\GWX
O43 - CFD: 21/01/2015 - [0] SHD -- C:\Users\WIN8.1\AppData\Local\Historique
O43 - CFD: 21/01/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\Intel_Corporation
O43 - CFD: 08/12/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\Lenovo
O43 - CFD: 21/01/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\Macromedia
O43 - CFD: 26/11/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\Microsoft
O43 - CFD: 10/03/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\Microsoft Help
O43 - CFD: 25/03/2015 - [] DC -- C:\Users\WIN8.1\AppData\Local\MigWiz
O43 - CFD: 28/07/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\Mozilla
O43 - CFD: 30/11/2015 - [0] D -- C:\Users\WIN8.1\AppData\Local\Opera Software
O43 - CFD: 07/08/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\Packages
O43 - CFD: 21/01/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\Programs
O43 - CFD: 22/01/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\Skype
O43 - CFD: 31/07/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\Sony
O43 - CFD: 26/11/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\TechSmith
O43 - CFD: 08/01/2016 - [] D -- C:\Users\WIN8.1\AppData\Local\Temp
O43 - CFD: 21/01/2015 - [0] SHD -- C:\Users\WIN8.1\AppData\Local\Temporary Internet Files
O43 - CFD: 25/12/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\UmmyVideoDownloader
O43 - CFD: 24/01/2015 - [] D -- C:\Users\WIN8.1\AppData\Local\VirtualStore
O43 - CFD: 22/08/2013 - [] RD -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - [] RD -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 21/10/2015 - [] RD -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 17/10/2015 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++
O43 - CFD: 20/02/2015 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks
O43 - CFD: 16/12/2015 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
O43 - CFD: 04/01/2016 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
O43 - CFD: 14/02/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 22/08/2013 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 23/03/2015 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 01/03/2015 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
O43 - CFD: 26/12/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ruby 2.2.3-p173-x64
O43 - CFD: 21/10/2015 - [] RD -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 22/08/2013 - [] RD -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 21/01/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
O43 - CFD: 21/01/2015 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Liste des pilotes du système (55) - 13s
O58 - SDL:2013/08/22 13:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [108896] =>.Microsoft Windows®
O58 - SDL:2015/07/21 12:33:55 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\69794DC6.sys [113880] =>.Malwarebytes Corporation®
O58 - SDL:2013/08/22 13:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [782176] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [79200] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [25952] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [114016] =>.Microsoft Windows®
O58 - SDL:2013/09/11 17:44:04 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\drivers\athwbx.sys [3855872] =>.Qualcomm Atheros Communications, Inc.
O58 - SDL:2013/08/13 00:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [17624] =>.Broadcom Corporation®
O58 - SDL:2013/10/23 01:46:24 A . (.Qualcomm Atheros - Qualcomm Atheros BtFilter Driver.) -- C:\Windows\System32\drivers\btfilter.sys [596168] =>.Qualcomm Atheros®
O58 - SDL:2013/08/22 13:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows®
O58 - SDL:2013/01/24 15:12:08 A . (.OSR Open Systems Resources, Inc. - Airplane Mode Switch Driver.) -- C:\Windows\System32\drivers\DellRbtn.sys [10752] =>.OSR Open Systems Resources, Inc.
O58 - SDL:2014/09/13 19:06:52 A . (.eagleGet - eagleGet Network Filter.) -- C:\Windows\System32\drivers\eagleGet.sys [79184] {22541A2C236DA3462C3637314E00C528} =>.EagleGet
O58 - SDL:2013/08/22 13:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3357024] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows®
O58 - SDL:2013/07/30 19:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2013/07/25 20:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2013/08/08 12:17:30 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver.) -- C:\Windows\System32\drivers\iaLPSS_GPIO.sys [24568] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2013/08/08 12:17:30 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver.) -- C:\Windows\System32\drivers\iaLPSS_I2C.sys [99320] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2013/09/20 13:41:20 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStorA.sys [630632] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2013/08/10 01:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\Windows\System32\drivers\iaStorAV.sys [651248] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2013/08/22 13:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows®
O58 - SDL:2014/11/29 01:37:06 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [180648] =>.Tonec Inc.®
O58 - SDL:2013/11/13 16:34:47 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [4208640] =>.Intel Corporation
O58 - SDL:2013/10/28 11:13:24 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [449496] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2013/10/29 02:08:35 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\intelaud.sys [39320] =>.Intel Wireless Display®
O58 - SDL:2013/10/29 02:08:35 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\iwdbus.sys [27032] =>.Intel Wireless Display®
O58 - SDL:2013/08/22 13:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [109408] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [93536] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3.sys [81760] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows®
O58 - SDL:2015/10/05 08:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] =>.Malwarebytes Corporation®
O58 - SDL:2015/10/05 08:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] =>.Malwarebytes Corporation®
O58 - SDL:2016/01/08 12:17:44 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [56672] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575840] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows®
O58 - SDL:2015/10/05 08:50:22 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [64216] =>.Malwarebytes Corporation®
O58 - SDL:2013/10/14 07:03:14 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [12537120] =>.NVIDIA Corporation®
O58 - SDL:2013/08/22 13:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [168288] =>.Microsoft Windows®
O58 - SDL:2013/08/15 07:28:42 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\Windows\System32\drivers\Rt630x64.sys [830680] =>.Realtek Semiconductor Corp®
O58 - SDL:2014/03/25 11:46:28 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [3903320] =>.Realtek Semiconductor Corp®
O58 - SDL:2013/08/08 09:27:54 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\drivers\RtsUVStor.sys [329944] =>.Realtek Semiconductor Corp®
O58 - SDL:2013/08/22 16:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2013/08/22 13:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows®
O58 - SDL:2014/01/22 08:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys [108800] =>.DEVGURU CO LTD®
O58 - SDL:2014/01/22 08:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudmdm.sys [206080] =>.DEVGURU CO LTD®
O58 - SDL:2013/08/22 13:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\tap0901.sys [40664] =>.OpenVPN Technologies, Inc.®
O58 - SDL:2013/09/16 09:20:12 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriverx64.sys [99288] =>.Intel Corporation - Intel® Management Engine Firmware®
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [19808] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [168800] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows®

