Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2016.11.7.211 Par Nicolas Coolman (2016/11/07)
~ Démarré par Mathys (Administrator) (2016/11/08 21:34:02)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Mathys\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Mathys\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601) =>.Microsoft Corporation
---\\ Navigateurs Internet (2) - 0s
~ MFIE: Mozilla Firefox 49.0.2 (x86 fr)
~ MSIE: Internet Explorer v11.0.9600.18499
---\\ Informations sur les produits Windows (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection (1) - 1s
Avira Antivirus v15.0.23.58 => Software.Protection
---\\ Informations sur le système (6) - 0s
~ Operating System: AMD64 Family 21 Model 2 Stepping 0, AuthenticAMD
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8369.72 MB (66% free)
System Restore: Activé (Enable)
System drive C: has 423 GB () free of 476 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: MATHYS-PC
~ User Name: Mathys
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 423 GB free of 476 GB (System)
---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (25) - 1s
[MD5.AC4C51EB24AA95B77F705AB159189E24] - 21/11/2010 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2872320] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.364FD85609BED4649544DE7D3978908D] - 30/09/2016 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2920960] =>.Microsoft Corporation
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 17/07/2014 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [455168] =>.Microsoft Corporation
[MD5.067FA52BFB59A56110A12312EF9AF243] - 21/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation
[MD5.492D07D79E7024CA310867B526D9636D] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - 12/04/2011 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.9A4A1EEE802BF2F878EE8EAB407B21B7] - 13/10/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497664] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.9B38580063D281A99E68EF5813022A5F] - 08/09/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [106496] =>.Microsoft Corporation
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.FCA01B0C70DAE9BE557577E719469D17] - 12/09/2016 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159744] =>.Microsoft Corporation
[MD5.E47D571FEC2C76E867935109AB2A770C] - 11/05/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [262144] =>.Microsoft Corporation
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - 12/04/2013 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1656680] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.AA77EB517D2F07A947294F260E3ACA83] - 13/10/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [118272] =>.Microsoft Corporation
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 21/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (14) - 2s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner WFP Service.) - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\Antivirus\sched.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\Antivirus\avguard.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - AntiVir WebGuard WFP Service.) - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira Service Host.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Service Google Update (gupdate) (gupdate) . (...) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.)
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) . (...) - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (.not file.)
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 355.6.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
O23 - Service: Origin Web Helper Service (Origin Web Helper Service) . (...) - C:\Program Files (x86)\Origin\OriginWebHelperService.exe (.not file.)
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation®
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (16) - 18s
SR - Auto [16/09/2016] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Auto [17/10/2016] [ 1089088] Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [17/10/2016] [ 475232] Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\sched.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [17/10/2016] [ 475232] Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\avguard.exe =>.Avira Operations GmbH & Co. KG®
SS - Auto [17/10/2016] [ 1488240] Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe =>.Avira Operations GmbH & Co. KG®
SS - Demand [06/04/2010] [ 31272] AppleChargerSrv (AppleChargerSrv) . (.Auteurs.) - C:\Windows\System32\AppleChargerSrv.exe
SR - Auto [25/10/2016] [ 337664] Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe =>.Avira Operations GmbH & Co. KG®
SS - Demand [13/10/2016] [ 329480] McAfee Security Scan Component Host Service (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.11.427\McCHSvc.exe =>.McAfee, Inc.®
SS - Demand [19/10/2016] [ 172488] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [12/10/2015] [ 1873696] NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation®
SR - Auto [12/10/2015] [ 5568288] NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe =>.NVIDIA Corporation®
SR - Auto [07/08/2015] [ 937592] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
SS - Auto [20/09/2016] [ 324224] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SS - Demand [23/07/2016] [ 837312] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe =>.Valve®
SR - Auto [07/08/2015] [ 410744] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation®
---\\ Tâches planifiées en automatique (35) - 6s
[MD5.00000000000000000000000000000000] [APT] [Adobe Acrobat Update Task] (...) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [Final Media Player Update Checker] (...) -- C:\Program Files (x86)\FinalMediaPlayer\FMPCheckForUpdates.exe (.not file.) [0] (.Activate.) =>Adware.InstallCore
[MD5.00000000000000000000000000000000] [APT] [gameo_update] (...) -- C:\Users\Mathys\AppData\Roaming\Gameo\gameo.exe (.not file.) [0] (.Activate.) =>.Superfluous.IronSourceLtd
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineCore] (...) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [Palikan fili] (...) -- C:\ProgramData\{FAA61265-AA24-C3E3-1BA2-B361CB2060EF}\2.0.1.9\lafe.txt 433a2f50726f6772616d446174612f7b46414136313236352d414132342d433345332d314241322d4233363143423230363045467d2f322e302e312e392f66696c692e646c6c 687474703a2f2f73616f2e (.not file.) [0] (.Activate.) =>PUP.Optional.GoPalikan
[MD5.00000000000000000000000000000000] [APT] [{031D0F38-142B-46F1-ABD4-4F4B0C550ACA}] (...) -- C:\Program Files (x86)\THQ\Titan Quest\Titan Quest.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{231399CE-BF4A-4752-AAB1-57654270A9EA}] (...) -- C:\Program Files (x86)\THQ\Titan Quest\Titan Quest.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{4FEAD4FE-2DDD-4CDE-B643-889B64A308E5}] (...) -- C:\Program Files (x86)\THQ\Titan Quest\Titan Quest.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{5E0F06EB-6609-4AFF-9E8C-51E6E08FFD16}] (...) -- C:\Program Files (x86)\THQ\Titan Quest\Titan Quest.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{62D27392-8F38-4795-9BAB-56C5EDECDCB4}] (...) -- C:\Program Files (x86)\THQ\Titan Quest\Titan Quest.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{8814978F-BDED-4C62-B902-2678EB453F97}] (...) -- C:\Users\Mathys\Downloads\druglord2.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{8D261888-52F5-4584-BEBB-244318E51609}] (...) -- C:\Program Files (x86)\THQ\Titan Quest\Titan Quest.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{AD72A3BD-3200-4A79-BB15-E647FE5E4C60}] (...) -- D:\setup.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{EE437181-263B-4B6F-95B8-7A641865BB3B}] (...) -- C:\Users\Mathys\Desktop\Black and White 2\Black And White 2\setup.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{F83AEA23-7C92-4C8E-A539-2C9E76F8AA36}] (...) -- C:\Users\Mathys\Desktop\Guild 2\Guild 2.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
O39 - APT: Final Media Player Update Checker - (...) -- C:\Windows\Tasks\Final Media Player Update Checker.job [412] (.Orphan.) =>Adware.InstallCore
O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Adobe Acrobat Update Task - (...) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [4476] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Final Media Player Update Checker - (...) -- C:\Windows\System32\Tasks\Final Media Player Update Checker [3110] (.Orphan.) =>Adware.InstallCore
O39 - APT: gameo_update - (...) -- C:\Windows\System32\Tasks\gameo_update [3744] (.Orphan.) =>.Superfluous.IronSourceLtd
O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3814] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4066] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Palikan fili - (...) -- C:\Windows\System32\Tasks\Palikan fili [4158] (.Orphan.) =>PUP.Optional.GoPalikan
O39 - APT: {031D0F38-142B-46F1-ABD4-4F4B0C550ACA} - (...) -- C:\Windows\System32\Tasks\{031D0F38-142B-46F1-ABD4-4F4B0C550ACA} [2978] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {231399CE-BF4A-4752-AAB1-57654270A9EA} - (...) -- C:\Windows\System32\Tasks\{231399CE-BF4A-4752-AAB1-57654270A9EA} [2978] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {4FEAD4FE-2DDD-4CDE-B643-889B64A308E5} - (...) -- C:\Windows\System32\Tasks\{4FEAD4FE-2DDD-4CDE-B643-889B64A308E5} [2978] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {5E0F06EB-6609-4AFF-9E8C-51E6E08FFD16} - (...) -- C:\Windows\System32\Tasks\{5E0F06EB-6609-4AFF-9E8C-51E6E08FFD16} [2978] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {62D27392-8F38-4795-9BAB-56C5EDECDCB4} - (...) -- C:\Windows\System32\Tasks\{62D27392-8F38-4795-9BAB-56C5EDECDCB4} [2978] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {8814978F-BDED-4C62-B902-2678EB453F97} - (...) -- C:\Windows\System32\Tasks\{8814978F-BDED-4C62-B902-2678EB453F97} [3134] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {8D261888-52F5-4584-BEBB-244318E51609} - (...) -- C:\Windows\System32\Tasks\{8D261888-52F5-4584-BEBB-244318E51609} [2978] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {AD72A3BD-3200-4A79-BB15-E647FE5E4C60} - (...) -- C:\Windows\System32\Tasks\{AD72A3BD-3200-4A79-BB15-E647FE5E4C60} [3036] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {EE437181-263B-4B6F-95B8-7A641865BB3B} - (...) -- C:\Windows\System32\Tasks\{EE437181-263B-4B6F-95B8-7A641865BB3B} [3270] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {F83AEA23-7C92-4C8E-A539-2C9E76F8AA36} - (...) -- C:\Windows\System32\Tasks\{F83AEA23-7C92-4C8E-A539-2C9E76F8AA36} [3162] (.Orphan.) =>.Superfluous.Orphan
---\\ Processus lancés (24) - 2s
[MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 355.6.) -- C:\Windows\system32\nvvsvc.exe [0] [PID.776] =>.NVIDIA Corporation
[MD5.F6D78F5436918952F1CB24BC48DB5B72] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [410744] [PID.800] =>.NVIDIA Corporation®
[MD5.FE817303FA4308B6149D2FC1D07D0DF2] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\Antivirus\sched.exe [475232] [PID.1304] =>.Avira Operations GmbH & Co. KG®
[MD5.A8561EC42C87EFDB8323EC14B1003494] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1251120] [PID.1392] =>.NVIDIA Corporation®
[MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 355.6.) -- C:\Windows\system32\nvvsvc.exe [0] [PID.1400] =>.NVIDIA Corporation
[MD5.DC00FD73505DAEDD99CAF4533B0C05BD] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1692] =>.Adobe Systems, Incorporated®
[MD5.FE817303FA4308B6149D2FC1D07D0DF2] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\Antivirus\avguard.exe [475232] [PID.1820] =>.Avira Operations GmbH & Co. KG®
[MD5.C2909BD26906E1D05D77B1D48B48E94A] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696] [PID.1880] =>.NVIDIA Corporation®
[MD5.5A773713C332F8760ABB915C24675E8F] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288] [PID.1940] =>.NVIDIA Corporation®
[MD5.24477237F3E401D81BBAE6698BB54354] - (.Avira Operations GmbH & Co. KG - Avira Service Host.) -- C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [337664] [PID.1088] =>.Avira Operations GmbH & Co. KG®
[MD5.CECA0AA7F7B97C567BC30416C05BB3DF] - (.NVIDIA Corporation - NVIDIA Network Stream Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [7576352] [PID.1872] =>.NVIDIA Corporation®
[MD5.7F81DAF1381249550A07A345142FD180] - (.Avira Operations GmbH & Co. KG - AntiVir shadow copy service.) -- C:\Program Files (x86)\Avira\Antivirus\avshadow.exe [1044328] [PID.2332] =>.Avira Operations GmbH & Co. KG®
[MD5.561134B2FC9A348FFF9AE7B699AE28D9] - (.NVIDIA Corporation - NVIDIA Streamer User Agent.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe [22047008] [PID.1548] =>.NVIDIA Corporation®
[MD5.9F0A52EA901055BA88E1F11C454666AA] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7632088] [PID.2888] =>.Realtek Semiconductor Corp®
[MD5.968EDA6EA6E00DFAE78586BFA6322B74] - (.VIA Technologies, Inc. - usbmonitor.) -- C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe [331776] [PID.1892] =>.VIA Technologies, Inc.
[MD5.6BE70A935DFD72F47C29757305B50B1E] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520] [PID.4052] =>.NVIDIA Corporation®
[MD5.9D4B35F85DB86DD1AE8D916D0AF97643] - (.noname - .) -- C:\Users\Mathys\AppData\Roaming\BrowserMe\GoogleUpdate.exe [40074752] [PID.2912]
[MD5.26BFD912A0D906D1195A009F98A23965] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [27017856] [PID.3716] =>.Skype Software Sarl®
[MD5.A749ADFC9B74AC9BA906D292625AE4A5] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe [407816] [PID.644] =>.McAfee, Inc.®
[MD5.D713106D059C67888CD5F5A862059D7B] - (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [916072] [PID.540] =>.Avira Operations GmbH & Co. KG®
[MD5.9D7C18B552743F179F8DB6DAFF4B3BAE] - (.Avira Operations GmbH & Co. KG - Avira.) -- C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [157968] [PID.1992] =>.Avira Operations GmbH & Co. KG®
[MD5.0EE5D949361FF92A318ED5267F6BE4A8] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2447992] [PID.3116] =>.NVIDIA Corporation®
[MD5.BD30EA1B259469D88BD20D141104F951] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [509384] [PID.2920] =>.Mozilla Corporation®
[MD5.3E12E772E33425D67EE31CD8FC67D270] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Mathys\Downloads\ZHPDiag3.exe [2439168] [PID.3480] =>.Nicolas Coolman
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (7) - 1s
P2 - EXT FILE: (.__MSG_extName__ - __MSG_extDescription__.) -- C:\Users\Mathys\AppData\Roaming\Mozilla\Firefox\Profiles\sQnf0T0p.default\extensions\abs@avira.com.xpi
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=11.101.2] - (.Oracle Corp..) -- C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll =>.Oracle Corp.
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=11.101.2] - (.Oracle Corp..) -- C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll =>.Oracle Corp.
P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll =>.NVIDIA Corporation
P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll =>.NVIDIA Corporation
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll =>.Google Inc.
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll =>.Google Inc.
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.avira.net/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.avira.net/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://search.avira.net/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.avira.net/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.avira.net/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://search.avira.net/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
---\\ Internet Explorer,Proxy Management (5) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\System32\Userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object de navigateur (BHO) (2) - 0s
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (...) -- C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll (.not file.)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (...) -- C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll (.not file.)
---\\ Applications lancées au démarrage du système (14) - 0s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [VIAxHCUtl] C:\Program Files\VIA XHCI UASP Utility\usb3Monitor (.not file.)
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe =>.NVIDIA Corporation®
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_91F2977A9CEAA69207B1DC95C99DC01E] C:\Users\Mathys\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [Avira SystrayStartTrigger] . (.Avira Operations GmbH & Co. KG - Avira Connect.) -- C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe =>.Avira Operations GmbH & Co. KG®
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\Antivirus\avgnt.exe =>.Avira Operations GmbH & Co. KG®
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1730092039-3470472078-2992981302-1000\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - HKUS\S-1-5-21-1730092039-3470472078-2992981302-1000\..\Run: [GoogleChromeAutoLaunch_91F2977A9CEAA69207B1DC95C99DC01E] C:\Users\Mathys\AppData\Local\Chromium\Application\chrome.exe (.not file.)
