Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2017.7.30.131 Par Nicolas Coolman (2017/07/30)
~ Démarré par Diaby (Administrator) (2017/07/31 18:39:20)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Diaby\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Diaby\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Professional, 32-bit Service Pack 1 (Build 7601) =>.Microsoft Corporation
---\\ Navigateurs Internet (3) - 1s
~ GCIE: Google Chrome v59.0.3071.115
~ MFIE: Mozilla Firefox 54.0.1 (x86 fr)
~ MSIE: Internet Explorer v11.0.9600.18697
---\\ Informations sur les produits Windows (4) - 1s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection (3) - 22s
Avira Antivirus v15.0.28.28 (Protection)
Emsisoft Anti-Malware (Protection)
Malwarebytes version 3.1.2.1733 v3.1.2.1733 (Protection)
---\\ Logiciels de protection et autres (Superflus) (1) - 24s
~ Spybot - Search & Destroy v2.4.40 (Superfluous)
---\\ Logiciels d'optimisation (1) - 26s
~ CCleaner v5.32 (Optimize)
---\\ Surveillance de Logiciels (1) - 27s
~ Adobe Flash Player 26 PPAPI (Surveillance)
---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 15 Model 4 Stepping 3, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 1039.796 MB (13% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 10 GB (13%) free of 76 GB : ATTENTION =>Warning Disk Space
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: DIABY-PC
~ User Name: Diaby
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 10 GB free of 76 GB (System)
---\\ Etat du Centre de Sécurité Windows (12) - 1s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (25) - 78s
[MD5.40D777B7A95E00593EB1568C68514493] - 20/11/2010 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2616320] =>.Microsoft Corporation
[MD5.C648901695E275C8F2AD04B687A68CE2] - 30/03/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [45056] =>.Microsoft Corporation
[MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [96256] =>.Microsoft Corporation
[MD5.9B934764D5320F5F2FC0C3CB663F7A3E] - 14/05/2017 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2767872] =>.Microsoft Corporation
[MD5.52449FD429D6053B78AE564DEF303870] - 17/07/2014 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [304128] =>.Microsoft Corporation
[MD5.E3AE23569749DE12D45BA3B489A036AE] - 20/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [193536] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - 12/04/2011 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.F582FC7976F1248AC5FBD6875C626B41] - 04/04/2017 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [338944] =>.Microsoft Corporation
[MD5.338C86357871C167A96AB976519BF59E] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584] =>.Microsoft Windows®
[MD5.77EA11B065E0A8AB902D78145CA51E10] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656] =>.Microsoft Corporation
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544] =>.Microsoft Corporation
[MD5.EA9DBD76CE9254C77BAAB4339DD4C4FB] - 08/09/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [81408] =>.Microsoft Corporation
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544] =>.Microsoft Corporation
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] =>.Microsoft Corporation
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [101888] =>.Microsoft Corporation
[MD5.D071B9246BFD1575D72BD88B66F6FB87] - 21/05/2017 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [124416] =>.Microsoft Corporation
[MD5.A00996C9BFEF29A93B9F21DBE1DC502D] - 11/05/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [188928] =>.Microsoft Corporation
[MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - 12/04/2013 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1211752] =>.Microsoft Windows®
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [79360] =>.Microsoft Corporation
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] =>.Microsoft Corporation
[MD5.B973FCFC50DC1434E1970A146F7E3885] - 20/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133632] =>.Microsoft Corporation
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] =>.Microsoft Corporation
[MD5.01743A8A62F2C0488F9C4F6D25C21B2C] - 10/05/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74752] =>.Microsoft Corporation
[MD5.F497F67932C6FA693D7DE2780631CFE7] - 20/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [245632] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (22) - 43s
O23 - Service: 76f1c620a777bf6a6ddcfefa9f394791 (76f1c620a777bf6a6ddcfefa9f394791) . (.Copyright (C) 2014 - .) - C:\Program Files\76f1c620a777bf6a6ddcfefa9f394791\738f470830b3668d66d5f0a992feb250.exe =>PUP.Optional.Wajam
O23 - Service: Emsisoft Protection Service (a2AntiMalware) . (.Emsisoft Ltd - Emsisoft Protection Service.) - C:\Program Files\Emsisoft Anti-Malware\a2service.exe =>.Emsisoft Ltd®
O23 - Service: Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner WFP Service.) - C:\Program Files\Avira\Antivirus\avmailc7.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\Antivirus\sched.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\Antivirus\avguard.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - AntiVir WebGuard WFP Service.) - C:\Program Files\Avira\Antivirus\avwebg7.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira Service Host.) - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC - ByteFence Anti-Malware.) - C:\Program Files\ByteFence\ByteFenceService.exe =>.Superfluous.ByteFence =>.Superfluous.ByteFence
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: McAfee Home Network (HomeNetSvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
O23 - Service: IMF Service (IMFservice) . (.IObit - IObit Malware Fighter Service.) - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe =>.IObit Information Technology®
O23 - Service: McAfee Proxy Service (McProxy) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
O23 - Service: McAfee Service Controller (mfemms) . (.McAfee, Inc. - McAfee Management Service.) - C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe =>.McAfee, Inc.®
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) . (.McAfee, Inc. - McAfee Process Validation Service.) - C:\Windows\System32\mfevtps.exe =>.McAfee, Inc.®
O23 - Service: McAfee Module Core Service (ModuleCoreService) . (.McAfee, Inc. - McAfee Module Core Service.) - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe =>.McAfee, Inc.®
O23 - Service: Ntp2NetSvc (Ntp2NetSvc) . (.Don HO don.h@free.fr - Notepad2 : a free (GNU) source code editor.) - C:\Program Files\notepad2\notepad2.exe =>.Don HO don.h@free.fr
O23 - Service: Ntp2UpSvc (Ntp2UpSvc) . (.Don HO don.h@free.fr - Notepad2 : a free (GNU) source code editor.) - C:\Program Files\Common Files\ntp2UpSvc\notepad2.exe =>.Don HO don.h@free.fr
O23 - Service: ByteFence Security Real-time Protection (rtop) . (.Copyright Byte Technologies LLC. - ByteFence Real-time Protection.) - C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe =>.Superfluous.ByteFence =>.Superfluous.ByteFence
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe =>.Safer Networking Ltd.®
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe =>.Safer Networking Ltd.®
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe =>.Safer Networking Ltd.®
O23 - Service: Services Bureau à distance (TermService) . (.Stas'M Corp. - Terminal Services Wrapper Library.) - C:\Windows\System32\rdpwrap.dll =>.Stas'M Corp.
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (30) - 553s
SS - Auto [27/07/2017] [ 1916928] 76f1c620a777bf6a6ddcfefa9f394791 (76f1c620a777bf6a6ddcfefa9f394791) . (.Copyright (C) 2014.) - C:\Program Files\76f1c620a777bf6a6ddcfefa9f394791\738f470830b3668d66d5f0a992feb250.exe =>PUP.Optional.Wajam
SR - Auto [29/06/2017] [ 5827888] Emsisoft Protection Service (a2AntiMalware) . (.Emsisoft Ltd.) - C:\Program Files\Emsisoft Anti-Malware\a2service.exe =>.Emsisoft Ltd®
SS - Demand [13/07/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SS - Auto [04/07/2017] [ 1128432] Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Antivirus\avmailc7.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [04/07/2017] [ 490968] Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Antivirus\sched.exe =>.Avira Operations GmbH & Co. KG®
SS - Auto [04/07/2017] [ 490968] Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Antivirus\avguard.exe =>.Avira Operations GmbH & Co. KG®
SS - Auto [04/07/2017] [ 1524216] Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Antivirus\avwebg7.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [13/06/2017] [ 377976] Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [20/07/2017] [ 145888] ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC.) - C:\Program Files\ByteFence\ByteFenceService.exe =>.Superfluous.ByteFence =>.Superfluous.ByteFence
SS - Demand [29/03/2017] [ 1290176] ClientAnalyticsService (ClientAnalyticsService) . (.Intel Security.) - C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe =>.McAfee, Inc.®
SS - Demand [09/06/2017] [ 383016] EasyAntiCheat (EasyAntiCheat) . (.EasyAntiCheat Ltd.) - C:\Windows\System32\EasyAntiCheat.exe =>.EasyAntiCheat Oy®
SS - Auto [06/06/2016] [ 154440] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [06/06/2016] [ 154440] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [22/02/2017] [ 509776] McAfee Home Network (HomeNetSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
SR - Auto [18/07/2017] [ 1768736] IMF Service (IMFservice) . (.IObit.) - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe =>.IObit Information Technology®
SR - Auto [22/02/2017] [ 509776] McAfee Proxy Service (McProxy) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
SR - Demand [30/04/2017] [ 204792] McAfee Firewall Core Service (mfefire) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe =>.McAfee, Inc.®
SR - Auto [30/04/2017] [ 355832] McAfee Service Controller (mfemms) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe =>.McAfee, Inc.®
SR - Auto [30/04/2017] [ 328704] McAfee Validation Trust Protection Service (mfevtp) . (.McAfee, Inc..) - C:\Windows\System32\mfevtps.exe =>.McAfee, Inc.®
SR - Auto [31/05/2017] [ 1228160] McAfee Module Core Service (ModuleCoreService) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe =>.McAfee, Inc.®
SS - Demand [30/06/2017] [ 175560] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [16/02/2017] [ 2340864] Ntp2NetSvc (Ntp2NetSvc) . (.Don HO don.h@free.fr.) - C:\Program Files\notepad2\notepad2.exe =>.Don HO don.h@free.fr
SS - Auto [13/07/2017] [ 2340864] Ntp2UpSvc (Ntp2UpSvc) . (.Don HO don.h@free.fr.) - C:\Program Files\Common Files\ntp2UpSvc\notepad2.exe =>.Don HO don.h@free.fr
SS - Demand [29/06/2017] [ 189792] PSEXESVC (PSEXESVC) . (.Sysinternals.) - C:\Windows\PSEXESVC.exe =>.Sysinternals®
SS - Demand [23/04/2017] [ 75792] QFX Software Update Service (QFXUpdateService) . (...) - C:\Program Files\KeyScrambler\QFXUpdateService.exe =>.QFX Software Corporation®
SR - Auto [31/07/2017] [ 304456] ByteFence Security Real-time Protection (rtop) . (.Copyright Byte Technologies LLC..) - C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe =>.Superfluous.ByteFence =>.Superfluous.ByteFence
SR - Auto [24/06/2014] [ 1738168] Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe =>.Safer Networking Ltd.®
SR - Auto [27/06/2014] [ 2088408] Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe =>.Safer Networking Ltd.®
SR - Auto [25/04/2014] [ 171928] Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe =>.Safer Networking Ltd.®
SR - Auto [22/12/2016] [ 77312] Services Bureau à distance (TermService) . (.Stas'M Corp..) - C:\Windows\System32\rdpwrap.dll =>.Stas'M Corp.
---\\ Tâches planifiées en automatique (76) - 36s
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\060184C3-9766-46a0-B258-F4518A0B2633.job [338]
O39 - APT: Unknown - (.Adobe Inc..) -- C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job [1064] =>.Adobe Inc.
O39 - APT: Unknown - (.Adobe Inc..) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] =>.Adobe Inc.
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Arkoghtpeguther.job [546]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\bvyvdvge.job [274]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job [644]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Chrome Cleanup Tool logs upload retry.job [436]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Clean System Memory.job [258]
O39 - APT: Unknown - (.IObit.) -- C:\Windows\Tasks\Driver Booster SkipUAC (Diaby).job [248] =>.IObit
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Fevuphmervly Launcher.job [710]
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1050] =>.Google Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1bffee1ac4c3e.job [1054] =>.Google Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1c000120ba96b.job [1050] =>.Google Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d22066d30bdfad.job [1054] =>.Google Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d2206738002651.job [1054] =>.Google Inc.
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Launch 18391.job [200]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\McAfee Remediation (Prepare).job [248]
O39 - APT: Unknown - (.McAfee Inc..) -- C:\Windows\Tasks\McAfeeLogon.job [270] =>.McAfee Inc.
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Norton Product Installer.job [606]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Norton Product InstallerIdle.job [614]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job [616]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\ReimageUpdater.job [344] =>.Superfluous.ReimageRepair
O39 - APT: Unknown - (.Legitimate.) -- C:\Windows\Tasks\RunAsStdUser Task.job [380]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job [446]
O39 - APT: Unknown - (.Microsoft Corporation.) -- C:\Windows\Tasks\SidebarExecute.job [234] =>.Microsoft Corporation
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\update-S-1-5-21-377985148-792701347-3327087119-1001.job [376]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\update-sys.job [376]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{04080DB5-B3A3-BA1E-9ECF-2C2F482411E3}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{09E7DB74-84BA-4925-B16A-BDD9903CBA36}.job [372]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{1AC348B7-AD68-FF1C-B28E-D7154A60845C}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{1BD3C577-AC78-72DC-73FA-BFCFD1282F09}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{313B6D77-91B7-4729-A8CE-71B472DEFDFD}.job [356]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{35256B5B-A4F7-1A6B-BAA8-B9AFFA9C2D07}.job [364]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{3672E31A-81D9-54B1-59B6-288993C49B47}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{3700379E-80AB-8035-7D42-73018BA78685}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{3F82500D-8829-E7A6-8EED-8BD7AAAE4D4F}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{45485F2B-F2E3-E880-D53A-70275FF51A73}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{6705E622-D0AE-5189-F8C7-23139FAAF4C5}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{6AE6823C-DD4D-3597-24AA-41F7824849F9}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{72A2A6F2-C509-1159-E877-5A279F6B89A6}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{803DA72D-3796-1086-18D9-B4B5A388E4CA}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{811BEB6F-36B0-5CC4-6E67-2B54C8A88248}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{8CE64007-3B4D-F7AC-70D3-46226CC128C3}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{8DDB2B4C-2A59-4BD4-86E2-E3C071F88604}.job [356]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{B6D26BEC-0179-DC47-976C-B9812509626B}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{B9CC9342-A99F-494E-BDC8-B0144B2136BA}.job [356]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{BC335264-0B98-E5CF-1BCD-CDF3A77DB74F}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{BC5A07C5-0BF1-B06E-75C8-F2A9D4292B36}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{C00DA454-77A6-13FF-9770-3F58EDDC6571}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{C105346C-316B-4307-97C6-16882327ADA8}.job [424]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{C38ABE1B-7421-09B0-8E43-F48334855F6F}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{C72D3418-B588-43B7-A737-F7D20991DE46}.job [308]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{D0B53B8D-671E-8C26-13D2-039C28EE9AD7}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{D1F95EA7-6652-E90C-6809-87E1AD9F0189}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{D7471C96-60EC-AB3D-6467-90C2A1FFEC24}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{DA2F7091-AA65-4DA2-A47C-02D8DE44B460}.job [356]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{DC736D9A-6BD8-DA31-C4D2-9966D4182587}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{EA9ACF9D-5D31-7836-8488-FD37BF743D2F}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{F6C32E6E-4168-99C5-BFFD-82F34EAF93DB}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\ASC9_PerformanceMonitor [3168]
O39 - APT: Unknown - (.IObit.) -- C:\Windows\System32\Tasks\ASC9_SkipUac_Diaby [2856] =>.IObit
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 [3640]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\ByteFence [3358] =>.Superfluous.ByteFence
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\ByteFence Scan [3462] =>.Superfluous.ByteFence
O39 - APT: Unknown - (.IObit.) -- C:\Windows\System32\Tasks\Driver Booster Scheduler [3230] =>.IObit
O39 - APT: Unknown - (.IObit.) -- C:\Windows\System32\Tasks\Driver Booster SkipUAC (Diaby) [2862] =>.IObit
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3802] =>.Google Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4054] =>.Google Inc.
O39 - APT: Unknown - (.IObit.) -- C:\Windows\System32\Tasks\Uninstaller_SkipUac_Diaby [2892] =>.IObit
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC9_PerformanceMonitor
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC9_SkipUac_Diaby
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ByteFence =>.Superfluous.ByteFence
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ByteFence Scan =>.Superfluous.ByteFence
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (Diaby)
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_Diaby
---\\ Applications lancées au démarrage du système (48) - 78s
O4 - HKLM\..\Run: [Lightshot] . (.Copyright 2009 - Starter Module.) -- C:\Program Files\Skillbrains\lightshot\Lightshot.exe =>.Superfluous.Skillbrains
O4 - HKLM\..\Run: [tmp178E] -- C:\Users\Diaby\AppData\Local\Temp\tmp178E.tmp.vbs (.not file.)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [KeyScrambler] . (.QFX Software Corporation - KeyScrambler.) -- C:\Program Files\KeyScrambler\keyscrambler.exe =>.QFX Software Corporation®
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] . (.Avira Operations GmbH & Co. KG - Avira Connect.) -- C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe =>.Avira Operations GmbH & Co. KG®
O4 - HKLM\..\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe =>.Safer Networking Ltd.®
O4 - HKLM\..\Run: [IObit Malware Fighter] . (.IObit - IObit Malware Fighter.) -- C:\Program Files\IObit\IObit Malware Fighter\IMF.exe =>.IObit Information Technology®
O4 - HKLM\..\Run: [a689fa49fd42104e55e4ba78550f130f] . (...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe
O4 - HKLM\..\Run: [Malwarebytes TrayApp] -- C:\Nouveau dossier\DBZ SAGAS\Anti-Malware\mbamtray.exe (.not file.)
O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files\Avira\Antivirus\avgnt.exe =>.Avira Operations GmbH & Co. KG®
O4 - HKLM\..\Run: [emsisoft anti-malware] . (.Emsisoft Ltd - Emsisoft Real-Time Protection.) -- c:\program files\emsisoft anti-malware\a2guard.exe =>.Emsisoft Ltd®
O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Diaby\AppData\Local\Akamai\netsession_win.exe =>.Superfluous.AkamaiHD
O4 - HKCU\..\Run: [tmp178E] -- C:\Users\Diaby\AppData\Local\Temp\tmp178E.tmp.vbs (.not file.)
O4 - HKCU\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Diaby\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [Dt25] -- C:\Users\Diaby\AppData\Roaming\Microsoft\Crypto\TrayNet32.wsf (.not file.)
O4 - HKCU\..\Run: [4c121ab7] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Users\Diaby\AppData\Roaming\Microsoft\Crypto\wscript.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [A2C4R06GOI2USHB] . (.T9SUI9 - T9SUI.) -- C:\Program Files\VQJX3YA67N\9XV5352AV.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [4TTE7FVZAAWLWTW] . (.T9SUI9 - T9SUI.) -- C:\Program Files\cgmemeyesu2\N84IB.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [BIQMOR3HCHNOJKM] . (.T9SUI9 - T9SUI.) -- C:\Program Files\WMRHXXUH0F\1OLD5AKQC.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [ZVZJVKCGYYNP607] . (.DG - D.) -- C:\Program Files\1ABKMYMX0N\3U7W9DLR4.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [26J9JV7MOOO65E6] . (.HS64W3CL - HS.) -- C:\Program Files\O9J4S1YMCM\9MAHNIY1A.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [4VFC0RKPGA0ZAPW] . (.@1H8VX@M7 - .) -- C:\Program Files\5SMJZZ84T1\PLGL71APN.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [SVH4LS1YBMIOUIA] . (.6U8 - 6U8KEUYG.) -- C:\Program Files\5V0M24Q3NB\WRJAAAP8A.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [R4IGZ4M949809P2] . (.6U8 - 6U8KEUYG.) -- C:\Program Files\K068PKZ6UO\R4UUPNVPO.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [G0N3C77P27QPQZ4] . (.AKFTR - .) -- C:\Program Files\HB8NBYQRQS\EDCPMOQW5.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Diaby\AppData\Local\Akamai\netsession_win.exe =>.Superfluous.AkamaiHD
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [tmp178E] -- C:\Users\Diaby\AppData\Local\Temp\tmp178E.tmp.vbs (.not file.)
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Diaby\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [Dt25] -- C:\Users\Diaby\AppData\Roaming\Microsoft\Crypto\TrayNet32.wsf (.not file.)