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (1) - 51s
O61 - LFC: 2016/01/01 13:16:02 A . (..) -- C:\Users\WIN8.1\Documents\KONAMI\Pro Evolution Soccer 2015\save\SYSTEM.bin [136577]

---\\ Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®

---\\ Menu de démarrage Internet (12) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- firefox.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation

---\\ Recherche d'infection sur les navigateurs (14) - 10s
O69 - SBI: prefs.js [WIN8.1 - kw8ky7rt.default] user_pref("browser.search.defaultenginename", "yoursearching"); =>PUP.Optional.YourSearching
O69 - SBI: prefs.js [WIN8.1 - kw8ky7rt.default] user_pref("browser.search.searchengine.alias", "yoursearching"); =>PUP.Optional.YourSearching
O69 - SBI: prefs.js [WIN8.1 - kw8ky7rt.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [WIN8.1 - kw8ky7rt.default] user_pref("browser.search.searchengine.iconURL", "http://www.yoursearching.com/favicon.ico"); =>PUP.Optional.YourSearching
O69 - SBI: prefs.js [WIN8.1 - kw8ky7rt.default] user_pref("browser.search.searchengine.name", "yoursearching"); =>PUP.Optional.YourSearching
O69 - SBI: prefs.js [WIN8.1 - kw8ky7rt.default] user_pref("browser.search.searchengine.ptid", "cor"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [WIN8.1 - kw8ky7rt.default] user_pref("browser.search.searchengine.uid", "WDCXWD10JPVX-75JC3T0_WXA1E54CCPP3E54CCPP3"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [WIN8.1 - kw8ky7rt.default] user_pref("browser.search.searchengine.url", "http://www.yoursearching.com/web/?type=ds&ts=1449611705&z=a24c6d19fc1c1d7330b8d71g3z[...] =>PUP.Optional.YourSearching
O69 - SBI: prefs.js [WIN8.1 - kw8ky7rt.default] user_pref("browser.search.selectedEngine", "yoursearching"); =>PUP.Optional.YourSearching
O69 - SBI: prefs.js [WIN8.1 - kw8ky7rt.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [WIN8.1 - kw8ky7rt.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {DECA3892-BA8F-44b8-A993-A466AD694AE4} [DefaultScope] - (Yahoo! Search) - http://fr.search.yahoo.com/ =>.Yahoo Search
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/