---\\ Raccourcis Global Startup (43) - 2s
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Mathys\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\sendTo [Administrateur]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Desktop [Mathys]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Mathys\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\sendTo [Mathys]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\TaskBar [Mathys]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee.) C:\Program Files\McAfee Security Scan\3.11.427\McUICnt.exe SecurityScanner.dll =>.McAfee, Inc.®
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{FC965A47-4839-40CA-B618-18F486F042C6}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper.) C:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - GS\Startup [Public]: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee Security Scanner Scheduler.) C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe =>.McAfee, Inc.®
O4 - GS\Startup [Public]: TP-LINK Wireless Configuration Utility.lnk . (...) C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe -nogui
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\system32\rundll32.exe %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (...) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\ProgramsCommon [Public]: HowToRemove.html.lnk . (...) C:\Users\Mathys\AppData\Local\{4F187944-6BB0-15FC-0628-30142240CC8C}\HowToRemove.html
O4 - GS\ProgramsCommon [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) C:\Program Files (x86)\Windows Sidebar\sidebar.exe /showgadgets =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) C:\Windows\system32\WindowsAnytimeUpgradeUI.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\DVD Maker\DVDMaker.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{4C244E09-DF74-4890-91D3-8097FA2125E7}: DhcpNameServer = 192.168.0.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{4D03B425-3E0B-4FBD-9EB4-0F0F4EC3A5BA}: DhcpNameServer = 192.168.0.254 =>.Local IP Adress
---\\ Protocole additionnel (20) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
---\\ Logiciels installés (43) - 13s
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824202044} =>.Adobe Systems Incorporated
O42 - Logiciel: Avira Antivirus v15.0.23.58 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- Avira Antivirus =>.Avira Operations GmbH & Co. KG®
O42 - Logiciel: Avira Connect v1.2.74.26159 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {3824D6F4-FE5B-4E85-A3AD-655D2C531E80} =>.Avira Operations GmbH & Co. KG
O42 - Logiciel: Avira Connect v1.2.74.26159 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {772ed258-65d1-4d57-ac70-7087049d1576} =>.Avira Operations GmbH & Co. KG®
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: Cook, Serve, Delicious! - (.Vertigo Gaming Inc..) [HKLM][64Bits] -- Steam App 247020 =>.Valve®
O42 - Logiciel: Dual-Core Optimizer - (.AMD.) [HKLM][64Bits] -- {9FD6F1A8-5550-46AF-8509-271DF0E768B5} =>.AMD
O42 - Logiciel: Epic Games Launcher Prerequisites (x64) - (.Epic Games, Inc..) [HKLM][64Bits] -- {66C5838F-B854-4A55-89E6-A6138747A4DF} =>.Epic Games, Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Hearthstone - (.Blizzard Entertainment.) [HKLM][64Bits] -- Hearthstone =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: Launcher Prerequisites (x64) - (.Epic Games, Inc..) [HKLM][64Bits] -- {c6c5a357-c7ca-4a5f-9789-3bb1af579253} =>.Epic Games Inc.®
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan =>.McAfee, Inc.®
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9} =>.Microsoft Corporation
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 Refresh - (.Microsoft Corporation.) [HKLM][64Bits] -- {D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F} =>.Microsoft Corporation
O42 - Logiciel: Mises à jour NVIDIA 2.5.15.54 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update =>.NVIDIA Corporation
O42 - Logiciel: Mozilla Firefox 49.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 49.0.2 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Network Service - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote 3D Vision 355.60 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.34.3 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 352.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote graphique 355.60 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Update Core - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Virtual Audio 1.2.31 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver =>.NVIDIA Corporation
O42 - Logiciel: ON_OFF Charge 2 B13.1028.1 - (.GIGABYTE.) [HKLM][64Bits] -- {6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A} =>.Gigabyte
O42 - Logiciel: Paladins - (.Hi-Rez Studios.) [HKLM][64Bits] -- Steam App 444090 =>.Valve®
O42 - Logiciel: Panneau de configuration NVIDIA 355.60 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation
O42 - Logiciel: Platform - (.VIA Technologies, Inc..) [HKLM][64Bits] -- {20D4A895-748C-4D88-871C-FDB1695B0169} =>.VIA Technologies, Inc.
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.
O42 - Logiciel: SHIELD Streaming - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv =>.NVIDIA Corporation
O42 - Logiciel: SHIELD Wireless Controller Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController =>.NVIDIA Corporation
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B} =>.Microsoft Corporation
O42 - Logiciel: Skype™ 7.29 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A.
O42 - Logiciel: SMITE - (.Hi-Rez Studios.) [HKLM][64Bits] -- Steam App 386360 =>.Valve®
O42 - Logiciel: StarCraft II - (.Blizzard Entertainment.) [HKLM][64Bits] -- StarCraft II =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam =>.Valve®
O42 - Logiciel: TP-LINK TL-WN851ND Driver - (.TP-LINK.) [HKLM][64Bits] -- {4BAE4C76-44C3-418F-B715-6BBF5A65323E} =>.TP-LINK
O42 - Logiciel: TP-LINK Wireless Configuration Utility - (.TP-LINK.) [HKLM][64Bits] -- {319D91C6-3D44-436C-9F79-36C0D22372DC} =>.TP-LINK
O42 - Logiciel: VIA Gestionnaire de périphériques de plate-forme - (.VIA Technologies, Inc..) [HKLM][64Bits] -- InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169} =>.VIA Technologies, Inc.
O42 - Logiciel: World of Warcraft - (.Blizzard Entertainment.) [HKLM][64Bits] -- World of Warcraft =>.Blizzard Entertainment, Inc.®
---\\ HKCU & HKLM Software Keys (156) - 13s
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\AMD =>.AMD
HKLM\SOFTWARE\Wow6432Node\Avira =>.Avira
HKLM\SOFTWARE\Wow6432Node\bethesda softworks =>.Bethesda Softworks
HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment =>.Blizzard Entertainment
HKLM\SOFTWARE\Wow6432Node\capcom =>.CAPCOM
HKLM\SOFTWARE\Wow6432Node\DownloadCenter
HKLM\SOFTWARE\Wow6432Node\EA Games =>.EA Games
HKLM\SOFTWARE\Wow6432Node\EasyAntiCheat
HKLM\SOFTWARE\Wow6432Node\Electronic Arts =>.Electronic Arts
HKLM\SOFTWARE\Wow6432Node\Gameforge =>.Gameforge
HKLM\SOFTWARE\Wow6432Node\Gameforge4d
HKLM\SOFTWARE\Wow6432Node\Gigabyte =>.Gigabyte
HKLM\SOFTWARE\Wow6432Node\GOG.com =>.GOG.com
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\Hi-Rez Studios =>.Hi-Rez Studios
HKLM\SOFTWARE\Wow6432Node\HiRez Studios =>.Hirez Studios
HKLM\SOFTWARE\Wow6432Node\IM Providers =>.IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\lameme
HKLM\SOFTWARE\Wow6432Node\LucasArts =>.LucasArts
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\McAfee.com =>.McAfee.com
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
HKLM\SOFTWARE\Wow6432Node\Metin2_FR
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Mr DJ
HKLM\SOFTWARE\Wow6432Node\Nobilis =>.Nobilis
HKLM\SOFTWARE\Wow6432Node\Nostale_FR
HKLM\SOFTWARE\Wow6432Node\NSIS.Library.RegTool.v3
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation =>.NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software =>.Opera Software
HKLM\SOFTWARE\Wow6432Node\Origin
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\PopCap
HKLM\SOFTWARE\Wow6432Node\qBittorrent
HKLM\SOFTWARE\Wow6432Node\qshs
HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\rebellion =>.Rebellion
HKLM\SOFTWARE\Wow6432Node\Runes of Magic
HKLM\SOFTWARE\Wow6432Node\Skype =>.Skype
HKLM\SOFTWARE\Wow6432Node\techland =>.Techland
HKLM\SOFTWARE\Wow6432Node\ThinPrint =>.ThinPrint
HKLM\SOFTWARE\Wow6432Node\THQ =>.THQ
HKLM\SOFTWARE\Wow6432Node\TP-LINK =>.TP-LINK
HKLM\SOFTWARE\Wow6432Node\Valve =>.Valve
HKLM\SOFTWARE\Wow6432Node\VIA Technologies, Inc =>.VIA Technologies, Inc
HKLM\SOFTWARE\Wow6432Node\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\WBGames
HKLM\SOFTWARE\Wow6432Node\WinRAR =>.WinRAR
HKLM\SOFTWARE\Wow6432Node\X-AVCSD
HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo!
HKLM\SOFTWARE\Wow6432Node\Zemi Interactive =>.Zemi Interactive
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\3909 LLC =>.3909 LLC
HKCU\SOFTWARE\5tudio
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\82 Apps
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Adworks
HKCU\SOFTWARE\Andy
HKCU\SOFTWARE\Ankama =>.Ankama
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Avira =>.Avira
HKCU\SOFTWARE\BGames
HKCU\SOFTWARE\Bitberry =>.Superfluous.Bitberry
HKCU\SOFTWARE\Bitberry Software =>.Superfluous.Bitberry
HKCU\SOFTWARE\BlackLight Interactive
HKCU\SOFTWARE\Blizzard Entertainment =>.Blizzard Entertainment
HKCU\SOFTWARE\Boneloaf
HKCU\SOFTWARE\Bossa Studios =>.Bossa Studios
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Deep Silver =>.Deep Silver
HKCU\SOFTWARE\DefaultCompany
HKCU\SOFTWARE\Digital Extremes =>.Digital Extremes
HKCU\SOFTWARE\DownloadCenter
HKCU\SOFTWARE\Drug Lord 2
HKCU\SOFTWARE\EA Games =>.EA Games
HKCU\SOFTWARE\Electronic Arts =>.Electronic Arts
HKCU\SOFTWARE\Emulators
HKCU\SOFTWARE\Enterbrain =>.Enterbrain
HKCU\SOFTWARE\Epic Games =>.Epic Games
HKCU\SOFTWARE\epsxe
HKCU\SOFTWARE\Facepunch Studios LTD
HKCU\SOFTWARE\Firaxis
HKCU\SOFTWARE\Game Maker
HKCU\SOFTWARE\Gameforge4d
HKCU\SOFTWARE\GameMakerPlayer
HKCU\SOFTWARE\Gameo =>.Superfluous.IronSourceLtd
HKCU\SOFTWARE\GaudinoGames
HKCU\SOFTWARE\Genymobile =>.Genymobile
HKCU\SOFTWARE\Gigabyte =>.Gigabyte
HKCU\SOFTWARE\GMStudio
HKCU\SOFTWARE\GOG.com =>.GOG.com
HKCU\SOFTWARE\GoldenGate
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\go_palikan =>PUP.Optional.GoPalikan
HKCU\SOFTWARE\ICSW1.14 =>Adware.InstallCore
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\Kyle Seeley
HKCU\SOFTWARE\L2j Community Network
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Logitech =>.Logitech
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\malavida
HKCU\SOFTWARE\MountAndBladeWarbandKeys
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\Norton =>.Norton
HKCU\SOFTWARE\NVIDIA Corporation =>.NVIDIA Corporation
HKCU\SOFTWARE\Opera Software =>.Opera Software
HKCU\SOFTWARE\PCSX2
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\qshs
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Razer =>.Razer
HKCU\SOFTWARE\Realtek =>.Realtek
HKCU\SOFTWARE\Red Hook Studios =>.Red Hook Studios
HKCU\SOFTWARE\Robot Gentleman Studios
HKCU\SOFTWARE\Rockstar Games =>.Rockstar Games
HKCU\SOFTWARE\SecuROM
HKCU\SOFTWARE\Signal Studios & DigitalDNA Games
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\Smartly Dressed Games
HKCU\SOFTWARE\Spiderling Games
HKCU\SOFTWARE\TheMenWhoWearManyHats
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\TTindie
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKCU\SOFTWARE\Volition =>.Volition
HKCU\SOFTWARE\wbgames
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Winterlake Productions
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\yahooprovidedsearch =>PUP.Optional.Dealply
HKCU\SOFTWARE\YandereDev
HKCU\SOFTWARE\Yanderu Software
HKCU\SOFTWARE\Zanzlanz
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\ZeroFolio
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft =>.JavaSoft
---\\ Contenu des dossiers Programmes (127) - 14s
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\DVD Maker =>.Aone Software
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation®
O43 - CFD: 07/11/2016 - [] D -- C:\Program Files\McAfee Security Scan =>.McAfee, Inc.®
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 25/08/2015 - [] D -- C:\Program Files\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\VIA XHCI UASP Utility =>.VIA®
O43 - CFD: 27/08/2015 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 12/05/2016 - [] D -- C:\Program Files\Windows Journal =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 06/11/2016 - [] D -- C:\Program Files (x86)\Avira =>.Avira Operations GmbH & Co. KG®
O43 - CFD: 06/11/2016 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 06/11/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 06/11/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 06/11/2016 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 08/11/2016 - [] D -- C:\Program Files (x86)\Steam =>.Valve®
O43 - CFD: 27/08/2015 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\WinRAR =>.WinRAR
O43 - CFD: 25/08/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 27/10/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 06/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LucasArts =>.LucasArts
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 24/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
O43 - CFD: 27/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager =>.Winstep Software Technologies
O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nobilis =>.Nobilis
O43 - CFD: 10/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nostale(FR)
O43 - CFD: 08/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation =>.NVIDIA Corporation
O43 - CFD: 29/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin =>.Electronic Arts, Inc.
O43 - CFD: 21/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games =>.PopCap Games
O43 - CFD: 22/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RomStation =>.RomStation
O43 - CFD: 06/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype =>.Skype
O43 - CFD: 20/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
O43 - CFD: 24/10/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 25/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam =>.SteamApps
O43 - CFD: 12/04/2011 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC =>.Wacom Technology
O43 - CFD: 25/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK =>.TP-LINK
O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Valve =>.Valve
O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 13/05/2016 - [] D -- C:\ProgramData\.mono
O43 - CFD: 17/12/2015 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 18/09/2016 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 06/11/2016 - [] D -- C:\ProgramData\Avira =>.Avira Software
O43 - CFD: 18/02/2016 - [] D -- C:\ProgramData\Battle.net =>.Battle.net
O43 - CFD: 18/06/2016 - [] D -- C:\ProgramData\Blizzard Entertainment =>.Blizzard Entertainment
O43 - CFD: 25/08/2015 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 05/03/2016 - [] D -- C:\ProgramData\Electronic Arts =>.Electronic Arts
O43 - CFD: 22/09/2016 - [] D -- C:\ProgramData\Epic =>.Epic
O43 - CFD: 25/08/2015 - [0] SHD -- C:\ProgramData\Favoris =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation
O43 - CFD: 22/09/2016 - [] D -- C:\ProgramData\Hi-Rez Studios =>.Hi-Rez Studios
O43 - CFD: 16/12/2015 - [] D -- C:\ProgramData\Hunter
O43 - CFD: 05/09/2015 - [] D -- C:\ProgramData\LogMeIn =>.LogMeIn
O43 - CFD: 13/09/2015 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 13/09/2015 - [] D -- C:\ProgramData\McAfee Security Scan =>.McAfee
O43 - CFD: 25/08/2015 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation
O43 - CFD: 28/10/2016 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft
O43 - CFD: 25/08/2015 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation
O43 - CFD: 14/09/2016 - [] D -- C:\ProgramData\Nexon =>.Nexon
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Norton =>.Norton
O43 - CFD: 02/11/2015 - [] D -- C:\ProgramData\NortonInstaller =>.Symantec
O43 - CFD: 08/11/2016 - [] D -- C:\ProgramData\NVIDIA =>.NVIDIA Corporation
O43 - CFD: 08/09/2016 - [] D -- C:\ProgramData\NVIDIA Corporation =>.NVIDIA Corporation
O43 - CFD: 27/08/2016 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 28/10/2016 - [] D -- C:\ProgramData\Origin =>.Electronic Arts, Inc.
O43 - CFD: 06/11/2016 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 21/12/2015 - [] D -- C:\ProgramData\PopCap Games =>.PopCap Games
O43 - CFD: 20/07/2016 - [] D -- C:\ProgramData\Riot Games =>.Riot Games
O43 - CFD: 06/11/2016 - [] D -- C:\ProgramData\Skype =>.Skype
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 25/08/2015 - [] D -- C:\ProgramData\TP-LINK =>.TP-LINK
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 06/11/2016 - [] D -- C:\Program Files (x86)\Common Files\Skype =>.Skype
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 06/11/2016 - [] D -- C:\Program Files (x86)\Common Files\Steam =>.SteamApps
O43 - CFD: 27/08/2015 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\43d8
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\Avira =>.Avira Software
O43 - CFD: 08/11/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\BrowserMe =>Ransomware.BrowserMe
O43 - CFD: 06/11/2016 - [] SD -- C:\Users\Mathys\AppData\Roaming\Microsoft =>.Microsoft
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\qBittorrent =>.Christophe Dumez
O43 - CFD: 08/11/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\Skype =>.Skype
O43 - CFD: 08/11/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Local\a7cd
O43 - CFD: 07/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\Adworks
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\CEF =>.CEF
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Local\MEGAsync =>.MegaSystems
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Local\NVIDIA =>.NVIDIA Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Local\qBittorrent =>.Christophe Dumez
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\Steam =>.SteamApps
O43 - CFD: 06/11/2016 - [] HD -- C:\Users\Mathys\AppData\Local\SysHashTable
O43 - CFD: 08/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [0] D -- C:\Users\Mathys\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 08/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\YfPack
O43 - CFD: 22/07/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 20/07/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\YSearchUtil =>.Yahoo! inc.