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [4c121ab7] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Users\Diaby\AppData\Roaming\Microsoft\Crypto\wscript.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [A2C4R06GOI2USHB] . (.T9SUI9 - T9SUI.) -- C:\Program Files\VQJX3YA67N\9XV5352AV.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [4TTE7FVZAAWLWTW] . (.T9SUI9 - T9SUI.) -- C:\Program Files\cgmemeyesu2\N84IB.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [BIQMOR3HCHNOJKM] . (.T9SUI9 - T9SUI.) -- C:\Program Files\WMRHXXUH0F\1OLD5AKQC.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [ZVZJVKCGYYNP607] . (.DG - D.) -- C:\Program Files\1ABKMYMX0N\3U7W9DLR4.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [26J9JV7MOOO65E6] . (.HS64W3CL - HS.) -- C:\Program Files\O9J4S1YMCM\9MAHNIY1A.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [4VFC0RKPGA0ZAPW] . (.@1H8VX@M7 - .) -- C:\Program Files\5SMJZZ84T1\PLGL71APN.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [SVH4LS1YBMIOUIA] . (.6U8 - 6U8KEUYG.) -- C:\Program Files\5V0M24Q3NB\WRJAAAP8A.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [R4IGZ4M949809P2] . (.6U8 - 6U8KEUYG.) -- C:\Program Files\K068PKZ6UO\R4UUPNVPO.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [G0N3C77P27QPQZ4] . (.AKFTR - .) -- C:\Program Files\HB8NBYQRQS\EDCPMOQW5.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd®
---\\ Processus lancés (50) - 192s
[MD5.FD3DE2078B2ED0BBF28B396F213FEC95] - (.IObit - IObit Malware Fighter Service.) -- C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [1768736] [PID.868] =>.IObit Information Technology®
[MD5.FFEF85EA698E2CE1B501509E4F4A3754] - (.Emsisoft Ltd - Emsisoft Protection Service.) -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe [5827888] [PID.924] =>.Emsisoft Ltd®
[MD5.69681426797E0E78F4D9398BD789F1F8] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files\Avira\Antivirus\sched.exe [490968] [PID.1852] =>.Avira Operations GmbH & Co. KG®
[MD5.624E2BAB14C48D0C84EE265125811169] - (.Byte Technologies LLC - ByteFence Anti-Malware.) -- C:\Program Files\ByteFence\ByteFenceService.exe [145888] [PID.548] =>.Superfluous.ByteFence
[MD5.DA7B184091EBBDE88CA5229DA62F4D65] - (.McAfee, Inc. - McAfee Management Service.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [355832] [PID.1876] =>.McAfee, Inc.®
[MD5.72F13892AC828AEA465DA8D6D10094C2] - (.McAfee, Inc. - McAfee Process Validation Service.) -- C:\Windows\System32\mfevtps.exe [328704] [PID.1896] =>.McAfee, Inc.®
[MD5.32DA5D123DCE8E36F7D0B0F4AE68B61D] - (.McAfee, Inc. - McAfee Module Core Service.) -- C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1228160] [PID.400] =>.McAfee, Inc.®
[MD5.72F13892AC828AEA465DA8D6D10094C2] - (.McAfee, Inc. - McAfee Process Validation Service.) -- C:\Windows\System32\mfevtps.exe [328704] [PID.468] =>.McAfee, Inc.®
[MD5.4B87C23764D0EA8D8D1C13DEC7A38985] - (.Don HO don.h@free.fr - Notepad2 : a free (GNU) source code editor.) -- C:\Program Files\notepad2\notepad2.exe [2340864] [PID.2168] =>.Don HO don.h@free.fr
[MD5.A8FBDF79F7BFF18AC1E55D41EE6A5030] - (.Copyright Byte Technologies LLC. - ByteFence Real-time Protection.) -- C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe [304456] [PID.2444] =>.Superfluous.ByteFence
[MD5.D777F1417D9BB9F66CD9D9C3B61F730F] - (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168] [PID.2468] =>.Safer Networking Ltd.®
[MD5.68D6C7F99BC73B88954D844FCCBEB2A0] - (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) -- C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408] [PID.2584] =>.Safer Networking Ltd.®
[MD5.5E7C103F8475C4289847D15E129C20F7] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [1713904] [PID.2800] =>.Microsoft Corporation®
[MD5.296AFEDFC8100327634C60860F160986] - (.McAfee, Inc. - McAfee Core Firewall Service.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [204792] [PID.2912] =>.McAfee, Inc.®
[MD5.899C706D9C5A829BEA290CD02A95B07C] - (.Avira Operations GmbH & Co. KG - Avira Service Host.) -- C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [377976] [PID.2952] =>.Avira Operations GmbH & Co. KG®
[MD5.33E6E5822E22A5E1DEA523C06155FD07] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe [288848] [PID.2992] =>.Google Inc®
[MD5.DAF0C7D1F4E9B057C8151D0B92A6BDA5] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [194304] [PID.3244] =>.Microsoft Corporation®
[MD5.32DA5D123DCE8E36F7D0B0F4AE68B61D] - (.McAfee, Inc. - McAfee Module Core Service.) -- C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1228160] [PID.3484] =>.McAfee, Inc.®
[MD5.296AFEDFC8100327634C60860F160986] - (.McAfee, Inc. - McAfee Core Firewall Service.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [204792] [PID.3772] =>.McAfee, Inc.®
[MD5.9B9B368A8FF5CAF91D7A333CF62CD2CC] - (.Safer-Networking Ltd. - Windows Security Center integration..) -- C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928] [PID.3864] =>.Safer Networking Ltd.®
[MD5.0E5346C162466EF317CC1B27860C4FF7] - (.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [509776] [PID.3896] =>.McAfee, Inc.®
[MD5.EABD36D259A4E784C4DD0C8F3D8D3929] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14696704] [PID.3292] =>.Realtek Semiconductor Corp®
[MD5.004763BDF8E48244DBB9FDFDE3065EBC] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [173592] [PID.3728] =>.Intel Corporation®
[MD5.CD1102E5D340216138C7F56FA8D26998] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [150552] [PID.1340] =>.Intel Corporation®
[MD5.D9C51528488EA0D98D3C4D02ABD16759] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\System32\igfxsrvc.exe [252952] [PID.2500] =>.Intel Corporation®
[MD5.7EE68A122ED08E4AAD8DA551E34D2515] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [4101576] [PID.5200] =>.Safer Networking Ltd.®
[MD5.7F3D0BC2FE61C249302E0515989C59E2] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Diaby\AppData\Local\Akamai\netsession_win.exe [4490200] [PID.4084] =>.Superfluous.AkamaiHD
[MD5.CC436BB2A26391F3DEBE316F6FB0474F] - (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Diaby\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008] [PID.4048] =>.Microsoft Corporation®
[MD5.7F3D0BC2FE61C249302E0515989C59E2] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Diaby\AppData\Local\Akamai\netsession_win.exe [4490200] [PID.4472] =>.Superfluous.AkamaiHD
[MD5.0819DD7E886A65DB8A2B4B42AE61992D] - (.Avira Operations GmbH & Co. KG - Avira.) -- C:\Program Files\Avira\Launcher\Avira.Systray.exe [304624] [PID.5360] =>.Avira Operations GmbH & Co. KG®
[MD5.40C617E6B9A8BA75A1EF001B13F32304] - (.T9SUI9 - T9SUI.) -- C:\Program Files\VQJX3YA67N\9XV5352AV.exe [1040896] [PID.5500] =>Adware.Wizzcaster
[MD5.40C617E6B9A8BA75A1EF001B13F32304] - (.T9SUI9 - T9SUI.) -- C:\Program Files\cgmemeyesu2\N84IB.exe [1040896] [PID.5608] =>Adware.Wizzcaster
[MD5.40C617E6B9A8BA75A1EF001B13F32304] - (.T9SUI9 - T9SUI.) -- C:\Program Files\WMRHXXUH0F\1OLD5AKQC.exe [1040896] [PID.5716] =>Adware.Wizzcaster
[MD5.CA2712756F3D29D1B659E18600FA66E6] - (.IObit - IObit Malware Fighter.) -- C:\Program Files\IObit\IObit Malware Fighter\IMF.exe [5780256] [PID.6056] =>.IObit Information Technology®
[MD5.CCAE248C36E2545FC3474F41555DAB81] - (.DG - D.) -- C:\Program Files\1ABKMYMX0N\3U7W9DLR4.exe [1040896] [PID.3960] =>Adware.Wizzcaster
[MD5.7AD30138781BD600C66F04603D1B85EE] - (.@1H8VX@M7 - .) -- C:\Program Files\5SMJZZ84T1\PLGL71APN.exe [1040896] [PID.3720] =>Adware.Wizzcaster
[MD5.004211FE72186E9F0A9891102B9A9E9C] - (.6U8 - 6U8KEUYG.) -- C:\Program Files\5V0M24Q3NB\WRJAAAP8A.exe [1040896] [PID.5296] =>Adware.Wizzcaster
[MD5.004211FE72186E9F0A9891102B9A9E9C] - (.6U8 - 6U8KEUYG.) -- C:\Program Files\K068PKZ6UO\R4UUPNVPO.exe [1040896] [PID.5312] =>Adware.Wizzcaster
[MD5.CA757CC6A18955275CE2ED27E1303D3A] - (.AKFTR - .) -- C:\Program Files\HB8NBYQRQS\EDCPMOQW5.exe [1040896] [PID.4732] =>Adware.Wizzcaster
[MD5.8401873D8DA6106B0EA61D3323F441F3] - (.IObit - IObit Malware Fighter Tips.) -- C:\Program Files\IObit\IObit Malware Fighter\IMFTips.exe [2439456] [PID.6012] =>.IObit Information Technology®
[MD5.46B0C7E76763A823FCD95827A59FBBD7] - (.Symantec Corporation - Firewall Diagnostic NDF Helper.) -- C:\Program Files\Norton Security\Engine\22.5.4.24\SymDgnHC.exe [192168] [PID.6656] =>.Symantec Corporation®
[MD5.A0270CE04D72C81E9D719D495604D4C9] - (.Copyright Byte Technologies LLC. - ByteFence Real-time Protection.) -- C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe [619848] [PID.7528] =>.Superfluous.ByteFence
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.6248] =>.Google Inc®
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.5260] =>.Google Inc®
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.7340] =>.Google Inc®
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.6420] =>.Google Inc®
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.800] =>.Google Inc®
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.4644] =>.Google Inc®
[MD5.362E2CEA5EF38DAC4A8CDB8F6A793989] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Diaby\AppData\Roaming\ZHP\ZHPDiag3.exe [2800512] [PID.7760] =>.Nicolas Coolman
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.5032] =>.Google Inc®
---\\ Google Chrome, Démarrage,Recherche,Extensions (23) - 9s
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Docs =>.Legitimate
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com =>.Google Inc. {Drive}
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [User Data\Default] [fngmhnnpilhplaeedifhccceomclgfbg] Tables =>Adware.CloudAtlas
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [User Data\Default] [pilplloabdedfmialnfchjomjmpjcoej] Search Manager =>.Superfluous.SearchManager
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G0 - GCSP: Preferences [User Data\Default][HomePage] http://codes.iobit.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://dev.visualwebsiteoptimizer.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fr.apiads.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://purchase.iobit.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.iobit.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cookies-control.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.googleapis.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://m59.prod2016.com
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive}
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] eyeo GmbH =>.eyeo GmbH {AdBlock Plus}
G2 - GCE: Preference [User Data\Default] [cfkpefbllpconnkfpdgagkifmflckkdp] Сookies Control =>.Superfluous.CookiesControl
G2 - GCE: Preference [User Data\Default] [fbimffnjoeobhjhochngikepgfejjmgj]
G2 - GCE: Preference [User Data\Default] [fdhpkpfbolhjcbejckjbiciinkcjlijj] Télécommande Virtuelle Freebox Révolution/HD
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (12) - 192s
M0 - MFSP: prefs.js [Diaby - zo5cs3w4.default] http://www.google.fr/ =>.Google Inc.
P2 - EXT FILE: (.Tables - .) -- C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\zo5cs3w4.default\extensions\300414@extcorp.com.xpi =>Adware.CloudAtlas
P2 - EXT FILE: (.Google Translator for Firefox - Translate the selected text and the fu.) -- C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\zo5cs3w4.default\extensions\translator@zoli.bod.xpi =>.Google Translator for Firefox
P2 - EXT FILE: (.Télécommande Virtuelle Freebox Révolut - Après avoir configuré votre code de té.) -- C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\zo5cs3w4.default\extensions\tvfreebox@ssofast.com.xpi
P2 - EXT FILE: (.Adblock Plus - Ads were yesterday!.) -- C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\zo5cs3w4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi =>.Adblock Plus
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT: (...) -- C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\zo5cs3w4.default\extensions\abs@avira.com =>.Avira Software
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_23_0_0_185.dll =>.Adobe Systems Incorporated
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (12) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.startpageing123.com/ =>Hijacker.StartpageIng123
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.ourluckysites.com/ =>Hijacker.OurLuckySites
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.startpageing123.com/ =>Hijacker.StartpageIng123
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.ourluckysites.com/ =>Hijacker.OurLuckySites
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.ourluckysites.com/ =>Hijacker.OurLuckySites
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.ourluckysites.com/ =>Hijacker.OurLuckySites
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
---\\ Internet Explorer,Proxy Management (9) - 1s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (0)
---\\ Browser Helper Object de navigateur (BHO) (1) - 2s
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll =>.Microsoft Corporation®
---\\ Raccourcis Global Startup (91) - 169s
O4 - GS\Desktop [123]: Continuer Installation de Dragon Ball Z Sagas.lnk . (.Dolakepefo - Kage Setup.) C:\Users\Diaby\AppData\Local\Temp\ICReinstall_dragon-ball-z-sagas_2198152738.exe /RR /mnl
O4 - GS\Desktop [123]: Crossfire Europe EU.lnk . (.Smilegate Europe - CF_SGI.) C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGIN.exe {10B2BA377EB4BBAFD3D849446561A001}
O4 - GS\Desktop [123]: IObit Malware Fighter.lnk . (.IObit - IObit Malware Fighter.) C:\Program Files\IObit\IObit Malware Fighter\IMF.exe =>.IObit Information Technology®
O4 - GS\Desktop [123]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Diaby\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [123]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [123]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [123]: Oracle VM VirtualBox.lnk . (...) C:\Program Files\Oracle\VirtualBox\VirtualBox.exe
O4 - GS\sendTo [123]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [123]: ISL AlwaysOn Public Folder.lnk . (...) C:\Users\Public\ISL AlwaysOn
O4 - GS\TaskBar [123]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [123]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [123]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [123]: WinRAR.lnk . (.Alexander Roshal - WinRAR archiver.) C:\Program Files\WinRAR\WinRAR.exe =>.win.rar GmbH®
O4 - GS\Programs [123]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [123]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Administrateur]: Continuer Installation de Dragon Ball Z Sagas.lnk . (.Dolakepefo - Kage Setup.) C:\Users\Diaby\AppData\Local\Temp\ICReinstall_dragon-ball-z-sagas_2198152738.exe /RR /mnl
O4 - GS\Desktop [Administrateur]: Crossfire Europe EU.lnk . (.Smilegate Europe - CF_SGI.) C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGIN.exe {10B2BA377EB4BBAFD3D849446561A001}
O4 - GS\Desktop [Administrateur]: IObit Malware Fighter.lnk . (.IObit - IObit Malware Fighter.) C:\Program Files\IObit\IObit Malware Fighter\IMF.exe =>.IObit Information Technology®
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Diaby\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrateur]: Oracle VM VirtualBox.lnk . (...) C:\Program Files\Oracle\VirtualBox\VirtualBox.exe
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: ISL AlwaysOn Public Folder.lnk . (...) C:\Users\Public\ISL AlwaysOn
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: WinRAR.lnk . (.Alexander Roshal - WinRAR archiver.) C:\Program Files\WinRAR\WinRAR.exe =>.win.rar GmbH®
O4 - GS\Programs [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrateur]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Diaby]: Continuer Installation de Dragon Ball Z Sagas.lnk . (.Dolakepefo - Kage Setup.) C:\Users\Diaby\AppData\Local\Temp\ICReinstall_dragon-ball-z-sagas_2198152738.exe /RR /mnl
O4 - GS\Desktop [Diaby]: Crossfire Europe EU.lnk . (.Smilegate Europe - CF_SGI.) C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGIN.exe {10B2BA377EB4BBAFD3D849446561A001}
O4 - GS\Desktop [Diaby]: IObit Malware Fighter.lnk . (.IObit - IObit Malware Fighter.) C:\Program Files\IObit\IObit Malware Fighter\IMF.exe =>.IObit Information Technology®
O4 - GS\Desktop [Diaby]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Diaby\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Diaby]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Diaby]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Diaby]: Oracle VM VirtualBox.lnk . (...) C:\Program Files\Oracle\VirtualBox\VirtualBox.exe
O4 - GS\sendTo [Diaby]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Diaby]: ISL AlwaysOn Public Folder.lnk . (...) C:\Users\Public\ISL AlwaysOn
O4 - GS\TaskBar [Diaby]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Diaby]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Diaby]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Diaby]: WinRAR.lnk . (.Alexander Roshal - WinRAR archiver.) C:\Program Files\WinRAR\WinRAR.exe =>.win.rar GmbH®
O4 - GS\Programs [Diaby]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Diaby]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Avira Connect.lnk . (.Avira Operations GmbH & Co. KG - Avira.) C:\Program Files\Avira\Launcher\Avira.Systray.exe /showMiniGui =>.Avira Operations GmbH & Co. KG®
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - GS\CommonDesktop [Public]: DarkComet Remover.lnk . (.PhrozenSoft - DarkComet RAT Remover.) C:\Program Files\PhrozenSoft\DCREM\DarkCometRemover.exe =>.Phrozensoft
O4 - GS\CommonDesktop [Public]: Emsisoft Anti-Malware.lnk . (.Emsisoft Ltd - Emsisoft Security Center.) C:\Program Files\Emsisoft Anti-Malware\a2start.exe =>.Emsisoft Ltd®
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Malwarebytes.lnk . (...) C:\Nouveau dossier\DBZ SAGAS\Anti-Malware\mbam.exe
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd. - Start Center.) C:\Program Files\Spybot - Search & Destroy 2\SDWelcome.exe =>.Safer Networking Ltd.®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe -extoff =>.Microsoft Corporation®
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) C:\Windows\system32\NetProj.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\system32\rundll32.exe %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut =>..Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s =>..Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) C:\Program Files\Windows Sidebar\sidebar.exe /showgadgets =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd. - Start Center.) C:\Program Files\Spybot - Search & Destroy 2\SDWelcome.exe =>.Safer Networking Ltd.®
O4 - GS\ProgramsCommon [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) C:\Windows\system32\WindowsAnytimeUpgradeUI.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - Création de DVD Windows.) C:\Program Files\DVD Maker\DVDMaker.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
---\\ Modification Domaine/Adresses DNS (3) - 1s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 82.163.143.176 82.163.142.178 =>Adware.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{C9FA069C-0B47-4BBA-825B-47D487D5A075}: NameServer = 82.163.143.176 82.163.142.178 =>Adware.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{C9FA069C-0B47-4BBA-825B-47D487D5A075}: DhcpNameServer = 192.168.0.254 =>.Local IP Adress
---\\ Protocole additionnel (20) - 4s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s
O20 - AppInit_DLLs: . (...) - C:\PROGRA~1\SEARCH~1\SEARCH~1\bin\VC32LO~1.DLL (.not file.)
---\\ Enumère les données de BootExecute (1) - 1s
O34 - HKLM BootExecute: (sdnclean.exe) (.Safer Networking Limited - .) -- sdnclean.exe =>.Safer Networking Limited
---\\ Logiciels installés (46) - 159s
O42 - Logiciel: Adobe Flash Player 23 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 26 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 26 PPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Shockwave Player 12.2 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player =>.Adobe Systems, Inc.
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU] -- Akamai =>.Superfluous.AkamaiHD
O42 - Logiciel: Avira Antivirus v15.0.28.28 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- Avira Antivirus =>.Avira Operations GmbH & Co. KG®
O42 - Logiciel: Avira Connect v1.2.91.10326 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- {661C79C2-D156-419C-81CA-D1A2523B0841} =>.Avira Operations GmbH & Co. KG
O42 - Logiciel: Avira Connect v1.2.91.10326 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- {dd9049b8-31d1-40bd-8c8c-97a7b087a78f} =>.Avira Operations GmbH & Co. KG®
O42 - Logiciel: Bandicam - (.Bandisoft.com.) [HKLM] -- Bandicam =>.Bandisoft.com
O42 - Logiciel: ByteFence Anti-Malware - (.Byte Technologies LLC.) [HKLM] -- ByteFence =>.Superfluous.ByteFence
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: CleanMem - (.PcWinTech.com.) [HKLM] -- CleanMem =>.PcWinTech.com
O42 - Logiciel: CloudExtender - (.AltoCloud.) [HKCU] -- CloudExtender =>Trojan.ProxyAgent
O42 - Logiciel: Crossfire Europe EU - (.Smilegate Europe.) [HKLM] -- Crossfire Europe EU_is1
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} =>.Microsoft
O42 - Logiciel: DarkComet RAT Remover version 1.0 - (.Phrozen ® Software 2012..) [HKLM] -- DarkComet RAT Remover_is1
O42 - Logiciel: DragonBoost - (..) [HKCU] -- 119
O42 - Logiciel: Emsisoft Anti-Malware - (.Emsisoft Ltd..) [HKLM] -- {5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1 =>.Emsisoft Ltd®
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B} =>.Microsoft Corporation
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI =>.Intel Corporation®
O42 - Logiciel: IObit Malware Fighter 5 - (.IObit.) [HKLM] -- IObit Malware Fighter_is1 =>.IObit Information Technology®
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79} =>.Microsoft Corporation
O42 - Logiciel: Keylogger Detector - (..) [HKLM] -- Keylogger Detector
O42 - Logiciel: KeyScrambler - (.QFX Software Corporation.) [HKLM] -- KeyScrambler =>.QFX Software Corporation
O42 - Logiciel: Lightshot-5.4.0.1 - (.Skillbrains.) [HKLM] -- {30A5B3C9-2084-4063-A32A-628A98DE512B}_is1 =>.Superfluous.Skillbrains
O42 - Logiciel: Malwarebytes version 3.1.2.1733 - (.Malwarebytes.) [HKLM] -- {35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1 =>.Malwarebytes
O42 - Logiciel: Metin2client 9.1 - (.HackMetin2.) [HKLM] -- Metin2client 9.1
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM] -- {95120000-00B9-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU] -- OneDriveSetup.exe =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Virtual PC 2007 SP1 - (.Microsoft Corporation.) [HKLM] -- {AD483998-2E9A-4405-83FF-6E503AF49CBB} =>.Microsoft Corporation
O42 - Logiciel: Module linguistique de la visionneuse d'aide Microsoft 1.0 - FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft Help Viewer 1.0 Language Pack - FRA =>.Microsoft Corporation®
O42 - Logiciel: Mozilla Firefox 54.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 54.0.1 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} =>.Microsoft
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} =>.Microsoft
O42 - Logiciel: Oracle VM VirtualBox 5.1.24 - (.Oracle Corporation.) [HKLM] -- {F57B99A8-C19B-4A3B-A7BE-BA20AD768EAB} =>.Oracle Corporation
O42 - Logiciel: Package de pilotes Windows - Intel Corporation (iegdmini) Display (10/26/2 - (.Intel Corporation.) [HKLM] -- 7C12B3CB54A17AB537E54C97DA273A2685545A6C =>.Intel Corporation
O42 - Logiciel: paint.net - (.dotPDN LLC.) [HKLM] -- {A1D05314-DC32-4668-A97E-51060EC8BCCD} =>.dotPDN LLC
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1 =>.Safer Networking Ltd.®
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} =>.Adobe Systems, Inc
O42 - Logiciel: SwytShop version 1.0 - (.SwytShop.) [HKCU] -- SwytShopAlgoadChrome_Pkg4_is1 =>PUP.Optional.SwytShop
O42 - Logiciel: Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 FRA - (.Microsoft Corporation.) [HKLM] -- {D60023FA-3DF1-4537-93DD-13024CC4E366} =>.Microsoft Corporation
O42 - Logiciel: WinRAR 5.40 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver =>.win.rar GmbH®
---\\ HKCU & HKLM Software Keys (255) - 160s
HKLM\SOFTWARE\adaware =>.adaware
HKLM\SOFTWARE\Adobe =>.Adobe
HKLM\SOFTWARE\amule-custom =>Adware.aMULEcustom
HKLM\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKLM\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\ATI Technologies =>.ATI Technologies
HKLM\SOFTWARE\Avira =>.Avira
HKLM\SOFTWARE\Baidu Security =>.Baidu Technology
HKLM\SOFTWARE\Baidu_Drp_pos =>.Baidu Technology
HKLM\SOFTWARE\BANDISOFT =>.Bandisoft
HKLM\SOFTWARE\Birdjob
HKLM\SOFTWARE\Blazing Tools
HKLM\SOFTWARE\Blizzard Entertainment =>.Blizzard Entertainment
HKLM\SOFTWARE\BlueStacks =>.BlueStack Systems, Inc.
HKLM\SOFTWARE\ByteFence =>.Superfluous.ByteFence
HKLM\SOFTWARE\CBSTEST =>.CBS Test
HKLM\SOFTWARE\Chromium =>.Chromium
HKLM\SOFTWARE\CLSID =>.Unknown
HKLM\SOFTWARE\D0D3FDFE211396F0B89156984B833A72 =>Adware.CrossRider
HKLM\SOFTWARE\Disc Soft =>.Disc Soft
HKLM\SOFTWARE\Dolby =>.Dolby
HKLM\SOFTWARE\DTS =>.Creative Technology
HKLM\SOFTWARE\DuoDianApp
HKLM\SOFTWARE\EasyAntiCheat =>.EasyAntiCheat
HKLM\SOFTWARE\Electronic Arts =>.Electronic Arts
HKLM\SOFTWARE\Emsi Software GmbH =>.Emsi Software GmbH
HKLM\SOFTWARE\Emsisoft
HKLM\SOFTWARE\FileZilla 3 =>.FileZilla
HKLM\SOFTWARE\Firefox =>.Mozilla Corporation
HKLM\SOFTWARE\Fortemedia =>.Lugert Europe
HKLM\SOFTWARE\Fraps =>.Beepa
HKLM\SOFTWARE\FreeHideIP =>.Free Hide IP
HKLM\SOFTWARE\Gameforge =>.Gameforge
HKLM\SOFTWARE\GEAR Software =>.GEAR Software
HKLM\SOFTWARE\GOG.com =>.GOG.com
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\Gworm
HKLM\SOFTWARE\InstallShield =>.InstallShield
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\InterSect Alliance =>.Superfluous.InterSect
HKLM\SOFTWARE\IObit =>.IObit
HKLM\SOFTWARE\ISL Online =>.ISL Online
HKLM\SOFTWARE\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\jhtrsq
HKLM\SOFTWARE\Khronos =>.Khronos
HKLM\SOFTWARE\Knowles =>.Knowles Electronics
HKLM\SOFTWARE\kpzs
HKLM\SOFTWARE\LastPass =>.LastPass
HKLM\SOFTWARE\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\Licenses =>.Microsoft Corporation
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\McAfee =>.McAfee Inc.
HKLM\SOFTWARE\McAfee.com =>.McAfee Inc.
HKLM\SOFTWARE\McAfeeInstaller =>.McAfee Inc.
HKLM\SOFTWARE\McAfeeRiskScan =>.McAfee Inc.
HKLM\SOFTWARE\MicroRay
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\msServer
HKLM\SOFTWARE\Nahimic =>.Nahimic
HKLM\SOFTWARE\Notepad++ =>.Don Ho
HKLM\SOFTWARE\notepad2
HKLM\SOFTWARE\NSIS.Library.RegTool.v3
HKLM\SOFTWARE\Nuance =>.Nuance
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\Oracle =>.Oracle
HKLM\SOFTWARE\ourluckysitesSoftware =>Hijacker.OurLuckySites
HKLM\SOFTWARE\paint.net =>.Rick Brewster
HKLM\SOFTWARE\ParetoLogic =>.Superfluous.Paretologic
HKLM\SOFTWARE\Piriform =>.Piriform
HKLM\SOFTWARE\Python =>.Python
HKLM\SOFTWARE\QFX Software =>.QFX Software
HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\RealVNC =>.RealVNC
HKLM\SOFTWARE\Reason =>.Propellerhead
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\Reimage =>.Superfluous.ReimageRepair
HKLM\SOFTWARE\RocketDock =>.Punk Software
HKLM\SOFTWARE\Safer Networking Limited =>.Safer Networking Limited
HKLM\SOFTWARE\Secunia =>.Secunia
HKLM\SOFTWARE\Skillbrains =>.Superfluous.Skillbrains
HKLM\SOFTWARE\Skype =>.Skype
HKLM\SOFTWARE\Soci2Sear Browser Enhancer =>PUP.Optional.Wajam
HKLM\SOFTWARE\Softwin =>.Softwin
HKLM\SOFTWARE\Sonic =>.Sonic
HKLM\SOFTWARE\SonicFocus =>.Sonic Focus
HKLM\SOFTWARE\SoundResearch =>.Sound Research
HKLM\SOFTWARE\SrpnFiles =>.Superfluous.SpringFiles
HKLM\SOFTWARE\SRS Labs =>.SRS Labs
HKLM\SOFTWARE\startpageing123Software
HKLM\SOFTWARE\SuperBoost =>.QiWang
HKLM\SOFTWARE\Symantec =>.Symantec
HKLM\SOFTWARE\TeamViewer =>.TeamViewer
HKLM\SOFTWARE\tmp178E
HKLM\SOFTWARE\tmp237F
HKLM\SOFTWARE\tmp2ACE
HKLM\SOFTWARE\tmp6D6F
HKLM\SOFTWARE\tmp7448
HKLM\SOFTWARE\tmp79D7
HKLM\SOFTWARE\tmp98CA
HKLM\SOFTWARE\tmpAAE0
HKLM\SOFTWARE\tmpAC01
HKLM\SOFTWARE\tmpDD35
HKLM\SOFTWARE\tmpFC73
HKLM\SOFTWARE\Toribash =>.Nabi Studios
HKLM\SOFTWARE\tugesh.exe
HKLM\SOFTWARE\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\Waves Audio =>.Waves Audio
HKLM\SOFTWARE\WinRAR =>.WinRAR
HKLM\SOFTWARE\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\X-AVCSD =>.Avira Software
HKLM\SOFTWARE\xampp =>.Apache Inc.