---\\ Enumère les services démarrés par Svchost (36) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [214528] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [156160] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [156160] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [329216] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1360896] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1083904] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [926208] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [31744] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [110080] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [151040] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [110592] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1265152] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [230400] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [71168] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [135168] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [228864] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [339968] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84992] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [101376] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [348672] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [522240] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\system32\wlidsvc.dll [1639424] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [59392] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [206848] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\ncasvc.dll [166400] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [102912] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [542208] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [226816] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\sens.dll [73728] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [452608] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [313344] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [3706880] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [933376] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [640000] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [187904] =>.Microsoft Corporation
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filt.) -- C:\Windows\System32\KeyboardFilterSvc.dll [92992] =>.Microsoft Windows®

---\\ Liste des exceptions du parefeu Windows (28) - 9s
O87 - FAEL: "{812B1A95-32DE-43FB-B883-54801B041D75}" [In-None-P6-TRUE] .(...) -- C:\Program Files\KMSpico\KMSELDI.exe =>HackTool.KMSpico
O87 - FAEL: "{D49000F9-9DE4-448A-BE3A-4384DECA104F}" [In-None-P17-TRUE] .(...) -- C:\Program Files\KMSpico\KMSELDI.exe =>HackTool.KMSpico
O87 - FAEL: "{AD9873FF-4F40-4DEE-A119-BC8689FAE093}" [In-None-P6-TRUE] .(...) -- C:\Program Files\KMSpico\KMSServer.exe (.not file.) =>HackTool.KMSpico
O87 - FAEL: "{04FFFDA0-BF31-49A1-A303-F0D56185ECF7}" [In-None-P17-TRUE] .(...) -- C:\Program Files\KMSpico\KMSServer.exe (.not file.) =>HackTool.KMSpico
O87 - FAEL: "TCP Query User{12CB04AE-AFF3-480B-AE48-FBFA88B4DFA9}C:\program files (x86)\pro evolution soccer 2013\pes2013.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\pro evolution soccer 2013\pes2013.exe (.not file.)
O87 - FAEL: "UDP Query User{74894CED-862E-490C-8250-8C51EC85E5C4}C:\program files (x86)\pro evolution soccer 2013\pes2013.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\pro evolution soccer 2013\pes2013.exe (.not file.)
O87 - FAEL: "TCP Query User{AE541D2E-A547-46FA-A925-21D9F8E701ED}C:\program files (x86)\pro evolution soccer 2013\pes2013.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\pro evolution soccer 2013\pes2013.exe (.not file.)
