cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2016.2.25.60 Par Nicolas Coolman (2016/02/25)
~ Démarré par Wild star (Administrator) (2016/02/27 19:25:05)
~ Site: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version:
~ Mode: Scanner
~ Rapport: C:\Users\Wild star\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Wild star\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Ultimate, 64-bit (Build 7600)

---\\ Navigateurs Internet (2) - 0s
MFIE: Mozilla Firefox 42.0 (x86 fr)
MSIE: Internet Explorer v9.0.8112.16421

---\\ Informations sur les produits Windows (4) - 3s
~ Windows Server License Manager Script : OK
System - VBScript Engine not found
Windows Automatic Updates : KO
Windows Activation Technologies : KO

---\\ Logiciels de protection (1) - 2s
COMODO Firewall v6.2.20728.2847

---\\ Logiciels de protection et autres (Superflus) (1) - 2s
Spybot - Search & Destroy v2.4.40

---\\ Logiciels d'optimisation (1) - 2s
CCleaner v5.09

---\\ Surveillance de Logiciels (1) - 2s
Adobe Flash Player 20 NPAPI

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 15 Stepping 11, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8387.064 MB (64% free)
System Restore: Activé (Enable)
System drive C: has 108 GB () free of 244 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: REDEMP
~ User Name: Wild star
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 108 GB free of 244 GB (System)
~ Drive F: has 0 GB free of 0 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (26) - 1s
[MD5.0862495E0C825893DB75EF44FAEA8E93] - 26/02/2011 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2870272] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.4FBE96D97A1E070A06F76F67255C756D] - 30/06/2013 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1392128] =>.Microsoft Corporation
[MD5.DA3E2A6FA9660CC75B471530CE88453A] - 28/10/2009 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [389632] =>.Microsoft Corporation
[MD5.75341574F21E766748732BDF530C74BD] - 14/07/2009 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [231936] =>.Microsoft Corporation
[MD5.E247E7DEB20C0CF0801A8AC39E9CE1DF] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [356352] =>.Microsoft Corporation
[MD5.62390F4ACE9E2B63E3CA26B7F7497897] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [269824] =>.Microsoft Corporation
[MD5.F2521C3173E6027B3FBD5E44272BDF6C] - 31/07/2009 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.DB9D6C6B2CD95A9CA414D045B627422E] - 28/12/2011 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [499200] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - 14/07/2009 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.9C253CE7311CA60FC11C774692A13208] - 27/04/2011 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] =>.Microsoft Corporation
[MD5.0A49913402747A0B67DE940FB42CBDBB] - 14/07/2009 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.040D62A9D8AD28922632137ACDD984F2] - 04/05/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [157696] =>.Microsoft Corporation
[MD5.9162B273A44AB9DCE5B44362731D062A] - 14/07/2009 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [259072] =>.Microsoft Corporation
[MD5.9A6089B056EA1B83B36424FC9D0A300E] - 12/04/2013 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1653096] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.87A6E852A22991580D6D39ADC4790463] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [130048] =>.Microsoft Corporation
[MD5.9706B84DBABFC4B4CA46C5A82B14DFA3] - 14/07/2009 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165376] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - 14/07/2009 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [99840] =>.Microsoft Corporation
[MD5.9E425AC5C9A5A973273D169F43B4F5E1] - 06/09/2012 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [295792] =>.Microsoft Windows®

---\\ Liste des services NT non Microsoft et non désactivés (9) - 0s
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) . (.COMODO - COMODO Internet Security.) - C:\[prog]\FW comodo\COMODO\COMODO Internet Security\cmdagent.exe =>.Comodo Security Solutions, Inc.®
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology®
O23 - Service: VMware Authorization Service (VMAuthdService) . (...) - G:\[Installé]\VM\vmware-authd.exe (.not file.)
O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
O23 - Service: VMware Workstation Server (VMwareHostd) . (...) - G:\[Installé]\VM\vmware-hostd.exe (.not file.)

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (28) - 18s

SS - Disabl [29/01/2016] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [07/10/2015] [ 77104] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
SS - Demand [19/01/2016] [ 1314848] BattlEye Service (BEService) . (...) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe =>.BattlEye Innovations e.K.®
SR - Auto [12/08/2015] [ 462096] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SS - Disabl [26/10/2012] [ 282112] BrYNSvc (BrYNSvc) . (.Brother Industries, Ltd..) - C:\Program Files (x86)\Browny02\BrYNSvc.exe =>.Brother Industries, Ltd.
SS - Auto [16/04/2014] [ 6817544] COMODO Internet Security Helper Service (cmdAgent) . (.COMODO.) - C:\[prog]\FW comodo\COMODO\COMODO Internet Security\cmdagent.exe =>.Comodo Security Solutions, Inc.®
SS - Disabl [25/03/2014] [ 2264280] COMODO Virtual Service Manager (cmdvirth) . (.COMODO.) - C:\[prog]\FW comodo\COMODO\COMODO Internet Security\cmdvirth.exe =>.Comodo Security Solutions®
SS - Disabl [26/04/2013] [ 1498000] DisplayFusionService (DisplayFusionService) . (.Binary Fortress Software.) - C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe =>.Binary Fortress Software Ltd.®
SS - Disabl [31/12/2014] [ 451416] Garmin Core Update Service (Garmin Core Update Service) . (.Garmin Ltd or its subsidiaries.) - C:\garmin\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe =>.Garmin International, Inc.®
SS - Disabl [02/12/2009] [ 68136] GEST Service for program management. (GEST Service) . (...) - C:\Program Files (x86)\GIGABYTE\EnergySaver\GSvr.exe =>.Giga-Byte Technology®
SR - Auto [04/08/2014] [ 16232] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology®
SS - Demand [30/08/2011] [ 160256] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe =>.Intel Corporation
SS - Disabl [04/04/2005] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe =>.Macrovision Corporation
SS - Demand [17/12/2015] [ 644880] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.®
SS - Disabl [08/11/2015] [ 147624] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SS - Demand [19/09/2011] [ 278336] Performance Service (nTuneService) . (.NVIDIA.) - C:\[prog]\nvidiantune\nTune\nTuneService.exe =>.NVIDIA Corporation®
SS - Disabl [03/10/2015] [ 938800] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
SS - Demand [11/10/2015] [ 2078216] Origin Client Service (Origin Client Service) . (.Electronic Arts.) - C:\[jeux]\Origin\OriginClientService.exe =>.Electronic Arts, Inc.®
SS - Disabl [17/09/2015] [ 2244832] PDF Architect 3 (PDF Architect 3) . (.pdfforge GmbH.) - C:\Program Files (x86)\PDF Architect 3\ws.exe =>.pdfforge GmbH®
SS - Disabl [17/09/2015] [ 964832] PDF Architect 3 CrashHandler (PDF Architect 3 CrashHandler) . (.pdfforge GmbH.) - C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe =>.pdfforge GmbH®
SS - Disabl [17/09/2015] [ 767712] PDF Architect 3 Creator (PDF Architect 3 Creator) . (.pdfforge GmbH.) - C:\Program Files (x86)\PDF Architect 3\creator-ws.exe =>.pdfforge GmbH®
SR - Demand [24/06/2014] [ 1738168] Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd..) - C:\[prog]\Spybot - Search & Destroy 2\SDFSSvc.exe =>.Safer Networking Ltd.®
SS - Demand [27/06/2014] [ 2088408] Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd..) - C:\[prog]\Spybot - Search & Destroy 2\SDUpdSvc.exe =>.Safer Networking Ltd.®
SS - Disabl [07/01/2014] [ 569768] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe =>.Valve®
SR - Auto [25/11/2015] [ 358080] VMware DHCP Service (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
SR - Auto [06/11/2015] [ 906944] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
SR - Auto [25/11/2015] [ 392896] VMware NAT Service (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®

---\\ Processus lancés (12) - 1s
[MD5.2D564BB1C4559A517B390A031955714D] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104] [PID.1344] =>.Apple Inc.®
[MD5.B5C2F92EE1106DFE7BB1CCE4D35B6037] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462096] [PID.1368] =>.Apple Inc.®
[MD5.DF89A1667D769377CA5441A6F62F9031] - (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\SysWOW64\vmnat.exe [392896] [PID.1616] =>.VMware, Inc.®
[MD5.C84A6FA836262BD7CBE611F08B554E8B] - (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\SysWOW64\vmnetdhcp.exe [358080] [PID.1676] =>.VMware, Inc.®
[MD5.B30B940E999CC59A701B564A7E359D09] - (.VMware, Inc. - VMware USB Arbitration Service.) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [906944] [PID.1764] =>.VMware, Inc.®
[MD5.968EDA6EA6E00DFAE78586BFA6322B74] - (.VIA Technologies, Inc. - usbmonitor.) -- C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe [331776] [PID.2988] =>.VIA Technologies, Inc.
[MD5.F346EA26FA420B44720D56C33EE338C7] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13877464] [PID.3004] =>.Realtek Semiconductor Corp®
[MD5.10B18E167356E5835AE844B1D92DBEC5] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232] [PID.2588] =>.Intel Corporation - Intel® Rapid Storage Technology®
[MD5.1121CE046977F325282979D98DD7FF31] - (.AVG Technologies - AVG Setup Self-Extractor based on 7-Zip.) -- C:\Users\Wild star\Downloads\AVG_Protection_Free_1115.exe [2895464] [PID.2516] =>.AVG Technologies CZ, s.r.o.®
[MD5.9725ECF2BDC69223799A28065261D2FD] - (.AVG Technologies CZ, s.r.o. - AVG Setup Process.) -- C:\Users\Wild star\AppData\Local\Temp\7zS4D92B9C5\avgsetupx.exe [2875304] [PID.2524] =>.AVG Technologies CZ, s.r.o.®
[MD5.D777F1417D9BB9F66CD9D9C3B61F730F] - (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\[prog]\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168] [PID.4088] =>.Safer Networking Ltd.®
[MD5.DA48EEE85A6DA00171815554A3B82101] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Wild star\Desktop\ZHPDiag3.exe [2133504] [PID.2856] =>.Nicolas Coolman