HKLM\SOFTWARE\Z8Games =>.Z8Games
HKLM\SOFTWARE\Zemi Interactive =>.Zemi Interactive
HKLM\SOFTWARE\Norton =>.Symantec Corporation
HKCU\SOFTWARE\0f80a6245a3f99e51ec0c2a1d6264c4b =>Adware.CrossRider
HKCU\SOFTWARE\2f043c3c3bb0f534de40f9f55f5504e6 =>Adware.CrossRider
HKCU\SOFTWARE\444460896a7aa4eddda9be4af101e842 =>Adware.CrossRider
HKCU\SOFTWARE\638f1e98d5f5ebb33cb7c19887dcea87 =>Adware.CrossRider
HKCU\SOFTWARE\73a0533b8fef3c0022f3bf0e7bbb99c4 =>Adware.CrossRider
HKCU\SOFTWARE\773fd16773f87e206e48edd2a2fc0b74 =>Adware.CrossRider
HKCU\SOFTWARE\7a22d920c858e35615c166608e33df5e =>Adware.CrossRider
HKCU\SOFTWARE\7d2c911a5692f36b4f4529d158ad7306 =>Adware.CrossRider
HKCU\SOFTWARE\80d91522228fe370602cde456b4c43b9 =>Adware.CrossRider
HKCU\SOFTWARE\86fb93a0e76fdfcbb520ebfb155df8da =>Adware.CrossRider
HKCU\SOFTWARE\a3dfb7748a976a7685305355dce93150 =>Adware.CrossRider
HKCU\SOFTWARE\a689fa49fd42104e55e4ba78550f130f =>Adware.CrossRider
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Aeria Games =>.Aeria Games
HKCU\SOFTWARE\AhnLab =>.AhnLab Inc.
HKCU\SOFTWARE\Akamai =>.Superfluous.AkamaiHD
HKCU\SOFTWARE\Andy =>.Android Studio
HKCU\SOFTWARE\Apocalypse
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\AVAST Software =>.AVAST Software
HKCU\SOFTWARE\Avira =>.Avira
HKCU\SOFTWARE\b1347e212a8137f6559b0c3fa360a5fd =>Adware.CrossRider
HKCU\SOFTWARE\Baidu Security =>.Baidu Technology
HKCU\SOFTWARE\BANDISOFT =>.Bandisoft
HKCU\SOFTWARE\Birdjob
HKCU\SOFTWARE\Blazing Tools
HKCU\SOFTWARE\Blizzard Entertainment =>.Blizzard Entertainment
HKCU\SOFTWARE\Burda =>.Burda
HKCU\SOFTWARE\ByteFence =>.Superfluous.ByteFence
HKCU\SOFTWARE\C84E
HKCU\SOFTWARE\Cheat Engine =>.Dark Byte
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\cmcm =>.Cheetah Mobile
HKCU\SOFTWARE\CodeLyokoGames =>.CodeLyokoGames
HKCU\SOFTWARE\csastats =>Adware.InstallCore
HKCU\SOFTWARE\D0D3FDFE211396F0B89156984B833A72 =>Adware.CrossRider
HKCU\SOFTWARE\d727a46ea383943063d29c87c16920d7 =>Adware.CrossRider
HKCU\SOFTWARE\Dashlane_profiles =>.Dashlane, Inc
HKCU\SOFTWARE\David Esperalta =>.David Esperalta
HKCU\SOFTWARE\dc28b5f4ec247143ec84c476602fca1f =>Adware.CrossRider
HKCU\SOFTWARE\DDoS Anonymous
HKCU\SOFTWARE\Disc Soft =>.Disc Soft
HKCU\SOFTWARE\Drivers =>.Legitimate
HKCU\SOFTWARE\dxc_launcher
HKCU\SOFTWARE\Eek
HKCU\SOFTWARE\ElcomSoft =>.Elcomsoft
HKCU\SOFTWARE\Enigma Protector
HKCU\SOFTWARE\FileZilla Client =>.Tim Kosse
HKCU\SOFTWARE\FileZilla Server =>.FileZilla
HKCU\SOFTWARE\Firefox =>.Mozilla Corporation
HKCU\SOFTWARE\Fraps3 =>.Beepa
HKCU\SOFTWARE\Gameforge4d =>.ZemiInteractive Ltd
HKCU\SOFTWARE\Genius =>.Genius Games
HKCU\SOFTWARE\Genymobile =>.Genymobile
HKCU\SOFTWARE\GOG.com =>.GOG.com
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\IM =>Adware.InstallCore
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\INCAInternet =>.INCAInternet
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\ISL Online =>.ISL Online
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\Kyle Seeley =>.Kyle Seeley
HKCU\SOFTWARE\Lavasoft =>.Lavasoft
HKCU\SOFTWARE\Licenses =>.Microsoft Corporation
HKCU\SOFTWARE\LithTech Inc.
HKCU\SOFTWARE\Local AppWizard-Generated Applications =>.ZWCAD
HKCU\SOFTWARE\Lyokone'Prod
HKCU\SOFTWARE\Maacoas
HKCU\SOFTWARE\Maacos
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\McAfee =>.McAfee Inc.
HKCU\SOFTWARE\McAfeeInstaller =>.McAfee Inc.
HKCU\SOFTWARE\Media Get LLC =>.Media Get LLC
HKCU\SOFTWARE\Mirillis =>.Mirillis
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\Netbull
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\njRAT v0.6.4
HKCU\SOFTWARE\Northcode Inc =>.Northcode Inc
HKCU\SOFTWARE\Norton =>.Symantec Corporation
HKCU\SOFTWARE\NumeServer
HKCU\SOFTWARE\Oracle =>.Oracle
HKCU\SOFTWARE\paint.net =>.Rick Brewster
HKCU\SOFTWARE\ParetoLogic =>.Superfluous.Paretologic
HKCU\SOFTWARE\PcWinTech =>.PcWinTech
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\Plethora-Project
HKCU\SOFTWARE\PremiumSoft
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
HKCU\SOFTWARE\ProtectedStorage =>.Microsoft Corporation
HKCU\SOFTWARE\QFX Software =>.QFX Software
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RealVNC =>.RealVNC
HKCU\SOFTWARE\Reimage =>.Superfluous.ReimageRepair
HKCU\SOFTWARE\Robot Gentleman =>.Robot Gentleman
HKCU\SOFTWARE\Robot Gentleman Studios
HKCU\SOFTWARE\RocketDock =>.Punk Software
HKCU\SOFTWARE\Safer Networking Limited =>.Safer Networking Limited
HKCU\SOFTWARE\Secunia =>.Secunia
HKCU\SOFTWARE\SimonTatham =>.Simon Tatham
HKCU\SOFTWARE\SkillBrains =>.Superfluous.Skillbrains
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\skypeapp-177fbe43a53a
HKCU\SOFTWARE\skypeapp-5c3ab95db3d1
HKCU\SOFTWARE\skypeapp-6266971b5870
HKCU\SOFTWARE\skypeapp-9b6549347a60
HKCU\SOFTWARE\skypeapp-d439f1e5c9d3
HKCU\SOFTWARE\SpeedBit =>.Adware.SpeedBit
HKCU\SOFTWARE\SplitmediaLabs =>.SplitMediaLabs
HKCU\SOFTWARE\StackDocklet
HKCU\SOFTWARE\svchost32
HKCU\SOFTWARE\SwytShop =>PUP.Optional.SwytShop
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\System32 =>.Mirillis
HKCU\SOFTWARE\TeamViewer =>.TeamViewer
HKCU\SOFTWARE\The Demons File Unlocker
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\undefined =>.Superfluous.Downloader
HKCU\SOFTWARE\Unity =>.Unity
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKCU\SOFTWARE\Vitalwerks =>.Vitalwerks
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\Win =>.Unknown
HKCU\SOFTWARE\Winamp =>.Nullsoft Inc.
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wireshark =>.Wireshark
HKCU\SOFTWARE\XLAB =>.XLAB d.o.o
HKCU\SOFTWARE\YandereDev =>.Games Software
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Software\Adobe =>.Adobe
HKCU\SOFTWARE\AppDataLow\Software\AppTrailers =>Adware.AppTrailers
HKCU\SOFTWARE\AppDataLow\Software\Unity =>.Unity
---\\ Contenu des dossiers Programmes (375) - 371s
O43 - CFD: 28/07/2017 - [0] D -- C:\Program Files\0FQY9S87QG
O43 - CFD: 29/07/2017 - [] D -- C:\Program Files\1ABKMYMX0N =>Adware.Wizzcaster
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\20ANG3FRGJ =>Adware.Wizzcaster
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\5SMJZZ84T1 =>Adware.Wizzcaster
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\5V0M24Q3NB =>Adware.Wizzcaster
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\76f1c620a777bf6a6ddcfefa9f394791
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\Avira =>.Avira Software
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\B1ZMD2YTCA =>Adware.Wizzcaster
O43 - CFD: 28/07/2017 - [0] D -- C:\Program Files\B3038TC274
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Baidu Security =>.Baidu Technology
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\ByteFence =>.Superfluous.ByteFence
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd
O43 - CFD: 10/07/2017 - [] D -- C:\Program Files\CF HACK
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\cgmemeyesu2
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 10/07/2017 - [] D -- C:\Program Files\CrossFire Installer {00A374646588C90A2F9539CDFE4C55B346}
O43 - CFD: 31/05/2017 - [] D -- C:\Program Files\DIFX =>.Microsoft Corporation
O43 - CFD: 08/04/2017 - [] D -- C:\Program Files\dumps
O43 - CFD: 10/04/2017 - [] D -- C:\Program Files\DVD Maker =>.Aone Software
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\Emsisoft Anti-Malware =>.Emsisoft
O43 - CFD: 16/05/2017 - [] D -- C:\Program Files\f8dFmEojcp
O43 - CFD: 07/03/2017 - [] D -- C:\Program Files\Fevuphmervly Launcher
O43 - CFD: 25/05/2016 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation
O43 - CFD: 10/07/2017 - [] D -- C:\Program Files\FileZilla FTP Client =>.Tim Kosse
O43 - CFD: 24/07/2017 - [0] D -- C:\Program Files\Genymobile =>.Genymobile
O43 - CFD: 04/04/2017 - [] D -- C:\Program Files\Google =>.Google Inc®
O43 - CFD: 25/05/2016 - [] D -- C:\Program Files\GUM83D7.tmp =>.Google Inc®
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\HB8NBYQRQS =>Adware.Wizzcaster
O43 - CFD: 01/06/2017 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\IObit =>.IObit
O43 - CFD: 21/05/2017 - [] D -- C:\Program Files\ISL Online
O43 - CFD: 07/04/2017 - [] D -- C:\Program Files\ISS Manager
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\K068PKZ6UO =>Adware.Wizzcaster
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Keylogger Detector
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\KeyScrambler =>.QFX Software
O43 - CFD: 30/07/2017 - [0] D -- C:\Program Files\LAPTOP_KURT
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\McAfee =>.McAfee
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\McAfee.com =>.McAfee Inc.
O43 - CFD: 06/03/2017 - [0] D -- C:\Program Files\Microsoft =>.Microsoft Corporation
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Microsoft Help Viewer =>.Microsoft Corporation
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Microsoft SDKs =>.Microsoft Corporation
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition =>.Microsoft Corporation
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Microsoft Synchronization Services =>.Microsoft Corporation
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 07/07/2017 - [] D -- C:\Program Files\Microvirt =>.Microvirt
O43 - CFD: 16/02/2017 - [] D -- C:\Program Files\MIO =>.Mio
O43 - CFD: 31/01/2017 - [] D -- C:\Program Files\Mods
O43 - CFD: 24/07/2017 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla
O43 - CFD: 25/07/2017 - [] D -- C:\Program Files\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 10/02/2017 - [] D -- C:\Program Files\MSECache =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\Norton Security =>.Symantec
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\NortonInstaller =>.Symantec
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\Notepad++ =>.Don Ho
O43 - CFD: 16/02/2017 - [] D -- C:\Program Files\notepad2
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\O9J4S1YMCM =>Adware.Wizzcaster
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\OG9MTGL701 =>Adware.Wizzcaster
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\OJ20A8ZTI8 =>Adware.Wizzcaster
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\OYVH9BCITE =>Adware.Wizzcaster
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\PhrozenSoft =>.Phrozensoft
O43 - CFD: 31/01/2017 - [] D -- C:\Program Files\Profiles =>.Microsoft Corporation
O43 - CFD: 26/05/2016 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\reports
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\SDownloader
O43 - CFD: 04/04/2017 - [] D -- C:\Program Files\Secunia =>.Secunia
O43 - CFD: 09/11/2016 - [] D -- C:\Program Files\Skillbrains =>.Superfluous.Skillbrains
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Smilegate =>.Neowiz CORPORATION®
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Spybot - Search & Destroy 2 =>.SaferNetworking
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\stinger
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\U4XP2BBMJF =>Adware.Wizzcaster
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\VQJX3YA67N =>Adware.Wizzcaster
O43 - CFD: 30/07/2017 - [0] D -- C:\Program Files\VS Revo Group =>.VS Revo Group
O43 - CFD: 30/01/2017 - [0] D -- C:\Program Files\Windows
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 11/06/2017 - [] D -- C:\Program Files\Windows Journal =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 06/02/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 25/05/2016 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 20/11/2010 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 28/07/2016 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 24/10/2016 - [] D -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\WMRHXXUH0F =>Adware.Wizzcaster
O43 - CFD: 30/07/2017 - [0] D -- C:\Program Files\yxexltnc =>.Superfluous.Empty
O43 - CFD: 11/06/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 25/05/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira =>.Avira Software
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware =>.Superfluous.ByteFence
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd
O43 - CFD: 08/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CleanMem
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DarkComet RAT Remover
O43 - CFD: 25/02/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Download Accelerator Plus (DAP) =>.Adware.SpeedBit
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware =>.Emsisoft
O43 - CFD: 28/07/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 18/05/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com =>.GOG.com
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter =>.IObit
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyScrambler =>.QFX Software
O43 - CFD: 04/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot =>..Superfluous.Skillbrains
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes =>.Malwarebytes
O43 - CFD: 08/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express =>.Pinnacle Systems, Inc.
O43 - CFD: 11/06/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis =>.Mirillis
O43 - CFD: 06/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ =>.Don Ho
O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox =>.Oracle
O43 - CFD: 10/07/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PremiumSoft
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smilegate Europe
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 =>.SaferNetworking
O43 - CFD: 14/07/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live =>.Microsoft Corporation
O43 - CFD: 11/06/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 20/12/2016 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 25/05/2016 - [] D -- C:\ProgramData\Aeria Games =>.Aeria Games
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 28/06/2017 - [] D -- C:\ProgramData\avast =>.Avast
O43 - CFD: 24/10/2016 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Avira =>.Avira Software
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Baidu =>.Baidu
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Baidu Security =>.Baidu Technology
O43 - CFD: 19/06/2016 - [] D -- C:\ProgramData\BDLogging =>.Bitdefender
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Bitdefender Agent =>.Bitdefender
O43 - CFD: 27/11/2016 - [0] D -- C:\ProgramData\BlueStacksSetup =>.BlueStack Systems, Inc.
O43 - CFD: 25/05/2016 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\ByteFence =>.Superfluous.ByteFence
O43 - CFD: 18/08/2016 - [] D -- C:\ProgramData\CCP =>.Legitimate
O43 - CFD: 18/08/2016 - [] D -- C:\ProgramData\cmcm =>.Cheetah Mobile
O43 - CFD: 06/06/2017 - [] D -- C:\ProgramData\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Emsisoft =>.Emsisoft
O43 - CFD: 25/05/2016 - [0] SHD -- C:\ProgramData\Favoris =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation
O43 - CFD: 19/02/2017 - [] D -- C:\ProgramData\FreeHideIP =>.Free Hide IP
O43 - CFD: 17/05/2017 - [] D -- C:\ProgramData\GOG.com =>.GOG.com
O43 - CFD: 07/07/2017 - [] D -- C:\ProgramData\GZG
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\IObit =>.IObit
O43 - CFD: 30/07/2017 - [0] D -- C:\ProgramData\Keylogger Detector
O43 - CFD: 18/08/2016 - [0] D -- C:\ProgramData\Kingsoft =>.Kingosoft Technology Ltd
O43 - CFD: 06/07/2017 - [] D -- C:\ProgramData\Lavasoft =>.Lavasoft
O43 - CFD: 18/08/2016 - [] SHD -- C:\ProgramData\LFTUVN
O43 - CFD: 13/06/2017 - [] D -- C:\ProgramData\LogMeIn =>.LogMeIn
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 25/05/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation
O43 - CFD: 30/07/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 03/12/2016 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 26/05/2016 - [] D -- C:\ProgramData\Mirillis =>.Mirillis
O43 - CFD: 25/05/2016 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] SHD -- C:\ProgramData\NIINBP
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Norton =>.Symantec Corporation
O43 - CFD: 04/02/2017 - [] D -- C:\ProgramData\NortonInstaller =>.Symantec
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\PEZ
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\ProductData =>.Microsoft Corporation
O43 - CFD: 20/12/2016 - [] D -- C:\ProgramData\regid.1986-12.com.adobe =>.Adobe Inc.
O43 - CFD: 10/07/2017 - [0] D -- C:\ProgramData\Solid State Networks =>.Solid State Networks
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Spybot - Search & Destroy =>.SaferNetworking
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 23/06/2016 - [] D -- C:\ProgramData\SuperBoost =>.QiWang
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 10/12/2016 - [] D -- C:\ProgramData\Thunder Network =>.Thunder Network
O43 - CFD: 20/05/2017 - [] D -- C:\ProgramData\Vitalwerks =>.Vitalwerks
O43 - CFD: 28/02/2017 - [0] D -- C:\ProgramData\WindowsData
O43 - CFD: 04/07/2017 - [] D -- C:\ProgramData\XKQ
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\{0A964816-BD3D-FFBD-BDCA-6C8656F7CE43}
O43 - CFD: 30/06/2017 - [0] D -- C:\ProgramData\{2ADA52B2-9D71-E519-B68B-EFE74E52E84A}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{2C572639-9BFC-9192-B446-5F136B69EC58}
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\{31AB411D-8600-F6B6-64FB-F7FC0B322FD5}
O43 - CFD: 30/06/2017 - [0] D -- C:\ProgramData\{386F9E0C-8FC4-29A7-6F6E-4EB2066B904E}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{38F2913E-8F59-2695-881F-B3DD7AF58906}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{3D643B4E-8ACF-8CE5-241F-49E64EEF689C}
O43 - CFD: 30/06/2017 - [0] D -- C:\ProgramData\{468CE655-F127-51FE-0A19-2AE671D4E195}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{497C8777-FED7-30DC-D3F1-8E44E4C657ED}
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\{4B11775E-FCBA-C0F5-C26F-8A2BEF93D7E1}
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\{5489DA41-E322-6DEA-5282-E82ECC03789E}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{569560EE-E13E-D745-591F-72542F10399B}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{5D3FBC1B-EA94-0BB0-4697-C277095FC0B9}
O43 - CFD: 30/06/2017 - [0] D -- C:\ProgramData\{628A9872-D521-2FD9-353E-AF963088CA20}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{79102ABB-CEBB-9D10-6AEC-55BDC884F946}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{7FC06DF5-C86B-DA5E-7D26-088EB8EB7485}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{8CB97737-3B12-C09C-5E2D-BF6C9EC40C1A}
O43 - CFD: 30/06/2017 - [0] D -- C:\ProgramData\{9184BAC3-262F-0D68-46BE-627B3F7A829B}
O43 - CFD: 07/06/2016 - [] D -- C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{B30F16F6-04A4-A15D-95BE-C6BDD0100C69}
O43 - CFD: 30/06/2017 - [0] D -- C:\ProgramData\{B9A92DBE-0E02-9A15-BFA7-6AE572100A97}
O43 - CFD: 05/07/2016 - [0] D -- C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\{C73B4B53-7090-FCF8-CE7A-92F193FBB1A6}
O43 - CFD: 07/06/2016 - [] D -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{E9C21179-5E69-A6D2-D749-CFDBBE1BDD20}
O43 - CFD: 08/10/2016 - [] D -- C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\{FEB2EEB1-4919-591A-050F-E1F613B5BBBA}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{FFF45F86-485F-E82D-8C41-8779A1BD2E0A}
O43 - CFD: 20/12/2016 - [] D -- C:\Program Files\Common Files\Adobe =>.Adobe
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Common Files\AV =>.Avast
O43 - CFD: 11/02/2017 - [] D -- C:\Program Files\Common Files\INCA Shared =>.INCA
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Common Files\InstallShield =>.InstallShield
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Common Files\Intel Security =>.Intel Corporation
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Common Files\IObit =>.IObit
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Common Files\McAfee =>.McAfee
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Common Files\ntp2UpSvc
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Common Files\System =>.Microsoft Corporation
O43 - CFD: 03/12/2016 - [] D -- C:\Program Files\Common Files\Windows Live =>.Microsoft Corporation
O43 - CFD: 30/06/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\1275417781
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\1mxrsbuwrrh
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\2y4yqu1xgq3
O43 - CFD: 07/04/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\670AB4B8-8321-4045-8DFB-3C99477F9FDC
O43 - CFD: 20/12/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 25/05/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Aeria Games & Entertainment =>.Aeria Games & Entertainment
O43 - CFD: 27/11/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Andy =>.Android.net
O43 - CFD: 12/10/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Apple Computer =>.Apple Inc.
O43 - CFD: 30/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Baidu Security =>.Baidu Technology
O43 - CFD: 08/06/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\BANDISOFT =>.Bandisoft
O43 - CFD: 10/06/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Battle.net =>.Games Software
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\BRKMZEVZ
O43 - CFD: 28/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\BrowserModule =>.Unknown
O43 - CFD: 15/05/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\clean
O43 - CFD: 22/10/2016 - [0] D -- C:\Users\Diaby\AppData\Roaming\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 24/07/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Dashlane =>.Dashlane
O43 - CFD: 15/06/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\dclogs
O43 - CFD: 26/04/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\eTeks =>.eTeks
O43 - CFD: 10/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\FileZilla =>.FileZilla
O43 - CFD: 05/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\FileZilla Server =>.FileZilla
O43 - CFD: 19/02/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\FreeHideIP =>.Free Hide IP
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\fx1mydg5ebm
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\g4gsl11rdj1
O43 - CFD: 30/06/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Gikoc
O43 - CFD: 17/05/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Google =>.Google
O43 - CFD: 11/02/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\HaiYuInst
O43 - CFD: 29/05/2016 - [0] D -- C:\Users\Diaby\AppData\Roaming\HaMaDaS
O43 - CFD: 04/06/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\IDC
O43 - CFD: 25/05/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Identities =>.Microsoft Corporation
O43 - CFD: 30/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\IObit =>.IObit
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\kdjxa1vc5x4
O43 - CFD: 07/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Lavasoft =>.Lavasoft
O43 - CFD: 21/11/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\LibreOffice =>.LibreOffice
O43 - CFD: 09/04/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 12/04/2011 - [0] D -- C:\Users\Diaby\AppData\Roaming\Media Center Programs =>.Microsoft Corporation
O43 - CFD: 04/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\metin2 azuris =>.Gameforge 4D GmbH
O43 - CFD: 30/07/2017 - [] SD -- C:\Users\Diaby\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 26/05/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Mirillis =>.Mirillis
O43 - CFD: 15/06/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 30/06/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Nano
O43 - CFD: 03/09/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Nieme
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\nn0bpryi2qz
O43 - CFD: 07/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Notepad++ =>.Don Ho
O43 - CFD: 15/03/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Notepad2
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\okqqljqefof
O43 - CFD: 22/12/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Process Hacker 2 =>.Wj32
O43 - CFD: 25/02/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\ProductData =>.Microsoft Corporation
O43 - CFD: 15/02/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Profiles =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\pxedkc0ytag
O43 - CFD: 21/05/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\RealVNC =>.RealVNC
O43 - CFD: 27/01/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\RenPy =>.RenPy Games
O43 - CFD: 03/03/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Shogersh
O43 - CFD: 30/06/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Skype =>.Skype
O43 - CFD: 23/06/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\SuperBoost =>.QiWang
O43 - CFD: 02/11/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\system =>.Microsoft Corporation
O43 - CFD: 30/06/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 04/07/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Unity =>.Unity
O43 - CFD: 26/04/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\uTorrent
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\vt1v0pqrff2
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\vwmeax0s5je
O43 - CFD: 30/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\WarThunder =>.Games Software
O43 - CFD: 27/05/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 14/02/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Wireshark =>.Wireshark
O43 - CFD: 05/12/2014 - [] D -- C:\Users\Diaby\AppData\Roaming\WrestlingRevolution
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\xyme0s2ozw3
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\ywstcje510l
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 14/05/2017 - [0] HD -- C:\Users\Diaby\AppData\Local\4dd8fed37f424a23
O43 - CFD: 05/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\AdAwareUpdater
O43 - CFD: 20/12/2016 - [] D -- C:\Users\Diaby\AppData\Local\Adobe =>.Adobe
O43 - CFD: 25/05/2016 - [] D -- C:\Users\Diaby\AppData\Local\Aeria Games =>.Aeria Games
O43 - CFD: 05/02/2017 - [] D -- C:\Users\Diaby\AppData\Local\Akamai =>.Superfluous.AkamaiHD
O43 - CFD: 16/05/2017 - [0] D -- C:\Users\Diaby\AppData\Local\AMD =>.AMD
O43 - CFD: 25/05/2016 - [0] SHD -- C:\Users\Diaby\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 25/05/2016 - [] D -- C:\Users\Diaby\AppData\Local\Apps =>.Microsoft Corporation
O43 - CFD: 10/12/2016 - [] D -- C:\Users\Diaby\AppData\Local\Bluestacks =>.BlueStack Systems, Inc.