O43 - CFD: 06/11/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Avira =>.Avira Software
O43 - CFD: 06/11/2016 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft
O43 - CFD: 06/10/2016 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\VMware =>.VMware
---\\ ShellIconOverlayIdentifiers (SIOI) (5) - 0s
O106 - SIOI: ###MegaShellExtPending [###MegaShellExtPending] - {056D528D-CE28-4194-9BA3-BA2E9197FF8C}. (...) -- C:\Users\Mathys\AppData\Local\MEGAsync\ShellExtX32.dll
O106 - SIOI: ###MegaShellExtSynced [###MegaShellExtSynced] - {05B38830-F4E9-4329-978B-1DD28605D202}. (...) -- C:\Users\Mathys\AppData\Local\MEGAsync\ShellExtX32.dll
O106 - SIOI: ###MegaShellExtSyncing [###MegaShellExtSyncing] - {0596C850-7BDD-4C9D-AFDF-873BE6890637}. (...) -- C:\Users\Mathys\AppData\Local\MEGAsync\ShellExtX32.dll
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ Liste des pilotes du système (62) - 25s
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2010/11/21 04:23:47 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2010/11/21 04:23:47 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows®
O58 - SDL:2013/10/28 09:02:48 A . (.Auteurs - .) -- C:\Windows\System32\drivers\AppleCharger.sys [22240] =>.GIGA-BYTE TECHNOLOGY CO., LTD.®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2011/04/11 16:33:56 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\drivers\athrx.sys [1579520] =>.Atheros Communications, Inc.
O58 - SDL:2016/10/17 15:56:42 A . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\drivers\avgntflt.sys [177432] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2016/10/17 15:56:42 A . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\Windows\System32\drivers\avipbb.sys [145536] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2016/10/17 15:56:43 A . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\Windows\System32\drivers\avkmgr.sys [28600] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2016/10/17 15:56:43 A . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\Windows\System32\drivers\avnetflt.sys [79696] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2016/10/17 15:56:44 A . (.Avira Operations GmbH & Co. KG - Avira USB Filter Driver.) -- C:\Windows\System32\drivers\avusbflt.sys [31720] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2009/06/10 21:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 02:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2009/07/14 02:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2009/06/10 21:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2015/08/06 13:45:54 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\drivers\hamachi.sys [33856] =>.LogMeIn, Inc.®
O58 - SDL:2009/06/10 21:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2010/11/21 04:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows®
O58 - SDL:2010/11/21 04:23:47 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2015/08/07 12:06:30 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [204648] =>.NVIDIA Corporation®
O58 - SDL:2015/08/07 12:06:30 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [11076216] =>.NVIDIA Corporation®
O58 - SDL:2010/11/21 04:23:47 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows®
O58 - SDL:2010/11/21 04:23:47 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows®
O58 - SDL:2015/08/11 05:52:30 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\drivers\nvvad64v.sys [50472] =>.NVIDIA Corporation®
O58 - SDL:2009/07/14 02:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2014/06/17 13:13:54 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [941272] =>.Realtek Semiconductor Corp®
O58 - SDL:2014/06/10 13:27:34 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [3996888] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/06/10 21:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 02:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2013/10/24 16:29:06 A . (.Auteurs - .) -- C:\Windows\System32\drivers\UsbCharger.sys [22240] =>.GIGA-BYTE TECHNOLOGY CO., LTD.®
O58 - SDL:2015/09/08 10:47:40 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Host-Only Network Adapt.) -- C:\Windows\System32\drivers\VBoxNetAdp6.sys [117768] =>.Oracle Corporation®
O58 - SDL:2015/09/08 10:47:40 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Lightweight Filter Driv.) -- C:\Windows\System32\drivers\VBoxNetLwf.sys [146072] =>.Oracle Corporation®
O58 - SDL:2013/08/12 10:13:16 A . (.VIA Technologies, Inc. - Framework Version of ViaHub3 Dynamic Bus En.) -- C:\Windows\System32\drivers\ViaHub3.sys [225792] =>.VIA Technologies, Inc.
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
O58 - SDL:2013/01/18 02:11:54 A . (.VIA Technologies, Inc. - VIA BulkOnly & UAS driver.) -- C:\Windows\System32\drivers\vusbstor.sys [86064] =>.VIA Technologies Inc.®
O58 - SDL:2013/08/12 10:13:10 A . (.VIA Technologies, Inc. - WDF Driver for VIA eXtensible Host Controll.) -- C:\Windows\System32\drivers\xhcdrv.sys [295424] =>.VIA Technologies, Inc.
O58 - SDL:2011/08/17 18:39:00 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\athrx.sys [1579520] =>.Atheros Communications, Inc.
O58 - SDL:2016/09/13 17:53:46 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys [34720] =>.LogMeIn, Inc.®
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (6) - 14s
O61 - LFC: 2016/11/07 21:33:07 A . (..) -- C:\Users\Mathys\Downloads\GMStudio-Installer-1.4.1763.exe [120377352] {0FD627ED1A707F2D81BD8DB02E24C497}
O61 - LFC: 2016/11/07 19:05:56 A . (.noname.) -- C:\Users\Mathys\AppData\Roaming\BrowserMe\GoogleUpdate.exe [40074752]
O61 - LFC: 2016/11/08 20:45:30 A . (.Empire Resources, Inc..) -- C:\Users\Mathys\AppData\Local\YfPack\ExType.dll [96768]
O61 - LFC: 2016/10/31 02:41:25 A . (..) -- C:\Users\Mathys\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [331781]
O61 - LFC: 2016/11/07 19:06:39 A . (..) -- C:\Users\Mathys\AppData\Local\Microsoft\Internet Explorer\UrlBlockManager\urlblocklist.bin [0]
O61 - LFC: 2016/11/06 20:39:38 A . (..) -- C:\Users\Mathys\AppData\Local\a7cd\1f87.bat [56]
---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
---\\ Menu de démarrage Internet (15) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Users\Mathys\AppData\Local\Chromium\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Users\Mathys\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Users\Mathys\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Users\Mathys\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
---\\ Recherche d'infection sur les navigateurs (2) - 5s
O69 - SBI: SearchScopes [HKCU] {4D2E89C2-3F59-41B2-A6F3-98BC4F1D1958} - (Yahoo Search) - http://fr.search.yahoo.com/ =>.Yahoo Search
O69 - SBI: SearchScopes [HKCU] {6586d803-df30-46d3-a89a-4136c8571d45} [DefaultScope] - (Bing) - http://www.bing.com/
---\\ Enumère les services démarrés par Svchost (32) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [794624] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [680448] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [683520] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2610688] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1110016] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation
---\\ Liste des exceptions du parefeu Windows (169) - 6s
O87 - FAEL: "{B30C1BCC-7BC5-4B15-97E7-E970C4C552B8}" [In-None-P6-TRUE] .(...) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (.not file.)
O87 - FAEL: "{FE7D6008-36A1-4B98-A403-DC6AD67DD1C4}" [In-None-P17-TRUE] .(...) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (.not file.)
O87 - FAEL: "{E1607FFC-2008-4BF4-8180-4CA87F6D49FD}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (.not file.)
O87 - FAEL: "{0D21EDB8-6684-4121-9A02-0EE729A753FC}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (.not file.)
O87 - FAEL: "TCP Query User{A33223FC-4E56-4B57-9A81-EE32D5381FF1}C:\users\mathys\desktop\doom\zandronum.exe" [In-None-P6-TRUE] .(...) -- C:\users\mathys\desktop\doom\zandronum.exe (.not file.)
O87 - FAEL: "UDP Query User{3639FC5B-8EF8-4CC9-A07E-3B5C49A7662B}C:\users\mathys\desktop\doom\zandronum.exe" [In-None-P17-TRUE] .(...) -- C:\users\mathys\desktop\doom\zandronum.exe (.not file.)
O87 - FAEL: "{DD5E416B-4913-46D1-84B2-EF01335E61B6}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{F9990E8A-4B98-4B72-B1AA-F82B7FE4372D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{5D1DED43-6BCD-4832-B410-294E3A04D5B5}C:\romstation\emulation\gamecube\dolphin\dolphin.exe" [In-None-P6-TRUE] .(...) -- C:\romstation\emulation\gamecube\dolphin\dolphin.exe (.not file.)
O87 - FAEL: "UDP Query User{D26688A1-F380-42BC-8E0C-BF0687D791F5}C:\romstation\emulation\gamecube\dolphin\dolphin.exe" [In-None-P17-TRUE] .(...) -- C:\romstation\emulation\gamecube\dolphin\dolphin.exe (.not file.)
O87 - FAEL: "TCP Query User{60A14634-98F1-4122-ADD4-27ECBCBB275B}C:\romstation\emulation\saturn\yabause\yabause.exe" [In-None-P6-TRUE] .(...) -- C:\romstation\emulation\saturn\yabause\yabause.exe (.not file.)
O87 - FAEL: "UDP Query User{7D119151-8026-42AA-B74C-8C64037EDF77}C:\romstation\emulation\saturn\yabause\yabause.exe" [In-None-P17-TRUE] .(...) -- C:\romstation\emulation\saturn\yabause\yabause.exe (.not file.)
O87 - FAEL: "{555D63B8-9C1A-406B-8E88-AAEDBDFBEFE9}" [In-None-P17-TRUE] .(...) -- C:\romstation\emulation\saturn\yabause\yabause.exe (.not file.)
O87 - FAEL: "{295C9510-BEFA-4F8E-B549-7C2FAE4F10DF}" [In-None-P6-TRUE] .(...) -- C:\romstation\emulation\saturn\yabause\yabause.exe (.not file.)
O87 - FAEL: "{13C7E091-0F81-4911-BB50-182E36FEF183}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\EALaunchHelper.exe (.not file.)
O87 - FAEL: "{C10AE3A6-56D5-440F-8768-47EF37BB222E}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\EALaunchHelper.exe (.not file.)
O87 - FAEL: "TCP Query User{2158CAEE-1C23-4583-B80B-6B7A2D20424A}C:\users\mathys\downloads\sr-port2\portal 2\portal2.exe" [In-None-P6-TRUE] .(...) -- C:\users\mathys\downloads\sr-port2\portal 2\portal2.exe (.not file.)
O87 - FAEL: "UDP Query User{DB149C36-0611-47E7-983D-6F7E0A00D89C}C:\users\mathys\downloads\sr-port2\portal 2\portal2.exe" [In-None-P17-TRUE] .(...) -- C:\users\mathys\downloads\sr-port2\portal 2\portal2.exe (.not file.)
O87 - FAEL: "{90BAD90A-F97B-4BE1-88AB-1E4CB89D6F7A}" [In-None-P17-TRUE] .(...) -- C:\users\mathys\downloads\sr-port2\portal 2\portal2.exe (.not file.)
O87 - FAEL: "{F52BDF60-98D4-4D1E-AB78-2033ADE18823}" [In-None-P6-TRUE] .(...) -- C:\users\mathys\downloads\sr-port2\portal 2\portal2.exe (.not file.)
O87 - FAEL: "TCP Query User{D6E2ECF5-6B36-4254-9D09-F0C96B772C1F}C:\users\mathys\downloads\portal2\portal2.exe" [In-None-P6-TRUE] .(...) -- C:\users\mathys\downloads\portal2\portal2.exe (.not file.)
O87 - FAEL: "UDP Query User{BEA93528-EA72-4BAB-8359-6798DCEB02C6}C:\users\mathys\downloads\portal2\portal2.exe" [In-None-P17-TRUE] .(...) -- C:\users\mathys\downloads\portal2\portal2.exe (.not file.)
O87 - FAEL: "{E55619E0-0F26-42D1-A3ED-C6F7414201BB}" [In-None-P17-TRUE] .(...) -- C:\users\mathys\downloads\portal2\portal2.exe (.not file.)
O87 - FAEL: "{85800B00-8D9A-4349-A9CE-D17247B973E1}" [In-None-P6-TRUE] .(...) -- C:\users\mathys\downloads\portal2\portal2.exe (.not file.)
O87 - FAEL: "TCP Query User{B97A9F34-ED9C-465C-844A-C78FAB8CF2BF}C:\users\mathys\desktop\portal\portal2\portal2.exe" [In-None-P6-TRUE] .(...) -- C:\users\mathys\desktop\portal\portal2\portal2.exe (.not file.)
O87 - FAEL: "UDP Query User{9D0EAA33-C530-4F76-8F3B-48B93C3C1E93}C:\users\mathys\desktop\portal\portal2\portal2.exe" [In-None-P17-TRUE] .(...) -- C:\users\mathys\desktop\portal\portal2\portal2.exe (.not file.)
O87 - FAEL: "{FC851DEE-7114-4598-8CB1-5EBBD8533003}" [In-None-P17-TRUE] .(...) -- C:\users\mathys\desktop\portal\portal2\portal2.exe (.not file.)
O87 - FAEL: "{11DA8258-872D-4E15-A70C-42F7003BF2C6}" [In-None-P6-TRUE] .(...) -- C:\users\mathys\desktop\portal\portal2\portal2.exe (.not file.)
O87 - FAEL: "{4B539DEE-D0C4-4356-99B7-32C50E2882BE}" [In-None-P17-TRUE] .(...) -- C:\Users\Mathys\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O87 - FAEL: "TCP Query User{D4A8255D-E317-4B9E-95DF-B5D61295BE8D}C:\users\mathys\documents\portal2\portal2.exe" [In-None-P6-TRUE] .(...) -- C:\users\mathys\documents\portal2\portal2.exe (.not file.)
O87 - FAEL: "UDP Query User{7A3A0B36-BB70-4899-8EC2-A2AB64366627}C:\users\mathys\documents\portal2\portal2.exe" [In-None-P17-TRUE] .(...) -- C:\users\mathys\documents\portal2\portal2.exe (.not file.)
O87 - FAEL: "{A9729542-C319-44A5-9BA6-A37CF86A2897}" [In-None-P17-TRUE] .(...) -- C:\users\mathys\documents\portal2\portal2.exe (.not file.)
O87 - FAEL: "{8E3BD82C-1262-4583-9325-2C21DFF2FE1E}" [In-None-P6-TRUE] .(...) -- C:\users\mathys\documents\portal2\portal2.exe (.not file.)
O87 - FAEL: "TCP Query User{5BDC7D96-40E9-4CBC-A087-DD94E0A08C51}C:\users\mathys\desktop\doom\zandronum.exe" [In-None-P6-TRUE] .(...) -- C:\users\mathys\desktop\doom\zandronum.exe (.not file.)
O87 - FAEL: "UDP Query User{319BE0A5-985A-433D-8B6C-1020768B9984}C:\users\mathys\desktop\doom\zandronum.exe" [In-None-P17-TRUE] .(...) -- C:\users\mathys\desktop\doom\zandronum.exe (.not file.)
O87 - FAEL: "{D0FD6353-5D6E-40CB-9172-EE31A43D4061}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\theHunter\launcher\launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{497F7268-D368-46EE-AE5B-C7B90E92BA9E}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\theHunter\launcher\launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{FCFFDBDC-DEBF-4468-9F18-ACD7373DAE7A}C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{3172D1AE-5F08-4A64-A16C-6C86CD351945}C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe (.not file.)
O87 - FAEL: "{B03D46EF-B50A-405B-8485-08B7D9F2B894}" [In-None-P17-FALSE] .(...) -- C:\Users\Mathys\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O87 - FAEL: "TCP Query User{D626459B-AC9E-49BE-A826-59662319E2D2}C:\program files (x86)\steam\steamapps\common\star wars battlefront ii\gamedata\game32.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\star wars battlefront ii\gamedata\game32.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "UDP Query User{A000E62C-E057-4B6C-AF64-DAB5D57FCE1A}C:\program files (x86)\steam\steamapps\common\star wars battlefront ii\gamedata\game32.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\star wars battlefront ii\gamedata\game32.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{EDD44F31-9E0B-4067-9628-3F67E937F936}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe (.not file.)