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (14) - 1s
M1 - SPR:Search Page Redirection - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be
P2 - EXT FILE: (...) -- C:\Users\Wild star\AppData\Roaming\Mozilla\Firefox\Profiles\vhl9rs1u.default-1449818598721\extensions\elemhidehelper@adblockplus.org.xpi
P2 - EXT FILE: (...) -- C:\Users\Wild star\AppData\Roaming\Mozilla\Firefox\Profiles\vhl9rs1u.default-1449818598721\extensions\Recovery+boden.html
P2 - EXT FILE: (...) -- C:\Users\Wild star\AppData\Roaming\Mozilla\Firefox\Profiles\vhl9rs1u.default-1449818598721\extensions\Recovery+boden.png
P2 - EXT FILE: (...) -- C:\Users\Wild star\AppData\Roaming\Mozilla\Firefox\Profiles\vhl9rs1u.default-1449818598721\extensions\Recovery+boden.txt
P2 - EXT FILE: (...) -- C:\Users\Wild star\AppData\Roaming\Mozilla\Firefox\Profiles\vhl9rs1u.default-1449818598721\extensions\Recovery+pjlat.html
P2 - EXT FILE: (...) -- C:\Users\Wild star\AppData\Roaming\Mozilla\Firefox\Profiles\vhl9rs1u.default-1449818598721\extensions\Recovery+pjlat.png
P2 - EXT FILE: (...) -- C:\Users\Wild star\AppData\Roaming\Mozilla\Firefox\Profiles\vhl9rs1u.default-1449818598721\extensions\Recovery+pjlat.txt
P2 - EXT FILE: (...) -- C:\Users\Wild star\AppData\Roaming\Mozilla\Firefox\Profiles\vhl9rs1u.default-1449818598721\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
P2 - EXT FILE: (...) -- C:\Users\Wild star\AppData\Roaming\Mozilla\Firefox\Profiles\vhl9rs1u.default-1449818598721\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT: (. - British English Dictionary (Forked by Marco Pinto).) -- C:\Users\Wild star\AppData\Roaming\Mozilla\Firefox\Profiles\vhl9rs1u.default-1449818598721\extensions\marcoagpinto@mail.telepac.pt
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll =>.Apple Inc.
P2 - FPN: [HKLM] [@pandonetworks.com/PandoWebPlugin] - (.Pando Networks Inc..) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll =>.Pando Networks Inc.

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (15520)

---\\ Browser Helper Object de navigateur (BHO) (2) - 1s
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL =>.Microsoft Corporation®

---\\ Applications lancées au démarrage du système (4) - 0s
O4 - HKLM\..\Run: [COMODO Internet Security] . (.COMODO - COMODO Internet Security.) -- C:\[prog]\FW comodo\COMODO\COMODO Internet Security\cistray.exe =>.Comodo Security Solutions®
O4 - HKLM\..\Run: [VIAxHCUtl] C:\Program Files\VIA XHCI UASP Utility\usb3Monitor (.not file.)
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation

---\\ Raccourcis Global Startup (105) - 5s
O4 - GS\Desktop [Administrateur]: ardèche 2015.ods - Raccourci.lnk . (...) C:\Users\Wild star\Documents\[Perso]\Vacances\ardèche 2015.ods
O4 - GS\Desktop [Administrateur]: Downloads.lnk . (...) C:\Users\Wild star\Downloads
O4 - GS\Desktop [Administrateur]: EnergySaver.lnk . (.Copyright (C) 2007 - GEST MFC Application.) C:\Program Files (x86)\GIGABYTE\EnergySaver\gest.exe =>.Giga-Byte Technology®
O4 - GS\Desktop [Administrateur]: Garmin.Cyclops.Dangerous.Zones.France.1114-NAViGON - Raccourci.lnk . (...) G:\[Prog]\garmin\Garmin.Cyclops.Dangerous.Zones.France.1114-NAViGON
O4 - GS\Desktop [Administrateur]: Roaming - Raccourci.lnk . (...) C:\Users\Wild star\AppData\Roaming
O4 - GS\Desktop [Administrateur]: SearchMyFiles.exe - Raccourci.lnk . (.NirSoft - SearchMyFiles.) C:\[prog]\searchmyfiles-x64\SearchMyFiles.exe {00A1A3E7280E0A2DF12F84309649820519} =>.NirSoft
O4 - GS\Desktop [Administrateur]: SpeedFan.lnk . (.Almico Software (almico.com) - .) C:\[prog]\SpeedFan\speedfan.exe =>.SOKNO S.R.L.®
O4 - GS\Desktop [Administrateur]: TreeSize Free.lnk . (.JAM Software - TreeSize Free hard disk space manager.) C:\[prog]\TreeSize Free\TreeSizeFree.exe =>.JAM Software GmbH®
O4 - GS\Desktop [Administrateur]: WBFS Manager 3.0.lnk . (...) G:\[Prog]\WBFS Manager 3.0\WBFSManager.exe
O4 - GS\Desktop [Administrateur]: WiiUpdateManager.exe - Raccourci.lnk . (...) G:\[Multimedia]\[Jeux]\Wii\WUM-1.2-windows\WiiUpdateManager.exe
O4 - GS\Desktop [Administrateur]: WIKO WAX KITKAT.lnk . (...) C:\TNvflasher\WIKO_WAX_KITKAT.exe
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Wild star\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrateur]: [divers bureau].lnk . (...) C:\[divers bureau]
O4 - GS\Desktop [Administrateur]: [Jeux].lnk . (...) C:\[jeux]\[Raccourcis]
O4 - GS\Quicklaunch [Administrateur]: Alienware Command Center.lnk . (.Alienware Corp - CommandCenter.) C:\Program Files\Alienware\Command Center\CommandCenter.exe {7157CBE3A84B69BE2DF634ACC2182262}
O4 - GS\Quicklaunch [Administrateur]: JDownloader.lnk . (...) C:\[prog]\JDownloader\JDownloaderPortable.exe
O4 - GS\Quicklaunch [Administrateur]: NVIDIA System Monitor.lnk . (.NVIDIA - NVIDIA System Monitor.) C:\[prog]\nvidiantune\sysmon\NVIDIA System Monitor\NVMonitor.exe =>.NVIDIA Corporation®
O4 - GS\Quicklaunch [Administrateur]: Performance.lnk . (.NVIDIA Corporation - NVIDIA Control Panel Application, 8.1.790.0.) C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcplui.exe =>.NVIDIA Corporation®
O4 - GS\Quicklaunch [Administrateur]: QuickTime Player.lnk . (...) C:\Windows\Installer\{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}\QTPlayer.ico
O4 - GS\Quicklaunch [Administrateur]: TreeSizeFree.lnk . (.JAM Software - TreeSize Free hard disk space manager.) C:\[prog]\TreeSize Free\TreeSizeFree.exe =>.JAM Software GmbH®
O4 - GS\TaskBar [Administrateur]: DAEMON Tools Lite.lnk . (.Disc Soft Ltd - DAEMON Tools Lite.) C:\[prog]\DAEMON Tools Lite\DTLite.exe =>.Disc Soft Ltd®
O4 - GS\TaskBar [Administrateur]: GNU Image Manipulation Program.lnk . (.Spencer Kimball, Peter Mattis and the GIMP Developmen - GNU Image Manipulation Program.) C:\[prog]\GIMP 2\bin\gimp-2.8.exe =>.Jernej Simoncic®
O4 - GS\TaskBar [Administrateur]: ImgBurn.lnk . (.LIGHTNING UK! - ImgBurn - The Ultimate Image Burner!.) C:\[prog]\ImgBurn\ImgBurn.exe
O4 - GS\TaskBar [Administrateur]: Invision.lnk . (.mIRC Co. Ltd. - mIRC.) C:\[prog]\mIRC\mirc.exe =>.mIRC Co. Ltd.
O4 - GS\TaskBar [Administrateur]: JDownloader 2 Launcher.lnk . (.AppWork GmbH - JDownloader 2 Launcher.) C:\[prog]\jd2\JDownloader v2.0\JDownloader2.exe =>.AppWork GmbH®
O4 - GS\TaskBar [Administrateur]: LibreOffice 4.2.lnk . (.The Document Foundation - LibreOffice.) C:\Program Files (x86)\LibreOffice 4\program\soffice.exe =>.The Document Foundation
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Mumble.lnk . (.Thorvald Natvig - Mumble - Low-latency VoIP client.) C:\[prog]\mumble\mumble.exe =>.mkrautz.dk®
O4 - GS\TaskBar [Administrateur]: Nightly (10).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Nightly (11).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Nightly (12).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Nightly (2).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Nightly (3).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Nightly (4).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Nightly (5).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Nightly (6).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Nightly (7).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Nightly (8).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Nightly (9).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Nightly.lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: NVIDIA System Monitor.lnk . (.NVIDIA - NVIDIA System Monitor.) C:\[prog]\nvidiantune\sysmon\NVIDIA System Monitor\NVMonitor.exe =>.NVIDIA Corporation®
O4 - GS\TaskBar [Administrateur]: poweroff.exe - Raccourci.lnk . (.Jorgen Bosman - poweroff.) C:\[prog]\PowerOff_3.0.1.3\poweroff.exe
O4 - GS\TaskBar [Administrateur]: poweroff.lnk . (.Jorgen Bosman - poweroff.) C:\[prog]\PowerOff_3.0.1.3\poweroff.exe
O4 - GS\TaskBar [Administrateur]: SearchMyFiles.exe - Raccourci.lnk . (.NirSoft - SearchMyFiles.) C:\[prog]\searchmyfiles-x64\SearchMyFiles.exe {00A1A3E7280E0A2DF12F84309649820519} =>.NirSoft
O4 - GS\TaskBar [Administrateur]: TeamSpeak 3 Client.lnk . (.TeamSpeak Systems GmbH - TeamSpeak 3 Client.) C:\[prog]\TS\ts3client_win32.exe =>.TeamSpeak Systems GmbH®
O4 - GS\TaskBar [Administrateur]: TreeSize Free.lnk . (.JAM Software - TreeSize Free hard disk space manager.) C:\[prog]\TreeSize Free\TreeSizeFree.exe =>.JAM Software GmbH®
O4 - GS\TaskBar [Administrateur]: TrueCrypt.lnk . (...) C:\[prog]\TrueC\TrueCrypt.exe
O4 - GS\TaskBar [Administrateur]: VLC media player (2).lnk . (.VideoLAN - VLC media player.) C:\[prog]\VLC\vlc.exe =>.VideoLAN®
O4 - GS\TaskBar [Administrateur]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\[prog]\VLC\vlc.exe =>.VideoLAN®
O4 - GS\Desktop [Wild star]: ardèche 2015.ods - Raccourci.lnk . (...) C:\Users\Wild star\Documents\[Perso]\Vacances\ardèche 2015.ods
O4 - GS\Desktop [Wild star]: Downloads.lnk . (...) C:\Users\Wild star\Downloads
O4 - GS\Desktop [Wild star]: EnergySaver.lnk . (.Copyright (C) 2007 - GEST MFC Application.) C:\Program Files (x86)\GIGABYTE\EnergySaver\gest.exe =>.Giga-Byte Technology®
O4 - GS\Desktop [Wild star]: Garmin.Cyclops.Dangerous.Zones.France.1114-NAViGON - Raccourci.lnk . (...) G:\[Prog]\garmin\Garmin.Cyclops.Dangerous.Zones.France.1114-NAViGON
O4 - GS\Desktop [Wild star]: Roaming - Raccourci.lnk . (...) C:\Users\Wild star\AppData\Roaming
O4 - GS\Desktop [Wild star]: SearchMyFiles.exe - Raccourci.lnk . (.NirSoft - SearchMyFiles.) C:\[prog]\searchmyfiles-x64\SearchMyFiles.exe {00A1A3E7280E0A2DF12F84309649820519} =>.NirSoft
O4 - GS\Desktop [Wild star]: SpeedFan.lnk . (.Almico Software (almico.com) - .) C:\[prog]\SpeedFan\speedfan.exe =>.SOKNO S.R.L.®
O4 - GS\Desktop [Wild star]: TreeSize Free.lnk . (.JAM Software - TreeSize Free hard disk space manager.) C:\[prog]\TreeSize Free\TreeSizeFree.exe =>.JAM Software GmbH®
O4 - GS\Desktop [Wild star]: WBFS Manager 3.0.lnk . (...) G:\[Prog]\WBFS Manager 3.0\WBFSManager.exe
O4 - GS\Desktop [Wild star]: WiiUpdateManager.exe - Raccourci.lnk . (...) G:\[Multimedia]\[Jeux]\Wii\WUM-1.2-windows\WiiUpdateManager.exe
O4 - GS\Desktop [Wild star]: WIKO WAX KITKAT.lnk . (...) C:\TNvflasher\WIKO_WAX_KITKAT.exe
O4 - GS\Desktop [Wild star]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Wild star\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Wild star]: [divers bureau].lnk . (...) C:\[divers bureau]
O4 - GS\Desktop [Wild star]: [Jeux].lnk . (...) C:\[jeux]\[Raccourcis]
O4 - GS\Quicklaunch [Wild star]: Alienware Command Center.lnk . (.Alienware Corp - CommandCenter.) C:\Program Files\Alienware\Command Center\CommandCenter.exe {7157CBE3A84B69BE2DF634ACC2182262}
O4 - GS\Quicklaunch [Wild star]: JDownloader.lnk . (...) C:\[prog]\JDownloader\JDownloaderPortable.exe
O4 - GS\Quicklaunch [Wild star]: NVIDIA System Monitor.lnk . (.NVIDIA - NVIDIA System Monitor.) C:\[prog]\nvidiantune\sysmon\NVIDIA System Monitor\NVMonitor.exe =>.NVIDIA Corporation®
O4 - GS\Quicklaunch [Wild star]: Performance.lnk . (.NVIDIA Corporation - NVIDIA Control Panel Application, 8.1.790.0.) C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcplui.exe =>.NVIDIA Corporation®
O4 - GS\Quicklaunch [Wild star]: QuickTime Player.lnk . (...) C:\Windows\Installer\{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}\QTPlayer.ico
O4 - GS\Quicklaunch [Wild star]: TreeSizeFree.lnk . (.JAM Software - TreeSize Free hard disk space manager.) C:\[prog]\TreeSize Free\TreeSizeFree.exe =>.JAM Software GmbH®
O4 - GS\TaskBar [Wild star]: DAEMON Tools Lite.lnk . (.Disc Soft Ltd - DAEMON Tools Lite.) C:\[prog]\DAEMON Tools Lite\DTLite.exe =>.Disc Soft Ltd®
O4 - GS\TaskBar [Wild star]: GNU Image Manipulation Program.lnk . (.Spencer Kimball, Peter Mattis and the GIMP Developmen - GNU Image Manipulation Program.) C:\[prog]\GIMP 2\bin\gimp-2.8.exe =>.Jernej Simoncic®
O4 - GS\TaskBar [Wild star]: ImgBurn.lnk . (.LIGHTNING UK! - ImgBurn - The Ultimate Image Burner!.) C:\[prog]\ImgBurn\ImgBurn.exe
O4 - GS\TaskBar [Wild star]: Invision.lnk . (.mIRC Co. Ltd. - mIRC.) C:\[prog]\mIRC\mirc.exe =>.mIRC Co. Ltd.
O4 - GS\TaskBar [Wild star]: JDownloader 2 Launcher.lnk . (.AppWork GmbH - JDownloader 2 Launcher.) C:\[prog]\jd2\JDownloader v2.0\JDownloader2.exe =>.AppWork GmbH®
O4 - GS\TaskBar [Wild star]: LibreOffice 4.2.lnk . (.The Document Foundation - LibreOffice.) C:\Program Files (x86)\LibreOffice 4\program\soffice.exe =>.The Document Foundation
O4 - GS\TaskBar [Wild star]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Wild star]: Mumble.lnk . (.Thorvald Natvig - Mumble - Low-latency VoIP client.) C:\[prog]\mumble\mumble.exe =>.mkrautz.dk®
O4 - GS\TaskBar [Wild star]: Nightly (10).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Wild star]: Nightly (11).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Wild star]: Nightly (12).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Wild star]: Nightly (2).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Wild star]: Nightly (3).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Wild star]: Nightly (4).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Wild star]: Nightly (5).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Wild star]: Nightly (6).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Wild star]: Nightly (7).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Wild star]: Nightly (8).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Wild star]: Nightly (9).lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Wild star]: Nightly.lnk . (.Mozilla Corporation - Firefox.) C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Wild star]: NVIDIA System Monitor.lnk . (.NVIDIA - NVIDIA System Monitor.) C:\[prog]\nvidiantune\sysmon\NVIDIA System Monitor\NVMonitor.exe =>.NVIDIA Corporation®
O4 - GS\TaskBar [Wild star]: poweroff.exe - Raccourci.lnk . (.Jorgen Bosman - poweroff.) C:\[prog]\PowerOff_3.0.1.3\poweroff.exe
O4 - GS\TaskBar [Wild star]: poweroff.lnk . (.Jorgen Bosman - poweroff.) C:\[prog]\PowerOff_3.0.1.3\poweroff.exe
O4 - GS\TaskBar [Wild star]: SearchMyFiles.exe - Raccourci.lnk . (.NirSoft - SearchMyFiles.) C:\[prog]\searchmyfiles-x64\SearchMyFiles.exe {00A1A3E7280E0A2DF12F84309649820519} =>.NirSoft
O4 - GS\TaskBar [Wild star]: TeamSpeak 3 Client.lnk . (.TeamSpeak Systems GmbH - TeamSpeak 3 Client.) C:\[prog]\TS\ts3client_win32.exe =>.TeamSpeak Systems GmbH®
O4 - GS\TaskBar [Wild star]: TreeSize Free.lnk . (.JAM Software - TreeSize Free hard disk space manager.) C:\[prog]\TreeSize Free\TreeSizeFree.exe =>.JAM Software GmbH®
O4 - GS\TaskBar [Wild star]: TrueCrypt.lnk . (...) C:\[prog]\TrueC\TrueCrypt.exe
O4 - GS\TaskBar [Wild star]: VLC media player (2).lnk . (.VideoLAN - VLC media player.) C:\[prog]\VLC\vlc.exe =>.VideoLAN®
O4 - GS\TaskBar [Wild star]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\[prog]\VLC\vlc.exe =>.VideoLAN®
O4 - GS\CommonDesktop [Public]: CPUID CPU-Z.lnk . (.CPUID - CPU-Z Application.) C:\[prog]\CPU-Z\cpuz.exe =>.CPUID®
O4 - GS\CommonDesktop [Public]: ET6.lnk . (.Copyright (C) 2011 - ET6SC MFC Application.) C:\Program Files (x86)\GIGABYTE\ET6\ET6SC.exe =>.Giga-Byte Technology®
O4 - GS\CommonDesktop [Public]: iTunes.lnk . (.Apple Inc. - iTunes.) C:\[prog]\itunes\iTunes.exe =>.Apple Inc.®
O4 - GS\CommonDesktop [Public]: Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd. - Start Center.) C:\[prog]\Spybot - Search & Destroy 2\SDWelcome.exe =>.Safer Networking Ltd.®
O4 - GS\CommonDesktop [Public]: VMware Workstation Pro.lnk . (...) G:\[Installé]\VM\vmware.exe
O4 - GS\Programs [Public]: mIRC - Invision.lnk . (.mIRC Co. Ltd. - mIRC.) C:\[prog]\mIRC\mirc.exe =>.mIRC Co. Ltd.
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc

---\\ Modification Domaine/Adresses DNS (13) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C360AA0B-DA8D-4583-9CDB-B2F2B2A37650}: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{13685CEC-DE7F-45C3-942D-EE3388C9E4C5}: DhcpNameServer = 192.168.9.1 192.168.9.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6691303C-0A56-4CCA-8F7C-FDC81339160E}: DhcpNameServer = 192.168.9.1 192.168.9.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B8E092C3-6617-46EB-8850-550F68FDE93C}: DhcpNameServer = 192.168.9.1 192.168.9.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C360AA0B-DA8D-4583-9CDB-B2F2B2A37650}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DBE7F370-C6CF-4D9D-B869-ABB171C5E32A}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{13685CEC-DE7F-45C3-942D-EE3388C9E4C5}: DhcpDomain = vodafonemobile.vmbvodafonemobile.apivodafonemobile.vmb
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6691303C-0A56-4CCA-8F7C-FDC81339160E}: DhcpDomain = vodafonemobile.vmbvodafonemobile.apivodafonemobile.vmb
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B8E092C3-6617-46EB-8850-550F68FDE93C}: DhcpDomain = vodafonemobile.vmbvodafonemobile.apivodafonemobile.vmb
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C360AA0B-DA8D-4583-9CDB-B2F2B2A37650}: DhcpDomain = lan
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DBE7F370-C6CF-4D9D-B869-ABB171C5E32A}: DhcpDomain = local

---\\ Protocole additionnel (21) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ Enumère les données de BootExecute (1) - 0s
O34 - HKLM BootExecute: (sdnclean64.exe)