O43 - CFD: 28/07/2016 - [] D -- C:\Users\Diaby\AppData\Local\CEF =>.CEF
O43 - CFD: 15/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\chromium =>.Chromium
O43 - CFD: 30/07/2017 - [0] D -- C:\Users\Diaby\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [0] D -- C:\Users\Diaby\AppData\Local\Deployment =>.Microsoft Corporation
O43 - CFD: 22/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 30/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 08/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\FileZilla =>.FileZilla
O43 - CFD: 24/02/2017 - [] D -- C:\Users\Diaby\AppData\Local\Firefox =>.Mozilla Corporation
O43 - CFD: 24/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Genymobile =>.Genymobile
O43 - CFD: 04/04/2017 - [] D -- C:\Users\Diaby\AppData\Local\Google =>.Google
O43 - CFD: 02/09/2016 - [] D -- C:\Users\Diaby\AppData\Local\Hewlett-Packard_Company =>.Hewlett-Packard
O43 - CFD: 25/05/2016 - [0] SHD -- C:\Users\Diaby\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 21/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\ISL Online Cache
O43 - CFD: 16/05/2017 - [0] D -- C:\Users\Diaby\AppData\Local\Kitty =>.Superfluous.Elex
O43 - CFD: 06/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Lavasoft =>.Lavasoft
O43 - CFD: 01/12/2016 - [] D -- C:\Users\Diaby\AppData\Local\LogMeIn =>.LogMeIn
O43 - CFD: 04/07/2016 - [] D -- C:\Users\Diaby\AppData\Local\Macromedia =>.Macromedia
O43 - CFD: 24/08/2016 - [] D -- C:\Users\Diaby\AppData\Local\Mega Limited =>.MEGA Limited
O43 - CFD: 25/06/2017 - [] D -- C:\Users\Diaby\AppData\Local\MEGAsync =>.MegaSystems
O43 - CFD: 30/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 04/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Microvirt =>.Microvirt
O43 - CFD: 24/10/2016 - [0] DC -- C:\Users\Diaby\AppData\Local\MigWiz =>.MigWiz
O43 - CFD: 16/03/2017 - [] D -- C:\Users\Diaby\AppData\Local\Mirillis =>.Mirillis
O43 - CFD: 15/06/2016 - [] D -- C:\Users\Diaby\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 05/02/2017 - [] D -- C:\Users\Diaby\AppData\Local\MultiPlayerManager
O43 - CFD: 05/02/2017 - [] D -- C:\Users\Diaby\AppData\Local\Nox =>.FFmpeg Project
O43 - CFD: 22/10/2016 - [] D -- C:\Users\Diaby\AppData\Local\Origin =>.Electronic Arts, Inc.
O43 - CFD: 23/07/2016 - [] D -- C:\Users\Diaby\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 27/10/2016 - [] D -- C:\Users\Diaby\AppData\Local\paint.net =>.Rick Brewster
O43 - CFD: 03/03/2017 - [] D -- C:\Users\Diaby\AppData\Local\Perertionstanudom
O43 - CFD: 17/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\pip =>.Python
O43 - CFD: 28/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 07/07/2017 - [0] D -- C:\Users\Diaby\AppData\Local\Razer =>.Razer
O43 - CFD: 04/04/2017 - [0] D -- C:\Users\Diaby\AppData\Local\Secunia PSI
O43 - CFD: 26/09/2016 - [] D -- C:\Users\Diaby\AppData\Local\Setup3210593
O43 - CFD: 11/03/2017 - [] D -- C:\Users\Diaby\AppData\Local\Steam =>.Steam Games
O43 - CFD: 20/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\Super_Mario_UniMaker
O43 - CFD: 07/04/2017 - [] D -- C:\Users\Diaby\AppData\Local\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 25/05/2016 - [0] SHD -- C:\Users\Diaby\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 02/09/2016 - [0] D -- C:\Users\Diaby\AppData\Local\Unity =>.Unity
O43 - CFD: 24/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 20/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\Vitalwerks =>.Vitalwerks
O43 - CFD: 03/12/2016 - [] D -- C:\Users\Diaby\AppData\Local\Windows Live =>.Microsoft Corporation
O43 - CFD: 15/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\XEInsPackFileder
O43 - CFD: 05/06/2016 - [] D -- C:\Users\Diaby\AppData\Local\XinoviRuS
O43 - CFD: 18/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Zaczero
O43 - CFD: 03/09/2016 - [] D -- C:\Users\Diaby\AppData\Local\ZarneXxX_GmbH
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 29/07/2016 - [] D -- C:\Users\Diaby\AppData\Local\__
O43 - CFD: 26/09/2016 - [] D -- C:\Users\Diaby\AppData\Local\{444072FB-6112-1F8D-0A24-385FD6F6C561}
O43 - CFD: 25/05/2016 - [0] D -- C:\Users\Diaby\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 28/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Programs\GEN =>.Superfluous.Funfeedr
O43 - CFD: 28/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Programs\SwytShopAlgoadChrome_Pkg4 =>PUP.Optional.SwytShop
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 18/06/2017 - [] RD -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 27/05/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames =>.AeriaGames
O43 - CFD: 10/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client =>.Tim Kosse
O43 - CFD: 29/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps =>.Fraps Games
O43 - CFD: 11/02/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 30/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Keylogger Detector
O43 - CFD: 25/02/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Little Fighter 3 v3.6
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 08/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync =>.MegaSystems
O43 - CFD: 08/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No-IP DUC =>.Vitalwerks Internet Solutions
O43 - CFD: 30/07/2017 - [] RD -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 08/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker =>.Cedrick Collomb
O43 - CFD: 30/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder =>.Games Software
O43 - CFD: 11/06/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 25/05/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 25/05/2017 - [] D -- C:\Users\Default\AppData\Local\LogMeIn Hamachi =>.LogMeIn Entreprise
O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 25/05/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 25/05/2017 - [] D -- C:\Users\Default User\AppData\Local\LogMeIn Hamachi =>.LogMeIn Entreprise
O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 19/02/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\HideMyIpSRV
O43 - CFD: 13/06/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\LogMeIn =>.LogMeIn
O43 - CFD: 11/06/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\tofosal
O43 - CFD: 31/07/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\{AE63983F-8ACB-F487-E753-D16FC33B2DF7}
O43 - CFD: 26/04/2017 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\IObit =>.IObit
O43 - CFD: 06/07/2017 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation
---\\ ShellExecuteHook (1) - 0s
O46 - SEH:ShellExecuteHooks - (no name) - [HKLM] - {005E7630-F1AE-11E6-8235-64006A5CFC23} . (...) -- (.not file.)
---\\ ShellIconOverlayIdentifiers (SIOI) (6) - 1s
O106 - SIOI: UpToDateOverlayHandler Class [ SkyDrive1] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ SkyDrive2] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll =>.Microsoft Corporation®
O106 - SIOI: ErrorOverlayHandler Class [ SkyDrive3] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll =>.Microsoft Corporation®
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\Windows\System32\cscui.dll =>.Microsoft Corporation
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ Image File Execution Options (6) - 3s
O50 - IFEO:C:\Windows\System32\FlashPlayerApp.exe - (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) [DisableExceptionChainValidation\\0] =>.Adobe Systems Incorporated®
O50 - IFEO:C:\Windows\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rstrui.exe - (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) [Debugger\\C:\Windows\System32\svchost.exe] =>.Microsoft Corporation
---\\ Enumération des clés StartupReg (5) - 1s
O53 - SMSR:HKLM\...\startupreg\Advanced SystemCare 9 [Key] . (...) -- C:\Program Files\IObit\Advanced SystemCare\ASCTray.exe (.not file.) =>.Superfluous.AdvancedSystemCare
O53 - SMSR:HKLM\...\startupreg\Aeria Ignite [Key] . (...) -- C:\Program Files\Aeria Games\Ignite\aeriaignite.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\CCleaner Monitoring [Key] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd
O53 - SMSR:HKLM\...\startupreg\cmsc [Key] . (...) -- c:\program files\cmcm\Clean Master\cmtray.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\ISS Manager [Key] . (.Microsoft Corporation - Microsoft .NET Assembly Registration Utilit.) -- C:\Program Files\ISS Manager\issmgr.exe =>.Microsoft Corporation
---\\ Liste des pilotes du système (90) - 86s
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400] =>.Microsoft Windows®
O58 - SDL:2010/11/20 23:29:03 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [80256] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312] =>.Microsoft Windows®
O58 - SDL:2010/11/20 23:29:03 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22400] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608] =>.Microsoft Windows®
O58 - SDL:2017/07/04 16:35:12 A . (.Avira Operations GmbH & Co. KG - Avira USB Feature Driver.) -- C:\Windows\System32\drivers\avdevprot.sys [46440] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/07/04 16:35:10 A . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\drivers\avgntflt.sys [124232] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/07/04 16:35:11 A . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\Windows\System32\drivers\avipbb.sys [142712] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/07/04 16:35:11 A . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\Windows\System32\drivers\avkmgr.sys [35840] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/07/04 16:35:11 A . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\Windows\System32\drivers\avnetflt.sys [59000] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/07/04 16:35:12 A . (.Avira Operations GmbH & Co. KG - Avira USB Filter Driver.) -- C:\Windows\System32\drivers\avusbflt.sys [23304] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2016/05/26 18:27:33 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60x.sys [415000] =>.Broadcom Corporation®
O58 - SDL:2017/07/27 03:14:52 A . (.D5NVOO - .) -- C:\Windows\System32\drivers\be7150856eafa500edf8d20c62f5d2ac.sys [60696] {751DE0C40C88361DA081F5C4}
O58 - SDL:2014/03/11 05:14:02 A . (.Baidu, Inc. - Baidu Antivirus Hook Base.) -- C:\Windows\System32\drivers\Bhbase.sys [47456] =>.Baidu Online Network Technology (Beijing)Co., Ltd®
O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 02:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128] =>.Brother Industries Ltd.
O58 - SDL:2009/07/14 00:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336] =>.Brother Industries Ltd.
O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160] =>.Brother Industries Ltd.
O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904] =>.Brother Industries Ltd.
O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080] =>.Broadcom Corporation
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - McAfee Personal Firewall IDS Plugin.) -- C:\Windows\System32\drivers\cfwids.sys [72208] =>.McAfee, Inc.®
O58 - SDL:2009/07/14 03:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712] =>.Microsoft Windows®
O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160] =>.Broadcom Corporation
O58 - SDL:2017/05/22 16:21:08 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\drivers\hamachi.sys [27968] =>.LogMeIn, Inc.®
O58 - SDL:2009/07/14 00:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2009/07/14 03:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152] =>.Microsoft Windows®
O58 - SDL:2016/05/26 18:26:14 A . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) -- C:\Windows\System32\drivers\HWiNFO32.SYS [23840] =>.Martin Malik - REALiX®
O58 - SDL:2010/11/20 23:29:03 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332160] =>.Microsoft Windows®
O58 - SDL:2009/09/23 19:18:14 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys [4808192] =>.Intel Corporation
O58 - SDL:2009/07/14 03:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040] =>.Microsoft Windows®
O58 - SDL:2017/03/17 12:31:12 A . (.IObit.com - IMFCameraProtect.) -- C:\Windows\System32\drivers\IMFCameraProtect.sys [25120] =>.IObit Information Technology®
O58 - SDL:2017/02/19 21:15:40 A . (.QFX Software Corporation - KeyScrambler Keyboard Encryption Driver.) -- C:\Windows\System32\drivers\keyscrambler.sys [220192] =>.QFX Software Corporation®
O58 - SDL:2017/07/07 12:44:20 A . (.Kingsoft Corporation - Kingsoft KSAPI Module.) -- C:\Windows\System32\drivers\ksapi.sys [81768] =>.Beijing Kingsoft Security software Co.,Ltd®
O58 - SDL:2017/07/07 12:44:20 A . (.Kingsoft Corporation - Kingsoft KSAPI Module.) -- C:\Windows\System32\drivers\ksapi64.sys [56680] =>.Beijing Kingsoft Security software Co.,Ltd®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95824] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89168] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848] =>.Microsoft Windows®
O58 - SDL:2017/05/31 11:09:14 A . (...) -- C:\Windows\System32\drivers\mbae.sys [59936] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584] =>.Microsoft Windows®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - McAfee Arbitrary Access Control Driver.) -- C:\Windows\System32\drivers\mfeaack.sys [362000] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - Anti-Virus File System Filter Driver.) -- C:\Windows\System32\drivers\mfeavfk.sys [277008] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\Windows\System32\drivers\mfefirek.sys [390160] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - McAfee Link Driver.) -- C:\Windows\System32\drivers\mfehidk.sys [706064] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - AAC Protected Launch Plugin Driver.) -- C:\Windows\System32\drivers\mfeplk.sys [93712] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) -- C:\Windows\System32\drivers\mfewfpk.sys [209936] =>.McAfee, Inc.®
O58 - SDL:2009/07/14 03:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624] =>.Microsoft Windows®
O58 - SDL:2010/11/20 23:29:03 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117120] =>.Microsoft Windows®
O58 - SDL:2010/11/20 23:29:03 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [143744] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064] =>.Microsoft Windows®
O58 - SDL:2016/05/26 18:39:06 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [3766016] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/07/13 22:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072] =>.Microsoft Windows®
O58 - SDL:2017/01/18 17:55:32 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\Windows\System32\drivers\tap0901.sys [30696] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/06/15 12:53:26 A . (.Anchorfree Inc. - Anchorfree HSS VPN Adapter.) -- C:\Windows\System32\drivers\taphss6.sys [36944] =>.AnchorFree Inc®
O58 - SDL:2017/07/17 21:18:08 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\System32\drivers\VBoxDrv.sys [806464] =>.Oracle Corporation®
O58 - SDL:2017/07/17 21:18:10 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Host-Only Network Adapt.) -- C:\Windows\System32\drivers\VBoxNetAdp6.sys [113944] =>.Oracle Corporation®
O58 - SDL:2017/07/17 21:18:10 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Lightweight Filter Driv.) -- C:\Windows\System32\drivers\VBoxNetLwf.sys [177880] =>.Oracle Corporation®
O58 - SDL:2017/07/17 21:18:10 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\System32\drivers\VBoxUSBMon.sys [123856] =>.Oracle Corporation®
O58 - SDL:2009/07/14 03:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976] =>.Microsoft Windows®
O58 - SDL:2009/07/25 00:21:14 A . (.RealVNC Ltd. - VNC Mirror Miniport.) -- C:\Windows\System32\drivers\vncmirror.sys [4608] =>.RealVNC Ltd.
O58 - SDL:2009/07/14 03:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904] =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:44 A . (...) -- C:\Windows\System32\country.sys [27097] =>.Microsoft Corporation
O58 - SDL:2017/05/22 16:21:08 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys [27968] =>.LogMeIn, Inc.®
O58 - SDL:2009/07/13 23:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537] =>.Microsoft Corporation
O58 - SDL:2004/12/30 14:43:08 A . (.INCA Internet Co., Ltd. - nProtect NPSC Kernel Mode Driver for NT.) -- C:\Windows\System32\npptNT2.sys [4682] =>.INCA Internet Co., Ltd.
O58 - SDL:2009/07/13 23:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672] =>.Microsoft Corporation
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (8) - 955s
O61 - LFC: 2017/07/28 17:08:33 SH . (.Bandicam Company.) -- C:\Users\Diaby\bdfilters.dll [41346560]
O61 - LFC: 2017/07/31 16:34:01 A . (..) -- C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\nacl_validation_cache.bin [488]
O61 - LFC: 2017/07/28 17:20:20 A . (..) -- C:\Users\Diaby\AppData\Local\Programs\SwytShopAlgoadChrome_Pkg4\unins000.exe [1202513] =>PUP.Optional.SwytShop
O61 - LFC: 2017/07/28 17:21:32 A . (..) -- C:\Users\Diaby\AppData\Local\uninstallce.exe [3072]
O61 - LFC: 2017/07/30 22:36:36 A . (.Dolakepefo.) -- C:\Users\Diaby\Downloads\dragon-ball-z-sagas_2198152738.exe [1512977]
O61 - LFC: 2017/07/30 19:40:51 A . (..) -- C:\Users\Diaby\Downloads\inst_antispy.exe [613868]
O61 - LFC: 2017/07/29 20:16:35 A . (..) -- C:\Users\Diaby\Downloads\New Release Cheats Ver. 10.5.exe [2290688]
O61 - LFC: 2017/07/30 12:38:12 A . (.Uniblue Systems Limited.) -- C:\Users\Diaby\Downloads\pcmechanicpm.exe [1188216] =>.Superfluous.SpeedUpMyPC
---\\ Associations Shell Spawning (10) - 3s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
---\\ Menu de démarrage Internet (20) - 5s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Users\compte\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Users\Diaby\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- firefox.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Users\compte\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Users\Diaby\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Users\compte\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Users\Diaby\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Users\compte\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Users\Diaby\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
---\\ Recherche d'infection sur les navigateurs (7) - 28s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (search.yahoo.com) - http://fr.search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKCU] {2211d4a5-48d0-47f5-a7cd-81e861470f7f} - (search.yahoo.com) - http://fr.search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKCU] {C0C3A6C6-03BC-4195-8FCB-AEA091301353} - (Yahoo!) - http://fr.search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKCU] {f79e5d1c-5148-469e-9f98-a11d8d7863f4} - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (search.yahoo.com) - http://fr.search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKLM] {2211d4a5-48d0-47f5-a7cd-81e861470f7f} - (Yahoo! Powered) - http://fr.search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKLM] {f79e5d1c-5148-469e-9f98-a11d8d7863f4} - (Yahoo! Powered) - http://fr.search.yahoo.com/ =>.Yahoo! Inc.
---\\ Enumère les services démarrés par Svchost (32) - 6s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [606720] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [679424] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [474624] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [286208] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [242176] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Stas'M Corp. - Terminal Services Wrapper Library.) -- C:\Windows\System32\rdpwrap.dll [77312] =>.Stas'M Corp.
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2092032] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [585728] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [499712] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [47104] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164864] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [751104] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [113664] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102912] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [149504] =>.Microsoft Corporation
---\\ Liste des exceptions du parefeu Windows (36) - 38s
O87 - FAEL: "{13D5E591-777C-4D09-81EA-2E95B83C392E}" [In-None-P6-TRUE] .(...) -- C:\Users\Diaby\chroome.exe
O87 - FAEL: "{C2DD3C54-CDD0-43BD-914A-28C6105522B2}" [In-None-P17-TRUE] .(...) -- C:\Users\Diaby\chroome.exe
O87 - FAEL: "{A276F1FE-7447-4542-9645-85FAD1C61135}" [In-None-P6-TRUE] .(...) -- C:\Users\Diaby\chroome.exe
O87 - FAEL: "{FCB48A8F-86C2-460D-AFDA-A12582B97AAE}" [In-None-P17-TRUE] .(...) -- C:\Users\Diaby\chroome.exe
O87 - FAEL: "{463FA5B2-5EE8-4077-B8CC-56AD0D60CC45}" [In-None-P6-FALSE] .(.Smilegate Europe - CF_SGI.) -- C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGI.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{6A26E352-8FF7-4167-A886-4762952C5A3E}" [In-None-P17-FALSE] .(.Smilegate Europe - CF_SGI.) -- C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGI.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{BFE1D465-A215-431D-B60D-EBA250CE5E37}" [In-None-P6-FALSE] .(.Smilegate Europe - CF_SGI.) -- C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGIN.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{4C178425-8BBE-43AD-81F0-351E254B0028}" [In-None-P17-FALSE] .(.Smilegate Europe - CF_SGI.) -- C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGIN.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{F14929DF-532C-4BCD-A294-2345D33CFF0D}" [In-None-P6-FALSE] .(.Copyright (C) 1997 - Client MFC Application.) -- C:\Program Files\Smilegate\Crossfire Europe EU\crossfire.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{D8EE6208-5DFD-4347-B4D3-58CC48E6FCCA}" [In-None-P17-FALSE] .(.Copyright (C) 1997 - Client MFC Application.) -- C:\Program Files\Smilegate\Crossfire Europe EU\crossfire.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{C4CDB097-37A8-4062-86DD-25628C2959A5}" [In-None-P6-TRUE] .(.Smilegate Games Inc. - Hacking GateWay Client.) -- C:\Program Files\Smilegate\Crossfire Europe EU\HGWC.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{73CC62E5-F114-4BCF-BF2B-8C2E1A42F056}" [In-None-P17-TRUE] .(.Smilegate Games Inc. - Hacking GateWay Client.) -- C:\Program Files\Smilegate\Crossfire Europe EU\HGWC.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{24559BC8-8856-45C1-BE4B-178CFB1DAFB3}" [In-None-P6-FALSE] .(.Smilegate Games Inc. - Hacking GateWay Client.) -- C:\Program Files\Smilegate\Crossfire Europe EU\HGWC.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{2FC97218-D1B0-441B-AEE4-59CCAA0796E2}" [In-None-P17-FALSE] .(.Smilegate Games Inc. - Hacking GateWay Client.) -- C:\Program Files\Smilegate\Crossfire Europe EU\HGWC.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{15482131-C439-4CEE-82AB-6C1D1CA68F35}" [In-None-P6-FALSE] .(.Smilegate Entertainment - EU Crossfire Patcher.) -- C:\Program Files\Smilegate\Crossfire Europe EU\patcher_cf.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{D46A9BCC-05FD-4EF6-8217-8B4D13156C94}" [In-None-P17-FALSE] .(.Smilegate Entertainment - EU Crossfire Patcher.) -- C:\Program Files\Smilegate\Crossfire Europe EU\patcher_cf.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{CC5484FF-EB00-4ABE-8331-B9293F848B0D}" [In-None-P6-TRUE] .(.Copyright 2011 Neowiz - SelfUpdate Module.) -- C:\Program Files\Smilegate\Crossfire Europe EU\SelfUpdate.exe {220FA9CD9CB251C266327874C4782FC3}
O87 - FAEL: "{0199540C-44DB-41ED-BC1D-E4F211835B88}" [In-None-P17-TRUE] .(.Copyright 2011 Neowiz - SelfUpdate Module.) -- C:\Program Files\Smilegate\Crossfire Europe EU\SelfUpdate.exe {220FA9CD9CB251C266327874C4782FC3}
O87 - FAEL: "{CCEE74C3-EE4A-474A-870F-FF677A73B561}" [In-None-P6-FALSE] .(.Copyright 2011 Neowiz - SelfUpdate Module.) -- C:\Program Files\Smilegate\Crossfire Europe EU\SelfUpdate.exe {220FA9CD9CB251C266327874C4782FC3}
O87 - FAEL: "{26858C60-644D-4D01-B059-6C98A95F311D}" [In-None-P17-FALSE] .(.Copyright 2011 Neowiz - SelfUpdate Module.) -- C:\Program Files\Smilegate\Crossfire Europe EU\SelfUpdate.exe {220FA9CD9CB251C266327874C4782FC3}
O87 - FAEL: "{3D427CF5-89C5-4FB9-B724-A34CD435B5A4}" [In-None-P6-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe (.not file.)
O87 - FAEL: "{C9B16962-A746-452F-8266-6052C8AF3770}" [In-None-P17-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe (.not file.)
O87 - FAEL: "{F51AC3C7-2C05-4F4B-82A9-6D7D00860F56}" [In-None-P6-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe (.not file.)