O87 - FAEL: "{FD929C26-0EEC-41F9-BAE8-C6577603654A}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe (.not file.)
O87 - FAEL: "TCP Query User{963E34E5-7C39-453F-B64D-42A18C4ABA2E}C:\program files (x86)\starcraft ii\versions\base41743\sc2_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base41743\sc2_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{A108ED06-B62B-4846-998C-85FCF42D8038}C:\program files (x86)\starcraft ii\versions\base41743\sc2_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base41743\sc2_x64.exe (.not file.)
O87 - FAEL: "{D6BC9625-2506-48F7-BF7A-8C4F6978EF46}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe (.not file.)
O87 - FAEL: "{95A1AAC0-6750-4087-8639-82AD28D17098}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe (.not file.)
O87 - FAEL: "TCP Query User{98E08022-8EFE-4422-9F65-33E6D745A112}C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{DF10CCA2-0AC3-47B0-B47F-99142132D22D}C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe (.not file.)
O87 - FAEL: "{76C48647-C10B-48DD-8139-8ACE062A3174}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe (.not file.)
O87 - FAEL: "{37E8581E-78F8-4E94-8E1B-5C32D6D3A299}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe (.not file.)
O87 - FAEL: "TCP Query User{4E48F87F-FE4C-4747-84A4-2839E21787BA}C:\program files (x86)\hearthstone\hearthstone.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe (.not file.)
O87 - FAEL: "UDP Query User{21E098F2-9C8C-4684-9D6A-BCC8A4541B97}C:\program files (x86)\hearthstone\hearthstone.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe (.not file.)
O87 - FAEL: "{79FC993D-8A4E-4779-9FC5-C7497DE91967}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe (.not file.)
O87 - FAEL: "{607E7FC3-A6F2-46CC-954F-B16EA125CB81}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe (.not file.)
O87 - FAEL: "{1878F1CC-95C2-4837-A5F0-8ACDAEF4DD1A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{73678B1F-7BDD-48A4-8AA5-985263F6EA9B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{2A208F83-AF81-4218-92D0-CFB9656CD524}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{0CA0EDCF-D813-4F5F-9E0B-DF91AC1E9C93}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe (.not file.)
O87 - FAEL: "{8B067FF3-5728-4A25-BA1C-44D747E07118}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe (.not file.)
O87 - FAEL: "{B8E5EE53-283B-4A87-997E-22C1808AB755}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe (.not file.)
O87 - FAEL: "TCP Query User{F27FFD0A-FC28-4ED6-B8DE-85CA1541CCD1}C:\program files (x86)\starcraft ii\versions\base42932\sc2_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42932\sc2_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{DEEAEC7D-254A-4760-9B7B-CE60EED3BE70}C:\program files (x86)\starcraft ii\versions\base42932\sc2_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42932\sc2_x64.exe (.not file.)
O87 - FAEL: "{BFCBEC31-E5B4-41B1-8781-8A2861AAB42D}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42932\sc2_x64.exe (.not file.)
O87 - FAEL: "{78BFD895-2E96-4931-8FC0-7899A9A1DDEB}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42932\sc2_x64.exe (.not file.)
O87 - FAEL: "{51F240B9-976B-46CA-822B-AC87D10FAFA9}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Magical Drop V\MagicalDropV.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{3A32BC60-8581-4BC6-9026-D40F2B830724}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Magical Drop V\MagicalDropV.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{B1D2ECAC-C918-428D-A7B7-E4DED2FBF84F}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{62926376-42A4-48A7-826F-632D9D5CD330}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{5CBD7323-CB6F-4215-991F-BDD464355824}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{756AC40D-FC40-4427-B446-AA4CD346B45D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{864372BD-DDBC-4A76-9934-DF54BB0B79A9}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{20EA7A33-082D-42F0-85C2-8074FF43A5F9}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{D5F697FB-D5D2-4918-B378-1125AD1404F8}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{7E00D092-2D85-49CF-B8EF-29BF5ABE58F2}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{C0743977-5E70-4097-A357-E80DC1635AAE}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{29AF020E-8DE0-42BC-9FE4-FC165F6CFE32}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{7F314D58-ACE2-4022-BC6F-6C4BC2F7B216}" [Out-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{EBA22DCB-6509-45F5-BACB-874AB2B0F9BA}" [Out-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{E05E3E65-D82C-4158-A6F7-0759EC4DEE06}" [Out-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{BC2561B3-5120-40DC-B84A-AB9F6560BE59}" [Out-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{7DF76384-940E-44A0-A3A2-C5552F6536D9}C:\program files (x86)\starcraft ii\versions\base43478\sc2_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base43478\sc2_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{5EAC4A91-6257-4DBE-9269-715570682169}C:\program files (x86)\starcraft ii\versions\base43478\sc2_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base43478\sc2_x64.exe (.not file.)
O87 - FAEL: "{7F219131-288E-4DCD-BF32-C7D9DF0C73AF}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base43478\sc2_x64.exe (.not file.)
O87 - FAEL: "{E107A3AD-57FF-4A36-855C-A6084338D373}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base43478\sc2_x64.exe (.not file.)
O87 - FAEL: "TCP Query User{CE78B493-E354-4BBA-9470-E3C2C1E0047D}C:\program files (x86)\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{295FB74F-2CC9-4B25-A151-EB9FF2A719BD}C:\program files (x86)\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "{A465FA5F-2CE7-4DD6-B1B6-7586EBBE7E9A}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "{85B80898-09B9-4961-AE02-509B73F69601}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "{DD62CFF1-479B-4F4F-8B33-AFF04323F00A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{B6DA9623-04F9-48CA-AB18-7C5EF7608415}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{EEAF7BCB-7C0A-4CB6-84C1-B23A8ABF9172}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Skullgirls\SkullGirls.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{B5986337-B6AF-4B7F-A6B3-72E6BF3ED0D9}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Skullgirls\SkullGirls.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{DD4B8B2F-9037-4425-B767-CD5C20CDDC5E}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{2A771F19-E704-44C0-9D12-2E98BF70C29C}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{19EE4495-4659-4139-B7D2-699E1E6246E4}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Nidhogg\Nidhogg.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{D5D300F9-5086-4E45-AE10-EF2A8C470783}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Nidhogg\Nidhogg.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{45E77C25-9006-4AC1-AAC4-1AAC8DC42446}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Roguelands\Roguelands.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{33735C91-BDD6-4ED1-A89F-345A683BE752}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Roguelands\Roguelands.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{242F8931-6E94-48E0-8DC3-D63F74C167F5}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{B5FA8B1C-8775-4B86-9C9A-D0CE1B8A8F03}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{DDC25A10-A342-4BDF-9EC5-CC20C4331641}C:\program files (x86)\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{33D9D3AC-03DA-4604-884B-549BEC6EECA2}C:\program files (x86)\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "{9C4CE28F-C056-477A-B195-EED3DA1C1137}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "{7E2EA76D-B357-4CC2-8058-283CD2518DB6}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "{A1960033-16A8-44BB-B486-266353DAD428}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{08B9E95E-1B4A-4805-8A32-EEA2A6A7204C}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{C91F1E16-222A-4ABA-B927-8E36EB34CAD5}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{78EF0887-86FE-458A-9849-FB28A69E4379}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{F6D3599F-D234-422F-B438-3BA4B76D6D63}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "UDP Query User{6A4AD694-9548-4E11-A234-9385A949C921}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{C127D053-CDE5-42FF-8401-3A46A8D1E499}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{F07EFD5F-384E-427D-B0B8-7249DD3868F5}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{DB3EF3DE-0A97-47A3-B45C-24C0FA858D77}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Darkness II\DarknessII.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{D2EC3454-B636-4B9E-ACE9-692D73FBAC22}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Darkness II\DarknessII.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{9AC45473-6819-40BF-B654-0A5C091E5875}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{A066B264-ACD1-4889-A16B-409CC380108C}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{5C7C6E38-F002-4217-A328-72A6EC17A5D0}C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "UDP Query User{F9BEB275-7F69-4590-8B0C-F09C68BF190A}C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{2A5ED075-B35C-4B4E-B4B8-06A4FF2AE17D}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{4CD135A2-395A-4B49-8FB9-2DBE5A2077D1}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{AA5F8594-7F67-4907-AC2E-64D183A610D9}C:\program files\java\jre1.8.0_73\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jre1.8.0_73\bin\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{E2AA906F-0AEC-4979-B8D5-D99D7748A136}C:\program files\java\jre1.8.0_73\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jre1.8.0_73\bin\javaw.exe (.not file.)
O87 - FAEL: "TCP Query User{A8CDB663-6F93-42D8-81AD-F0FC5A60019E}C:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{10EE2A8A-F2DA-4396-ADEE-05D93E5A3D8B}C:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe (.not file.)
O87 - FAEL: "{B62DE992-4D26-4B4D-BB44-87ADDCDF0857}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe (.not file.)
O87 - FAEL: "{ABE9FE1A-93A2-4761-9466-F121FD2DD17B}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe (.not file.)
O87 - FAEL: "{813CE3B2-1FBA-4BC3-A7EB-C9F17688FF57}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\GameforgeLive\gfl_client.exe (.not file.)
O87 - FAEL: "{EABD262B-26A1-4A94-B14B-2753C2040F67}" [In-None-P6-TRUE] .(...) -- C:\Users\Mathys\AppData\Local\Temp\andy-x64\Setup.exe (.not file.)
O87 - FAEL: "{2C442794-409D-4089-9E83-55E209245839}" [Out-None-P6-TRUE] .(...) -- C:\Users\Mathys\AppData\Local\Temp\andy-x64\Setup.exe (.not file.)
O87 - FAEL: "{F2333FA6-C0FF-43AC-B70C-2917CA813C4A}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Andy\andy.exe (.not file.)
O87 - FAEL: "{C7CE8C81-1450-49D6-BCAF-EAC35C5E5CF7}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Andy\andy.exe (.not file.)
O87 - FAEL: "{AFD87563-008C-4527-9730-08E466D897E4}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Andy\AndyConsole.exe (.not file.)
O87 - FAEL: "{3F5F3521-C302-459A-89A3-414C84411915}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Andy\AndyConsole.exe (.not file.)
O87 - FAEL: "{2DD95C6E-432E-49E9-8E6A-87B7B2EAE2E5}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Andy\HandyAndy.exe (.not file.)
O87 - FAEL: "{E18AB6E6-AA87-490F-B91B-213F4F1E7373}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Andy\HandyAndy.exe (.not file.)
O87 - FAEL: "{2FF45338-FAAC-4593-AB8F-EE7E534DFF22}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Andy\SetupFiles\Uninstall.exe (.not file.)
O87 - FAEL: "{37849B6C-6785-4ACE-AE82-F8C2EF3276AA}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Andy\SetupFiles\Uninstall.exe (.not file.)
O87 - FAEL: "{85348512-C939-44FE-B760-EE49F69FA801}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Andy\SetupFiles\VMwareCheck.exe (.not file.)
O87 - FAEL: "{35A60EB2-F703-46C0-A7AB-2AE1DC14F5CF}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Andy\SetupFiles\VMwareCheck.exe (.not file.)
O87 - FAEL: "{62A34970-7A8B-4A7D-9107-7E2FF6796BDB}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe (.not file.)
O87 - FAEL: "{E6E57CDC-13DD-45C9-B639-704F61E2CB79}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe (.not file.)
O87 - FAEL: "{82C6817E-EB38-46B8-9892-6D884DA5F2DD}" [In-None-P6-TRUE] .(.Vertigo Gaming - Cook, Serve, Delicious!.) -- C:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious\CSDSteamBuild.exe =>.Steam SteamApps Games
O87 - FAEL: "{F3F6D2B5-99AC-4727-BF62-FF7FAF900DAD}" [In-None-P17-TRUE] .(.Vertigo Gaming - Cook, Serve, Delicious!.) -- C:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious\CSDSteamBuild.exe =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{F7145D89-672A-4A34-9F55-95241AC7AA7D}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (.not file.)
O87 - FAEL: "UDP Query User{42870D69-6496-4CC8-9966-DB3F4915F89C}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (.not file.)
O87 - FAEL: "{2F17A550-2C20-420C-9ED7-EE719E662EF0}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (.not file.)
O87 - FAEL: "{6530A3DF-C688-4A62-B86D-1A39B02A083C}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (.not file.)
O87 - FAEL: "TCP Query User{ED38E74A-ACCF-46D7-93DB-3CD30B6424CA}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (.not file.)
O87 - FAEL: "UDP Query User{97B9EFFF-9979-424A-82A2-B62E26C99F70}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (.not file.)
O87 - FAEL: "{80E76479-09CD-4C23-BF11-584E981B67D9}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (.not file.)
O87 - FAEL: "{E1DBEDBC-392D-4B7F-8FB6-318EB040D0B3}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (.not file.)
O87 - FAEL: "{61C27E8F-7CD4-45DC-88BE-4DB6E6B21735}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Shelter2\Shelter2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{85520FE8-EF92-4EAC-8F47-1056A1D73231}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Shelter2\Shelter2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{BADD3814-D4DD-4958-A8E9-9C9A99067140}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Impostors.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{8A83E1FC-9B0F-4ABA-BA49-2734938D942D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Impostors.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{B5849ECF-457F-4480-88D2-6B9DE6E5B3E4}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{F49CA3E0-AD00-4F9E-BDB6-53D59A560A93}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{4F5A6D21-A594-4212-B243-74BED2D6586D}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{1535F141-8133-4DA4-B883-CA68A32CC7EE}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{93F409D5-D7E6-4F32-8F2E-74C1D401A28A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{D24B1785-F3E9-461E-AFCF-91AF28CA7A0B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{A3C58CF5-A2CB-48C0-8682-1514ED247F2A}C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe (.not file.)
O87 - FAEL: "UDP Query User{06D76875-F376-488E-9510-308578B0E481}C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe (.not file.)
O87 - FAEL: "{07F44DDC-006D-42AE-89FD-54D18FB2789A}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe (.not file.)
O87 - FAEL: "{F31D0738-C91E-4FEE-8A26-D29604549665}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe (.not file.)