---\\ Logiciels installés (112) - 22s
O42 - Logiciel: Adibou découvre les lettres et les chiffres 4-5 ans - (.Mindscape.) [HKLM][64Bits] -- {457B1AB8-0E75-44FB-B486-61E16C1955E8} =>.Mindscape
O42 - Logiciel: Adobe Flash Player 20 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Alienware TactX Keyboard CI 1.10.102 - (.Alienware.) [HKLM][64Bits] -- {52895576-CD43-11E1-9E3F-9AF66188709B} =>.Alienware
O42 - Logiciel: ANT Drivers Installer x64 - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {4AE2138C-8A0F-4C68-B7D2-722A5F6327F5} =>.Garmin Ltd or its subsidiaries
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F} =>.Apple Inc.
O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {691F30EB-9009-475A-B8A9-E1BF39598FD5} =>.Apple Inc.
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {3540181E-340A-4E7A-B409-31663472B2F7} =>.Apple Inc.
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF} =>.Apple Inc.
O42 - Logiciel: Audacity 2.1.0 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1 =>.Audacity Team
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: Belgium e-ID middleware 4.0.7 (build 7466) - (.Belgian Government.) [HKLM][64Bits] -- {824563DE-75AD-4166-9DC0-B6482F207466} =>.Belgian Government
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {56DDDFB8-7F79-4480-89D5-25E1F52AB28F} =>.Apple Inc.
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: Cities Skylines - (...) [HKLM][64Bits] -- Cities Skylines_is1
O42 - Logiciel: Command & Conquer™ Red Alert 2 and Yuri’s Revenge - (.Electronic Arts, Inc..) [HKLM][64Bits] -- {F5275D1C-D133-486D-8F07-D6C571F0A8EC} =>.Electronic Arts®
O42 - Logiciel: Command Center - (...) [HKLM][64Bits] -- InstallShield_{AE1E0DFB-A3D9-451C-AA7F-46FD390400D4} {7157CBE3A84B69BE2DF634ACC2182262}
O42 - Logiciel: Command Center - (.Alienware Corp..) [HKLM][64Bits] -- {AE1E0DFB-A3D9-451C-AA7F-46FD390400D4} =>.Alienware Corp.
O42 - Logiciel: COMODO Firewall - (.COMODO Security Solutions Inc..) [HKLM][64Bits] -- {A0BABADE-E154-4F08-97A1-2903CD110E88} =>.COMODO Security Solutions Inc.
O42 - Logiciel: CPUID CPU-Z 1.72 - (...) [HKLM][64Bits] -- CPUID CPU-Z_is1
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.Disc Soft Ltd
O42 - Logiciel: Darkest Dungeon - (.Red Hook Studios.) [HKLM][64Bits] -- Steam App 262060 =>.Valve®
O42 - Logiciel: Dirty Bomb - (.Splash Damage®.) [HKLM][64Bits] -- Steam App 333930 =>.Valve®
O42 - Logiciel: DisplayFusion 5.0.1 - (.Binary Fortress Software.) [HKLM][64Bits] -- B076073A-5527-4f4f-B46B-B10692277DA2_is1 =>.Binary Fortress Software Ltd.®
O42 - Logiciel: Dragon's Dogma: Dark Arisen - (.Capcom.) [HKLM][64Bits] -- Steam App 367500 =>.Valve®
O42 - Logiciel: Dying Light - (.Techland.) [HKLM][64Bits] -- Steam App 239140 =>.Valve®
O42 - Logiciel: Easy Tune 6 B12.1121.1 - (.GIGABYTE.) [HKLM][64Bits] -- {457D7505-D665-4F95-91C3-ECB8C56E9ACA} =>.Gigabyte
O42 - Logiciel: Easy Tune 6 B12.1121.1 - (.GIGABYTE.) [HKLM][64Bits] -- InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA} =>.Gigabyte
O42 - Logiciel: Elevated Installer - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {B9493F36-49B9-4E6F-BA94-4E54C86D7CA8} =>.Garmin Ltd or its subsidiaries
O42 - Logiciel: Energy Saver Advance B10.0309.1 - (.GIGABYTE.) [HKLM][64Bits] -- {7ED169D4-5053-4166-93DF-53B12AE6C539} =>.Gigabyte
O42 - Logiciel: Fallout 4 - Patch FR 1.00 - (.TraductionJeux.com.) [HKLM][64Bits] -- Fallout 4 - Patch FR 1.00 =>.TraductionJeux.com
O42 - Logiciel: Flash Drive Tester v1.14 - (.Virtual Console.) [HKLM][64Bits] -- {272C8DEE-F54F-406C-9AA6-B4DE2985A47C} =>.Virtual Console
O42 - Logiciel: Garmin Express - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {631F7A18-2816-45DD-AD98-60F57D14E7AD} =>.Garmin Ltd or its subsidiaries
O42 - Logiciel: Garmin Express - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {855d8086-4275-4bd3-a7a8-b44da3a56d7a} =>.Garmin International, Inc.®
O42 - Logiciel: Garmin Express Tray - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {0B4A6B94-236B-4257-B560-28942335C938} =>.Garmin Ltd or its subsidiaries
O42 - Logiciel: Garmin POI Loader - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {3213ED5E-7BBE-4613-BE69-8B1E4FE520DD} =>.Garmin Ltd or its subsidiaries
O42 - Logiciel: Garmin USB Drivers - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {3D5D6CFC-3097-425A-8D8F-7EAF5D57641D} =>.Garmin Ltd or its subsidiaries
O42 - Logiciel: GIMP 2.8.10 - (.The GIMP Team.) [HKLM][64Bits] -- GIMP-2_is1 =>.Jernej Simoncic®
O42 - Logiciel: GPSBabel 1.5.2 - (.GPSBabel.) [HKLM][64Bits] -- {1B8FE958-A304-4902-BF7A-4E2F0F5B7017}_is1 =>.GPSBabel
O42 - Logiciel: H1Z1 - (.Daybreak Games.) [HKLM][64Bits] -- Steam App 295110 =>.Valve®
O42 - Logiciel: Hacknet - (.GOG.com.) [HKLM][64Bits] -- 1439474400_is1 =>.GOG.com
O42 - Logiciel: Heroes & Generals - (.Reto-Moto.) [HKLM][64Bits] -- Steam App 227940 =>.Valve®
O42 - Logiciel: HL-1110 series - (.Brother Industries, Ltd..) [HKLM][64Bits] -- {4F2442B7-A89E-42A4-8F0E-6937499855CA} =>.Macrovision Corporation®
O42 - Logiciel: ImgBurn - (.LIGHTNING UK!.) [HKLM][64Bits] -- ImgBurn
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel Corporation
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {D3AC9C6B-91D7-4E0B-B545-327A2BC17627} =>.Intel Corporation
O42 - Logiciel: Invision - (.Invision.) [HKLM][64Bits] -- {3764E0E0-6AAE-11DE-6784-0C73653918BE}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E} =>.Apple Inc.
O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: LAME v3.99.3 (for Windows) - (...) [HKLM][64Bits] -- LAME_is1
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- {3E75652D-99B1-417E-B163-BEF33CAD3F16} =>.Riot Games
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- League of Legends 3.0.1 =>.Riot Games
O42 - Logiciel: LibreOffice 4.2.1.1 - (.The Document Foundation.) [HKLM][64Bits] -- {C83C3B4C-1AFF-4CEA-8078-74E7A3FE8F03} =>.The Document Foundation
O42 - Logiciel: Loadout - (.Edge of Reality.) [HKLM][64Bits] -- Steam App 208090 =>.Valve®
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9} =>.Microsoft Corporation
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 Refresh - (.Microsoft Corporation.) [HKLM][64Bits] -- {D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F} =>.Microsoft Corporation
O42 - Logiciel: mIRC - (.mIRC Co. Ltd..) [HKLM][64Bits] -- mIRC {5B28ABFE6F787AE15475F0C45F20029B} =>.mIRC Co. Ltd.
O42 - Logiciel: Mozilla Firefox 42.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 42.0 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: Mumble 1.2.7 - (.Thorvald Natvig.) [HKLM][64Bits] -- {1FC198EF-5C3F-4C2A-99AC-22DE9B3FBFDE} =>.Thorvald Natvig
O42 - Logiciel: Natural Selection 2 - (.Unknown Worlds Entertainment.) [HKLM][64Bits] -- Steam App 4920 =>.Valve®
O42 - Logiciel: Neverwinter - (.Cryptic Studios.) [HKLM][64Bits] -- Steam App 109600 =>.Valve®
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers =>.NVIDIA Corporation®
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Performance - (.NVIDIA Corporation.) [HKLM][64Bits] -- {7C7F30F4-94E7-4AA8-8941-90C4A80C68BF} =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Performance - (.NVIDIA Corporation.) [HKLM][64Bits] -- InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF} =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B455E95A-B804-439F-B533-336B1635AE97} =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote graphique 358.50 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA System Monitor - (.NVIDIA Corporation.) [HKLM][64Bits] -- {E9CFBE78-ED91-4FCF-9E6F-210E477E527D} =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA System Monitor - (.NVIDIA Corporation.) [HKLM][64Bits] -- InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D} =>.NVIDIA Corporation
O42 - Logiciel: Open Broadcaster Software - (...) [HKLM][64Bits] -- Open Broadcaster Software
O42 - Logiciel: OpenAL - (...) [HKLM][64Bits] -- OpenAL =>.Creative Labs Inc®
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin =>.Electronic Arts, Inc.®
O42 - Logiciel: Package de pilotes Windows - Dynastream Innovations, Inc. ANT LibUSB Driver - (.Dynastream Innovations, Inc..) [HKLM][64Bits] -- F9D2A789F9CFF8CEC36B544F53877C80F1F73C46 =>.Microsoft Windows®
O42 - Logiciel: Package de pilotes Windows - Fedict SmartCard (04/30/2014 4.0.7.5) - (.Fedict.) [HKLM][64Bits] -- C5357B4AD7C02B3F6EF45765A07E5B725E50BBF7 =>.Microsoft Windows®
O42 - Logiciel: Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass ( - (.Google, Inc..) [HKLM][64Bits] -- 54D44E227D1503CED7A0EBEBC92A9F3EF81E0CFB =>.AnvSoft Co., Ltd.®
O42 - Logiciel: Package de pilotes Windows - NVIDIA Corporation (WinUSB) USB (04/01/2010 1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- 2ACD4398814009B8E393C61C95AD6CF49E299E6F =>.Microsoft Windows®
O42 - Logiciel: Package de pilotes Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB ( - (.Silicon Labs Software.) [HKLM][64Bits] -- D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2 =>.Microsoft Windows®
O42 - Logiciel: Panneau de configuration NVIDIA 358.50 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation
O42 - Logiciel: PDF Architect 3 - (.pdfforge GmbH.) [HKLM][64Bits] -- PDF Architect 3 =>.pdfforge GmbH®
O42 - Logiciel: PDF Architect 3 Create Module - (.pdfforge GmbH.) [HKLM][64Bits] -- {FAB06EA0-4907-47CE-B002-4EEFA36F806D} =>.pdfforge GmbH
O42 - Logiciel: PDF Architect 3 Edit Module - (.pdfforge GmbH.) [HKLM][64Bits] -- {E9397ACE-64E3-49EA-98B0-F787F0637029} =>.pdfforge GmbH
O42 - Logiciel: PDF Architect 3 View Module - (.pdfforge GmbH.) [HKLM][64Bits] -- {BEDC9772-10E8-4BBA-9048-CD78CD93BF38} =>.pdfforge GmbH
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} =>.pdfforge
O42 - Logiciel: PDF-Viewer - (.Tracker Software Products Ltd.) [HKLM][64Bits] -- {A278382D-4F1B-4D47-9885-8523F7261E8D}_is1 =>.Tracker Software Products Ltd®
O42 - Logiciel: Platform - (.VIA Technologies, Inc..) [HKLM][64Bits] -- {20D4A895-748C-4D88-871C-FDB1695B0169} =>.VIA Technologies, Inc.
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc =>.Even Balance, Inc.
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC} =>.Apple Inc.
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: ROCCAT Kone Pure Mouse Driver - (.Roccat GmbH.) [HKLM][64Bits] -- {4905245D-56E7-4176-BE68-962728B803D6} =>.ROCCAT GmbH
O42 - Logiciel: Serious Sam 3: BFE - (.Croteam.) [HKLM][64Bits] -- Steam App 41070 =>.Valve®
O42 - Logiciel: Space Hulk Ascension - (...) [HKLM][64Bits] -- Space Hulk Ascension_is1
O42 - Logiciel: SpeedFan (remove only) - (...) [HKLM][64Bits] -- SpeedFan
O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1 =>.Safer Networking Ltd.®
O42 - Logiciel: StarCraft II - (.Blizzard Entertainment.) [HKLM][64Bits] -- StarCraft II =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3} =>.Valve Corporation
O42 - Logiciel: Strike Suit Zero - (...) [HKLM][64Bits] -- Strike Suit Zero
O42 - Logiciel: SyncDroid version 1.2.5 - (.JunTu Software, Inc..) [HKLM][64Bits] -- {BE7E35A4-59E5-412B-9B18-57B4938B8C0B}_is1 =>.JunTu Software Inc.®
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM][64Bits] -- TeamSpeak 3 Client =>.TeamSpeak Systems GmbH
O42 - Logiciel: TeraCopy 2.3 - (.Code Sector.) [HKLM][64Bits] -- TeraCopy_is1 =>.Code Sector®
O42 - Logiciel: TreeSize Free V3.4.4 - (.JAM Software.) [HKLM][64Bits] -- TreeSize Free_is1 =>.JAM Software GmbH®
O42 - Logiciel: Ubisoft Game Launcher - (.UBISOFT.) [HKLM][64Bits] -- {888F1505-C2B3-4FDE-835D-36353EBD4754} =>.Ubisoft
O42 - Logiciel: VIA Gestionnaire de périphériques de plate-forme - (.VIA Technologies, Inc..) [HKLM][64Bits] -- InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169} =>.VIA Technologies, Inc.
O42 - Logiciel: Virtualdub FFMpeg Input Plugin - (.Karl Pritchett.) [HKLM][64Bits] -- {F26A7CD7-C187-45DB-A790-C1C103A03C2F}_is1
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM][64Bits] -- {0AD91785-F9BD-47FD-84F7-9E27B5A1853D} =>.VMware, Inc.
O42 - Logiciel: Warframe - (.Digital Extremes.) [HKLM][64Bits] -- {9AE46B8A-9AAC-40BD-8CB6-B05FC9571530} =>.Digital Extremes
O42 - Logiciel: WBFS Manager 3.0 - (.AlexDP.) [HKLM][64Bits] -- WBFS Manager 3.0 =>.AlexDP
O42 - Logiciel: WestwoodOnline - (.WestwoodOnline.) [HKLM][64Bits] -- {BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D} =>.WestwoodOnline
O42 - Logiciel: Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1 - (.Garmin.) [HKLM][64Bits] -- 98157A226B40B173301B0F53C8E98C47805D5152 =>.Microsoft Windows Component Publisher®
O42 - Logiciel: WinRAR 5.30 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: Wise Memory Optimizer 3.34 - (.WiseCleaner.com, Inc..) [HKLM][64Bits] -- Wise Memory Optimizer_is1 =>.WiseCleaner.com, Inc.