O87 - FAEL: "{C933D294-62EF-4DB1-9403-9AC5FDCFB046}" [In-None-P17-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe (.not file.)
O87 - FAEL: "{ED9FD8B6-8C16-47A6-8760-249B66230751}" [In-None-P6-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{A3135243-BCCC-47C6-9D90-457070296462}" [In-None-P17-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{100498FD-C1D0-4737-BB95-FDC967F1E44E}" [In-None-P6-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{77883A27-0B1C-4C30-A90D-5F2E27376D8B}" [In-None-P17-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{B2C4C927-E74C-4C15-B54B-AE89A763D3E3}" [In-None-P6-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{31617CB1-65E6-4D5E-80D2-3021EB321B4D}" [In-None-P17-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{F3B6761E-389B-43CB-BB90-BA3F01FFAE66}" [In-None-P6-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{ACB1C313-5B0F-4FA4-B234-D64FD552041E}" [In-None-P17-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{9DAB0D8F-0486-4E70-94E3-52C647B6DC58}" [In-None-P6-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe
O87 - FAEL: "{DF01D074-3F3E-4576-906F-16039E622166}" [In-None-P17-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe
O87 - FAEL: "{C412DB7A-1E44-4FD4-8455-2F5718DC2197}" [In-None-P6-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe
O87 - FAEL: "{A5D6C0D6-8813-4765-997E-C64DDB74BC94}" [In-None-P17-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe
---\\ Recherche de clés de registre Tracing (4) - 16s
HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceScan_RASAPI32 =>.Superfluous.ByteFence
HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceScan_RASMANCS =>.Superfluous.ByteFence
HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 =>.Superfluous.ByteFence
HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS =>.Superfluous.ByteFence
---\\ Scan Additionnel (100) - 3s
[HKLM\SYSTEM\CurrentControlSet\Services\76f1c620a777bf6a6ddcfefa9f394791] =>PUP.Optional.Wajam
C:\Program Files\76f1c620a777bf6a6ddcfefa9f394791\738f470830b3668d66d5f0a992feb250.exe =>PUP.Optional.Wajam
[HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService] =>.Superfluous.ByteFence
C:\Program Files\ByteFence\ByteFenceService.exe =>.Superfluous.ByteFence
[HKLM\SYSTEM\CurrentControlSet\Services\rtop] =>.Superfluous.ByteFence
C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe =>.Superfluous.ByteFence
C:\Windows\Tasks\ReimageUpdater.job =>.Superfluous.ReimageRepair
C:\Windows\System32\Tasks\ByteFence =>.Superfluous.ByteFence
C:\Windows\System32\Tasks\ByteFence Scan =>.Superfluous.ByteFence
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ByteFence] =>.Superfluous.ByteFence
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ByteFence Scan] =>.Superfluous.ByteFence
C:\Program Files\Skillbrains\lightshot\Lightshot.exe =>.Superfluous.Skillbrains
C:\Users\Diaby\AppData\Local\Akamai\netsession_win.exe =>.Superfluous.AkamaiHD
C:\Program Files\VQJX3YA67N\9XV5352AV.exe =>Adware.Wizzcaster
C:\Program Files\cgmemeyesu2\N84IB.exe =>Adware.Wizzcaster
C:\Program Files\WMRHXXUH0F\1OLD5AKQC.exe =>Adware.Wizzcaster
C:\Program Files\1ABKMYMX0N\3U7W9DLR4.exe =>Adware.Wizzcaster
C:\Program Files\O9J4S1YMCM\9MAHNIY1A.exe =>Adware.Wizzcaster
C:\Program Files\5SMJZZ84T1\PLGL71APN.exe =>Adware.Wizzcaster
C:\Program Files\5V0M24Q3NB\WRJAAAP8A.exe =>Adware.Wizzcaster
C:\Program Files\K068PKZ6UO\R4UUPNVPO.exe =>Adware.Wizzcaster
C:\Program Files\HB8NBYQRQS\EDCPMOQW5.exe =>Adware.Wizzcaster
C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fngmhnnpilhplaeedifhccceomclgfbg =>Adware.CloudAtlas
C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pilplloabdedfmialnfchjomjmpjcoej =>.Superfluous.SearchManager
C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Local Extension Settings\cfkpefbllpconnkfpdgagkifmflckkdp =>.Superfluous.CookiesControl
C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\zo5cs3w4.default\extensions\300414@extcorp.com.xpi =>Adware.CloudAtlas
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CloudExtender] =>Trojan.ProxyAgent
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SwytShopAlgoadChrome_Pkg4_is1] =>PUP.Optional.SwytShop
C:\Program Files\1ABKMYMX0N\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\1ABKMYMX0N =>Adware.Wizzcaster
C:\Program Files\20ANG3FRGJ\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\20ANG3FRGJ =>Adware.Wizzcaster
C:\Program Files\5SMJZZ84T1\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\5SMJZZ84T1 =>Adware.Wizzcaster
C:\Program Files\5V0M24Q3NB\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\5V0M24Q3NB =>Adware.Wizzcaster
C:\Program Files\B1ZMD2YTCA\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\B1ZMD2YTCA =>Adware.Wizzcaster
C:\Program Files\HB8NBYQRQS\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\HB8NBYQRQS =>Adware.Wizzcaster
C:\Program Files\K068PKZ6UO\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\K068PKZ6UO =>Adware.Wizzcaster
C:\Program Files\O9J4S1YMCM =>Adware.Wizzcaster
C:\Program Files\OG9MTGL701\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\OG9MTGL701 =>Adware.Wizzcaster
C:\Program Files\OJ20A8ZTI8\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\OJ20A8ZTI8 =>Adware.Wizzcaster
C:\Program Files\OYVH9BCITE\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\OYVH9BCITE =>Adware.Wizzcaster
C:\Program Files\U4XP2BBMJF\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\U4XP2BBMJF =>Adware.Wizzcaster
C:\Program Files\VQJX3YA67N\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\VQJX3YA67N =>Adware.Wizzcaster
C:\Program Files\WMRHXXUH0F\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\WMRHXXUH0F =>Adware.Wizzcaster
C:\Program Files\yxexltnc =>.Superfluous.Empty
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware =>.Superfluous.ByteFence
C:\ProgramData\ByteFence =>.Superfluous.ByteFence
C:\Users\Diaby\AppData\Local\Akamai =>.Superfluous.AkamaiHD
C:\Users\Diaby\AppData\Local\Kitty =>.Superfluous.Elex
C:\Users\Diaby\AppData\Local\Programs\GEN =>.Superfluous.Funfeedr
C:\Users\Diaby\AppData\Local\Programs\SwytShopAlgoadChrome_Pkg4 =>PUP.Optional.SwytShop
[HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Advanced SystemCare 9] =>.Superfluous.AdvancedSystemCare
C:\Users\Diaby\AppData\Local\Programs\SwytShopAlgoadChrome_Pkg4\unins000.exe =>PUP.Optional.SwytShop
[HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceScan_RASAPI32] =>.Superfluous.ByteFence
[HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceScan_RASMANCS] =>.Superfluous.ByteFence
[HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32] =>.Superfluous.ByteFence
[HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS] =>.Superfluous.ByteFence
C:\Users\Diaby\AppData\Roaming\cf_hack.exe =>Heuristic.Suspect
C:\Users\Diaby\AppData\Roaming\remover.exe =>Heuristic.Suspect
C:\Users\Diaby\AppData\Roaming\RLHackers.exe =>Heuristic.Suspect
C:\Windows\System32\Drivers\be7150856eafa500edf8d20c62f5d2ac.sys =>PUP.Optional.Wajam
[HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\5ydp3vr3] =>.Superfluous.Elex
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1916A2AF346D399F50313C393200F14140456616] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2A83E9020591A55FC6DDAD3FB102794C52B24E70] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2B84BFBB34EE2EF949FE1CBE30AA026416EB2216] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3A850044D8A195CD401A680C012CB0A3B5F8DC08] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\40AA38731BD189F9CDB5B9DC35E2136F38777AF4] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\43D9BCB568E039D073A74A71D8511F7476089CC3] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\471C949A8143DB5AD5CDF1C972864A2504FA23C9] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\61793FCBFA4F9008309BBA5FF12D2CB29CD4151A] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\63FEAE960BAA91E343CE2BD8B71798C76BDB77D0] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\6431723036FD26DEA502792FA595922493030F97] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\80962AE4D6C5B442894E95A13E4A699E07D694CF] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\86E817C81A5CA672FE000F36F878C19518D6F844] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\8E5BD50D6AE686D65252F843A9D4B96D197730AB] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9845A431D51959CAF225322B4A4FE9F223CE6D15] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B533345D06F64516403C00DA03187D3BFEF59156] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B86E791620F759F17B8D25E38CA8BE32E7D5EAC2] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\C060ED44CBD881BD0EF86C0BA287DDCF8167478C] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CEA586B2CE593EC7D939898337C57814708AB2BE] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D018B62DC518907247DF50925BB09ACF4A5CB3AD] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F8A54E03AADC5692B850496A4C4630FFEAA29D83] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FA6660A94AB45F6A88C0D7874D89A863D74DEE97] =>PUM.Misplaced.Certificate [Avast Software]
---\\ Récapitulatif des éléments trouvés sur votre station (29) - 0s
https://nicolascoolman.eu/2017/02/24/pup-optional-wajam/ =>PUP.Optional.Wajam
https://nicolascoolman.eu/2017/03/13/superfluous-bytefence/ =>.Superfluous.ByteFence
https://nicolascoolman.eu/2017/01/27/superfluous-reimagerepair/ =>.Superfluous.ReimageRepair
https://www.anti-malware.top/2016/04/30/superfluous-skillbrains/ =>.Superfluous.Skillbrains
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.AkamaiHD
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Adware.Wizzcaster
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Adware.CloudAtlas
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.SearchManager
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.CookiesControl
https://nicolascoolman.eu/2017/03/06/hijacker-startpageing123/ =>Hijacker.StartpageIng123
https://nicolascoolman.eu/2017/05/16/hijacker-ourluckysites/ =>Hijacker.OurLuckySites
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Adware.DNSUnlocker
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Trojan.ProxyAgent
https://nicolascoolman.eu/2017/04/08/pup-optional-swytshop/ =>PUP.Optional.SwytShop
https://nicolascoolman.eu/2017/03/10/adware-amulecustom/ =>Adware.aMULEcustom
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.InterSect
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Paretologic
https://www.anti-malware.top/2016/04/26/superfluous-springfiles/ =>.Superfluous.SpringFiles
https://nicolascoolman.eu/2017/03/12/adware-installcore-2/ =>Adware.InstallCore
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Downloader
https://nicolascoolman.eu/2017/01/18/adware-apptrailers/ =>Adware.AppTrailers
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Empty
https://nicolascoolman.eu/2017/03/28/superfluous-elex/ =>.Superfluous.Elex
https://www.anti-malware.top/2016/05/05/superfluous-funfeedr/ =>.Superfluous.Funfeedr
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.AdvancedSystemCare
https://www.anti-malware.top/2016/08/15/speedupmypc/ =>.Superfluous.SpeedUpMyPC
https://nicolascoolman.eu/2017/01/28/heuristic-suspect/ =>Heuristic.Suspect
https://nicolascoolman.eu/2017/06/26/trojan-certlock/ =>PUM.Misplaced.Certificate
~ Unselected Options: O82,
~ End of the scan, 21712 items in 52mn22s (1599)(0)
~ Démarré par Diaby (Administrator) (2017/07/31 18:39:20)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Diaby\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Diaby\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Professional, 32-bit Service Pack 1 (Build 7601) =>.Microsoft Corporation
---\\ Navigateurs Internet (3) - 1s
~ GCIE: Google Chrome v59.0.3071.115
~ MFIE: Mozilla Firefox 54.0.1 (x86 fr)
~ MSIE: Internet Explorer v11.0.9600.18697
---\\ Informations sur les produits Windows (4) - 1s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection (3) - 22s
Avira Antivirus v15.0.28.28 (Protection)
Emsisoft Anti-Malware (Protection)
Malwarebytes version 3.1.2.1733 v3.1.2.1733 (Protection)
---\\ Logiciels de protection et autres (Superflus) (1) - 24s
~ Spybot - Search & Destroy v2.4.40 (Superfluous)
---\\ Logiciels d'optimisation (1) - 26s
~ CCleaner v5.32 (Optimize)
---\\ Surveillance de Logiciels (1) - 27s
~ Adobe Flash Player 26 PPAPI (Surveillance)
---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 15 Model 4 Stepping 3, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 1039.796 MB (13% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 10 GB (13%) free of 76 GB : ATTENTION =>Warning Disk Space
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: DIABY-PC
~ User Name: Diaby
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 10 GB free of 76 GB (System)
---\\ Etat du Centre de Sécurité Windows (12) - 1s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (25) - 78s
[MD5.40D777B7A95E00593EB1568C68514493] - 20/11/2010 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2616320] =>.Microsoft Corporation
[MD5.C648901695E275C8F2AD04B687A68CE2] - 30/03/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [45056] =>.Microsoft Corporation
[MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [96256] =>.Microsoft Corporation
[MD5.9B934764D5320F5F2FC0C3CB663F7A3E] - 14/05/2017 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2767872] =>.Microsoft Corporation
[MD5.52449FD429D6053B78AE564DEF303870] - 17/07/2014 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [304128] =>.Microsoft Corporation
[MD5.E3AE23569749DE12D45BA3B489A036AE] - 20/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [193536] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - 12/04/2011 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.F582FC7976F1248AC5FBD6875C626B41] - 04/04/2017 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [338944] =>.Microsoft Corporation
[MD5.338C86357871C167A96AB976519BF59E] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584] =>.Microsoft Windows®
[MD5.77EA11B065E0A8AB902D78145CA51E10] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656] =>.Microsoft Corporation
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544] =>.Microsoft Corporation
[MD5.EA9DBD76CE9254C77BAAB4339DD4C4FB] - 08/09/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [81408] =>.Microsoft Corporation
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544] =>.Microsoft Corporation
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] =>.Microsoft Corporation
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [101888] =>.Microsoft Corporation
[MD5.D071B9246BFD1575D72BD88B66F6FB87] - 21/05/2017 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [124416] =>.Microsoft Corporation
[MD5.A00996C9BFEF29A93B9F21DBE1DC502D] - 11/05/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [188928] =>.Microsoft Corporation
[MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - 12/04/2013 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1211752] =>.Microsoft Windows®
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [79360] =>.Microsoft Corporation
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] =>.Microsoft Corporation
[MD5.B973FCFC50DC1434E1970A146F7E3885] - 20/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133632] =>.Microsoft Corporation
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] =>.Microsoft Corporation
[MD5.01743A8A62F2C0488F9C4F6D25C21B2C] - 10/05/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74752] =>.Microsoft Corporation
[MD5.F497F67932C6FA693D7DE2780631CFE7] - 20/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [245632] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (22) - 43s
O23 - Service: 76f1c620a777bf6a6ddcfefa9f394791 (76f1c620a777bf6a6ddcfefa9f394791) . (.Copyright (C) 2014 - .) - C:\Program Files\76f1c620a777bf6a6ddcfefa9f394791\738f470830b3668d66d5f0a992feb250.exe =>PUP.Optional.Wajam
O23 - Service: Emsisoft Protection Service (a2AntiMalware) . (.Emsisoft Ltd - Emsisoft Protection Service.) - C:\Program Files\Emsisoft Anti-Malware\a2service.exe =>.Emsisoft Ltd®
O23 - Service: Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner WFP Service.) - C:\Program Files\Avira\Antivirus\avmailc7.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\Antivirus\sched.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\Antivirus\avguard.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - AntiVir WebGuard WFP Service.) - C:\Program Files\Avira\Antivirus\avwebg7.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira Service Host.) - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC - ByteFence Anti-Malware.) - C:\Program Files\ByteFence\ByteFenceService.exe =>.Superfluous.ByteFence =>.Superfluous.ByteFence
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: McAfee Home Network (HomeNetSvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
O23 - Service: IMF Service (IMFservice) . (.IObit - IObit Malware Fighter Service.) - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe =>.IObit Information Technology®
O23 - Service: McAfee Proxy Service (McProxy) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
O23 - Service: McAfee Service Controller (mfemms) . (.McAfee, Inc. - McAfee Management Service.) - C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe =>.McAfee, Inc.®
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) . (.McAfee, Inc. - McAfee Process Validation Service.) - C:\Windows\System32\mfevtps.exe =>.McAfee, Inc.®
O23 - Service: McAfee Module Core Service (ModuleCoreService) . (.McAfee, Inc. - McAfee Module Core Service.) - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe =>.McAfee, Inc.®
O23 - Service: Ntp2NetSvc (Ntp2NetSvc) . (.Don HO don.h@free.fr - Notepad2 : a free (GNU) source code editor.) - C:\Program Files\notepad2\notepad2.exe =>.Don HO don.h@free.fr
O23 - Service: Ntp2UpSvc (Ntp2UpSvc) . (.Don HO don.h@free.fr - Notepad2 : a free (GNU) source code editor.) - C:\Program Files\Common Files\ntp2UpSvc\notepad2.exe =>.Don HO don.h@free.fr
O23 - Service: ByteFence Security Real-time Protection (rtop) . (.Copyright Byte Technologies LLC. - ByteFence Real-time Protection.) - C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe =>.Superfluous.ByteFence =>.Superfluous.ByteFence
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe =>.Safer Networking Ltd.®
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe =>.Safer Networking Ltd.®
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe =>.Safer Networking Ltd.®
O23 - Service: Services Bureau à distance (TermService) . (.Stas'M Corp. - Terminal Services Wrapper Library.) - C:\Windows\System32\rdpwrap.dll =>.Stas'M Corp.
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (30) - 553s
SS - Auto [27/07/2017] [ 1916928] 76f1c620a777bf6a6ddcfefa9f394791 (76f1c620a777bf6a6ddcfefa9f394791) . (.Copyright (C) 2014.) - C:\Program Files\76f1c620a777bf6a6ddcfefa9f394791\738f470830b3668d66d5f0a992feb250.exe =>PUP.Optional.Wajam
SR - Auto [29/06/2017] [ 5827888] Emsisoft Protection Service (a2AntiMalware) . (.Emsisoft Ltd.) - C:\Program Files\Emsisoft Anti-Malware\a2service.exe =>.Emsisoft Ltd®
SS - Demand [13/07/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SS - Auto [04/07/2017] [ 1128432] Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Antivirus\avmailc7.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [04/07/2017] [ 490968] Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Antivirus\sched.exe =>.Avira Operations GmbH & Co. KG®
SS - Auto [04/07/2017] [ 490968] Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Antivirus\avguard.exe =>.Avira Operations GmbH & Co. KG®
SS - Auto [04/07/2017] [ 1524216] Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Antivirus\avwebg7.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [13/06/2017] [ 377976] Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [20/07/2017] [ 145888] ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC.) - C:\Program Files\ByteFence\ByteFenceService.exe =>.Superfluous.ByteFence =>.Superfluous.ByteFence
SS - Demand [29/03/2017] [ 1290176] ClientAnalyticsService (ClientAnalyticsService) . (.Intel Security.) - C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe =>.McAfee, Inc.®
SS - Demand [09/06/2017] [ 383016] EasyAntiCheat (EasyAntiCheat) . (.EasyAntiCheat Ltd.) - C:\Windows\System32\EasyAntiCheat.exe =>.EasyAntiCheat Oy®
SS - Auto [06/06/2016] [ 154440] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [06/06/2016] [ 154440] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [22/02/2017] [ 509776] McAfee Home Network (HomeNetSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
SR - Auto [18/07/2017] [ 1768736] IMF Service (IMFservice) . (.IObit.) - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe =>.IObit Information Technology®
SR - Auto [22/02/2017] [ 509776] McAfee Proxy Service (McProxy) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe =>.McAfee, Inc.®
SR - Demand [30/04/2017] [ 204792] McAfee Firewall Core Service (mfefire) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe =>.McAfee, Inc.®
SR - Auto [30/04/2017] [ 355832] McAfee Service Controller (mfemms) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe =>.McAfee, Inc.®
SR - Auto [30/04/2017] [ 328704] McAfee Validation Trust Protection Service (mfevtp) . (.McAfee, Inc..) - C:\Windows\System32\mfevtps.exe =>.McAfee, Inc.®
SR - Auto [31/05/2017] [ 1228160] McAfee Module Core Service (ModuleCoreService) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe =>.McAfee, Inc.®
SS - Demand [30/06/2017] [ 175560] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [16/02/2017] [ 2340864] Ntp2NetSvc (Ntp2NetSvc) . (.Don HO don.h@free.fr.) - C:\Program Files\notepad2\notepad2.exe =>.Don HO don.h@free.fr
SS - Auto [13/07/2017] [ 2340864] Ntp2UpSvc (Ntp2UpSvc) . (.Don HO don.h@free.fr.) - C:\Program Files\Common Files\ntp2UpSvc\notepad2.exe =>.Don HO don.h@free.fr
SS - Demand [29/06/2017] [ 189792] PSEXESVC (PSEXESVC) . (.Sysinternals.) - C:\Windows\PSEXESVC.exe =>.Sysinternals®
SS - Demand [23/04/2017] [ 75792] QFX Software Update Service (QFXUpdateService) . (...) - C:\Program Files\KeyScrambler\QFXUpdateService.exe =>.QFX Software Corporation®
SR - Auto [31/07/2017] [ 304456] ByteFence Security Real-time Protection (rtop) . (.Copyright Byte Technologies LLC..) - C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe =>.Superfluous.ByteFence =>.Superfluous.ByteFence
SR - Auto [24/06/2014] [ 1738168] Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe =>.Safer Networking Ltd.®
SR - Auto [27/06/2014] [ 2088408] Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe =>.Safer Networking Ltd.®
SR - Auto [25/04/2014] [ 171928] Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe =>.Safer Networking Ltd.®
SR - Auto [22/12/2016] [ 77312] Services Bureau à distance (TermService) . (.Stas'M Corp..) - C:\Windows\System32\rdpwrap.dll =>.Stas'M Corp.
---\\ Tâches planifiées en automatique (76) - 36s
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\060184C3-9766-46a0-B258-F4518A0B2633.job [338]
O39 - APT: Unknown - (.Adobe Inc..) -- C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job [1064] =>.Adobe Inc.
O39 - APT: Unknown - (.Adobe Inc..) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] =>.Adobe Inc.
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Arkoghtpeguther.job [546]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\bvyvdvge.job [274]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job [644]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Chrome Cleanup Tool logs upload retry.job [436]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Clean System Memory.job [258]
O39 - APT: Unknown - (.IObit.) -- C:\Windows\Tasks\Driver Booster SkipUAC (Diaby).job [248] =>.IObit
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Fevuphmervly Launcher.job [710]
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1050] =>.Google Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1bffee1ac4c3e.job [1054] =>.Google Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d1c000120ba96b.job [1050] =>.Google Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d22066d30bdfad.job [1054] =>.Google Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d2206738002651.job [1054] =>.Google Inc.
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Launch 18391.job [200]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\McAfee Remediation (Prepare).job [248]
O39 - APT: Unknown - (.McAfee Inc..) -- C:\Windows\Tasks\McAfeeLogon.job [270] =>.McAfee Inc.