O87 - FAEL: "{F76D59C3-0428-4C13-92E2-BCC1BAF37C07}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{00E7AEE5-BDE5-4834-B5B9-E7FB3B5F3A0A}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe (.not file.) =>.Steam SteamApps Games
---\\ Scan Additionnel (11) - 0s
C:\Windows\Tasks\Final Media Player Update Checker.job =>Adware.InstallCore
C:\Windows\System32\Tasks\Final Media Player Update Checker =>Adware.InstallCore
C:\Windows\System32\Tasks\gameo_update =>.Superfluous.IronSourceLtd
C:\Windows\System32\Tasks\Palikan fili =>PUP.Optional.GoPalikan
HKCU\SOFTWARE\Bitberry =>.Superfluous.Bitberry
HKCU\SOFTWARE\Bitberry Software =>.Superfluous.Bitberry
HKCU\SOFTWARE\Gameo =>.Superfluous.IronSourceLtd
HKCU\SOFTWARE\go_palikan =>PUP.Optional.GoPalikan
HKCU\SOFTWARE\ICSW1.14 =>Adware.InstallCore
HKCU\SOFTWARE\yahooprovidedsearch =>PUP.Optional.Dealply
C:\Users\Mathys\AppData\Roaming\BrowserMe =>Ransomware.BrowserMe
---\\ Récapitulatif des éléments trouvés sur votre station (6) - 0s
https://www.anti-malware.top/2016/04/22/adware-installcore/ =>Adware.InstallCore
https://www.anti-malware.top/2016/05/02/superfluous-ironsourceltd/ =>.Superfluous.IronSourceLtd
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.GoPalikan
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Bitberry
https://www.nicolascoolman.com/fr/pup-dealply/ =>PUP.Optional.Dealply
https://www.nicolascoolman.com/fr/ransomware-browserme/ =>Ransomware.BrowserMe
~ End of the scan, 18625 items in 00h03mn41s (985)
~ Démarré par Mathys (Administrator) (2016/11/08 21:34:02)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Mathys\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Mathys\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601) =>.Microsoft Corporation
---\\ Navigateurs Internet (2) - 0s
~ MFIE: Mozilla Firefox 49.0.2 (x86 fr)
~ MSIE: Internet Explorer v11.0.9600.18499
---\\ Informations sur les produits Windows (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection (1) - 1s
Avira Antivirus v15.0.23.58 => Software.Protection
---\\ Informations sur le système (6) - 0s
~ Operating System: AMD64 Family 21 Model 2 Stepping 0, AuthenticAMD
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8369.72 MB (66% free)
System Restore: Activé (Enable)
System drive C: has 423 GB () free of 476 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: MATHYS-PC
~ User Name: Mathys
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 423 GB free of 476 GB (System)
---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (25) - 1s
[MD5.AC4C51EB24AA95B77F705AB159189E24] - 21/11/2010 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2872320] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.364FD85609BED4649544DE7D3978908D] - 30/09/2016 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2920960] =>.Microsoft Corporation
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 17/07/2014 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [455168] =>.Microsoft Corporation
[MD5.067FA52BFB59A56110A12312EF9AF243] - 21/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation
[MD5.492D07D79E7024CA310867B526D9636D] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - 12/04/2011 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.9A4A1EEE802BF2F878EE8EAB407B21B7] - 13/10/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497664] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.9B38580063D281A99E68EF5813022A5F] - 08/09/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [106496] =>.Microsoft Corporation
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.FCA01B0C70DAE9BE557577E719469D17] - 12/09/2016 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159744] =>.Microsoft Corporation
[MD5.E47D571FEC2C76E867935109AB2A770C] - 11/05/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [262144] =>.Microsoft Corporation
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - 12/04/2013 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1656680] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.AA77EB517D2F07A947294F260E3ACA83] - 13/10/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [118272] =>.Microsoft Corporation
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 21/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (14) - 2s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner WFP Service.) - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\Antivirus\sched.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\Antivirus\avguard.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - AntiVir WebGuard WFP Service.) - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira Service Host.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Service Google Update (gupdate) (gupdate) . (...) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.)
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) . (...) - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (.not file.)
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 355.6.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
O23 - Service: Origin Web Helper Service (Origin Web Helper Service) . (...) - C:\Program Files (x86)\Origin\OriginWebHelperService.exe (.not file.)
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation®
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (16) - 18s
SR - Auto [16/09/2016] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Auto [17/10/2016] [ 1089088] Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [17/10/2016] [ 475232] Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\sched.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [17/10/2016] [ 475232] Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\avguard.exe =>.Avira Operations GmbH & Co. KG®
SS - Auto [17/10/2016] [ 1488240] Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe =>.Avira Operations GmbH & Co. KG®
SS - Demand [06/04/2010] [ 31272] AppleChargerSrv (AppleChargerSrv) . (.Auteurs.) - C:\Windows\System32\AppleChargerSrv.exe
SR - Auto [25/10/2016] [ 337664] Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe =>.Avira Operations GmbH & Co. KG®
SS - Demand [13/10/2016] [ 329480] McAfee Security Scan Component Host Service (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.11.427\McCHSvc.exe =>.McAfee, Inc.®
SS - Demand [19/10/2016] [ 172488] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [12/10/2015] [ 1873696] NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation®
SR - Auto [12/10/2015] [ 5568288] NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe =>.NVIDIA Corporation®
SR - Auto [07/08/2015] [ 937592] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
SS - Auto [20/09/2016] [ 324224] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SS - Demand [23/07/2016] [ 837312] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe =>.Valve®
SR - Auto [07/08/2015] [ 410744] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation®
---\\ Tâches planifiées en automatique (35) - 6s
[MD5.00000000000000000000000000000000] [APT] [Adobe Acrobat Update Task] (...) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [Final Media Player Update Checker] (...) -- C:\Program Files (x86)\FinalMediaPlayer\FMPCheckForUpdates.exe (.not file.) [0] (.Activate.) =>Adware.InstallCore
[MD5.00000000000000000000000000000000] [APT] [gameo_update] (...) -- C:\Users\Mathys\AppData\Roaming\Gameo\gameo.exe (.not file.) [0] (.Activate.) =>.Superfluous.IronSourceLtd
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineCore] (...) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [Palikan fili] (...) -- C:\ProgramData\{FAA61265-AA24-C3E3-1BA2-B361CB2060EF}\2.0.1.9\lafe.txt 433a2f50726f6772616d446174612f7b46414136313236352d414132342d433345332d314241322d4233363143423230363045467d2f322e302e312e392f66696c692e646c6c 687474703a2f2f73616f2e (.not file.) [0] (.Activate.) =>PUP.Optional.GoPalikan
[MD5.00000000000000000000000000000000] [APT] [{031D0F38-142B-46F1-ABD4-4F4B0C550ACA}] (...) -- C:\Program Files (x86)\THQ\Titan Quest\Titan Quest.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{231399CE-BF4A-4752-AAB1-57654270A9EA}] (...) -- C:\Program Files (x86)\THQ\Titan Quest\Titan Quest.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{4FEAD4FE-2DDD-4CDE-B643-889B64A308E5}] (...) -- C:\Program Files (x86)\THQ\Titan Quest\Titan Quest.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{5E0F06EB-6609-4AFF-9E8C-51E6E08FFD16}] (...) -- C:\Program Files (x86)\THQ\Titan Quest\Titan Quest.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{62D27392-8F38-4795-9BAB-56C5EDECDCB4}] (...) -- C:\Program Files (x86)\THQ\Titan Quest\Titan Quest.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{8814978F-BDED-4C62-B902-2678EB453F97}] (...) -- C:\Users\Mathys\Downloads\druglord2.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{8D261888-52F5-4584-BEBB-244318E51609}] (...) -- C:\Program Files (x86)\THQ\Titan Quest\Titan Quest.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{AD72A3BD-3200-4A79-BB15-E647FE5E4C60}] (...) -- D:\setup.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{EE437181-263B-4B6F-95B8-7A641865BB3B}] (...) -- C:\Users\Mathys\Desktop\Black and White 2\Black And White 2\setup.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{F83AEA23-7C92-4C8E-A539-2C9E76F8AA36}] (...) -- C:\Users\Mathys\Desktop\Guild 2\Guild 2.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
O39 - APT: Final Media Player Update Checker - (...) -- C:\Windows\Tasks\Final Media Player Update Checker.job [412] (.Orphan.) =>Adware.InstallCore
O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Adobe Acrobat Update Task - (...) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [4476] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Final Media Player Update Checker - (...) -- C:\Windows\System32\Tasks\Final Media Player Update Checker [3110] (.Orphan.) =>Adware.InstallCore
O39 - APT: gameo_update - (...) -- C:\Windows\System32\Tasks\gameo_update [3744] (.Orphan.) =>.Superfluous.IronSourceLtd
O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3814] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4066] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Palikan fili - (...) -- C:\Windows\System32\Tasks\Palikan fili [4158] (.Orphan.) =>PUP.Optional.GoPalikan
O39 - APT: {031D0F38-142B-46F1-ABD4-4F4B0C550ACA} - (...) -- C:\Windows\System32\Tasks\{031D0F38-142B-46F1-ABD4-4F4B0C550ACA} [2978] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {231399CE-BF4A-4752-AAB1-57654270A9EA} - (...) -- C:\Windows\System32\Tasks\{231399CE-BF4A-4752-AAB1-57654270A9EA} [2978] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {4FEAD4FE-2DDD-4CDE-B643-889B64A308E5} - (...) -- C:\Windows\System32\Tasks\{4FEAD4FE-2DDD-4CDE-B643-889B64A308E5} [2978] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {5E0F06EB-6609-4AFF-9E8C-51E6E08FFD16} - (...) -- C:\Windows\System32\Tasks\{5E0F06EB-6609-4AFF-9E8C-51E6E08FFD16} [2978] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {62D27392-8F38-4795-9BAB-56C5EDECDCB4} - (...) -- C:\Windows\System32\Tasks\{62D27392-8F38-4795-9BAB-56C5EDECDCB4} [2978] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {8814978F-BDED-4C62-B902-2678EB453F97} - (...) -- C:\Windows\System32\Tasks\{8814978F-BDED-4C62-B902-2678EB453F97} [3134] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {8D261888-52F5-4584-BEBB-244318E51609} - (...) -- C:\Windows\System32\Tasks\{8D261888-52F5-4584-BEBB-244318E51609} [2978] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {AD72A3BD-3200-4A79-BB15-E647FE5E4C60} - (...) -- C:\Windows\System32\Tasks\{AD72A3BD-3200-4A79-BB15-E647FE5E4C60} [3036] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {EE437181-263B-4B6F-95B8-7A641865BB3B} - (...) -- C:\Windows\System32\Tasks\{EE437181-263B-4B6F-95B8-7A641865BB3B} [3270] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {F83AEA23-7C92-4C8E-A539-2C9E76F8AA36} - (...) -- C:\Windows\System32\Tasks\{F83AEA23-7C92-4C8E-A539-2C9E76F8AA36} [3162] (.Orphan.) =>.Superfluous.Orphan
---\\ Processus lancés (24) - 2s
[MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 355.6.) -- C:\Windows\system32\nvvsvc.exe [0] [PID.776] =>.NVIDIA Corporation
[MD5.F6D78F5436918952F1CB24BC48DB5B72] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [410744] [PID.800] =>.NVIDIA Corporation®
[MD5.FE817303FA4308B6149D2FC1D07D0DF2] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\Antivirus\sched.exe [475232] [PID.1304] =>.Avira Operations GmbH & Co. KG®
[MD5.A8561EC42C87EFDB8323EC14B1003494] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1251120] [PID.1392] =>.NVIDIA Corporation®
[MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 355.6.) -- C:\Windows\system32\nvvsvc.exe [0] [PID.1400] =>.NVIDIA Corporation
[MD5.DC00FD73505DAEDD99CAF4533B0C05BD] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1692] =>.Adobe Systems, Incorporated®
[MD5.FE817303FA4308B6149D2FC1D07D0DF2] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\Antivirus\avguard.exe [475232] [PID.1820] =>.Avira Operations GmbH & Co. KG®
[MD5.C2909BD26906E1D05D77B1D48B48E94A] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696] [PID.1880] =>.NVIDIA Corporation®
[MD5.5A773713C332F8760ABB915C24675E8F] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288] [PID.1940] =>.NVIDIA Corporation®
[MD5.24477237F3E401D81BBAE6698BB54354] - (.Avira Operations GmbH & Co. KG - Avira Service Host.) -- C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [337664] [PID.1088] =>.Avira Operations GmbH & Co. KG®
[MD5.CECA0AA7F7B97C567BC30416C05BB3DF] - (.NVIDIA Corporation - NVIDIA Network Stream Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [7576352] [PID.1872] =>.NVIDIA Corporation®
[MD5.7F81DAF1381249550A07A345142FD180] - (.Avira Operations GmbH & Co. KG - AntiVir shadow copy service.) -- C:\Program Files (x86)\Avira\Antivirus\avshadow.exe [1044328] [PID.2332] =>.Avira Operations GmbH & Co. KG®
[MD5.561134B2FC9A348FFF9AE7B699AE28D9] - (.NVIDIA Corporation - NVIDIA Streamer User Agent.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe [22047008] [PID.1548] =>.NVIDIA Corporation®
[MD5.9F0A52EA901055BA88E1F11C454666AA] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7632088] [PID.2888] =>.Realtek Semiconductor Corp®
[MD5.968EDA6EA6E00DFAE78586BFA6322B74] - (.VIA Technologies, Inc. - usbmonitor.) -- C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe [331776] [PID.1892] =>.VIA Technologies, Inc.
[MD5.6BE70A935DFD72F47C29757305B50B1E] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520] [PID.4052] =>.NVIDIA Corporation®
[MD5.9D4B35F85DB86DD1AE8D916D0AF97643] - (.noname - .) -- C:\Users\Mathys\AppData\Roaming\BrowserMe\GoogleUpdate.exe [40074752] [PID.2912]
[MD5.26BFD912A0D906D1195A009F98A23965] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [27017856] [PID.3716] =>.Skype Software Sarl®
[MD5.A749ADFC9B74AC9BA906D292625AE4A5] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe [407816] [PID.644] =>.McAfee, Inc.®
[MD5.D713106D059C67888CD5F5A862059D7B] - (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [916072] [PID.540] =>.Avira Operations GmbH & Co. KG®
[MD5.9D7C18B552743F179F8DB6DAFF4B3BAE] - (.Avira Operations GmbH & Co. KG - Avira.) -- C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [157968] [PID.1992] =>.Avira Operations GmbH & Co. KG®
[MD5.0EE5D949361FF92A318ED5267F6BE4A8] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2447992] [PID.3116] =>.NVIDIA Corporation®
[MD5.BD30EA1B259469D88BD20D141104F951] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [509384] [PID.2920] =>.Mozilla Corporation®
[MD5.3E12E772E33425D67EE31CD8FC67D270] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Mathys\Downloads\ZHPDiag3.exe [2439168] [PID.3480] =>.Nicolas Coolman
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (7) - 1s
P2 - EXT FILE: (.__MSG_extName__ - __MSG_extDescription__.) -- C:\Users\Mathys\AppData\Roaming\Mozilla\Firefox\Profiles\sQnf0T0p.default\extensions\abs@avira.com.xpi
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=11.101.2] - (.Oracle Corp..) -- C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll =>.Oracle Corp.
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=11.101.2] - (.Oracle Corp..) -- C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll =>.Oracle Corp.
P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll =>.NVIDIA Corporation
P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll =>.NVIDIA Corporation
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll =>.Google Inc.
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll =>.Google Inc.
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.avira.net/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.avira.net/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://search.avira.net/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.avira.net/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.avira.net/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://search.avira.net/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
---\\ Internet Explorer,Proxy Management (5) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\System32\Userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object de navigateur (BHO) (2) - 0s
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (...) -- C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll (.not file.)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (...) -- C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll (.not file.)
---\\ Applications lancées au démarrage du système (14) - 0s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [VIAxHCUtl] C:\Program Files\VIA XHCI UASP Utility\usb3Monitor (.not file.)
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe =>.NVIDIA Corporation®
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_91F2977A9CEAA69207B1DC95C99DC01E] C:\Users\Mathys\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [Avira SystrayStartTrigger] . (.Avira Operations GmbH & Co. KG - Avira Connect.) -- C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe =>.Avira Operations GmbH & Co. KG®
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\Antivirus\avgnt.exe =>.Avira Operations GmbH & Co. KG®
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1730092039-3470472078-2992981302-1000\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - HKUS\S-1-5-21-1730092039-3470472078-2992981302-1000\..\Run: [GoogleChromeAutoLaunch_91F2977A9CEAA69207B1DC95C99DC01E] C:\Users\Mathys\AppData\Local\Chromium\Application\chrome.exe (.not file.)