O87 - FAEL: "UDP Query User{3A60A025-0BC9-4F93-8408-89D448B03876}C:\program files (x86)\pro evolution soccer 2013\pes2013.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\pro evolution soccer 2013\pes2013.exe (.not file.)
O87 - FAEL: "{E6CB15D3-9643-4546-9253-D921EBABB1A8}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Pro Evolution Soccer 2013\Pro Evolution Soccer.exe (.not file.)
O87 - FAEL: "{F51C84E1-20EA-4340-8E4A-1947DFC9B9F8}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Pro Evolution Soccer 2013\Pro Evolution Soccer.exe (.not file.)
O87 - FAEL: "TCP Query User{4F5CFF96-E945-476F-ABFB-76A08E8AB010}C:\users\win8.1\appdata\local\temp\orainstall2015-05-08_06-49-37pm\jre\1.4.2\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\users\win8.1\appdata\local\temp\orainstall2015-05-08_06-49-37pm\jre\1.4.2\bin\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{09B404F3-CE76-49C9-B7F5-5A75F7C8EF66}C:\users\win8.1\appdata\local\temp\orainstall2015-05-08_06-49-37pm\jre\1.4.2\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\users\win8.1\appdata\local\temp\orainstall2015-05-08_06-49-37pm\jre\1.4.2\bin\javaw.exe (.not file.)
O87 - FAEL: "{388B6949-7FDF-4F55-9D0E-F89A57DAFABC}" [In-None-P6-TRUE] .(...) -- C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe (.not file.)
O87 - FAEL: "{8D6D31F5-75F0-4067-96F1-325146BF3392}" [In-None-P17-TRUE] .(...) -- C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe (.not file.)
O87 - FAEL: "{9F2B07A7-C01E-47F1-8F23-8A8D6363C12F}" [In-None-P6-TRUE] .(...) -- C:\Program Files\KMSpico\AutoPico.exe =>HackTool.KMSpico
O87 - FAEL: "{29CD617D-CAAC-4498-8B32-426D22B7F27C}" [In-None-P17-TRUE] .(...) -- C:\Program Files\KMSpico\AutoPico.exe =>HackTool.KMSpico
O87 - FAEL: "{2048FC13-6FDC-43BD-AF11-56DC86F7D244}" [In-None-P6-TRUE] .(...) -- C:\Program Files\KMSpico\AutoPico.exe =>HackTool.KMSpico
O87 - FAEL: "{7A9F0084-9F89-4DFF-A5F2-02DB1F738650}" [In-None-P17-TRUE] .(...) -- C:\Program Files\KMSpico\AutoPico.exe =>HackTool.KMSpico
O87 - FAEL: "{F5DC4592-475F-45A2-9554-92D59ABDBBAC}" [In-None-P6-TRUE] .(...) -- C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
O87 - FAEL: "{422F8499-455C-47B8-922D-E2D486D55A4F}" [In-None-P17-TRUE] .(...) -- C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
O87 - FAEL: "{8FB21EEB-4C16-4DFB-A3B1-CB89897DD050}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\KMSServer.exe (.not file.)
O87 - FAEL: "{30152E2D-894A-4B49-A0FC-3B4A5DEF83C1}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\KMSServer.exe (.not file.)
O87 - FAEL: "{19B98C3F-CC32-42D7-8E57-A6D69A87C5C5}" [In-None-P6-TRUE] .(...) -- C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
O87 - FAEL: "{D421D985-513F-4B29-94C9-325482F22710}" [In-None-P17-TRUE] .(...) -- C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
O87 - FAEL: "{085F7553-D628-4150-B59C-7D5476668E2F}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\KMSServer.exe (.not file.)
O87 - FAEL: "{D47795FC-ED10-44F6-B63E-C6272B3F7DD9}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\KMSServer.exe (.not file.)
O87 - FAEL: "{52ADF7E1-D579-4849-95A9-A28EC222AEED}" [In-None-P6-TRUE] .(.1BN Software & IT Solutions - mHotspot.) -- C:\Users\WIN8.1\Desktop\mHotspot\mHotspot.exe
O87 - FAEL: "{0B698F0A-65C4-4FA3-8582-58FBDB7DFEF7}" [In-None-P17-TRUE] .(.1BN Software & IT Solutions - mHotspot.) -- C:\Users\WIN8.1\Desktop\mHotspot\mHotspot.exe

---\\ Enumère les codes produits des logiciels (1) - 2s
O90 - PUC: "D22545240535A600677A7AC597C0D100" . (.Search App by Ask.) -- C:\Windows\Installer\{4254522D-5350-006A-76A7-A75C790C1D00}\ToolbarIcon.exe =>PUP.Optional.BrowserTabSearch