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Norton Product Installer.job [606]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Norton Product InstallerIdle.job [614]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job [616]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\ReimageUpdater.job [344] =>.Superfluous.ReimageRepair
O39 - APT: Unknown - (.Legitimate.) -- C:\Windows\Tasks\RunAsStdUser Task.job [380]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job [446]
O39 - APT: Unknown - (.Microsoft Corporation.) -- C:\Windows\Tasks\SidebarExecute.job [234] =>.Microsoft Corporation
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\update-S-1-5-21-377985148-792701347-3327087119-1001.job [376]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\update-sys.job [376]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{04080DB5-B3A3-BA1E-9ECF-2C2F482411E3}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{09E7DB74-84BA-4925-B16A-BDD9903CBA36}.job [372]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{1AC348B7-AD68-FF1C-B28E-D7154A60845C}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{1BD3C577-AC78-72DC-73FA-BFCFD1282F09}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{313B6D77-91B7-4729-A8CE-71B472DEFDFD}.job [356]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{35256B5B-A4F7-1A6B-BAA8-B9AFFA9C2D07}.job [364]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{3672E31A-81D9-54B1-59B6-288993C49B47}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{3700379E-80AB-8035-7D42-73018BA78685}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{3F82500D-8829-E7A6-8EED-8BD7AAAE4D4F}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{45485F2B-F2E3-E880-D53A-70275FF51A73}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{6705E622-D0AE-5189-F8C7-23139FAAF4C5}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{6AE6823C-DD4D-3597-24AA-41F7824849F9}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{72A2A6F2-C509-1159-E877-5A279F6B89A6}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{803DA72D-3796-1086-18D9-B4B5A388E4CA}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{811BEB6F-36B0-5CC4-6E67-2B54C8A88248}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{8CE64007-3B4D-F7AC-70D3-46226CC128C3}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{8DDB2B4C-2A59-4BD4-86E2-E3C071F88604}.job [356]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{B6D26BEC-0179-DC47-976C-B9812509626B}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{B9CC9342-A99F-494E-BDC8-B0144B2136BA}.job [356]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{BC335264-0B98-E5CF-1BCD-CDF3A77DB74F}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{BC5A07C5-0BF1-B06E-75C8-F2A9D4292B36}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{C00DA454-77A6-13FF-9770-3F58EDDC6571}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{C105346C-316B-4307-97C6-16882327ADA8}.job [424]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{C38ABE1B-7421-09B0-8E43-F48334855F6F}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{C72D3418-B588-43B7-A737-F7D20991DE46}.job [308]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{D0B53B8D-671E-8C26-13D2-039C28EE9AD7}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{D1F95EA7-6652-E90C-6809-87E1AD9F0189}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{D7471C96-60EC-AB3D-6467-90C2A1FFEC24}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{DA2F7091-AA65-4DA2-A47C-02D8DE44B460}.job [356]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{DC736D9A-6BD8-DA31-C4D2-9966D4182587}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{EA9ACF9D-5D31-7836-8488-FD37BF743D2F}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\Tasks\{F6C32E6E-4168-99C5-BFFD-82F34EAF93DB}.job [462]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\ASC9_PerformanceMonitor [3168]
O39 - APT: Unknown - (.IObit.) -- C:\Windows\System32\Tasks\ASC9_SkipUac_Diaby [2856] =>.IObit
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 [3640]
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\ByteFence [3358] =>.Superfluous.ByteFence
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\ByteFence Scan [3462] =>.Superfluous.ByteFence
O39 - APT: Unknown - (.IObit.) -- C:\Windows\System32\Tasks\Driver Booster Scheduler [3230] =>.IObit
O39 - APT: Unknown - (.IObit.) -- C:\Windows\System32\Tasks\Driver Booster SkipUAC (Diaby) [2862] =>.IObit
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3802] =>.Google Inc.
O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4054] =>.Google Inc.
O39 - APT: Unknown - (.IObit.) -- C:\Windows\System32\Tasks\Uninstaller_SkipUac_Diaby [2892] =>.IObit
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC9_PerformanceMonitor
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC9_SkipUac_Diaby
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ByteFence =>.Superfluous.ByteFence
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ByteFence Scan =>.Superfluous.ByteFence
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (Diaby)
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_Diaby
---\\ Applications lancées au démarrage du système (48) - 78s
O4 - HKLM\..\Run: [Lightshot] . (.Copyright 2009 - Starter Module.) -- C:\Program Files\Skillbrains\lightshot\Lightshot.exe =>.Superfluous.Skillbrains
O4 - HKLM\..\Run: [tmp178E] -- C:\Users\Diaby\AppData\Local\Temp\tmp178E.tmp.vbs (.not file.)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [KeyScrambler] . (.QFX Software Corporation - KeyScrambler.) -- C:\Program Files\KeyScrambler\keyscrambler.exe =>.QFX Software Corporation®
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] . (.Avira Operations GmbH & Co. KG - Avira Connect.) -- C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe =>.Avira Operations GmbH & Co. KG®
O4 - HKLM\..\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe =>.Safer Networking Ltd.®
O4 - HKLM\..\Run: [IObit Malware Fighter] . (.IObit - IObit Malware Fighter.) -- C:\Program Files\IObit\IObit Malware Fighter\IMF.exe =>.IObit Information Technology®
O4 - HKLM\..\Run: [a689fa49fd42104e55e4ba78550f130f] . (...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe
O4 - HKLM\..\Run: [Malwarebytes TrayApp] -- C:\Nouveau dossier\DBZ SAGAS\Anti-Malware\mbamtray.exe (.not file.)
O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files\Avira\Antivirus\avgnt.exe =>.Avira Operations GmbH & Co. KG®
O4 - HKLM\..\Run: [emsisoft anti-malware] . (.Emsisoft Ltd - Emsisoft Real-Time Protection.) -- c:\program files\emsisoft anti-malware\a2guard.exe =>.Emsisoft Ltd®
O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Diaby\AppData\Local\Akamai\netsession_win.exe =>.Superfluous.AkamaiHD
O4 - HKCU\..\Run: [tmp178E] -- C:\Users\Diaby\AppData\Local\Temp\tmp178E.tmp.vbs (.not file.)
O4 - HKCU\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Diaby\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [Dt25] -- C:\Users\Diaby\AppData\Roaming\Microsoft\Crypto\TrayNet32.wsf (.not file.)
O4 - HKCU\..\Run: [4c121ab7] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Users\Diaby\AppData\Roaming\Microsoft\Crypto\wscript.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [A2C4R06GOI2USHB] . (.T9SUI9 - T9SUI.) -- C:\Program Files\VQJX3YA67N\9XV5352AV.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [4TTE7FVZAAWLWTW] . (.T9SUI9 - T9SUI.) -- C:\Program Files\cgmemeyesu2\N84IB.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [BIQMOR3HCHNOJKM] . (.T9SUI9 - T9SUI.) -- C:\Program Files\WMRHXXUH0F\1OLD5AKQC.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [ZVZJVKCGYYNP607] . (.DG - D.) -- C:\Program Files\1ABKMYMX0N\3U7W9DLR4.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [26J9JV7MOOO65E6] . (.HS64W3CL - HS.) -- C:\Program Files\O9J4S1YMCM\9MAHNIY1A.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [4VFC0RKPGA0ZAPW] . (.@1H8VX@M7 - .) -- C:\Program Files\5SMJZZ84T1\PLGL71APN.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [SVH4LS1YBMIOUIA] . (.6U8 - 6U8KEUYG.) -- C:\Program Files\5V0M24Q3NB\WRJAAAP8A.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [R4IGZ4M949809P2] . (.6U8 - 6U8KEUYG.) -- C:\Program Files\K068PKZ6UO\R4UUPNVPO.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [G0N3C77P27QPQZ4] . (.AKFTR - .) -- C:\Program Files\HB8NBYQRQS\EDCPMOQW5.exe =>Adware.Wizzcaster
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Diaby\AppData\Local\Akamai\netsession_win.exe =>.Superfluous.AkamaiHD
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [tmp178E] -- C:\Users\Diaby\AppData\Local\Temp\tmp178E.tmp.vbs (.not file.)
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Diaby\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [Dt25] -- C:\Users\Diaby\AppData\Roaming\Microsoft\Crypto\TrayNet32.wsf (.not file.)
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [4c121ab7] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Users\Diaby\AppData\Roaming\Microsoft\Crypto\wscript.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [A2C4R06GOI2USHB] . (.T9SUI9 - T9SUI.) -- C:\Program Files\VQJX3YA67N\9XV5352AV.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [4TTE7FVZAAWLWTW] . (.T9SUI9 - T9SUI.) -- C:\Program Files\cgmemeyesu2\N84IB.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [BIQMOR3HCHNOJKM] . (.T9SUI9 - T9SUI.) -- C:\Program Files\WMRHXXUH0F\1OLD5AKQC.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [ZVZJVKCGYYNP607] . (.DG - D.) -- C:\Program Files\1ABKMYMX0N\3U7W9DLR4.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [26J9JV7MOOO65E6] . (.HS64W3CL - HS.) -- C:\Program Files\O9J4S1YMCM\9MAHNIY1A.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [4VFC0RKPGA0ZAPW] . (.@1H8VX@M7 - .) -- C:\Program Files\5SMJZZ84T1\PLGL71APN.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [SVH4LS1YBMIOUIA] . (.6U8 - 6U8KEUYG.) -- C:\Program Files\5V0M24Q3NB\WRJAAAP8A.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [R4IGZ4M949809P2] . (.6U8 - 6U8KEUYG.) -- C:\Program Files\K068PKZ6UO\R4UUPNVPO.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [G0N3C77P27QPQZ4] . (.AKFTR - .) -- C:\Program Files\HB8NBYQRQS\EDCPMOQW5.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-377985148-792701347-3327087119-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd®
---\\ Processus lancés (50) - 192s
[MD5.FD3DE2078B2ED0BBF28B396F213FEC95] - (.IObit - IObit Malware Fighter Service.) -- C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [1768736] [PID.868] =>.IObit Information Technology®
[MD5.FFEF85EA698E2CE1B501509E4F4A3754] - (.Emsisoft Ltd - Emsisoft Protection Service.) -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe [5827888] [PID.924] =>.Emsisoft Ltd®
[MD5.69681426797E0E78F4D9398BD789F1F8] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files\Avira\Antivirus\sched.exe [490968] [PID.1852] =>.Avira Operations GmbH & Co. KG®
[MD5.624E2BAB14C48D0C84EE265125811169] - (.Byte Technologies LLC - ByteFence Anti-Malware.) -- C:\Program Files\ByteFence\ByteFenceService.exe [145888] [PID.548] =>.Superfluous.ByteFence
[MD5.DA7B184091EBBDE88CA5229DA62F4D65] - (.McAfee, Inc. - McAfee Management Service.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [355832] [PID.1876] =>.McAfee, Inc.®
[MD5.72F13892AC828AEA465DA8D6D10094C2] - (.McAfee, Inc. - McAfee Process Validation Service.) -- C:\Windows\System32\mfevtps.exe [328704] [PID.1896] =>.McAfee, Inc.®
[MD5.32DA5D123DCE8E36F7D0B0F4AE68B61D] - (.McAfee, Inc. - McAfee Module Core Service.) -- C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1228160] [PID.400] =>.McAfee, Inc.®
[MD5.72F13892AC828AEA465DA8D6D10094C2] - (.McAfee, Inc. - McAfee Process Validation Service.) -- C:\Windows\System32\mfevtps.exe [328704] [PID.468] =>.McAfee, Inc.®
[MD5.4B87C23764D0EA8D8D1C13DEC7A38985] - (.Don HO don.h@free.fr - Notepad2 : a free (GNU) source code editor.) -- C:\Program Files\notepad2\notepad2.exe [2340864] [PID.2168] =>.Don HO don.h@free.fr
[MD5.A8FBDF79F7BFF18AC1E55D41EE6A5030] - (.Copyright Byte Technologies LLC. - ByteFence Real-time Protection.) -- C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe [304456] [PID.2444] =>.Superfluous.ByteFence
[MD5.D777F1417D9BB9F66CD9D9C3B61F730F] - (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168] [PID.2468] =>.Safer Networking Ltd.®
[MD5.68D6C7F99BC73B88954D844FCCBEB2A0] - (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) -- C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408] [PID.2584] =>.Safer Networking Ltd.®
[MD5.5E7C103F8475C4289847D15E129C20F7] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [1713904] [PID.2800] =>.Microsoft Corporation®
[MD5.296AFEDFC8100327634C60860F160986] - (.McAfee, Inc. - McAfee Core Firewall Service.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [204792] [PID.2912] =>.McAfee, Inc.®
[MD5.899C706D9C5A829BEA290CD02A95B07C] - (.Avira Operations GmbH & Co. KG - Avira Service Host.) -- C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [377976] [PID.2952] =>.Avira Operations GmbH & Co. KG®
[MD5.33E6E5822E22A5E1DEA523C06155FD07] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe [288848] [PID.2992] =>.Google Inc®
[MD5.DAF0C7D1F4E9B057C8151D0B92A6BDA5] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [194304] [PID.3244] =>.Microsoft Corporation®
[MD5.32DA5D123DCE8E36F7D0B0F4AE68B61D] - (.McAfee, Inc. - McAfee Module Core Service.) -- C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1228160] [PID.3484] =>.McAfee, Inc.®
[MD5.296AFEDFC8100327634C60860F160986] - (.McAfee, Inc. - McAfee Core Firewall Service.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [204792] [PID.3772] =>.McAfee, Inc.®
[MD5.9B9B368A8FF5CAF91D7A333CF62CD2CC] - (.Safer-Networking Ltd. - Windows Security Center integration..) -- C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928] [PID.3864] =>.Safer Networking Ltd.®
[MD5.0E5346C162466EF317CC1B27860C4FF7] - (.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [509776] [PID.3896] =>.McAfee, Inc.®
[MD5.EABD36D259A4E784C4DD0C8F3D8D3929] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [14696704] [PID.3292] =>.Realtek Semiconductor Corp®
[MD5.004763BDF8E48244DBB9FDFDE3065EBC] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [173592] [PID.3728] =>.Intel Corporation®
[MD5.CD1102E5D340216138C7F56FA8D26998] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [150552] [PID.1340] =>.Intel Corporation®
[MD5.D9C51528488EA0D98D3C4D02ABD16759] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\System32\igfxsrvc.exe [252952] [PID.2500] =>.Intel Corporation®
[MD5.7EE68A122ED08E4AAD8DA551E34D2515] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [4101576] [PID.5200] =>.Safer Networking Ltd.®
[MD5.7F3D0BC2FE61C249302E0515989C59E2] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Diaby\AppData\Local\Akamai\netsession_win.exe [4490200] [PID.4084] =>.Superfluous.AkamaiHD
[MD5.CC436BB2A26391F3DEBE316F6FB0474F] - (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Diaby\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008] [PID.4048] =>.Microsoft Corporation®
[MD5.7F3D0BC2FE61C249302E0515989C59E2] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Diaby\AppData\Local\Akamai\netsession_win.exe [4490200] [PID.4472] =>.Superfluous.AkamaiHD
[MD5.0819DD7E886A65DB8A2B4B42AE61992D] - (.Avira Operations GmbH & Co. KG - Avira.) -- C:\Program Files\Avira\Launcher\Avira.Systray.exe [304624] [PID.5360] =>.Avira Operations GmbH & Co. KG®
[MD5.40C617E6B9A8BA75A1EF001B13F32304] - (.T9SUI9 - T9SUI.) -- C:\Program Files\VQJX3YA67N\9XV5352AV.exe [1040896] [PID.5500] =>Adware.Wizzcaster
[MD5.40C617E6B9A8BA75A1EF001B13F32304] - (.T9SUI9 - T9SUI.) -- C:\Program Files\cgmemeyesu2\N84IB.exe [1040896] [PID.5608] =>Adware.Wizzcaster
[MD5.40C617E6B9A8BA75A1EF001B13F32304] - (.T9SUI9 - T9SUI.) -- C:\Program Files\WMRHXXUH0F\1OLD5AKQC.exe [1040896] [PID.5716] =>Adware.Wizzcaster
[MD5.CA2712756F3D29D1B659E18600FA66E6] - (.IObit - IObit Malware Fighter.) -- C:\Program Files\IObit\IObit Malware Fighter\IMF.exe [5780256] [PID.6056] =>.IObit Information Technology®
[MD5.CCAE248C36E2545FC3474F41555DAB81] - (.DG - D.) -- C:\Program Files\1ABKMYMX0N\3U7W9DLR4.exe [1040896] [PID.3960] =>Adware.Wizzcaster
[MD5.7AD30138781BD600C66F04603D1B85EE] - (.@1H8VX@M7 - .) -- C:\Program Files\5SMJZZ84T1\PLGL71APN.exe [1040896] [PID.3720] =>Adware.Wizzcaster
[MD5.004211FE72186E9F0A9891102B9A9E9C] - (.6U8 - 6U8KEUYG.) -- C:\Program Files\5V0M24Q3NB\WRJAAAP8A.exe [1040896] [PID.5296] =>Adware.Wizzcaster
[MD5.004211FE72186E9F0A9891102B9A9E9C] - (.6U8 - 6U8KEUYG.) -- C:\Program Files\K068PKZ6UO\R4UUPNVPO.exe [1040896] [PID.5312] =>Adware.Wizzcaster
[MD5.CA757CC6A18955275CE2ED27E1303D3A] - (.AKFTR - .) -- C:\Program Files\HB8NBYQRQS\EDCPMOQW5.exe [1040896] [PID.4732] =>Adware.Wizzcaster
[MD5.8401873D8DA6106B0EA61D3323F441F3] - (.IObit - IObit Malware Fighter Tips.) -- C:\Program Files\IObit\IObit Malware Fighter\IMFTips.exe [2439456] [PID.6012] =>.IObit Information Technology®
[MD5.46B0C7E76763A823FCD95827A59FBBD7] - (.Symantec Corporation - Firewall Diagnostic NDF Helper.) -- C:\Program Files\Norton Security\Engine\22.5.4.24\SymDgnHC.exe [192168] [PID.6656] =>.Symantec Corporation®
[MD5.A0270CE04D72C81E9D719D495604D4C9] - (.Copyright Byte Technologies LLC. - ByteFence Real-time Protection.) -- C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe [619848] [PID.7528] =>.Superfluous.ByteFence
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.6248] =>.Google Inc®
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.5260] =>.Google Inc®
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.7340] =>.Google Inc®
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.6420] =>.Google Inc®
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.800] =>.Google Inc®
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.4644] =>.Google Inc®
[MD5.362E2CEA5EF38DAC4A8CDB8F6A793989] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Diaby\AppData\Roaming\ZHP\ZHPDiag3.exe [2800512] [PID.7760] =>.Nicolas Coolman
[MD5.A7ED399087929FAF32DCE43F07A9FE3E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1027928] [PID.5032] =>.Google Inc®
---\\ Google Chrome, Démarrage,Recherche,Extensions (23) - 9s
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Docs =>.Legitimate
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com =>.Google Inc. {Drive}
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [User Data\Default] [fngmhnnpilhplaeedifhccceomclgfbg] Tables =>Adware.CloudAtlas
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [User Data\Default] [pilplloabdedfmialnfchjomjmpjcoej] Search Manager =>.Superfluous.SearchManager
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G0 - GCSP: Preferences [User Data\Default][HomePage] http://codes.iobit.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://dev.visualwebsiteoptimizer.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fr.apiads.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://purchase.iobit.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.iobit.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cookies-control.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.googleapis.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://m59.prod2016.com
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive}
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] eyeo GmbH =>.eyeo GmbH {AdBlock Plus}
G2 - GCE: Preference [User Data\Default] [cfkpefbllpconnkfpdgagkifmflckkdp] Сookies Control =>.Superfluous.CookiesControl
G2 - GCE: Preference [User Data\Default] [fbimffnjoeobhjhochngikepgfejjmgj]
G2 - GCE: Preference [User Data\Default] [fdhpkpfbolhjcbejckjbiciinkcjlijj] Télécommande Virtuelle Freebox Révolution/HD
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (12) - 192s
M0 - MFSP: prefs.js [Diaby - zo5cs3w4.default] http://www.google.fr/ =>.Google Inc.
P2 - EXT FILE: (.Tables - .) -- C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\zo5cs3w4.default\extensions\300414@extcorp.com.xpi =>Adware.CloudAtlas
P2 - EXT FILE: (.Google Translator for Firefox - Translate the selected text and the fu.) -- C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\zo5cs3w4.default\extensions\translator@zoli.bod.xpi =>.Google Translator for Firefox
P2 - EXT FILE: (.Télécommande Virtuelle Freebox Révolut - Après avoir configuré votre code de té.) -- C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\zo5cs3w4.default\extensions\tvfreebox@ssofast.com.xpi
P2 - EXT FILE: (.Adblock Plus - Ads were yesterday!.) -- C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\zo5cs3w4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi =>.Adblock Plus
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT: (...) -- C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\zo5cs3w4.default\extensions\abs@avira.com =>.Avira Software
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_23_0_0_185.dll =>.Adobe Systems Incorporated
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (12) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.startpageing123.com/ =>Hijacker.StartpageIng123
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.ourluckysites.com/ =>Hijacker.OurLuckySites
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.startpageing123.com/ =>Hijacker.StartpageIng123
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.ourluckysites.com/ =>Hijacker.OurLuckySites
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.ourluckysites.com/ =>Hijacker.OurLuckySites
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.ourluckysites.com/ =>Hijacker.OurLuckySites
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
---\\ Internet Explorer,Proxy Management (9) - 1s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (0)
---\\ Browser Helper Object de navigateur (BHO) (1) - 2s
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll =>.Microsoft Corporation®
---\\ Raccourcis Global Startup (91) - 169s
O4 - GS\Desktop [123]: Continuer Installation de Dragon Ball Z Sagas.lnk . (.Dolakepefo - Kage Setup.) C:\Users\Diaby\AppData\Local\Temp\ICReinstall_dragon-ball-z-sagas_2198152738.exe /RR /mnl
O4 - GS\Desktop [123]: Crossfire Europe EU.lnk . (.Smilegate Europe - CF_SGI.) C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGIN.exe {10B2BA377EB4BBAFD3D849446561A001}
O4 - GS\Desktop [123]: IObit Malware Fighter.lnk . (.IObit - IObit Malware Fighter.) C:\Program Files\IObit\IObit Malware Fighter\IMF.exe =>.IObit Information Technology®
O4 - GS\Desktop [123]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Diaby\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [123]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [123]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [123]: Oracle VM VirtualBox.lnk . (...) C:\Program Files\Oracle\VirtualBox\VirtualBox.exe
O4 - GS\sendTo [123]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [123]: ISL AlwaysOn Public Folder.lnk . (...) C:\Users\Public\ISL AlwaysOn
O4 - GS\TaskBar [123]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [123]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [123]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [123]: WinRAR.lnk . (.Alexander Roshal - WinRAR archiver.) C:\Program Files\WinRAR\WinRAR.exe =>.win.rar GmbH®
O4 - GS\Programs [123]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [123]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Administrateur]: Continuer Installation de Dragon Ball Z Sagas.lnk . (.Dolakepefo - Kage Setup.) C:\Users\Diaby\AppData\Local\Temp\ICReinstall_dragon-ball-z-sagas_2198152738.exe /RR /mnl
O4 - GS\Desktop [Administrateur]: Crossfire Europe EU.lnk . (.Smilegate Europe - CF_SGI.) C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGIN.exe {10B2BA377EB4BBAFD3D849446561A001}
O4 - GS\Desktop [Administrateur]: IObit Malware Fighter.lnk . (.IObit - IObit Malware Fighter.) C:\Program Files\IObit\IObit Malware Fighter\IMF.exe =>.IObit Information Technology®
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Diaby\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrateur]: Oracle VM VirtualBox.lnk . (...) C:\Program Files\Oracle\VirtualBox\VirtualBox.exe
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: ISL AlwaysOn Public Folder.lnk . (...) C:\Users\Public\ISL AlwaysOn
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: WinRAR.lnk . (.Alexander Roshal - WinRAR archiver.) C:\Program Files\WinRAR\WinRAR.exe =>.win.rar GmbH®
O4 - GS\Programs [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrateur]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Diaby]: Continuer Installation de Dragon Ball Z Sagas.lnk . (.Dolakepefo - Kage Setup.) C:\Users\Diaby\AppData\Local\Temp\ICReinstall_dragon-ball-z-sagas_2198152738.exe /RR /mnl
O4 - GS\Desktop [Diaby]: Crossfire Europe EU.lnk . (.Smilegate Europe - CF_SGI.) C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGIN.exe {10B2BA377EB4BBAFD3D849446561A001}
O4 - GS\Desktop [Diaby]: IObit Malware Fighter.lnk . (.IObit - IObit Malware Fighter.) C:\Program Files\IObit\IObit Malware Fighter\IMF.exe =>.IObit Information Technology®
O4 - GS\Desktop [Diaby]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Diaby\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Diaby]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Diaby]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Diaby]: Oracle VM VirtualBox.lnk . (...) C:\Program Files\Oracle\VirtualBox\VirtualBox.exe
O4 - GS\sendTo [Diaby]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Diaby]: ISL AlwaysOn Public Folder.lnk . (...) C:\Users\Public\ISL AlwaysOn
O4 - GS\TaskBar [Diaby]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Diaby]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Diaby]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Diaby]: WinRAR.lnk . (.Alexander Roshal - WinRAR archiver.) C:\Program Files\WinRAR\WinRAR.exe =>.win.rar GmbH®
O4 - GS\Programs [Diaby]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Diaby]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Avira Connect.lnk . (.Avira Operations GmbH & Co. KG - Avira.) C:\Program Files\Avira\Launcher\Avira.Systray.exe /showMiniGui =>.Avira Operations GmbH & Co. KG®
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - GS\CommonDesktop [Public]: DarkComet Remover.lnk . (.PhrozenSoft - DarkComet RAT Remover.) C:\Program Files\PhrozenSoft\DCREM\DarkCometRemover.exe =>.Phrozensoft
O4 - GS\CommonDesktop [Public]: Emsisoft Anti-Malware.lnk . (.Emsisoft Ltd - Emsisoft Security Center.) C:\Program Files\Emsisoft Anti-Malware\a2start.exe =>.Emsisoft Ltd®
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Malwarebytes.lnk . (...) C:\Nouveau dossier\DBZ SAGAS\Anti-Malware\mbam.exe
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd. - Start Center.) C:\Program Files\Spybot - Search & Destroy 2\SDWelcome.exe =>.Safer Networking Ltd.®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe -extoff =>.Microsoft Corporation®
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) C:\Windows\system32\NetProj.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\system32\rundll32.exe %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut =>..Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s =>..Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) C:\Program Files\Windows Sidebar\sidebar.exe /showgadgets =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd. - Start Center.) C:\Program Files\Spybot - Search & Destroy 2\SDWelcome.exe =>.Safer Networking Ltd.®
O4 - GS\ProgramsCommon [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) C:\Windows\system32\WindowsAnytimeUpgradeUI.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - Création de DVD Windows.) C:\Program Files\DVD Maker\DVDMaker.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
---\\ Modification Domaine/Adresses DNS (3) - 1s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 82.163.143.176 82.163.142.178 =>Adware.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{C9FA069C-0B47-4BBA-825B-47D487D5A075}: NameServer = 82.163.143.176 82.163.142.178 =>Adware.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{C9FA069C-0B47-4BBA-825B-47D487D5A075}: DhcpNameServer = 192.168.0.254 =>.Local IP Adress
---\\ Protocole additionnel (20) - 4s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s
O20 - AppInit_DLLs: . (...) - C:\PROGRA~1\SEARCH~1\SEARCH~1\bin\VC32LO~1.DLL (.not file.)