---\\ Raccourcis Global Startup (43) - 2s
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Mathys\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\sendTo [Administrateur]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Desktop [Mathys]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Mathys\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\sendTo [Mathys]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\TaskBar [Mathys]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee.) C:\Program Files\McAfee Security Scan\3.11.427\McUICnt.exe SecurityScanner.dll =>.McAfee, Inc.®
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{FC965A47-4839-40CA-B618-18F486F042C6}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper.) C:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - GS\Startup [Public]: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee Security Scanner Scheduler.) C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe =>.McAfee, Inc.®
O4 - GS\Startup [Public]: TP-LINK Wireless Configuration Utility.lnk . (...) C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe -nogui
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\system32\rundll32.exe %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (...) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\ProgramsCommon [Public]: HowToRemove.html.lnk . (...) C:\Users\Mathys\AppData\Local\{4F187944-6BB0-15FC-0628-30142240CC8C}\HowToRemove.html
O4 - GS\ProgramsCommon [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) C:\Program Files (x86)\Windows Sidebar\sidebar.exe /showgadgets =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) C:\Windows\system32\WindowsAnytimeUpgradeUI.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\DVD Maker\DVDMaker.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{4C244E09-DF74-4890-91D3-8097FA2125E7}: DhcpNameServer = 192.168.0.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{4D03B425-3E0B-4FBD-9EB4-0F0F4EC3A5BA}: DhcpNameServer = 192.168.0.254 =>.Local IP Adress
---\\ Protocole additionnel (20) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
---\\ Logiciels installés (43) - 13s
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824202044} =>.Adobe Systems Incorporated
O42 - Logiciel: Avira Antivirus v15.0.23.58 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- Avira Antivirus =>.Avira Operations GmbH & Co. KG®
O42 - Logiciel: Avira Connect v1.2.74.26159 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {3824D6F4-FE5B-4E85-A3AD-655D2C531E80} =>.Avira Operations GmbH & Co. KG
O42 - Logiciel: Avira Connect v1.2.74.26159 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {772ed258-65d1-4d57-ac70-7087049d1576} =>.Avira Operations GmbH & Co. KG®
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: Cook, Serve, Delicious! - (.Vertigo Gaming Inc..) [HKLM][64Bits] -- Steam App 247020 =>.Valve®
O42 - Logiciel: Dual-Core Optimizer - (.AMD.) [HKLM][64Bits] -- {9FD6F1A8-5550-46AF-8509-271DF0E768B5} =>.AMD
O42 - Logiciel: Epic Games Launcher Prerequisites (x64) - (.Epic Games, Inc..) [HKLM][64Bits] -- {66C5838F-B854-4A55-89E6-A6138747A4DF} =>.Epic Games, Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Hearthstone - (.Blizzard Entertainment.) [HKLM][64Bits] -- Hearthstone =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: Launcher Prerequisites (x64) - (.Epic Games, Inc..) [HKLM][64Bits] -- {c6c5a357-c7ca-4a5f-9789-3bb1af579253} =>.Epic Games Inc.®
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan =>.McAfee, Inc.®
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9} =>.Microsoft Corporation
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 Refresh - (.Microsoft Corporation.) [HKLM][64Bits] -- {D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F} =>.Microsoft Corporation
O42 - Logiciel: Mises à jour NVIDIA 2.5.15.54 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update =>.NVIDIA Corporation
O42 - Logiciel: Mozilla Firefox 49.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 49.0.2 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Network Service - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote 3D Vision 355.60 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.34.3 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 352.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote graphique 355.60 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Update Core - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Virtual Audio 1.2.31 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver =>.NVIDIA Corporation
O42 - Logiciel: ON_OFF Charge 2 B13.1028.1 - (.GIGABYTE.) [HKLM][64Bits] -- {6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A} =>.Gigabyte
O42 - Logiciel: Paladins - (.Hi-Rez Studios.) [HKLM][64Bits] -- Steam App 444090 =>.Valve®
O42 - Logiciel: Panneau de configuration NVIDIA 355.60 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation
O42 - Logiciel: Platform - (.VIA Technologies, Inc..) [HKLM][64Bits] -- {20D4A895-748C-4D88-871C-FDB1695B0169} =>.VIA Technologies, Inc.
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.
O42 - Logiciel: SHIELD Streaming - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv =>.NVIDIA Corporation
O42 - Logiciel: SHIELD Wireless Controller Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController =>.NVIDIA Corporation
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B} =>.Microsoft Corporation
O42 - Logiciel: Skype™ 7.29 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A.
O42 - Logiciel: SMITE - (.Hi-Rez Studios.) [HKLM][64Bits] -- Steam App 386360 =>.Valve®
O42 - Logiciel: StarCraft II - (.Blizzard Entertainment.) [HKLM][64Bits] -- StarCraft II =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam =>.Valve®
O42 - Logiciel: TP-LINK TL-WN851ND Driver - (.TP-LINK.) [HKLM][64Bits] -- {4BAE4C76-44C3-418F-B715-6BBF5A65323E} =>.TP-LINK
O42 - Logiciel: TP-LINK Wireless Configuration Utility - (.TP-LINK.) [HKLM][64Bits] -- {319D91C6-3D44-436C-9F79-36C0D22372DC} =>.TP-LINK
O42 - Logiciel: VIA Gestionnaire de périphériques de plate-forme - (.VIA Technologies, Inc..) [HKLM][64Bits] -- InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169} =>.VIA Technologies, Inc.
O42 - Logiciel: World of Warcraft - (.Blizzard Entertainment.) [HKLM][64Bits] -- World of Warcraft =>.Blizzard Entertainment, Inc.®
---\\ HKCU & HKLM Software Keys (156) - 13s
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\AMD =>.AMD
HKLM\SOFTWARE\Wow6432Node\Avira =>.Avira
HKLM\SOFTWARE\Wow6432Node\bethesda softworks =>.Bethesda Softworks
HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment =>.Blizzard Entertainment
HKLM\SOFTWARE\Wow6432Node\capcom =>.CAPCOM
HKLM\SOFTWARE\Wow6432Node\DownloadCenter
HKLM\SOFTWARE\Wow6432Node\EA Games =>.EA Games
HKLM\SOFTWARE\Wow6432Node\EasyAntiCheat
HKLM\SOFTWARE\Wow6432Node\Electronic Arts =>.Electronic Arts
HKLM\SOFTWARE\Wow6432Node\Gameforge =>.Gameforge
HKLM\SOFTWARE\Wow6432Node\Gameforge4d
HKLM\SOFTWARE\Wow6432Node\Gigabyte =>.Gigabyte
HKLM\SOFTWARE\Wow6432Node\GOG.com =>.GOG.com
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\Hi-Rez Studios =>.Hi-Rez Studios
HKLM\SOFTWARE\Wow6432Node\HiRez Studios =>.Hirez Studios
HKLM\SOFTWARE\Wow6432Node\IM Providers =>.IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\lameme
HKLM\SOFTWARE\Wow6432Node\LucasArts =>.LucasArts
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\McAfee.com =>.McAfee.com
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
HKLM\SOFTWARE\Wow6432Node\Metin2_FR
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Mr DJ
HKLM\SOFTWARE\Wow6432Node\Nobilis =>.Nobilis
HKLM\SOFTWARE\Wow6432Node\Nostale_FR
HKLM\SOFTWARE\Wow6432Node\NSIS.Library.RegTool.v3
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation =>.NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software =>.Opera Software
HKLM\SOFTWARE\Wow6432Node\Origin
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\PopCap
HKLM\SOFTWARE\Wow6432Node\qBittorrent
HKLM\SOFTWARE\Wow6432Node\qshs
HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\rebellion =>.Rebellion
HKLM\SOFTWARE\Wow6432Node\Runes of Magic
HKLM\SOFTWARE\Wow6432Node\Skype =>.Skype
HKLM\SOFTWARE\Wow6432Node\techland =>.Techland
HKLM\SOFTWARE\Wow6432Node\ThinPrint =>.ThinPrint
HKLM\SOFTWARE\Wow6432Node\THQ =>.THQ
HKLM\SOFTWARE\Wow6432Node\TP-LINK =>.TP-LINK
HKLM\SOFTWARE\Wow6432Node\Valve =>.Valve
HKLM\SOFTWARE\Wow6432Node\VIA Technologies, Inc =>.VIA Technologies, Inc
HKLM\SOFTWARE\Wow6432Node\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\WBGames
HKLM\SOFTWARE\Wow6432Node\WinRAR =>.WinRAR
HKLM\SOFTWARE\Wow6432Node\X-AVCSD
HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo!
HKLM\SOFTWARE\Wow6432Node\Zemi Interactive =>.Zemi Interactive
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\3909 LLC =>.3909 LLC
HKCU\SOFTWARE\5tudio
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\82 Apps
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Adworks
HKCU\SOFTWARE\Andy
HKCU\SOFTWARE\Ankama =>.Ankama
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Avira =>.Avira
HKCU\SOFTWARE\BGames
HKCU\SOFTWARE\Bitberry =>.Superfluous.Bitberry
HKCU\SOFTWARE\Bitberry Software =>.Superfluous.Bitberry
HKCU\SOFTWARE\BlackLight Interactive
HKCU\SOFTWARE\Blizzard Entertainment =>.Blizzard Entertainment
HKCU\SOFTWARE\Boneloaf
HKCU\SOFTWARE\Bossa Studios =>.Bossa Studios
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Deep Silver =>.Deep Silver
HKCU\SOFTWARE\DefaultCompany
HKCU\SOFTWARE\Digital Extremes =>.Digital Extremes
HKCU\SOFTWARE\DownloadCenter
HKCU\SOFTWARE\Drug Lord 2
HKCU\SOFTWARE\EA Games =>.EA Games
HKCU\SOFTWARE\Electronic Arts =>.Electronic Arts
HKCU\SOFTWARE\Emulators
HKCU\SOFTWARE\Enterbrain =>.Enterbrain
HKCU\SOFTWARE\Epic Games =>.Epic Games
HKCU\SOFTWARE\epsxe
HKCU\SOFTWARE\Facepunch Studios LTD
HKCU\SOFTWARE\Firaxis
HKCU\SOFTWARE\Game Maker
HKCU\SOFTWARE\Gameforge4d
HKCU\SOFTWARE\GameMakerPlayer
HKCU\SOFTWARE\Gameo =>.Superfluous.IronSourceLtd
HKCU\SOFTWARE\GaudinoGames
HKCU\SOFTWARE\Genymobile =>.Genymobile
HKCU\SOFTWARE\Gigabyte =>.Gigabyte
HKCU\SOFTWARE\GMStudio
HKCU\SOFTWARE\GOG.com =>.GOG.com
HKCU\SOFTWARE\GoldenGate
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\go_palikan =>PUP.Optional.GoPalikan
HKCU\SOFTWARE\ICSW1.14 =>Adware.InstallCore
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\Kyle Seeley
HKCU\SOFTWARE\L2j Community Network
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Logitech =>.Logitech
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\malavida
HKCU\SOFTWARE\MountAndBladeWarbandKeys
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\Norton =>.Norton
HKCU\SOFTWARE\NVIDIA Corporation =>.NVIDIA Corporation
HKCU\SOFTWARE\Opera Software =>.Opera Software
HKCU\SOFTWARE\PCSX2
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\qshs
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Razer =>.Razer
HKCU\SOFTWARE\Realtek =>.Realtek
HKCU\SOFTWARE\Red Hook Studios =>.Red Hook Studios
HKCU\SOFTWARE\Robot Gentleman Studios
HKCU\SOFTWARE\Rockstar Games =>.Rockstar Games
HKCU\SOFTWARE\SecuROM
HKCU\SOFTWARE\Signal Studios & DigitalDNA Games
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\Smartly Dressed Games
HKCU\SOFTWARE\Spiderling Games
HKCU\SOFTWARE\TheMenWhoWearManyHats
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\TTindie
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKCU\SOFTWARE\Volition =>.Volition
HKCU\SOFTWARE\wbgames
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Winterlake Productions
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\yahooprovidedsearch =>PUP.Optional.Dealply
HKCU\SOFTWARE\YandereDev
HKCU\SOFTWARE\Yanderu Software
HKCU\SOFTWARE\Zanzlanz
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\ZeroFolio
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft =>.JavaSoft
---\\ Contenu des dossiers Programmes (127) - 14s
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\DVD Maker =>.Aone Software
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation®
O43 - CFD: 07/11/2016 - [] D -- C:\Program Files\McAfee Security Scan =>.McAfee, Inc.®
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 25/08/2015 - [] D -- C:\Program Files\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\VIA XHCI UASP Utility =>.VIA®
O43 - CFD: 27/08/2015 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 12/05/2016 - [] D -- C:\Program Files\Windows Journal =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 06/11/2016 - [] D -- C:\Program Files (x86)\Avira =>.Avira Operations GmbH & Co. KG®
O43 - CFD: 06/11/2016 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 06/11/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 06/11/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 06/11/2016 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 08/11/2016 - [] D -- C:\Program Files (x86)\Steam =>.Valve®
O43 - CFD: 27/08/2015 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\WinRAR =>.WinRAR
O43 - CFD: 25/08/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 27/10/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 06/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LucasArts =>.LucasArts
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 24/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
O43 - CFD: 27/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager =>.Winstep Software Technologies
O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nobilis =>.Nobilis
O43 - CFD: 10/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nostale(FR)
O43 - CFD: 08/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation =>.NVIDIA Corporation
O43 - CFD: 29/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin =>.Electronic Arts, Inc.
O43 - CFD: 21/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games =>.PopCap Games
O43 - CFD: 22/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RomStation =>.RomStation
O43 - CFD: 06/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype =>.Skype
O43 - CFD: 20/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
O43 - CFD: 24/10/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 25/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam =>.SteamApps
O43 - CFD: 12/04/2011 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC =>.Wacom Technology
O43 - CFD: 25/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK =>.TP-LINK
O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Valve =>.Valve
O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 13/05/2016 - [] D -- C:\ProgramData\.mono
O43 - CFD: 17/12/2015 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 18/09/2016 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 06/11/2016 - [] D -- C:\ProgramData\Avira =>.Avira Software
O43 - CFD: 18/02/2016 - [] D -- C:\ProgramData\Battle.net =>.Battle.net
O43 - CFD: 18/06/2016 - [] D -- C:\ProgramData\Blizzard Entertainment =>.Blizzard Entertainment
O43 - CFD: 25/08/2015 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 05/03/2016 - [] D -- C:\ProgramData\Electronic Arts =>.Electronic Arts
O43 - CFD: 22/09/2016 - [] D -- C:\ProgramData\Epic =>.Epic
O43 - CFD: 25/08/2015 - [0] SHD -- C:\ProgramData\Favoris =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation
O43 - CFD: 22/09/2016 - [] D -- C:\ProgramData\Hi-Rez Studios =>.Hi-Rez Studios
O43 - CFD: 16/12/2015 - [] D -- C:\ProgramData\Hunter
O43 - CFD: 05/09/2015 - [] D -- C:\ProgramData\LogMeIn =>.LogMeIn
O43 - CFD: 13/09/2015 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 13/09/2015 - [] D -- C:\ProgramData\McAfee Security Scan =>.McAfee
O43 - CFD: 25/08/2015 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation
O43 - CFD: 28/10/2016 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft
O43 - CFD: 25/08/2015 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation
O43 - CFD: 14/09/2016 - [] D -- C:\ProgramData\Nexon =>.Nexon
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Norton =>.Norton
O43 - CFD: 02/11/2015 - [] D -- C:\ProgramData\NortonInstaller =>.Symantec
O43 - CFD: 08/11/2016 - [] D -- C:\ProgramData\NVIDIA =>.NVIDIA Corporation
O43 - CFD: 08/09/2016 - [] D -- C:\ProgramData\NVIDIA Corporation =>.NVIDIA Corporation
O43 - CFD: 27/08/2016 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 28/10/2016 - [] D -- C:\ProgramData\Origin =>.Electronic Arts, Inc.
O43 - CFD: 06/11/2016 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 21/12/2015 - [] D -- C:\ProgramData\PopCap Games =>.PopCap Games
O43 - CFD: 20/07/2016 - [] D -- C:\ProgramData\Riot Games =>.Riot Games
O43 - CFD: 06/11/2016 - [] D -- C:\ProgramData\Skype =>.Skype
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 25/08/2015 - [] D -- C:\ProgramData\TP-LINK =>.TP-LINK
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 06/11/2016 - [] D -- C:\Program Files (x86)\Common Files\Skype =>.Skype
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 06/11/2016 - [] D -- C:\Program Files (x86)\Common Files\Steam =>.SteamApps
O43 - CFD: 27/08/2015 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\43d8
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\Avira =>.Avira Software
O43 - CFD: 08/11/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\BrowserMe =>Ransomware.BrowserMe
O43 - CFD: 06/11/2016 - [] SD -- C:\Users\Mathys\AppData\Roaming\Microsoft =>.Microsoft
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\qBittorrent =>.Christophe Dumez
O43 - CFD: 08/11/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\Skype =>.Skype
O43 - CFD: 08/11/2016 - [] D -- C:\Users\Mathys\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Local\a7cd
O43 - CFD: 07/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\Adworks
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\CEF =>.CEF
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Local\MEGAsync =>.MegaSystems
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Local\NVIDIA =>.NVIDIA Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mathys\AppData\Local\qBittorrent =>.Christophe Dumez
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\Steam =>.SteamApps
O43 - CFD: 06/11/2016 - [] HD -- C:\Users\Mathys\AppData\Local\SysHashTable
O43 - CFD: 08/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [0] D -- C:\Users\Mathys\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 08/11/2016 - [] D -- C:\Users\Mathys\AppData\Local\YfPack
O43 - CFD: 22/07/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 20/07/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\YSearchUtil =>.Yahoo! inc.