---\\ HKCU & HKLM Software Keys (194) - 22s
HKLM\SOFTWARE\Wow6432Node\Act-3D
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\Alienware
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\ARTDINK
HKLM\SOFTWARE\Wow6432Node\Artifex
HKLM\SOFTWARE\Wow6432Node\ATK0100
HKLM\SOFTWARE\Wow6432Node\BEID
HKLM\SOFTWARE\Wow6432Node\Bethesda Softworks
HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment
HKLM\SOFTWARE\Wow6432Node\Brother
HKLM\SOFTWARE\Wow6432Node\Brother Industries, Ltd.
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\CDex
HKLM\SOFTWARE\Wow6432Node\CheckPoint
HKLM\SOFTWARE\Wow6432Node\CodeGear
HKLM\SOFTWARE\Wow6432Node\Disc Soft
HKLM\SOFTWARE\Wow6432Node\DownloadHelper
HKLM\SOFTWARE\Wow6432Node\DT Soft
HKLM\SOFTWARE\Wow6432Node\EA Games
HKLM\SOFTWARE\Wow6432Node\ej-technologies
HKLM\SOFTWARE\Wow6432Node\Electronic Arts
HKLM\SOFTWARE\Wow6432Node\FFmpeg for Audacity
HKLM\SOFTWARE\Wow6432Node\GamersFirst
HKLM\SOFTWARE\Wow6432Node\Garmin
HKLM\SOFTWARE\Wow6432Node\Gigabyte
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\GOG.com
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\GPL Ghostscript
HKLM\SOFTWARE\Wow6432Node\GSC Game World
HKLM\SOFTWARE\Wow6432Node\IcarusStudios
HKLM\SOFTWARE\Wow6432Node\ImgBurn
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\IrfanView
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Lame For Audacity
HKLM\SOFTWARE\Wow6432Node\LibreOffice
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Mindscape
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\NexonEU
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OdinM
HKLM\SOFTWARE\Wow6432Node\Open Broadcaster Software
HKLM\SOFTWARE\Wow6432Node\OpenAL
HKLM\SOFTWARE\Wow6432Node\Origin
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\PDF Architect 2
HKLM\SOFTWARE\Wow6432Node\PDF Architect 3
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Redhook
HKLM\SOFTWARE\Wow6432Node\Riot Games
HKLM\SOFTWARE\Wow6432Node\ROCCAT
HKLM\SOFTWARE\Wow6432Node\Safer Networking Limited
HKLM\SOFTWARE\Wow6432Node\SpeedFan
HKLM\SOFTWARE\Wow6432Node\Stardock
HKLM\SOFTWARE\Wow6432Node\SyncDroid
HKLM\SOFTWARE\Wow6432Node\TeamSpeak 3 Client
HKLM\SOFTWARE\Wow6432Node\TeamViewer
HKLM\SOFTWARE\Wow6432Node\The Document Foundation
HKLM\SOFTWARE\Wow6432Node\ThinPrint
HKLM\SOFTWARE\Wow6432Node\Ubisoft
HKLM\SOFTWARE\Wow6432Node\US Army
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\VIA Technologies, Inc
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\VL800ISPUPG
HKLM\SOFTWARE\Wow6432Node\VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WBFS Manager 3.0
HKLM\SOFTWARE\Wow6432Node\Westwood
HKLM\SOFTWARE\Wow6432Node\WiseCleaner
HKLM\SOFTWARE\Wow6432Node\Wizards of the Coast
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\63C9B6845854B134 =>PUP.Optional.Heuristic
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\alexpage.de
HKCU\SOFTWARE\Alienware
HKCU\SOFTWARE\AMD Driver Downloader
HKCU\SOFTWARE\AMPLITUDE Studios
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\Arktos Entertainment Group
HKCU\SOFTWARE\BEID
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\Brother
HKCU\SOFTWARE\BugSplat
HKCU\SOFTWARE\Camel101
HKCU\SOFTWARE\Clubic
HKCU\SOFTWARE\Code Sector
HKCU\SOFTWARE\Colossal Order
HKCU\SOFTWARE\ComodoGroup
HKCU\SOFTWARE\Cryptic
HKCU\SOFTWARE\Daedalic Entertainment GmbH
HKCU\SOFTWARE\Defiant Development
HKCU\SOFTWARE\Digital Extremes
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DVD Decrypter
HKCU\SOFTWARE\EGOSOFT
HKCU\SOFTWARE\Eidos
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\EMU
HKCU\SOFTWARE\Epic Games
HKCU\SOFTWARE\eSupport.com =>PUP.Optional.eSupport
HKCU\SOFTWARE\FLEXnet
HKCU\SOFTWARE\FLT
HKCU\SOFTWARE\FreeReign
HKCU\SOFTWARE\Freeware
HKCU\SOFTWARE\Frontier Developments
HKCU\SOFTWARE\Full Control
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\Garmin
HKCU\SOFTWARE\Ghisler
HKCU\SOFTWARE\Gigabyte
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\GOG.com
HKCU\SOFTWARE\GPSBabel
HKCU\SOFTWARE\Haemimont Games
HKCU\SOFTWARE\HngSync
HKCU\SOFTWARE\ImgBurn
HKCU\SOFTWARE\Infernum
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\inXile
HKCU\SOFTWARE\JAM Software
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\Lubomir Dykast
HKCU\SOFTWARE\m4ng
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\mIRC
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Mumble
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nexon
HKCU\SOFTWARE\Nival Network
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\PDF Architect 3
HKCU\SOFTWARE\PDFCreator.net
HKCU\SOFTWARE\Petroglyph
HKCU\SOFTWARE\Phosphor
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\QuickPar
HKCU\SOFTWARE\Razer
HKCU\SOFTWARE\Realmforge Studios GmbH
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Red Hook Studios
HKCU\SOFTWARE\Safer Networking Limited
HKCU\SOFTWARE\SpeedFan
HKCU\SOFTWARE\Stardock
HKCU\SOFTWARE\SyncDroid
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\TecmoKoei
HKCU\SOFTWARE\Tindalos Interactive
HKCU\SOFTWARE\Tracker Software
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Ultracopier
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\US Army
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VirtualDub.org
HKCU\SOFTWARE\VMware, Inc.
HKCU\SOFTWARE\Vodafone
HKCU\SOFTWARE\Wastelands Interactive =>PUP.Optional.AdRoar
HKCU\SOFTWARE\Westwood
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wizards of the Coast
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\Wyrmbyte LLC
HKCU\SOFTWARE\xxxsys
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\Zero Sum Games
HKCU\SOFTWARE\Zuxxezz
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\ThinPrint
HKCU\SOFTWARE\AppDataLow\Software\Unity