---\\ Enumère les données de BootExecute (1) - 1s
O34 - HKLM BootExecute: (sdnclean.exe) (.Safer Networking Limited - .) -- sdnclean.exe =>.Safer Networking Limited
---\\ Logiciels installés (46) - 159s
O42 - Logiciel: Adobe Flash Player 23 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 26 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 26 PPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Shockwave Player 12.2 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player =>.Adobe Systems, Inc.
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU] -- Akamai =>.Superfluous.AkamaiHD
O42 - Logiciel: Avira Antivirus v15.0.28.28 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- Avira Antivirus =>.Avira Operations GmbH & Co. KG®
O42 - Logiciel: Avira Connect v1.2.91.10326 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- {661C79C2-D156-419C-81CA-D1A2523B0841} =>.Avira Operations GmbH & Co. KG
O42 - Logiciel: Avira Connect v1.2.91.10326 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- {dd9049b8-31d1-40bd-8c8c-97a7b087a78f} =>.Avira Operations GmbH & Co. KG®
O42 - Logiciel: Bandicam - (.Bandisoft.com.) [HKLM] -- Bandicam =>.Bandisoft.com
O42 - Logiciel: ByteFence Anti-Malware - (.Byte Technologies LLC.) [HKLM] -- ByteFence =>.Superfluous.ByteFence
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: CleanMem - (.PcWinTech.com.) [HKLM] -- CleanMem =>.PcWinTech.com
O42 - Logiciel: CloudExtender - (.AltoCloud.) [HKCU] -- CloudExtender =>Trojan.ProxyAgent
O42 - Logiciel: Crossfire Europe EU - (.Smilegate Europe.) [HKLM] -- Crossfire Europe EU_is1
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} =>.Microsoft
O42 - Logiciel: DarkComet RAT Remover version 1.0 - (.Phrozen ® Software 2012..) [HKLM] -- DarkComet RAT Remover_is1
O42 - Logiciel: DragonBoost - (..) [HKCU] -- 119
O42 - Logiciel: Emsisoft Anti-Malware - (.Emsisoft Ltd..) [HKLM] -- {5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1 =>.Emsisoft Ltd®
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B} =>.Microsoft Corporation
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI =>.Intel Corporation®
O42 - Logiciel: IObit Malware Fighter 5 - (.IObit.) [HKLM] -- IObit Malware Fighter_is1 =>.IObit Information Technology®
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79} =>.Microsoft Corporation
O42 - Logiciel: Keylogger Detector - (..) [HKLM] -- Keylogger Detector
O42 - Logiciel: KeyScrambler - (.QFX Software Corporation.) [HKLM] -- KeyScrambler =>.QFX Software Corporation
O42 - Logiciel: Lightshot-5.4.0.1 - (.Skillbrains.) [HKLM] -- {30A5B3C9-2084-4063-A32A-628A98DE512B}_is1 =>.Superfluous.Skillbrains
O42 - Logiciel: Malwarebytes version 3.1.2.1733 - (.Malwarebytes.) [HKLM] -- {35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1 =>.Malwarebytes
O42 - Logiciel: Metin2client 9.1 - (.HackMetin2.) [HKLM] -- Metin2client 9.1
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM] -- {95120000-00B9-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU] -- OneDriveSetup.exe =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Virtual PC 2007 SP1 - (.Microsoft Corporation.) [HKLM] -- {AD483998-2E9A-4405-83FF-6E503AF49CBB} =>.Microsoft Corporation
O42 - Logiciel: Module linguistique de la visionneuse d'aide Microsoft 1.0 - FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft Help Viewer 1.0 Language Pack - FRA =>.Microsoft Corporation®
O42 - Logiciel: Mozilla Firefox 54.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 54.0.1 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} =>.Microsoft
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} =>.Microsoft
O42 - Logiciel: Oracle VM VirtualBox 5.1.24 - (.Oracle Corporation.) [HKLM] -- {F57B99A8-C19B-4A3B-A7BE-BA20AD768EAB} =>.Oracle Corporation
O42 - Logiciel: Package de pilotes Windows - Intel Corporation (iegdmini) Display (10/26/2 - (.Intel Corporation.) [HKLM] -- 7C12B3CB54A17AB537E54C97DA273A2685545A6C =>.Intel Corporation
O42 - Logiciel: paint.net - (.dotPDN LLC.) [HKLM] -- {A1D05314-DC32-4668-A97E-51060EC8BCCD} =>.dotPDN LLC
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1 =>.Safer Networking Ltd.®
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} =>.Adobe Systems, Inc
O42 - Logiciel: SwytShop version 1.0 - (.SwytShop.) [HKCU] -- SwytShopAlgoadChrome_Pkg4_is1 =>PUP.Optional.SwytShop
O42 - Logiciel: Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 FRA - (.Microsoft Corporation.) [HKLM] -- {D60023FA-3DF1-4537-93DD-13024CC4E366} =>.Microsoft Corporation
O42 - Logiciel: WinRAR 5.40 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver =>.win.rar GmbH®
---\\ HKCU & HKLM Software Keys (255) - 160s
HKLM\SOFTWARE\adaware =>.adaware
HKLM\SOFTWARE\Adobe =>.Adobe
HKLM\SOFTWARE\amule-custom =>Adware.aMULEcustom
HKLM\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKLM\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\ATI Technologies =>.ATI Technologies
HKLM\SOFTWARE\Avira =>.Avira
HKLM\SOFTWARE\Baidu Security =>.Baidu Technology
HKLM\SOFTWARE\Baidu_Drp_pos =>.Baidu Technology
HKLM\SOFTWARE\BANDISOFT =>.Bandisoft
HKLM\SOFTWARE\Birdjob
HKLM\SOFTWARE\Blazing Tools
HKLM\SOFTWARE\Blizzard Entertainment =>.Blizzard Entertainment
HKLM\SOFTWARE\BlueStacks =>.BlueStack Systems, Inc.
HKLM\SOFTWARE\ByteFence =>.Superfluous.ByteFence
HKLM\SOFTWARE\CBSTEST =>.CBS Test
HKLM\SOFTWARE\Chromium =>.Chromium
HKLM\SOFTWARE\CLSID =>.Unknown
HKLM\SOFTWARE\D0D3FDFE211396F0B89156984B833A72 =>Adware.CrossRider
HKLM\SOFTWARE\Disc Soft =>.Disc Soft
HKLM\SOFTWARE\Dolby =>.Dolby
HKLM\SOFTWARE\DTS =>.Creative Technology
HKLM\SOFTWARE\DuoDianApp
HKLM\SOFTWARE\EasyAntiCheat =>.EasyAntiCheat
HKLM\SOFTWARE\Electronic Arts =>.Electronic Arts
HKLM\SOFTWARE\Emsi Software GmbH =>.Emsi Software GmbH
HKLM\SOFTWARE\Emsisoft
HKLM\SOFTWARE\FileZilla 3 =>.FileZilla
HKLM\SOFTWARE\Firefox =>.Mozilla Corporation
HKLM\SOFTWARE\Fortemedia =>.Lugert Europe
HKLM\SOFTWARE\Fraps =>.Beepa
HKLM\SOFTWARE\FreeHideIP =>.Free Hide IP
HKLM\SOFTWARE\Gameforge =>.Gameforge
HKLM\SOFTWARE\GEAR Software =>.GEAR Software
HKLM\SOFTWARE\GOG.com =>.GOG.com
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\Gworm
HKLM\SOFTWARE\InstallShield =>.InstallShield
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\InterSect Alliance =>.Superfluous.InterSect
HKLM\SOFTWARE\IObit =>.IObit
HKLM\SOFTWARE\ISL Online =>.ISL Online
HKLM\SOFTWARE\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\jhtrsq
HKLM\SOFTWARE\Khronos =>.Khronos
HKLM\SOFTWARE\Knowles =>.Knowles Electronics
HKLM\SOFTWARE\kpzs
HKLM\SOFTWARE\LastPass =>.LastPass
HKLM\SOFTWARE\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\Licenses =>.Microsoft Corporation
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\McAfee =>.McAfee Inc.
HKLM\SOFTWARE\McAfee.com =>.McAfee Inc.
HKLM\SOFTWARE\McAfeeInstaller =>.McAfee Inc.
HKLM\SOFTWARE\McAfeeRiskScan =>.McAfee Inc.
HKLM\SOFTWARE\MicroRay
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\msServer
HKLM\SOFTWARE\Nahimic =>.Nahimic
HKLM\SOFTWARE\Notepad++ =>.Don Ho
HKLM\SOFTWARE\notepad2
HKLM\SOFTWARE\NSIS.Library.RegTool.v3
HKLM\SOFTWARE\Nuance =>.Nuance
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\Oracle =>.Oracle
HKLM\SOFTWARE\ourluckysitesSoftware =>Hijacker.OurLuckySites
HKLM\SOFTWARE\paint.net =>.Rick Brewster
HKLM\SOFTWARE\ParetoLogic =>.Superfluous.Paretologic
HKLM\SOFTWARE\Piriform =>.Piriform
HKLM\SOFTWARE\Python =>.Python
HKLM\SOFTWARE\QFX Software =>.QFX Software
HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\RealVNC =>.RealVNC
HKLM\SOFTWARE\Reason =>.Propellerhead
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\Reimage =>.Superfluous.ReimageRepair
HKLM\SOFTWARE\RocketDock =>.Punk Software
HKLM\SOFTWARE\Safer Networking Limited =>.Safer Networking Limited
HKLM\SOFTWARE\Secunia =>.Secunia
HKLM\SOFTWARE\Skillbrains =>.Superfluous.Skillbrains
HKLM\SOFTWARE\Skype =>.Skype
HKLM\SOFTWARE\Soci2Sear Browser Enhancer =>PUP.Optional.Wajam
HKLM\SOFTWARE\Softwin =>.Softwin
HKLM\SOFTWARE\Sonic =>.Sonic
HKLM\SOFTWARE\SonicFocus =>.Sonic Focus
HKLM\SOFTWARE\SoundResearch =>.Sound Research
HKLM\SOFTWARE\SrpnFiles =>.Superfluous.SpringFiles
HKLM\SOFTWARE\SRS Labs =>.SRS Labs
HKLM\SOFTWARE\startpageing123Software
HKLM\SOFTWARE\SuperBoost =>.QiWang
HKLM\SOFTWARE\Symantec =>.Symantec
HKLM\SOFTWARE\TeamViewer =>.TeamViewer
HKLM\SOFTWARE\tmp178E
HKLM\SOFTWARE\tmp237F
HKLM\SOFTWARE\tmp2ACE
HKLM\SOFTWARE\tmp6D6F
HKLM\SOFTWARE\tmp7448
HKLM\SOFTWARE\tmp79D7
HKLM\SOFTWARE\tmp98CA
HKLM\SOFTWARE\tmpAAE0
HKLM\SOFTWARE\tmpAC01
HKLM\SOFTWARE\tmpDD35
HKLM\SOFTWARE\tmpFC73
HKLM\SOFTWARE\Toribash =>.Nabi Studios
HKLM\SOFTWARE\tugesh.exe
HKLM\SOFTWARE\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\Waves Audio =>.Waves Audio
HKLM\SOFTWARE\WinRAR =>.WinRAR
HKLM\SOFTWARE\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\X-AVCSD =>.Avira Software
HKLM\SOFTWARE\xampp =>.Apache Inc.
HKLM\SOFTWARE\Z8Games =>.Z8Games
HKLM\SOFTWARE\Zemi Interactive =>.Zemi Interactive
HKLM\SOFTWARE\Norton =>.Symantec Corporation
HKCU\SOFTWARE\0f80a6245a3f99e51ec0c2a1d6264c4b =>Adware.CrossRider
HKCU\SOFTWARE\2f043c3c3bb0f534de40f9f55f5504e6 =>Adware.CrossRider
HKCU\SOFTWARE\444460896a7aa4eddda9be4af101e842 =>Adware.CrossRider
HKCU\SOFTWARE\638f1e98d5f5ebb33cb7c19887dcea87 =>Adware.CrossRider
HKCU\SOFTWARE\73a0533b8fef3c0022f3bf0e7bbb99c4 =>Adware.CrossRider
HKCU\SOFTWARE\773fd16773f87e206e48edd2a2fc0b74 =>Adware.CrossRider
HKCU\SOFTWARE\7a22d920c858e35615c166608e33df5e =>Adware.CrossRider
HKCU\SOFTWARE\7d2c911a5692f36b4f4529d158ad7306 =>Adware.CrossRider
HKCU\SOFTWARE\80d91522228fe370602cde456b4c43b9 =>Adware.CrossRider
HKCU\SOFTWARE\86fb93a0e76fdfcbb520ebfb155df8da =>Adware.CrossRider
HKCU\SOFTWARE\a3dfb7748a976a7685305355dce93150 =>Adware.CrossRider
HKCU\SOFTWARE\a689fa49fd42104e55e4ba78550f130f =>Adware.CrossRider
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Aeria Games =>.Aeria Games
HKCU\SOFTWARE\AhnLab =>.AhnLab Inc.
HKCU\SOFTWARE\Akamai =>.Superfluous.AkamaiHD
HKCU\SOFTWARE\Andy =>.Android Studio
HKCU\SOFTWARE\Apocalypse
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\AVAST Software =>.AVAST Software
HKCU\SOFTWARE\Avira =>.Avira
HKCU\SOFTWARE\b1347e212a8137f6559b0c3fa360a5fd =>Adware.CrossRider
HKCU\SOFTWARE\Baidu Security =>.Baidu Technology
HKCU\SOFTWARE\BANDISOFT =>.Bandisoft
HKCU\SOFTWARE\Birdjob
HKCU\SOFTWARE\Blazing Tools
HKCU\SOFTWARE\Blizzard Entertainment =>.Blizzard Entertainment
HKCU\SOFTWARE\Burda =>.Burda
HKCU\SOFTWARE\ByteFence =>.Superfluous.ByteFence
HKCU\SOFTWARE\C84E
HKCU\SOFTWARE\Cheat Engine =>.Dark Byte
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\cmcm =>.Cheetah Mobile
HKCU\SOFTWARE\CodeLyokoGames =>.CodeLyokoGames
HKCU\SOFTWARE\csastats =>Adware.InstallCore
HKCU\SOFTWARE\D0D3FDFE211396F0B89156984B833A72 =>Adware.CrossRider
HKCU\SOFTWARE\d727a46ea383943063d29c87c16920d7 =>Adware.CrossRider
HKCU\SOFTWARE\Dashlane_profiles =>.Dashlane, Inc
HKCU\SOFTWARE\David Esperalta =>.David Esperalta
HKCU\SOFTWARE\dc28b5f4ec247143ec84c476602fca1f =>Adware.CrossRider
HKCU\SOFTWARE\DDoS Anonymous
HKCU\SOFTWARE\Disc Soft =>.Disc Soft
HKCU\SOFTWARE\Drivers =>.Legitimate
HKCU\SOFTWARE\dxc_launcher
HKCU\SOFTWARE\Eek
HKCU\SOFTWARE\ElcomSoft =>.Elcomsoft
HKCU\SOFTWARE\Enigma Protector
HKCU\SOFTWARE\FileZilla Client =>.Tim Kosse
HKCU\SOFTWARE\FileZilla Server =>.FileZilla
HKCU\SOFTWARE\Firefox =>.Mozilla Corporation
HKCU\SOFTWARE\Fraps3 =>.Beepa
HKCU\SOFTWARE\Gameforge4d =>.ZemiInteractive Ltd
HKCU\SOFTWARE\Genius =>.Genius Games
HKCU\SOFTWARE\Genymobile =>.Genymobile
HKCU\SOFTWARE\GOG.com =>.GOG.com
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\IM =>Adware.InstallCore
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\INCAInternet =>.INCAInternet
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\ISL Online =>.ISL Online
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\Kyle Seeley =>.Kyle Seeley
HKCU\SOFTWARE\Lavasoft =>.Lavasoft
HKCU\SOFTWARE\Licenses =>.Microsoft Corporation
HKCU\SOFTWARE\LithTech Inc.
HKCU\SOFTWARE\Local AppWizard-Generated Applications =>.ZWCAD
HKCU\SOFTWARE\Lyokone'Prod
HKCU\SOFTWARE\Maacoas
HKCU\SOFTWARE\Maacos
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\McAfee =>.McAfee Inc.
HKCU\SOFTWARE\McAfeeInstaller =>.McAfee Inc.
HKCU\SOFTWARE\Media Get LLC =>.Media Get LLC
HKCU\SOFTWARE\Mirillis =>.Mirillis
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\Netbull
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\njRAT v0.6.4
HKCU\SOFTWARE\Northcode Inc =>.Northcode Inc
HKCU\SOFTWARE\Norton =>.Symantec Corporation
HKCU\SOFTWARE\NumeServer
HKCU\SOFTWARE\Oracle =>.Oracle
HKCU\SOFTWARE\paint.net =>.Rick Brewster
HKCU\SOFTWARE\ParetoLogic =>.Superfluous.Paretologic
HKCU\SOFTWARE\PcWinTech =>.PcWinTech
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\Plethora-Project
HKCU\SOFTWARE\PremiumSoft
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
HKCU\SOFTWARE\ProtectedStorage =>.Microsoft Corporation
HKCU\SOFTWARE\QFX Software =>.QFX Software
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RealVNC =>.RealVNC
HKCU\SOFTWARE\Reimage =>.Superfluous.ReimageRepair
HKCU\SOFTWARE\Robot Gentleman =>.Robot Gentleman
HKCU\SOFTWARE\Robot Gentleman Studios
HKCU\SOFTWARE\RocketDock =>.Punk Software
HKCU\SOFTWARE\Safer Networking Limited =>.Safer Networking Limited
HKCU\SOFTWARE\Secunia =>.Secunia
HKCU\SOFTWARE\SimonTatham =>.Simon Tatham
HKCU\SOFTWARE\SkillBrains =>.Superfluous.Skillbrains
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\skypeapp-177fbe43a53a
HKCU\SOFTWARE\skypeapp-5c3ab95db3d1
HKCU\SOFTWARE\skypeapp-6266971b5870
HKCU\SOFTWARE\skypeapp-9b6549347a60
HKCU\SOFTWARE\skypeapp-d439f1e5c9d3
HKCU\SOFTWARE\SpeedBit =>.Adware.SpeedBit
HKCU\SOFTWARE\SplitmediaLabs =>.SplitMediaLabs
HKCU\SOFTWARE\StackDocklet
HKCU\SOFTWARE\svchost32
HKCU\SOFTWARE\SwytShop =>PUP.Optional.SwytShop
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\System32 =>.Mirillis
HKCU\SOFTWARE\TeamViewer =>.TeamViewer
HKCU\SOFTWARE\The Demons File Unlocker
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\undefined =>.Superfluous.Downloader
HKCU\SOFTWARE\Unity =>.Unity
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKCU\SOFTWARE\Vitalwerks =>.Vitalwerks
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\Win =>.Unknown
HKCU\SOFTWARE\Winamp =>.Nullsoft Inc.
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wireshark =>.Wireshark
HKCU\SOFTWARE\XLAB =>.XLAB d.o.o
HKCU\SOFTWARE\YandereDev =>.Games Software
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Software\Adobe =>.Adobe
HKCU\SOFTWARE\AppDataLow\Software\AppTrailers =>Adware.AppTrailers
HKCU\SOFTWARE\AppDataLow\Software\Unity =>.Unity
---\\ Contenu des dossiers Programmes (375) - 371s
O43 - CFD: 28/07/2017 - [0] D -- C:\Program Files\0FQY9S87QG
O43 - CFD: 29/07/2017 - [] D -- C:\Program Files\1ABKMYMX0N =>Adware.Wizzcaster
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\20ANG3FRGJ =>Adware.Wizzcaster
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\5SMJZZ84T1 =>Adware.Wizzcaster
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\5V0M24Q3NB =>Adware.Wizzcaster
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\76f1c620a777bf6a6ddcfefa9f394791
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\Avira =>.Avira Software
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\B1ZMD2YTCA =>Adware.Wizzcaster
O43 - CFD: 28/07/2017 - [0] D -- C:\Program Files\B3038TC274
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Baidu Security =>.Baidu Technology
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\ByteFence =>.Superfluous.ByteFence
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd
O43 - CFD: 10/07/2017 - [] D -- C:\Program Files\CF HACK
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\cgmemeyesu2
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 10/07/2017 - [] D -- C:\Program Files\CrossFire Installer {00A374646588C90A2F9539CDFE4C55B346}
O43 - CFD: 31/05/2017 - [] D -- C:\Program Files\DIFX =>.Microsoft Corporation
O43 - CFD: 08/04/2017 - [] D -- C:\Program Files\dumps
O43 - CFD: 10/04/2017 - [] D -- C:\Program Files\DVD Maker =>.Aone Software
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\Emsisoft Anti-Malware =>.Emsisoft
O43 - CFD: 16/05/2017 - [] D -- C:\Program Files\f8dFmEojcp
O43 - CFD: 07/03/2017 - [] D -- C:\Program Files\Fevuphmervly Launcher
O43 - CFD: 25/05/2016 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation
O43 - CFD: 10/07/2017 - [] D -- C:\Program Files\FileZilla FTP Client =>.Tim Kosse
O43 - CFD: 24/07/2017 - [0] D -- C:\Program Files\Genymobile =>.Genymobile
O43 - CFD: 04/04/2017 - [] D -- C:\Program Files\Google =>.Google Inc®
O43 - CFD: 25/05/2016 - [] D -- C:\Program Files\GUM83D7.tmp =>.Google Inc®
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\HB8NBYQRQS =>Adware.Wizzcaster
O43 - CFD: 01/06/2017 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\IObit =>.IObit
O43 - CFD: 21/05/2017 - [] D -- C:\Program Files\ISL Online
O43 - CFD: 07/04/2017 - [] D -- C:\Program Files\ISS Manager
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\K068PKZ6UO =>Adware.Wizzcaster
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Keylogger Detector
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\KeyScrambler =>.QFX Software
O43 - CFD: 30/07/2017 - [0] D -- C:\Program Files\LAPTOP_KURT
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\McAfee =>.McAfee
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\McAfee.com =>.McAfee Inc.
O43 - CFD: 06/03/2017 - [0] D -- C:\Program Files\Microsoft =>.Microsoft Corporation
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Microsoft Help Viewer =>.Microsoft Corporation
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Microsoft SDKs =>.Microsoft Corporation
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition =>.Microsoft Corporation
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Microsoft Synchronization Services =>.Microsoft Corporation
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 07/07/2017 - [] D -- C:\Program Files\Microvirt =>.Microvirt
O43 - CFD: 16/02/2017 - [] D -- C:\Program Files\MIO =>.Mio
O43 - CFD: 31/01/2017 - [] D -- C:\Program Files\Mods
O43 - CFD: 24/07/2017 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla
O43 - CFD: 25/07/2017 - [] D -- C:\Program Files\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 10/02/2017 - [] D -- C:\Program Files\MSECache =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\Norton Security =>.Symantec
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\NortonInstaller =>.Symantec
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\Notepad++ =>.Don Ho
O43 - CFD: 16/02/2017 - [] D -- C:\Program Files\notepad2
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\O9J4S1YMCM =>Adware.Wizzcaster
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\OG9MTGL701 =>Adware.Wizzcaster
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\OJ20A8ZTI8 =>Adware.Wizzcaster
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\OYVH9BCITE =>Adware.Wizzcaster
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\PhrozenSoft =>.Phrozensoft
O43 - CFD: 31/01/2017 - [] D -- C:\Program Files\Profiles =>.Microsoft Corporation
O43 - CFD: 26/05/2016 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files\reports
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\SDownloader
O43 - CFD: 04/04/2017 - [] D -- C:\Program Files\Secunia =>.Secunia
O43 - CFD: 09/11/2016 - [] D -- C:\Program Files\Skillbrains =>.Superfluous.Skillbrains
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Smilegate =>.Neowiz CORPORATION®
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Spybot - Search & Destroy 2 =>.SaferNetworking
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\stinger
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\U4XP2BBMJF =>Adware.Wizzcaster
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\VQJX3YA67N =>Adware.Wizzcaster
O43 - CFD: 30/07/2017 - [0] D -- C:\Program Files\VS Revo Group =>.VS Revo Group
O43 - CFD: 30/01/2017 - [0] D -- C:\Program Files\Windows
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 11/06/2017 - [] D -- C:\Program Files\Windows Journal =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 06/02/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 25/05/2016 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 20/11/2010 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 28/07/2016 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 24/10/2016 - [] D -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\WMRHXXUH0F =>Adware.Wizzcaster
O43 - CFD: 30/07/2017 - [0] D -- C:\Program Files\yxexltnc =>.Superfluous.Empty
O43 - CFD: 11/06/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 25/05/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira =>.Avira Software
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware =>.Superfluous.ByteFence
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd
O43 - CFD: 08/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CleanMem
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DarkComet RAT Remover
O43 - CFD: 25/02/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Download Accelerator Plus (DAP) =>.Adware.SpeedBit
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware =>.Emsisoft
O43 - CFD: 28/07/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 18/05/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com =>.GOG.com
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter =>.IObit
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyScrambler =>.QFX Software
O43 - CFD: 04/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot =>..Superfluous.Skillbrains
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes =>.Malwarebytes
O43 - CFD: 08/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express =>.Pinnacle Systems, Inc.