O43 - CFD: 06/11/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Avira =>.Avira Software
O43 - CFD: 06/11/2016 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft
O43 - CFD: 06/10/2016 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\VMware =>.VMware
---\\ ShellIconOverlayIdentifiers (SIOI) (5) - 0s
O106 - SIOI: ###MegaShellExtPending [###MegaShellExtPending] - {056D528D-CE28-4194-9BA3-BA2E9197FF8C}. (...) -- C:\Users\Mathys\AppData\Local\MEGAsync\ShellExtX32.dll
O106 - SIOI: ###MegaShellExtSynced [###MegaShellExtSynced] - {05B38830-F4E9-4329-978B-1DD28605D202}. (...) -- C:\Users\Mathys\AppData\Local\MEGAsync\ShellExtX32.dll
O106 - SIOI: ###MegaShellExtSyncing [###MegaShellExtSyncing] - {0596C850-7BDD-4C9D-AFDF-873BE6890637}. (...) -- C:\Users\Mathys\AppData\Local\MEGAsync\ShellExtX32.dll
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ Liste des pilotes du système (62) - 25s
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2010/11/21 04:23:47 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2010/11/21 04:23:47 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows®
O58 - SDL:2013/10/28 09:02:48 A . (.Auteurs - .) -- C:\Windows\System32\drivers\AppleCharger.sys [22240] =>.GIGA-BYTE TECHNOLOGY CO., LTD.®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2011/04/11 16:33:56 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\drivers\athrx.sys [1579520] =>.Atheros Communications, Inc.
O58 - SDL:2016/10/17 15:56:42 A . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\drivers\avgntflt.sys [177432] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2016/10/17 15:56:42 A . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\Windows\System32\drivers\avipbb.sys [145536] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2016/10/17 15:56:43 A . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\Windows\System32\drivers\avkmgr.sys [28600] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2016/10/17 15:56:43 A . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\Windows\System32\drivers\avnetflt.sys [79696] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2016/10/17 15:56:44 A . (.Avira Operations GmbH & Co. KG - Avira USB Filter Driver.) -- C:\Windows\System32\drivers\avusbflt.sys [31720] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2009/06/10 21:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 02:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2009/07/14 02:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2009/06/10 21:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2015/08/06 13:45:54 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\drivers\hamachi.sys [33856] =>.LogMeIn, Inc.®
O58 - SDL:2009/06/10 21:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2010/11/21 04:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows®
O58 - SDL:2010/11/21 04:23:47 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2015/08/07 12:06:30 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [204648] =>.NVIDIA Corporation®
O58 - SDL:2015/08/07 12:06:30 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [11076216] =>.NVIDIA Corporation®
O58 - SDL:2010/11/21 04:23:47 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows®
O58 - SDL:2010/11/21 04:23:47 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows®
O58 - SDL:2015/08/11 05:52:30 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\drivers\nvvad64v.sys [50472] =>.NVIDIA Corporation®
O58 - SDL:2009/07/14 02:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2014/06/17 13:13:54 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [941272] =>.Realtek Semiconductor Corp®
O58 - SDL:2014/06/10 13:27:34 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [3996888] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/06/10 21:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 02:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2013/10/24 16:29:06 A . (.Auteurs - .) -- C:\Windows\System32\drivers\UsbCharger.sys [22240] =>.GIGA-BYTE TECHNOLOGY CO., LTD.®
O58 - SDL:2015/09/08 10:47:40 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Host-Only Network Adapt.) -- C:\Windows\System32\drivers\VBoxNetAdp6.sys [117768] =>.Oracle Corporation®
O58 - SDL:2015/09/08 10:47:40 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Lightweight Filter Driv.) -- C:\Windows\System32\drivers\VBoxNetLwf.sys [146072] =>.Oracle Corporation®
O58 - SDL:2013/08/12 10:13:16 A . (.VIA Technologies, Inc. - Framework Version of ViaHub3 Dynamic Bus En.) -- C:\Windows\System32\drivers\ViaHub3.sys [225792] =>.VIA Technologies, Inc.
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
O58 - SDL:2013/01/18 02:11:54 A . (.VIA Technologies, Inc. - VIA BulkOnly & UAS driver.) -- C:\Windows\System32\drivers\vusbstor.sys [86064] =>.VIA Technologies Inc.®
O58 - SDL:2013/08/12 10:13:10 A . (.VIA Technologies, Inc. - WDF Driver for VIA eXtensible Host Controll.) -- C:\Windows\System32\drivers\xhcdrv.sys [295424] =>.VIA Technologies, Inc.
O58 - SDL:2011/08/17 18:39:00 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\athrx.sys [1579520] =>.Atheros Communications, Inc.
O58 - SDL:2016/09/13 17:53:46 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys [34720] =>.LogMeIn, Inc.®
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (6) - 14s
O61 - LFC: 2016/11/07 21:33:07 A . (..) -- C:\Users\Mathys\Downloads\GMStudio-Installer-1.4.1763.exe [120377352] {0FD627ED1A707F2D81BD8DB02E24C497}
O61 - LFC: 2016/11/07 19:05:56 A . (.noname.) -- C:\Users\Mathys\AppData\Roaming\BrowserMe\GoogleUpdate.exe [40074752]
O61 - LFC: 2016/11/08 20:45:30 A . (.Empire Resources, Inc..) -- C:\Users\Mathys\AppData\Local\YfPack\ExType.dll [96768]
O61 - LFC: 2016/10/31 02:41:25 A . (..) -- C:\Users\Mathys\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [331781]
O61 - LFC: 2016/11/07 19:06:39 A . (..) -- C:\Users\Mathys\AppData\Local\Microsoft\Internet Explorer\UrlBlockManager\urlblocklist.bin [0]
O61 - LFC: 2016/11/06 20:39:38 A . (..) -- C:\Users\Mathys\AppData\Local\a7cd\1f87.bat [56]
---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Menu de démarrage Internet (15) - 1s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Recherche d'infection sur les navigateurs (2) - 5s
O69 - SBI: SearchScopes [HKCU] {4D2E89C2-3F59-41B2-A6F3-98BC4F1D1958} - (Yahoo Search) - http://fr.search.yahoo.com/ =>.Yahoo Search
O69 - SBI: SearchScopes [HKCU] {6586d803-df30-46d3-a89a-4136c8571d45} [DefaultScope] - (Bing) - http://www.bing.com/
---\\ Enumère les services démarrés par Svchost (32) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [794624] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [680448] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [683520] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2610688] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1110016] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation
---\\ Liste des exceptions du parefeu Windows (169) - 6s
O87 - FAEL: "{B30C1BCC-7BC5-4B15-97E7-E970C4C552B8}" [In-None-P6-TRUE] .(...) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (.not file.)
O87 - FAEL: "{FE7D6008-36A1-4B98-A403-DC6AD67DD1C4}" [In-None-P17-TRUE] .(...) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (.not file.)
O87 - FAEL: "{E1607FFC-2008-4BF4-8180-4CA87F6D49FD}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (.not file.)
O87 - FAEL: "{0D21EDB8-6684-4121-9A02-0EE729A753FC}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (.not file.)
O87 - FAEL: "TCP Query User{A33223FC-4E56-4B57-9A81-EE32D5381FF1}C:\users\mathys\desktop\doom\zandronum.exe" [In-None-P6-TRUE] .(...) -- C:\users\mathys\desktop\doom\zandronum.exe (.not file.)
O87 - FAEL: "UDP Query User{3639FC5B-8EF8-4CC9-A07E-3B5C49A7662B}C:\users\mathys\desktop\doom\zandronum.exe" [In-None-P17-TRUE] .(...) -- C:\users\mathys\desktop\doom\zandronum.exe (.not file.)
O87 - FAEL: "{DD5E416B-4913-46D1-84B2-EF01335E61B6}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{F9990E8A-4B98-4B72-B1AA-F82B7FE4372D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{5D1DED43-6BCD-4832-B410-294E3A04D5B5}C:\romstation\emulation\gamecube\dolphin\dolphin.exe" [In-None-P6-TRUE] .(...) -- C:\romstation\emulation\gamecube\dolphin\dolphin.exe (.not file.)
O87 - FAEL: "UDP Query User{D26688A1-F380-42BC-8E0C-BF0687D791F5}C:\romstation\emulation\gamecube\dolphin\dolphin.exe" [In-None-P17-TRUE] .(...) -- C:\romstation\emulation\gamecube\dolphin\dolphin.exe (.not file.)
O87 - FAEL: "TCP Query User{60A14634-98F1-4122-ADD4-27ECBCBB275B}C:\romstation\emulation\saturn\yabause\yabause.exe" [In-None-P6-TRUE] .(...) -- C:\romstation\emulation\saturn\yabause\yabause.exe (.not file.)
O87 - FAEL: "UDP Query User{7D119151-8026-42AA-B74C-8C64037EDF77}C:\romstation\emulation\saturn\yabause\yabause.exe" [In-None-P17-TRUE] .(...) -- C:\romstation\emulation\saturn\yabause\yabause.exe (.not file.)
O87 - FAEL: "{555D63B8-9C1A-406B-8E88-AAEDBDFBEFE9}" [In-None-P17-TRUE] .(...) -- C:\romstation\emulation\saturn\yabause\yabause.exe (.not file.)
O87 - FAEL: "{295C9510-BEFA-4F8E-B549-7C2FAE4F10DF}" [In-None-P6-TRUE] .(...) -- C:\romstation\emulation\saturn\yabause\yabause.exe (.not file.)
O87 - FAEL: "{13C7E091-0F81-4911-BB50-182E36FEF183}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\EALaunchHelper.exe (.not file.)
O87 - FAEL: "{C10AE3A6-56D5-440F-8768-47EF37BB222E}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\EALaunchHelper.exe (.not file.)
O87 - FAEL: "TCP Query User{2158CAEE-1C23-4583-B80B-6B7A2D20424A}C:\users\mathys\downloads\sr-port2\portal 2\portal2.exe" [In-None-P6-TRUE] .(...) -- C:\users\mathys\downloads\sr-port2\portal 2\portal2.exe (.not file.)
O87 - FAEL: "UDP Query User{DB149C36-0611-47E7-983D-6F7E0A00D89C}C:\users\mathys\downloads\sr-port2\portal 2\portal2.exe" [In-None-P17-TRUE] .(...) -- C:\users\mathys\downloads\sr-port2\portal 2\portal2.exe (.not file.)
O87 - FAEL: "{90BAD90A-F97B-4BE1-88AB-1E4CB89D6F7A}" [In-None-P17-TRUE] .(...) -- C:\users\mathys\downloads\sr-port2\portal 2\portal2.exe (.not file.)
O87 - FAEL: "{F52BDF60-98D4-4D1E-AB78-2033ADE18823}" [In-None-P6-TRUE] .(...) -- C:\users\mathys\downloads\sr-port2\portal 2\portal2.exe (.not file.)
O87 - FAEL: "TCP Query User{D6E2ECF5-6B36-4254-9D09-F0C96B772C1F}C:\users\mathys\downloads\portal2\portal2.exe" [In-None-P6-TRUE] .(...) -- C:\users\mathys\downloads\portal2\portal2.exe (.not file.)
O87 - FAEL: "UDP Query User{BEA93528-EA72-4BAB-8359-6798DCEB02C6}C:\users\mathys\downloads\portal2\portal2.exe" [In-None-P17-TRUE] .(...) -- C:\users\mathys\downloads\portal2\portal2.exe (.not file.)
O87 - FAEL: "{E55619E0-0F26-42D1-A3ED-C6F7414201BB}" [In-None-P17-TRUE] .(...) -- C:\users\mathys\downloads\portal2\portal2.exe (.not file.)
O87 - FAEL: "{85800B00-8D9A-4349-A9CE-D17247B973E1}" [In-None-P6-TRUE] .(...) -- C:\users\mathys\downloads\portal2\portal2.exe (.not file.)
O87 - FAEL: "TCP Query User{B97A9F34-ED9C-465C-844A-C78FAB8CF2BF}C:\users\mathys\desktop\portal\portal2\portal2.exe" [In-None-P6-TRUE] .(...) -- C:\users\mathys\desktop\portal\portal2\portal2.exe (.not file.)
O87 - FAEL: "UDP Query User{9D0EAA33-C530-4F76-8F3B-48B93C3C1E93}C:\users\mathys\desktop\portal\portal2\portal2.exe" [In-None-P17-TRUE] .(...) -- C:\users\mathys\desktop\portal\portal2\portal2.exe (.not file.)
O87 - FAEL: "{FC851DEE-7114-4598-8CB1-5EBBD8533003}" [In-None-P17-TRUE] .(...) -- C:\users\mathys\desktop\portal\portal2\portal2.exe (.not file.)
O87 - FAEL: "{11DA8258-872D-4E15-A70C-42F7003BF2C6}" [In-None-P6-TRUE] .(...) -- C:\users\mathys\desktop\portal\portal2\portal2.exe (.not file.)
O87 - FAEL: "{4B539DEE-D0C4-4356-99B7-32C50E2882BE}" [In-None-P17-TRUE] .(...) -- C:\Users\Mathys\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O87 - FAEL: "TCP Query User{D4A8255D-E317-4B9E-95DF-B5D61295BE8D}C:\users\mathys\documents\portal2\portal2.exe" [In-None-P6-TRUE] .(...) -- C:\users\mathys\documents\portal2\portal2.exe (.not file.)
O87 - FAEL: "UDP Query User{7A3A0B36-BB70-4899-8EC2-A2AB64366627}C:\users\mathys\documents\portal2\portal2.exe" [In-None-P17-TRUE] .(...) -- C:\users\mathys\documents\portal2\portal2.exe (.not file.)
O87 - FAEL: "{A9729542-C319-44A5-9BA6-A37CF86A2897}" [In-None-P17-TRUE] .(...) -- C:\users\mathys\documents\portal2\portal2.exe (.not file.)
O87 - FAEL: "{8E3BD82C-1262-4583-9325-2C21DFF2FE1E}" [In-None-P6-TRUE] .(...) -- C:\users\mathys\documents\portal2\portal2.exe (.not file.)
O87 - FAEL: "TCP Query User{5BDC7D96-40E9-4CBC-A087-DD94E0A08C51}C:\users\mathys\desktop\doom\zandronum.exe" [In-None-P6-TRUE] .(...) -- C:\users\mathys\desktop\doom\zandronum.exe (.not file.)
O87 - FAEL: "UDP Query User{319BE0A5-985A-433D-8B6C-1020768B9984}C:\users\mathys\desktop\doom\zandronum.exe" [In-None-P17-TRUE] .(...) -- C:\users\mathys\desktop\doom\zandronum.exe (.not file.)
O87 - FAEL: "{D0FD6353-5D6E-40CB-9172-EE31A43D4061}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\theHunter\launcher\launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{497F7268-D368-46EE-AE5B-C7B90E92BA9E}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\theHunter\launcher\launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{FCFFDBDC-DEBF-4468-9F18-ACD7373DAE7A}C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{3172D1AE-5F08-4A64-A16C-6C86CD351945}C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe (.not file.)
O87 - FAEL: "{B03D46EF-B50A-405B-8485-08B7D9F2B894}" [In-None-P17-FALSE] .(...) -- C:\Users\Mathys\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O87 - FAEL: "TCP Query User{D626459B-AC9E-49BE-A826-59662319E2D2}C:\program files (x86)\steam\steamapps\common\star wars battlefront ii\gamedata\game32.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\star wars battlefront ii\gamedata\game32.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "UDP Query User{A000E62C-E057-4B6C-AF64-DAB5D57FCE1A}C:\program files (x86)\steam\steamapps\common\star wars battlefront ii\gamedata\game32.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\star wars battlefront ii\gamedata\game32.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{EDD44F31-9E0B-4067-9628-3F67E937F936}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe (.not file.)