---\\ Contenu des dossiers Programmes (276) - 15s
O43 - CFD: 25/10/2015 - [0] D -- C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 14/05/2015 - [] D -- C:\Program Files (x86)\AMD
O43 - CFD: 24/01/2016 - [] D -- C:\Program Files (x86)\Apple Software Update =>.Apple Inc.®
O43 - CFD: 09/07/2015 - [] D -- C:\Program Files (x86)\Belgium Identity Card
O43 - CFD: 24/01/2016 - [] D -- C:\Program Files (x86)\Bonjour =>.Apple Inc.®
O43 - CFD: 11/01/2014 - [] D -- C:\Program Files (x86)\Brother
O43 - CFD: 11/01/2014 - [] D -- C:\Program Files (x86)\Browny02
O43 - CFD: 11/01/2014 - [] D -- C:\Program Files (x86)\BrownyInd
O43 - CFD: 31/01/2016 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 03/07/2013 - [] D -- C:\Program Files (x86)\DisplayFusion =>.Binary Fortress Software Ltd.®
O43 - CFD: 28/05/2014 - [0] D -- C:\Program Files (x86)\Eagle Dynamics
O43 - CFD: 11/05/2015 - [] D -- C:\Program Files (x86)\eSupport.com =>PUP.Optional.eSupport
O43 - CFD: 24/02/2014 - [] D -- C:\Program Files (x86)\Garmin =>.Garmin International, Inc.®
O43 - CFD: 14/05/2015 - [] D -- C:\Program Files (x86)\GIGABYTE =>.Giga-Byte Technology®
O43 - CFD: 10/11/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.Realtek Semiconductor Corp®
O43 - CFD: 14/05/2015 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 18/01/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 24/01/2016 - [] D -- C:\Program Files (x86)\iTunes
O43 - CFD: 26/02/2014 - [] D -- C:\Program Files (x86)\LibreOffice 4
O43 - CFD: 11/02/2015 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 29/10/2015 - [] D -- C:\Program Files (x86)\Microsoft Chart Controls
O43 - CFD: 11/02/2015 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 04/11/2013 - [] D -- C:\Program Files (x86)\Microsoft XNA =>.Microsoft Corporation®
O43 - CFD: 11/02/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 09/07/2015 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 11/02/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 10/06/2015 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 18/03/2015 - [] D -- C:\Program Files (x86)\OBS
O43 - CFD: 16/03/2015 - [] D -- C:\Program Files (x86)\OpenAL =>.Creative Labs Inc®
O43 - CFD: 11/10/2015 - [] D -- C:\Program Files (x86)\Origin Games
O43 - CFD: 30/06/2013 - [] D -- C:\Program Files (x86)\Pando Networks
O43 - CFD: 23/10/2015 - [] D -- C:\Program Files (x86)\PDF Architect 3 =>.pdfforge GmbH®
O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 13/03/2014 - [] D -- C:\Program Files (x86)\ROCCAT
O43 - CFD: 06/12/2015 - [] D -- C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 04/06/2015 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 07/10/2013 - [] D -- C:\Program Files (x86)\TubeSaver-1 =>PUP.Optional.CrossRider
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 02/07/2014 - [] D -- C:\Program Files (x86)\VIA =>.VIA Technologies Inc.®
O43 - CFD: 31/01/2016 - [] D -- C:\Program Files (x86)\VMware
O43 - CFD: 11/10/2015 - [] D -- C:\Program Files (x86)\WestwoodOnline
O43 - CFD: 31/07/2009 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 30/06/2013 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 30/06/2013 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 31/07/2009 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 31/07/2009 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 31/07/2009 - [] D -- C:\Program Files (x86)\Windows Virtual PC
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 27/02/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 27/02/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Edition
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GPSBabel
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\m4ng_v5
O43 - CFD: 27/02/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 3
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\périphérique
O43 - CFD: 27/02/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 27/02/2016 - [] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Memory Optimizer
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\.mono
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Alienware
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Apple
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Battle.net
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Binary Fortress Software
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Blizzard Entertainment
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Brother
O43 - CFD: 30/06/2013 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\CheckPoint
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Comodo
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Comodo Downloader
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Electronic Arts
O43 - CFD: 30/06/2013 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Garmin
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Glyph
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Intel
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\LogMeIn
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Macrovision
O43 - CFD: 30/06/2013 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 27/02/2016 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft Games
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 30/06/2013 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Nexon
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\NexonEU
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Orbit
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Origin
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\PDF Architect 3
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\RELOADED
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Riot Games
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\ROCCAT
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\sangFroidData
O43 - CFD: 27/02/2016 - [] SD -- C:\ProgramData\Shared Space
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\SkidRow
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Stardock
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Steam
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Sun
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\TomTom
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\VMware
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\Vodafone
O43 - CFD: 27/02/2016 - [] D -- C:\ProgramData\WEBZEN
O43 - CFD: 27/02/2016 - [] HD -- C:\ProgramData\{9A88E103-A20A-4EA5-8636-C73B709A5BF8}
O43 - CFD: 24/01/2016 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 31/01/2016 - [] D -- C:\Program Files (x86)\Common Files\BattlEye
O43 - CFD: 24/02/2014 - [] D -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 11/10/2015 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 14/05/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 09/10/2014 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 09/07/2015 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 12/01/2014 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Games
O43 - CFD: 11/02/2015 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 18/01/2014 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 30/06/2013 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 31/01/2016 - [] D -- C:\Program Files (x86)\Common Files\ThinPrint
O43 - CFD: 31/01/2016 - [] D -- C:\Program Files (x86)\Common Files\VMware
O43 - CFD: 18/11/2013 - [] D -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\.mono
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\11bitstudios
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\3M
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Adobe
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Apple Computer
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Audacity
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Awesomium
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\BadFlyInteractive
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Battle.net
O43 - CFD: 27/02/2016 - [] RD -- C:\Users\Wild star\AppData\Roaming\Brother
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Colossal Order
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\CUDA
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\FastStone
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\FiraxisLive
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Frontier Developments
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Garmin
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Identities
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\ImgBurn
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\InstallShield
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Intel Corporation
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\JAM Software
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Kalypso Media
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\LibreOffice
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\LolClient
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\m4ng
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Macromedia
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Media Center Programs
O43 - CFD: 27/02/2016 - [] SD -- C:\Users\Wild star\AppData\Roaming\Microsoft
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\mIRC
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Mozilla
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Mumble
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Natural Selection 2
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\NVIDIA
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\OBS
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\PDF Architect 3
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\pdfforge
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\PeaZip
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Petroglyph
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Promotion Software GmbH
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Riot Games
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Rogue Legacy
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Samsung
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Shooter
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Steam
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\SyncDroid
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\TeamViewer
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\TeraCopy
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\The Creative Assembly
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\TheBannerSaga
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\TomTom
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Trine3
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Tropico 4
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\TrueCrypt
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Unity
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\uplay
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\vlc
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\VMware
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Vodafone
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\WinRAR
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Wise Care 365
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Wise Registry Cleaner
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\YCanPDF
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\ZHP
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\201280
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\28050
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Alienware
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Apple
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Apple Computer
O43 - CFD: 08/06/2014 - [0] SHD -- C:\Users\Wild star\AppData\Local\Application Data
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Avg
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\AvgSetupLog
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\BNSUpdater
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\CEF
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Colossal Order
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Daybreak Game Company
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\dxhr
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\EdgeOfReality
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\EMU
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\eSupport.com =>PUP.Optional.eSupport
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\FLT
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\fontconfig
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\GamersFirst
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\gegl-0.2
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Glyph
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\gtk-2.0
O43 - CFD: 08/06/2014 - [0] SHD -- C:\Users\Wild star\AppData\Local\Historique
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Macromedia
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Microsoft
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Microsoft Help
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Mozilla
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\MSfree Inc
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\My Games
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\NBGI
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\NVIDIA Corporation
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Programs
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\QQSM
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\QuickPar
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\QuickSFV
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Samsung
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\SCE
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\spacegame
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Steam
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\Temp
O43 - CFD: 08/06/2014 - [0] SHD -- C:\Users\Wild star\AppData\Local\Temporary Internet Files
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\UnrealEngine
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\VirtualStore
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Local\VMware
O43 - CFD: 27/02/2016 - [] RD -- C:\Users\Wild star\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 27/02/2016 - [] RD -- C:\Users\Wild star\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Edition
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\m4ng_v5
O43 - CFD: 27/02/2016 - [] RD -- C:\Users\Wild star\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\périphérique
O43 - CFD: 27/02/2016 - [] RD -- C:\Users\Wild star\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Wild star\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TNvflasher

---\\ ShellIconOverlayIdentifiers (SIOI) (7) - 0s


---\\ Enumération des clés StartupReg (5) - 1s
O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\[prog]\itunes\iTunesHelper.exe =>.Apple Inc.
O53 - SMSR:HKLM\...\startupreg\RtHDVCpl [Key] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor
O53 - SMSR:HKLM\...\startupreg\vmware-tray.exe [Key] . (...) -- G:\[Installé]\VM\vmware-tray.exe (.not file.)