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (19) - 29s

SS - Demand [08/12/2015] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [17/11/2009] [ 98208] Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe =>.Andrea Electronics®
SS - Demand [19/11/2013] [ 279024] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - Software and Firmware Products®
SR - Auto [17/11/2015] [ 382312] Digital Wave Update Service (DigitalWave.Update.Service) . (.Digital Wave Ltd..) - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe =>.Digital Wave Ltd®
SR - Auto [13/09/2014] [ 229376] egGetSvc (egGetSvc) . (.Copyright (C) eagleGet 2014.) - C:\Program Files (x86)\EagleGet\EGMonitor.exe
SS - Auto [30/07/2015] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [30/07/2015] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [04/04/2005] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe =>.Macrovision Corporation
SR - Auto [29/11/2001] [ 32768] InterBase Guardian (InterBaseGuardian) . (.Borland Software Corporation.) - C:\Program Files (x86)\Borland\InterBase\bin\ibguard.exe
SR - Demand [29/11/2001] [ 1769472] InterBase Server (InterBaseServer) . (.Borland Software Corporation.) - C:\Program Files (x86)\Borland\InterBase\bin\ibserver.exe
SS - Demand [22/07/2015] [ 625632] Lenovo EasyPlus Hotspot (Lenovo EasyPlus Hotspot) . (.Lenovo.) - C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe =>.LENOVO®
SR - Auto [05/10/2015] [ 1513784] (MBAMScheduler) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe =>.Malwarebytes Corporation®
SS - Auto [05/10/2015] [ 1135416] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SS - Demand [06/11/2015] [ 147624] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [14/10/2013] [ 922912] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
SR - Auto [08/01/2014] [ 290520] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp®
SS - Auto [12/11/2013] [ 686592] Service KMSELDI (Service KMSELDI) . (...) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
SS - Auto [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®

---\\ Scan Additionnel (15) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI =>HackTool.KMSpico
C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
C:\Program Files\KMSpico\AutoPico.exe =>HackTool.KMSpico
C:\Windows\System32\Tasks\AutoPico Daily Restart =>HackTool.KMSpico
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\KMSpico_is1 =>HackTool.KMSpico
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4254522D-5350-006A-76A7-A75C790C1D00} =>PUP.Optional.BrowserTabSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4254522D-5350-006A-76A7-A75C790C1D00} =>PUP.Optional.BrowserTabSearch
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
HKCU\SOFTWARE\TeleCharger =>.Superfluous.Downloader
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
C:\Users\WIN8.1\AppData\Roaming\RPEng =>PUP.Optional.Generic
C:\Program Files\KMSpico\KMSELDI.exe =>HackTool.KMSpico
C:\Windows\Installer\{4254522D-5350-006A-76A7-A75C790C1D00}\ToolbarIcon.exe =>PUP.Optional.BrowserTabSearch
HKLM\Software\Classes\Installer\Products\D22545240535A600677A7AC597C0D100 =>PUP.Optional.BrowserTabSearch
HKLM\Software\Classes\Installer\Features\D22545240535A600677A7AC597C0D100 =>PUP.Optional.BrowserTabSearch

---\\ Récapitulatif des éléments trouvés sur votre station (8) - 0s
http://www.nicolascoolman.fr/?p=989 =>HackTool.KMSpico
http://www.nicolascoolman.fr/pup-optional-yoursearching =>PUP.Optional.YourSearching
http://www.nicolascoolman.fr/pup-browsertabsearch/ =>PUP.Optional.BrowserTabSearch
http://www.nicolascoolman.fr/?p=279 =>Adware.InstallCore
http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.Downloader
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Generic
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/?p=666 =>PUP.Optional.QuickStart

~ End of the scan, 20475 items in 00h04mn32s (848)(0)

Publicité


Signaler le contenu de ce document

Publicité