O87 - FAEL: "{FD929C26-0EEC-41F9-BAE8-C6577603654A}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe (.not file.)
O87 - FAEL: "TCP Query User{963E34E5-7C39-453F-B64D-42A18C4ABA2E}C:\program files (x86)\starcraft ii\versions\base41743\sc2_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base41743\sc2_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{A108ED06-B62B-4846-998C-85FCF42D8038}C:\program files (x86)\starcraft ii\versions\base41743\sc2_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base41743\sc2_x64.exe (.not file.)
O87 - FAEL: "{D6BC9625-2506-48F7-BF7A-8C4F6978EF46}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe (.not file.)
O87 - FAEL: "{95A1AAC0-6750-4087-8639-82AD28D17098}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe (.not file.)
O87 - FAEL: "TCP Query User{98E08022-8EFE-4422-9F65-33E6D745A112}C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{DF10CCA2-0AC3-47B0-B47F-99142132D22D}C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe (.not file.)
O87 - FAEL: "{76C48647-C10B-48DD-8139-8ACE062A3174}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe (.not file.)
O87 - FAEL: "{37E8581E-78F8-4E94-8E1B-5C32D6D3A299}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe (.not file.)
O87 - FAEL: "TCP Query User{4E48F87F-FE4C-4747-84A4-2839E21787BA}C:\program files (x86)\hearthstone\hearthstone.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe (.not file.)
O87 - FAEL: "UDP Query User{21E098F2-9C8C-4684-9D6A-BCC8A4541B97}C:\program files (x86)\hearthstone\hearthstone.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe (.not file.)
O87 - FAEL: "{79FC993D-8A4E-4779-9FC5-C7497DE91967}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe (.not file.)
O87 - FAEL: "{607E7FC3-A6F2-46CC-954F-B16EA125CB81}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe (.not file.)
O87 - FAEL: "{1878F1CC-95C2-4837-A5F0-8ACDAEF4DD1A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{73678B1F-7BDD-48A4-8AA5-985263F6EA9B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{2A208F83-AF81-4218-92D0-CFB9656CD524}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{0CA0EDCF-D813-4F5F-9E0B-DF91AC1E9C93}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe (.not file.)
O87 - FAEL: "{8B067FF3-5728-4A25-BA1C-44D747E07118}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe (.not file.)
O87 - FAEL: "{B8E5EE53-283B-4A87-997E-22C1808AB755}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe (.not file.)
O87 - FAEL: "TCP Query User{F27FFD0A-FC28-4ED6-B8DE-85CA1541CCD1}C:\program files (x86)\starcraft ii\versions\base42932\sc2_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42932\sc2_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{DEEAEC7D-254A-4760-9B7B-CE60EED3BE70}C:\program files (x86)\starcraft ii\versions\base42932\sc2_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42932\sc2_x64.exe (.not file.)
O87 - FAEL: "{BFCBEC31-E5B4-41B1-8781-8A2861AAB42D}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42932\sc2_x64.exe (.not file.)
O87 - FAEL: "{78BFD895-2E96-4931-8FC0-7899A9A1DDEB}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base42932\sc2_x64.exe (.not file.)
O87 - FAEL: "{51F240B9-976B-46CA-822B-AC87D10FAFA9}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Magical Drop V\MagicalDropV.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{3A32BC60-8581-4BC6-9026-D40F2B830724}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Magical Drop V\MagicalDropV.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{B1D2ECAC-C918-428D-A7B7-E4DED2FBF84F}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{62926376-42A4-48A7-826F-632D9D5CD330}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{5CBD7323-CB6F-4215-991F-BDD464355824}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{756AC40D-FC40-4427-B446-AA4CD346B45D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{864372BD-DDBC-4A76-9934-DF54BB0B79A9}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{20EA7A33-082D-42F0-85C2-8074FF43A5F9}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{D5F697FB-D5D2-4918-B378-1125AD1404F8}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{7E00D092-2D85-49CF-B8EF-29BF5ABE58F2}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{C0743977-5E70-4097-A357-E80DC1635AAE}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{29AF020E-8DE0-42BC-9FE4-FC165F6CFE32}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{7F314D58-ACE2-4022-BC6F-6C4BC2F7B216}" [Out-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{EBA22DCB-6509-45F5-BACB-874AB2B0F9BA}" [Out-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{E05E3E65-D82C-4158-A6F7-0759EC4DEE06}" [Out-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{BC2561B3-5120-40DC-B84A-AB9F6560BE59}" [Out-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{7DF76384-940E-44A0-A3A2-C5552F6536D9}C:\program files (x86)\starcraft ii\versions\base43478\sc2_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base43478\sc2_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{5EAC4A91-6257-4DBE-9269-715570682169}C:\program files (x86)\starcraft ii\versions\base43478\sc2_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base43478\sc2_x64.exe (.not file.)
O87 - FAEL: "{7F219131-288E-4DCD-BF32-C7D9DF0C73AF}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base43478\sc2_x64.exe (.not file.)
O87 - FAEL: "{E107A3AD-57FF-4A36-855C-A6084338D373}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base43478\sc2_x64.exe (.not file.)
O87 - FAEL: "TCP Query User{CE78B493-E354-4BBA-9470-E3C2C1E0047D}C:\program files (x86)\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{295FB74F-2CC9-4B25-A151-EB9FF2A719BD}C:\program files (x86)\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "{A465FA5F-2CE7-4DD6-B1B6-7586EBBE7E9A}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "{85B80898-09B9-4961-AE02-509B73F69601}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base43571\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "{DD62CFF1-479B-4F4F-8B33-AFF04323F00A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{B6DA9623-04F9-48CA-AB18-7C5EF7608415}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{EEAF7BCB-7C0A-4CB6-84C1-B23A8ABF9172}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Skullgirls\SkullGirls.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{B5986337-B6AF-4B7F-A6B3-72E6BF3ED0D9}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Skullgirls\SkullGirls.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{DD4B8B2F-9037-4425-B767-CD5C20CDDC5E}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{2A771F19-E704-44C0-9D12-2E98BF70C29C}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{19EE4495-4659-4139-B7D2-699E1E6246E4}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Nidhogg\Nidhogg.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{D5D300F9-5086-4E45-AE10-EF2A8C470783}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Nidhogg\Nidhogg.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{45E77C25-9006-4AC1-AAC4-1AAC8DC42446}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Roguelands\Roguelands.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{33735C91-BDD6-4ED1-A89F-345A683BE752}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Roguelands\Roguelands.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{242F8931-6E94-48E0-8DC3-D63F74C167F5}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{B5FA8B1C-8775-4B86-9C9A-D0CE1B8A8F03}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{DDC25A10-A342-4BDF-9EC5-CC20C4331641}C:\program files (x86)\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{33D9D3AC-03DA-4604-884B-549BEC6EECA2}C:\program files (x86)\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "{9C4CE28F-C056-477A-B195-EED3DA1C1137}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "{7E2EA76D-B357-4CC2-8058-283CD2518DB6}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\heroes of the storm\versions\base44468\heroesofthestorm_x64.exe (.not file.)
O87 - FAEL: "{A1960033-16A8-44BB-B486-266353DAD428}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{08B9E95E-1B4A-4805-8A32-EEA2A6A7204C}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{C91F1E16-222A-4ABA-B927-8E36EB34CAD5}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{78EF0887-86FE-458A-9849-FB28A69E4379}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{F6D3599F-D234-422F-B438-3BA4B76D6D63}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "UDP Query User{6A4AD694-9548-4E11-A234-9385A949C921}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{C127D053-CDE5-42FF-8401-3A46A8D1E499}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{F07EFD5F-384E-427D-B0B8-7249DD3868F5}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{DB3EF3DE-0A97-47A3-B45C-24C0FA858D77}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Darkness II\DarknessII.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{D2EC3454-B636-4B9E-ACE9-692D73FBAC22}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Darkness II\DarknessII.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{9AC45473-6819-40BF-B654-0A5C091E5875}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{A066B264-ACD1-4889-A16B-409CC380108C}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{5C7C6E38-F002-4217-A328-72A6EC17A5D0}C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "UDP Query User{F9BEB275-7F69-4590-8B0C-F09C68BF190A}C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{2A5ED075-B35C-4B4E-B4B8-06A4FF2AE17D}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{4CD135A2-395A-4B49-8FB9-2DBE5A2077D1}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{AA5F8594-7F67-4907-AC2E-64D183A610D9}C:\program files\java\jre1.8.0_73\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jre1.8.0_73\bin\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{E2AA906F-0AEC-4979-B8D5-D99D7748A136}C:\program files\java\jre1.8.0_73\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jre1.8.0_73\bin\javaw.exe (.not file.)
O87 - FAEL: "TCP Query User{A8CDB663-6F93-42D8-81AD-F0FC5A60019E}C:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{10EE2A8A-F2DA-4396-ADEE-05D93E5A3D8B}C:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe (.not file.)
O87 - FAEL: "{B62DE992-4D26-4B4D-BB44-87ADDCDF0857}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe (.not file.)
O87 - FAEL: "{ABE9FE1A-93A2-4761-9466-F121FD2DD17B}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe (.not file.)
O87 - FAEL: "{813CE3B2-1FBA-4BC3-A7EB-C9F17688FF57}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\GameforgeLive\gfl_client.exe (.not file.)
O87 - FAEL: "{EABD262B-26A1-4A94-B14B-2753C2040F67}" [In-None-P6-TRUE] .(...) -- C:\Users\Mathys\AppData\Local\Temp\andy-x64\Setup.exe (.not file.)
O87 - FAEL: "{2C442794-409D-4089-9E83-55E209245839}" [Out-None-P6-TRUE] .(...) -- C:\Users\Mathys\AppData\Local\Temp\andy-x64\Setup.exe (.not file.)
O87 - FAEL: "{F2333FA6-C0FF-43AC-B70C-2917CA813C4A}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Andy\andy.exe (.not file.)
O87 - FAEL: "{C7CE8C81-1450-49D6-BCAF-EAC35C5E5CF7}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Andy\andy.exe (.not file.)
O87 - FAEL: "{AFD87563-008C-4527-9730-08E466D897E4}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Andy\AndyConsole.exe (.not file.)
O87 - FAEL: "{3F5F3521-C302-459A-89A3-414C84411915}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Andy\AndyConsole.exe (.not file.)
O87 - FAEL: "{2DD95C6E-432E-49E9-8E6A-87B7B2EAE2E5}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Andy\HandyAndy.exe (.not file.)
O87 - FAEL: "{E18AB6E6-AA87-490F-B91B-213F4F1E7373}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Andy\HandyAndy.exe (.not file.)
O87 - FAEL: "{2FF45338-FAAC-4593-AB8F-EE7E534DFF22}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Andy\SetupFiles\Uninstall.exe (.not file.)
O87 - FAEL: "{37849B6C-6785-4ACE-AE82-F8C2EF3276AA}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Andy\SetupFiles\Uninstall.exe (.not file.)
O87 - FAEL: "{85348512-C939-44FE-B760-EE49F69FA801}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Andy\SetupFiles\VMwareCheck.exe (.not file.)
O87 - FAEL: "{35A60EB2-F703-46C0-A7AB-2AE1DC14F5CF}" [Out-None-P6-TRUE] .(...) -- C:\Program Files\Andy\SetupFiles\VMwareCheck.exe (.not file.)
O87 - FAEL: "{62A34970-7A8B-4A7D-9107-7E2FF6796BDB}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe (.not file.)
O87 - FAEL: "{E6E57CDC-13DD-45C9-B639-704F61E2CB79}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe (.not file.)
O87 - FAEL: "{82C6817E-EB38-46B8-9892-6D884DA5F2DD}" [In-None-P6-TRUE] .(.Vertigo Gaming - Cook, Serve, Delicious!.) -- C:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious\CSDSteamBuild.exe =>.Steam SteamApps Games
O87 - FAEL: "{F3F6D2B5-99AC-4727-BF62-FF7FAF900DAD}" [In-None-P17-TRUE] .(.Vertigo Gaming - Cook, Serve, Delicious!.) -- C:\Program Files (x86)\Steam\steamapps\common\CookServeDelicious\CSDSteamBuild.exe =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{F7145D89-672A-4A34-9F55-95241AC7AA7D}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (.not file.)
O87 - FAEL: "UDP Query User{42870D69-6496-4CC8-9966-DB3F4915F89C}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (.not file.)
O87 - FAEL: "{2F17A550-2C20-420C-9ED7-EE719E662EF0}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (.not file.)
O87 - FAEL: "{6530A3DF-C688-4A62-B86D-1A39B02A083C}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (.not file.)
O87 - FAEL: "TCP Query User{ED38E74A-ACCF-46D7-93DB-3CD30B6424CA}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (.not file.)
O87 - FAEL: "UDP Query User{97B9EFFF-9979-424A-82A2-B62E26C99F70}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (.not file.)
O87 - FAEL: "{80E76479-09CD-4C23-BF11-584E981B67D9}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (.not file.)
O87 - FAEL: "{E1DBEDBC-392D-4B7F-8FB6-318EB040D0B3}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (.not file.)
O87 - FAEL: "{61C27E8F-7CD4-45DC-88BE-4DB6E6B21735}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Shelter2\Shelter2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{85520FE8-EF92-4EAC-8F47-1056A1D73231}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Shelter2\Shelter2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{BADD3814-D4DD-4958-A8E9-9C9A99067140}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Impostors.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{8A83E1FC-9B0F-4ABA-BA49-2734938D942D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Impostors.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{B5849ECF-457F-4480-88D2-6B9DE6E5B3E4}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{F49CA3E0-AD00-4F9E-BDB6-53D59A560A93}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{4F5A6D21-A594-4212-B243-74BED2D6586D}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{1535F141-8133-4DA4-B883-CA68A32CC7EE}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{93F409D5-D7E6-4F32-8F2E-74C1D401A28A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{D24B1785-F3E9-461E-AFCF-91AF28CA7A0B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{A3C58CF5-A2CB-48C0-8682-1514ED247F2A}C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe (.not file.)
O87 - FAEL: "UDP Query User{06D76875-F376-488E-9510-308578B0E481}C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe (.not file.)
O87 - FAEL: "{07F44DDC-006D-42AE-89FD-54D18FB2789A}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe (.not file.)
O87 - FAEL: "{F31D0738-C91E-4FEE-8A26-D29604549665}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe (.not file.)
O87 - FAEL: "{F76D59C3-0428-4C13-92E2-BCC1BAF37C07}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{00E7AEE5-BDE5-4834-B5B9-E7FB3B5F3A0A}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe (.not file.) =>.Steam SteamApps Games
---\\ Scan Additionnel (11) - 0s
C:\Windows\Tasks\Final Media Player Update Checker.job =>Adware.InstallCore
C:\Windows\System32\Tasks\Final Media Player Update Checker =>Adware.InstallCore
C:\Windows\System32\Tasks\gameo_update =>.Superfluous.IronSourceLtd
C:\Windows\System32\Tasks\Palikan fili =>PUP.Optional.GoPalikan
HKCU\SOFTWARE\Bitberry =>.Superfluous.Bitberry
HKCU\SOFTWARE\Bitberry Software =>.Superfluous.Bitberry
HKCU\SOFTWARE\Gameo =>.Superfluous.IronSourceLtd
HKCU\SOFTWARE\go_palikan =>PUP.Optional.GoPalikan
HKCU\SOFTWARE\ICSW1.14 =>Adware.InstallCore
HKCU\SOFTWARE\yahooprovidedsearch =>PUP.Optional.Dealply
C:\Users\Mathys\AppData\Roaming\BrowserMe =>Ransomware.BrowserMe
---\\ Récapitulatif des éléments trouvés sur votre station (6) - 0s
https://www.anti-malware.top/2016/04/22/adware-installcore/ =>Adware.InstallCore
https://www.anti-malware.top/2016/05/02/superfluous-ironsourceltd/ =>.Superfluous.IronSourceLtd
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.GoPalikan
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Bitberry
https://www.nicolascoolman.com/fr/pup-dealply/ =>PUP.Optional.Dealply
https://www.nicolascoolman.com/fr/ransomware-browserme/ =>Ransomware.BrowserMe
~ End of the scan, 18625 items in 00h03mn41s (985)