---\\ Liste des pilotes du système (88) - 4s
O58 - SDL:2014/08/21 01:51:38 A . (.Advanced Card Systems Ltd. - ACR30 USB Smart Card Reader.) -- C:\Windows\System32\drivers\acr30up.sys [39168] =>.Advanced Card Systems Ltd.
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [106576] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [28752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2009/06/10 21:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 02:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2014/04/16 22:12:55 A . (.COMODO - COMODO Internet Security Eradication Driver.) -- C:\Windows\System32\drivers\cmderd.sys [23168] =>.Comodo Security Solutions, Inc.®
O58 - SDL:2014/04/16 22:12:55 A . (.COMODO - COMODO Internet Security Sandbox Driver.) -- C:\Windows\System32\drivers\cmdguard.sys [738472] =>.Comodo Security Solutions, Inc.®
O58 - SDL:2014/04/16 22:12:56 A . (.COMODO - COMODO Internet Security Helper Driver.) -- C:\Windows\System32\drivers\cmdhlp.sys [48360] =>.Comodo Security Solutions, Inc.®
O58 - SDL:2009/07/14 02:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2014/11/28 01:49:29 A . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [283064] =>.Disc Soft Ltd®
O58 - SDL:2009/07/14 02:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2009/06/10 21:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2015/11/06 11:57:44 A . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\drivers\hcmon.sys [57536] =>.VMware, Inc.®
O58 - SDL:2009/06/10 21:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2009/07/14 02:47:48 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [77888] =>.Microsoft Windows®
O58 - SDL:2014/08/04 08:49:06 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\Windows\System32\drivers\iaStorA.sys [670568] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2014/08/04 08:49:06 A . (.Intel Corporation - Intel(R) Rapid Storage Technology Filter dr.) -- C:\Windows\System32\drivers\iaStorF.sys [28008] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2009/07/14 02:48:04 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410688] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2014/04/16 22:12:56 A . (.COMODO - COMODO Internet Security Firewall Driver.) -- C:\Windows\System32\drivers\inspect.sys [105552] =>.Comodo Security Solutions, Inc.®
O58 - SDL:2009/08/13 19:10:42 A . (.JMicron Technology Corp. - JMicron JMB36X RAID Driver.) -- C:\Windows\System32\drivers\jraid.sys [112240] =>.JMicron Technology Corp.®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2015/10/03 06:06:17 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [11114616] =>.NVIDIA Corporation®
O58 - SDL:2009/09/15 12:59:30 A . (.NVIDIA Corp. - NVIDIA System Utility Driver.) -- C:\Windows\System32\drivers\nvoclk64.sys [42088] =>.NVIDIA Corporation®
O58 - SDL:2009/07/14 02:48:27 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [149056] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:45 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [167488] =>.Microsoft Windows®
O58 - SDL:2015/04/09 01:58:18 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\drivers\nvvad64v.sys [38032] =>.NVIDIA Corporation®
O58 - SDL:2009/07/14 02:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2009/03/01 22:05:32 A . (.Realtek Corporation - Realtek 8101E/8168/8169 NDIS 6.20 64-bit Dr.) -- C:\Windows\System32\drivers\Rt64win7.sys [187392] =>.Realtek Corporation
O58 - SDL:2015/05/15 17:23:06 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4464344] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/06/10 21:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 02:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2014/11/27 22:54:14 A . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\drivers\sptd.sys [386680] =>.Disc Soft Ltd®
O58 - SDL:2013/06/21 01:07:34 A . (.Google Inc - ADB Interface.) -- C:\Windows\System32\drivers\ssadadb.sys [38080] =>.Google Inc
O58 - SDL:2013/06/21 01:07:34 A . (.MCCI Corporation - SAMSUNG Android USB Composite Device Driver.) -- C:\Windows\System32\drivers\ssadbus.sys [169288] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:34 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ssadcm.sys [17224] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:34 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ssadcmnt.sys [17224] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:34 A . (.MCCI Corporation - SAMSUNG Android USB Modem Filter Driver.) -- C:\Windows\System32\drivers\ssadmdfl.sys [21320] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:34 A . (.MCCI Corporation - SAMSUNG Android USB Modem.) -- C:\Windows\System32\drivers\ssadmdm.sys [188232] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:34 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ssadwh.sys [17736] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:34 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ssadwhnt.sys [17736] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:50 A . (.MCCI Corporation - SAMSUNG USB Composite Device Driver.) -- C:\Windows\System32\drivers\sscdbus.sys [169288] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:50 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\sscdcm.sys [17224] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:50 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\sscdcmnt.sys [17224] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:50 A . (.MCCI Corporation - SAMSUNG Mobile Modem Filter Driver.) -- C:\Windows\System32\drivers\sscdmdfl.sys [21320] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:50 A . (.MCCI Corporation - SAMSUNG Mobile Modem WDM.) -- C:\Windows\System32\drivers\sscdmdm.sys [188232] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:50 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\sscdwh.sys [17736] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:50 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\sscdwhnt.sys [17736] =>.MCCI Corporation®
O58 - SDL:2013/06/21 01:07:52 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys [103448] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2013/06/21 01:07:52 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudmdm.sys [203672] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2013/06/21 01:07:52 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Mobile OBEX Device Driver (MSS.) -- C:\Windows\System32\drivers\ssudobex.sys [203672] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2009/07/14 02:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2013/06/30 22:52:06 A . (.TrueCrypt Foundation - TrueCrypt Driver.) -- C:\Windows\System32\drivers\truecrypt.sys [231376] =>.TrueCrypt Foundation®
O58 - SDL:2015/06/17 17:04:24 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl64.sys [54784] =>.Apple, Inc.
O58 - SDL:2011/02/25 18:29:00 A . (.VIA Technologies, Inc. - Framework Version of ViaHub3 Dynamic Bus En.) -- C:\Windows\System32\drivers\ViaHub3.sys [137728] =>.VIA Technologies, Inc.
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2011/02/16 13:29:46 A . (.VIA Labs, Inc. - VL810FILTER.sys.) -- C:\Windows\System32\drivers\vl810filter.sys [17008] =>.VIA Technologies Inc.®
O58 - SDL:2015/11/05 19:25:42 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\drivers\vmci.sys [90816] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\Windows\System32\drivers\vmnet.sys [27328] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\Windows\System32\drivers\vmnetadapter.sys [28864] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\Windows\System32\drivers\vmnetbridge.sys [48832] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:52:52 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\Windows\System32\drivers\vmnetuserif.sys [26816] =>.VMware, Inc.®
O58 - SDL:2015/11/25 18:10:28 A . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\System32\drivers\vmx86.sys [66752] =>.VMware, Inc.®
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
O58 - SDL:2015/11/05 19:25:42 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\drivers\vsock.sys [75512] =>.VMware, Inc.®
O58 - SDL:2013/01/18 02:11:54 A . (.VIA Technologies, Inc. - VIA BulkOnly & UAS driver.) -- C:\Windows\System32\drivers\vusbstor.sys [86064] =>.VIA Technologies Inc.®
O58 - SDL:2011/02/25 18:29:00 A . (.VIA Technologies, Inc. - WDF Driver for VIA eXtensible Host Controll.) -- C:\Windows\System32\drivers\xhcdrv.sys [195584] =>.VIA Technologies, Inc.

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (1) - 2s
O61 - LFC: 2016/02/26 23:41:56 A . (..) -- C:\Users\Wild star\AppData\Roaming\clownishness.dll [66048]

---\\ Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®

---\\ Menu de démarrage Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\[prog]\firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\[prog]\firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\[prog]\firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\[prog]\firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation

---\\ Recherche d'infection sur les navigateurs (1) - 3s
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/

---\\ Enumère les services démarrés par Svchost (33) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [776192] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [845824] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [676864] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [343552] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316416] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [706560] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2428952] =>.Microsoft Windows Component Publisher®
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [848384] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [369664] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [565760] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [104960] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1114624] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [208896] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536] =>.Microsoft Corporation

---\\ Liste des exceptions du parefeu Windows (2) - 2s
O87 - FAEL: "{E83D9AC0-9D41-4BB0-A779-A0B4AA52C299}" [In-None-P6-TRUE] .(...) -- C:\[jeux]\steam\SteamApps\common\Natural Selection 2\NS2.exe =>.Steam SteamApps Games
O87 - FAEL: "{80B7E2B2-D8E1-402A-9D8B-159067B74B0C}" [In-None-P17-TRUE] .(...) -- C:\[jeux]\steam\SteamApps\common\Natural Selection 2\NS2.exe =>.Steam SteamApps Games

---\\ Scan Additionnel (7) - 0s
HKCU\SOFTWARE\63C9B6845854B134 =>PUP.Optional.Heuristic
HKCU\SOFTWARE\eSupport.com =>PUP.Optional.eSupport
HKCU\SOFTWARE\Wastelands Interactive =>PUP.Optional.AdRoar
C:\Program Files (x86)\eSupport.com =>PUP.Optional.eSupport
C:\Program Files (x86)\TubeSaver-1 =>PUP.Optional.CrossRider
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\Users\Wild star\AppData\Local\eSupport.com =>PUP.Optional.eSupport

---\\ Récapitulatif des éléments trouvés sur votre station (5) - 0s
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Heuristic
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.eSupport
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.AdRoar
http://www.nicolascoolman.fr/?p=180 =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/?p=1804 =>HackTool.AutoKMS

~ End of the scan, 37506 items in 00h01mn46s (1082)(0)

Publicité


Signaler le contenu de ce document

Publicité