O43 - CFD: 11/06/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis =>.Mirillis
O43 - CFD: 06/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ =>.Don Ho
O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox =>.Oracle
O43 - CFD: 10/07/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PremiumSoft
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smilegate Europe
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 =>.SaferNetworking
O43 - CFD: 14/07/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live =>.Microsoft Corporation
O43 - CFD: 11/06/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 20/12/2016 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 25/05/2016 - [] D -- C:\ProgramData\Aeria Games =>.Aeria Games
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 28/06/2017 - [] D -- C:\ProgramData\avast =>.Avast
O43 - CFD: 24/10/2016 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Avira =>.Avira Software
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Baidu =>.Baidu
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Baidu Security =>.Baidu Technology
O43 - CFD: 19/06/2016 - [] D -- C:\ProgramData\BDLogging =>.Bitdefender
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Bitdefender Agent =>.Bitdefender
O43 - CFD: 27/11/2016 - [0] D -- C:\ProgramData\BlueStacksSetup =>.BlueStack Systems, Inc.
O43 - CFD: 25/05/2016 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\ByteFence =>.Superfluous.ByteFence
O43 - CFD: 18/08/2016 - [] D -- C:\ProgramData\CCP =>.Legitimate
O43 - CFD: 18/08/2016 - [] D -- C:\ProgramData\cmcm =>.Cheetah Mobile
O43 - CFD: 06/06/2017 - [] D -- C:\ProgramData\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Emsisoft =>.Emsisoft
O43 - CFD: 25/05/2016 - [0] SHD -- C:\ProgramData\Favoris =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation
O43 - CFD: 19/02/2017 - [] D -- C:\ProgramData\FreeHideIP =>.Free Hide IP
O43 - CFD: 17/05/2017 - [] D -- C:\ProgramData\GOG.com =>.GOG.com
O43 - CFD: 07/07/2017 - [] D -- C:\ProgramData\GZG
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\IObit =>.IObit
O43 - CFD: 30/07/2017 - [0] D -- C:\ProgramData\Keylogger Detector
O43 - CFD: 18/08/2016 - [0] D -- C:\ProgramData\Kingsoft =>.Kingosoft Technology Ltd
O43 - CFD: 06/07/2017 - [] D -- C:\ProgramData\Lavasoft =>.Lavasoft
O43 - CFD: 18/08/2016 - [] SHD -- C:\ProgramData\LFTUVN
O43 - CFD: 13/06/2017 - [] D -- C:\ProgramData\LogMeIn =>.LogMeIn
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 25/05/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation
O43 - CFD: 30/07/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 03/12/2016 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 26/05/2016 - [] D -- C:\ProgramData\Mirillis =>.Mirillis
O43 - CFD: 25/05/2016 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] SHD -- C:\ProgramData\NIINBP
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Norton =>.Symantec Corporation
O43 - CFD: 04/02/2017 - [] D -- C:\ProgramData\NortonInstaller =>.Symantec
O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\PEZ
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\ProductData =>.Microsoft Corporation
O43 - CFD: 20/12/2016 - [] D -- C:\ProgramData\regid.1986-12.com.adobe =>.Adobe Inc.
O43 - CFD: 10/07/2017 - [0] D -- C:\ProgramData\Solid State Networks =>.Solid State Networks
O43 - CFD: 31/07/2017 - [] D -- C:\ProgramData\Spybot - Search & Destroy =>.SaferNetworking
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 23/06/2016 - [] D -- C:\ProgramData\SuperBoost =>.QiWang
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 10/12/2016 - [] D -- C:\ProgramData\Thunder Network =>.Thunder Network
O43 - CFD: 20/05/2017 - [] D -- C:\ProgramData\Vitalwerks =>.Vitalwerks
O43 - CFD: 28/02/2017 - [0] D -- C:\ProgramData\WindowsData
O43 - CFD: 04/07/2017 - [] D -- C:\ProgramData\XKQ
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\{0A964816-BD3D-FFBD-BDCA-6C8656F7CE43}
O43 - CFD: 30/06/2017 - [0] D -- C:\ProgramData\{2ADA52B2-9D71-E519-B68B-EFE74E52E84A}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{2C572639-9BFC-9192-B446-5F136B69EC58}
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\{31AB411D-8600-F6B6-64FB-F7FC0B322FD5}
O43 - CFD: 30/06/2017 - [0] D -- C:\ProgramData\{386F9E0C-8FC4-29A7-6F6E-4EB2066B904E}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{38F2913E-8F59-2695-881F-B3DD7AF58906}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{3D643B4E-8ACF-8CE5-241F-49E64EEF689C}
O43 - CFD: 30/06/2017 - [0] D -- C:\ProgramData\{468CE655-F127-51FE-0A19-2AE671D4E195}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{497C8777-FED7-30DC-D3F1-8E44E4C657ED}
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\{4B11775E-FCBA-C0F5-C26F-8A2BEF93D7E1}
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\{5489DA41-E322-6DEA-5282-E82ECC03789E}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{569560EE-E13E-D745-591F-72542F10399B}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{5D3FBC1B-EA94-0BB0-4697-C277095FC0B9}
O43 - CFD: 30/06/2017 - [0] D -- C:\ProgramData\{628A9872-D521-2FD9-353E-AF963088CA20}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{79102ABB-CEBB-9D10-6AEC-55BDC884F946}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{7FC06DF5-C86B-DA5E-7D26-088EB8EB7485}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{8CB97737-3B12-C09C-5E2D-BF6C9EC40C1A}
O43 - CFD: 30/06/2017 - [0] D -- C:\ProgramData\{9184BAC3-262F-0D68-46BE-627B3F7A829B}
O43 - CFD: 07/06/2016 - [] D -- C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{B30F16F6-04A4-A15D-95BE-C6BDD0100C69}
O43 - CFD: 30/06/2017 - [0] D -- C:\ProgramData\{B9A92DBE-0E02-9A15-BFA7-6AE572100A97}
O43 - CFD: 05/07/2016 - [0] D -- C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\{C73B4B53-7090-FCF8-CE7A-92F193FBB1A6}
O43 - CFD: 07/06/2016 - [] D -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{E9C21179-5E69-A6D2-D749-CFDBBE1BDD20}
O43 - CFD: 08/10/2016 - [] D -- C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\{FEB2EEB1-4919-591A-050F-E1F613B5BBBA}
O43 - CFD: 19/04/2017 - [] D -- C:\ProgramData\{FFF45F86-485F-E82D-8C41-8779A1BD2E0A}
O43 - CFD: 20/12/2016 - [] D -- C:\Program Files\Common Files\Adobe =>.Adobe
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Common Files\AV =>.Avast
O43 - CFD: 11/02/2017 - [] D -- C:\Program Files\Common Files\INCA Shared =>.INCA
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Common Files\InstallShield =>.InstallShield
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Common Files\Intel Security =>.Intel Corporation
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Common Files\IObit =>.IObit
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Common Files\McAfee =>.McAfee
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\Common Files\ntp2UpSvc
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Common Files\System =>.Microsoft Corporation
O43 - CFD: 03/12/2016 - [] D -- C:\Program Files\Common Files\Windows Live =>.Microsoft Corporation
O43 - CFD: 30/06/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\1275417781
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\1mxrsbuwrrh
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\2y4yqu1xgq3
O43 - CFD: 07/04/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\670AB4B8-8321-4045-8DFB-3C99477F9FDC
O43 - CFD: 20/12/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 25/05/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Aeria Games & Entertainment =>.Aeria Games & Entertainment
O43 - CFD: 27/11/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Andy =>.Android.net
O43 - CFD: 12/10/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Apple Computer =>.Apple Inc.
O43 - CFD: 30/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Baidu Security =>.Baidu Technology
O43 - CFD: 08/06/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\BANDISOFT =>.Bandisoft
O43 - CFD: 10/06/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Battle.net =>.Games Software
O43 - CFD: 06/11/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\BRKMZEVZ
O43 - CFD: 28/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\BrowserModule =>.Unknown
O43 - CFD: 15/05/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\clean
O43 - CFD: 22/10/2016 - [0] D -- C:\Users\Diaby\AppData\Roaming\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 24/07/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Dashlane =>.Dashlane
O43 - CFD: 15/06/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\dclogs
O43 - CFD: 26/04/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\eTeks =>.eTeks
O43 - CFD: 10/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\FileZilla =>.FileZilla
O43 - CFD: 05/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\FileZilla Server =>.FileZilla
O43 - CFD: 19/02/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\FreeHideIP =>.Free Hide IP
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\fx1mydg5ebm
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\g4gsl11rdj1
O43 - CFD: 30/06/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Gikoc
O43 - CFD: 17/05/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Google =>.Google
O43 - CFD: 11/02/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\HaiYuInst
O43 - CFD: 29/05/2016 - [0] D -- C:\Users\Diaby\AppData\Roaming\HaMaDaS
O43 - CFD: 04/06/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\IDC
O43 - CFD: 25/05/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Identities =>.Microsoft Corporation
O43 - CFD: 30/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\IObit =>.IObit
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\kdjxa1vc5x4
O43 - CFD: 07/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Lavasoft =>.Lavasoft
O43 - CFD: 21/11/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\LibreOffice =>.LibreOffice
O43 - CFD: 09/04/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 12/04/2011 - [0] D -- C:\Users\Diaby\AppData\Roaming\Media Center Programs =>.Microsoft Corporation
O43 - CFD: 04/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\metin2 azuris =>.Gameforge 4D GmbH
O43 - CFD: 30/07/2017 - [] SD -- C:\Users\Diaby\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 26/05/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Mirillis =>.Mirillis
O43 - CFD: 15/06/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 30/06/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Nano
O43 - CFD: 03/09/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Nieme
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\nn0bpryi2qz
O43 - CFD: 07/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Notepad++ =>.Don Ho
O43 - CFD: 15/03/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Notepad2
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\okqqljqefof
O43 - CFD: 22/12/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Process Hacker 2 =>.Wj32
O43 - CFD: 25/02/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\ProductData =>.Microsoft Corporation
O43 - CFD: 15/02/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Profiles =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\pxedkc0ytag
O43 - CFD: 21/05/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\RealVNC =>.RealVNC
O43 - CFD: 27/01/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\RenPy =>.RenPy Games
O43 - CFD: 03/03/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Shogersh
O43 - CFD: 30/06/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Skype =>.Skype
O43 - CFD: 23/06/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\SuperBoost =>.QiWang
O43 - CFD: 02/11/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\system =>.Microsoft Corporation
O43 - CFD: 30/06/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 04/07/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\Unity =>.Unity
O43 - CFD: 26/04/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\uTorrent
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\vt1v0pqrff2
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\vwmeax0s5je
O43 - CFD: 30/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\WarThunder =>.Games Software
O43 - CFD: 27/05/2016 - [] D -- C:\Users\Diaby\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 14/02/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Wireshark =>.Wireshark
O43 - CFD: 05/12/2014 - [] D -- C:\Users\Diaby\AppData\Roaming\WrestlingRevolution
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\xyme0s2ozw3
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\ywstcje510l
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 14/05/2017 - [0] HD -- C:\Users\Diaby\AppData\Local\4dd8fed37f424a23
O43 - CFD: 05/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\AdAwareUpdater
O43 - CFD: 20/12/2016 - [] D -- C:\Users\Diaby\AppData\Local\Adobe =>.Adobe
O43 - CFD: 25/05/2016 - [] D -- C:\Users\Diaby\AppData\Local\Aeria Games =>.Aeria Games
O43 - CFD: 05/02/2017 - [] D -- C:\Users\Diaby\AppData\Local\Akamai =>.Superfluous.AkamaiHD
O43 - CFD: 16/05/2017 - [0] D -- C:\Users\Diaby\AppData\Local\AMD =>.AMD
O43 - CFD: 25/05/2016 - [0] SHD -- C:\Users\Diaby\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 25/05/2016 - [] D -- C:\Users\Diaby\AppData\Local\Apps =>.Microsoft Corporation
O43 - CFD: 10/12/2016 - [] D -- C:\Users\Diaby\AppData\Local\Bluestacks =>.BlueStack Systems, Inc.
O43 - CFD: 28/07/2016 - [] D -- C:\Users\Diaby\AppData\Local\CEF =>.CEF
O43 - CFD: 15/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\chromium =>.Chromium
O43 - CFD: 30/07/2017 - [0] D -- C:\Users\Diaby\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [0] D -- C:\Users\Diaby\AppData\Local\Deployment =>.Microsoft Corporation
O43 - CFD: 22/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 30/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 08/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\FileZilla =>.FileZilla
O43 - CFD: 24/02/2017 - [] D -- C:\Users\Diaby\AppData\Local\Firefox =>.Mozilla Corporation
O43 - CFD: 24/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Genymobile =>.Genymobile
O43 - CFD: 04/04/2017 - [] D -- C:\Users\Diaby\AppData\Local\Google =>.Google
O43 - CFD: 02/09/2016 - [] D -- C:\Users\Diaby\AppData\Local\Hewlett-Packard_Company =>.Hewlett-Packard
O43 - CFD: 25/05/2016 - [0] SHD -- C:\Users\Diaby\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 21/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\ISL Online Cache
O43 - CFD: 16/05/2017 - [0] D -- C:\Users\Diaby\AppData\Local\Kitty =>.Superfluous.Elex
O43 - CFD: 06/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Lavasoft =>.Lavasoft
O43 - CFD: 01/12/2016 - [] D -- C:\Users\Diaby\AppData\Local\LogMeIn =>.LogMeIn
O43 - CFD: 04/07/2016 - [] D -- C:\Users\Diaby\AppData\Local\Macromedia =>.Macromedia
O43 - CFD: 24/08/2016 - [] D -- C:\Users\Diaby\AppData\Local\Mega Limited =>.MEGA Limited
O43 - CFD: 25/06/2017 - [] D -- C:\Users\Diaby\AppData\Local\MEGAsync =>.MegaSystems
O43 - CFD: 30/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 04/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Microvirt =>.Microvirt
O43 - CFD: 24/10/2016 - [0] DC -- C:\Users\Diaby\AppData\Local\MigWiz =>.MigWiz
O43 - CFD: 16/03/2017 - [] D -- C:\Users\Diaby\AppData\Local\Mirillis =>.Mirillis
O43 - CFD: 15/06/2016 - [] D -- C:\Users\Diaby\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 05/02/2017 - [] D -- C:\Users\Diaby\AppData\Local\MultiPlayerManager
O43 - CFD: 05/02/2017 - [] D -- C:\Users\Diaby\AppData\Local\Nox =>.FFmpeg Project
O43 - CFD: 22/10/2016 - [] D -- C:\Users\Diaby\AppData\Local\Origin =>.Electronic Arts, Inc.
O43 - CFD: 23/07/2016 - [] D -- C:\Users\Diaby\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 27/10/2016 - [] D -- C:\Users\Diaby\AppData\Local\paint.net =>.Rick Brewster
O43 - CFD: 03/03/2017 - [] D -- C:\Users\Diaby\AppData\Local\Perertionstanudom
O43 - CFD: 17/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\pip =>.Python
O43 - CFD: 28/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 07/07/2017 - [0] D -- C:\Users\Diaby\AppData\Local\Razer =>.Razer
O43 - CFD: 04/04/2017 - [0] D -- C:\Users\Diaby\AppData\Local\Secunia PSI
O43 - CFD: 26/09/2016 - [] D -- C:\Users\Diaby\AppData\Local\Setup3210593
O43 - CFD: 11/03/2017 - [] D -- C:\Users\Diaby\AppData\Local\Steam =>.Steam Games
O43 - CFD: 20/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\Super_Mario_UniMaker
O43 - CFD: 07/04/2017 - [] D -- C:\Users\Diaby\AppData\Local\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 25/05/2016 - [0] SHD -- C:\Users\Diaby\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 02/09/2016 - [0] D -- C:\Users\Diaby\AppData\Local\Unity =>.Unity
O43 - CFD: 24/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 20/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\Vitalwerks =>.Vitalwerks
O43 - CFD: 03/12/2016 - [] D -- C:\Users\Diaby\AppData\Local\Windows Live =>.Microsoft Corporation
O43 - CFD: 15/05/2017 - [] D -- C:\Users\Diaby\AppData\Local\XEInsPackFileder
O43 - CFD: 05/06/2016 - [] D -- C:\Users\Diaby\AppData\Local\XinoviRuS
O43 - CFD: 18/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Zaczero
O43 - CFD: 03/09/2016 - [] D -- C:\Users\Diaby\AppData\Local\ZarneXxX_GmbH
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 29/07/2016 - [] D -- C:\Users\Diaby\AppData\Local\__
O43 - CFD: 26/09/2016 - [] D -- C:\Users\Diaby\AppData\Local\{444072FB-6112-1F8D-0A24-385FD6F6C561}
O43 - CFD: 25/05/2016 - [0] D -- C:\Users\Diaby\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 28/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Programs\GEN =>.Superfluous.Funfeedr
O43 - CFD: 28/07/2017 - [] D -- C:\Users\Diaby\AppData\Local\Programs\SwytShopAlgoadChrome_Pkg4 =>PUP.Optional.SwytShop
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 18/06/2017 - [] RD -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 27/05/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames =>.AeriaGames
O43 - CFD: 10/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client =>.Tim Kosse
O43 - CFD: 29/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps =>.Fraps Games
O43 - CFD: 11/02/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 30/07/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Keylogger Detector
O43 - CFD: 25/02/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Little Fighter 3 v3.6
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 08/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync =>.MegaSystems
O43 - CFD: 08/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No-IP DUC =>.Vitalwerks Internet Solutions
O43 - CFD: 30/07/2017 - [] RD -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 08/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker =>.Cedrick Collomb
O43 - CFD: 30/07/2017 - [0] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder =>.Games Software
O43 - CFD: 11/06/2017 - [] D -- C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 25/05/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 25/05/2017 - [] D -- C:\Users\Default\AppData\Local\LogMeIn Hamachi =>.LogMeIn Entreprise
O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 25/05/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 25/05/2017 - [] D -- C:\Users\Default User\AppData\Local\LogMeIn Hamachi =>.LogMeIn Entreprise
O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 19/02/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\HideMyIpSRV
O43 - CFD: 13/06/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\LogMeIn =>.LogMeIn
O43 - CFD: 11/06/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 31/07/2017 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\tofosal
O43 - CFD: 31/07/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\{AE63983F-8ACB-F487-E753-D16FC33B2DF7}
O43 - CFD: 26/04/2017 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\IObit =>.IObit
O43 - CFD: 06/07/2017 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation
---\\ ShellExecuteHook (1) - 0s
O46 - SEH:ShellExecuteHooks - (no name) - [HKLM] - {005E7630-F1AE-11E6-8235-64006A5CFC23} . (...) -- (.not file.)
---\\ ShellIconOverlayIdentifiers (SIOI) (6) - 1s
O106 - SIOI: UpToDateOverlayHandler Class [ SkyDrive1] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ SkyDrive2] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll =>.Microsoft Corporation®
O106 - SIOI: ErrorOverlayHandler Class [ SkyDrive3] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Diaby\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll =>.Microsoft Corporation®
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\Windows\System32\cscui.dll =>.Microsoft Corporation
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ Image File Execution Options (6) - 3s
O50 - IFEO:C:\Windows\System32\FlashPlayerApp.exe - (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) [DisableExceptionChainValidation\\0] =>.Adobe Systems Incorporated®
O50 - IFEO:C:\Windows\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rstrui.exe - (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) [Debugger\\C:\Windows\System32\svchost.exe] =>.Microsoft Corporation
---\\ Enumération des clés StartupReg (5) - 1s
O53 - SMSR:HKLM\...\startupreg\Advanced SystemCare 9 [Key] . (...) -- C:\Program Files\IObit\Advanced SystemCare\ASCTray.exe (.not file.) =>.Superfluous.AdvancedSystemCare
O53 - SMSR:HKLM\...\startupreg\Aeria Ignite [Key] . (...) -- C:\Program Files\Aeria Games\Ignite\aeriaignite.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\CCleaner Monitoring [Key] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd
O53 - SMSR:HKLM\...\startupreg\cmsc [Key] . (...) -- c:\program files\cmcm\Clean Master\cmtray.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\ISS Manager [Key] . (.Microsoft Corporation - Microsoft .NET Assembly Registration Utilit.) -- C:\Program Files\ISS Manager\issmgr.exe =>.Microsoft Corporation
---\\ Liste des pilotes du système (90) - 86s
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400] =>.Microsoft Windows®
O58 - SDL:2010/11/20 23:29:03 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [80256] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312] =>.Microsoft Windows®
O58 - SDL:2010/11/20 23:29:03 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22400] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608] =>.Microsoft Windows®
O58 - SDL:2017/07/04 16:35:12 A . (.Avira Operations GmbH & Co. KG - Avira USB Feature Driver.) -- C:\Windows\System32\drivers\avdevprot.sys [46440] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/07/04 16:35:10 A . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\drivers\avgntflt.sys [124232] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/07/04 16:35:11 A . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\Windows\System32\drivers\avipbb.sys [142712] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/07/04 16:35:11 A . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\Windows\System32\drivers\avkmgr.sys [35840] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/07/04 16:35:11 A . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\Windows\System32\drivers\avnetflt.sys [59000] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/07/04 16:35:12 A . (.Avira Operations GmbH & Co. KG - Avira USB Filter Driver.) -- C:\Windows\System32\drivers\avusbflt.sys [23304] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2016/05/26 18:27:33 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60x.sys [415000] =>.Broadcom Corporation®
O58 - SDL:2017/07/27 03:14:52 A . (.D5NVOO - .) -- C:\Windows\System32\drivers\be7150856eafa500edf8d20c62f5d2ac.sys [60696] {751DE0C40C88361DA081F5C4}
O58 - SDL:2014/03/11 05:14:02 A . (.Baidu, Inc. - Baidu Antivirus Hook Base.) -- C:\Windows\System32\drivers\Bhbase.sys [47456] =>.Baidu Online Network Technology (Beijing)Co., Ltd®
O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 02:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128] =>.Brother Industries Ltd.
O58 - SDL:2009/07/14 00:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336] =>.Brother Industries Ltd.
O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160] =>.Brother Industries Ltd.
O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904] =>.Brother Industries Ltd.
O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080] =>.Broadcom Corporation
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - McAfee Personal Firewall IDS Plugin.) -- C:\Windows\System32\drivers\cfwids.sys [72208] =>.McAfee, Inc.®
O58 - SDL:2009/07/14 03:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712] =>.Microsoft Windows®
O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160] =>.Broadcom Corporation
O58 - SDL:2017/05/22 16:21:08 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\drivers\hamachi.sys [27968] =>.LogMeIn, Inc.®
O58 - SDL:2009/07/14 00:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2009/07/14 03:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152] =>.Microsoft Windows®
O58 - SDL:2016/05/26 18:26:14 A . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) -- C:\Windows\System32\drivers\HWiNFO32.SYS [23840] =>.Martin Malik - REALiX®
O58 - SDL:2010/11/20 23:29:03 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332160] =>.Microsoft Windows®
O58 - SDL:2009/09/23 19:18:14 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys [4808192] =>.Intel Corporation
O58 - SDL:2009/07/14 03:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040] =>.Microsoft Windows®
O58 - SDL:2017/03/17 12:31:12 A . (.IObit.com - IMFCameraProtect.) -- C:\Windows\System32\drivers\IMFCameraProtect.sys [25120] =>.IObit Information Technology®
O58 - SDL:2017/02/19 21:15:40 A . (.QFX Software Corporation - KeyScrambler Keyboard Encryption Driver.) -- C:\Windows\System32\drivers\keyscrambler.sys [220192] =>.QFX Software Corporation®
O58 - SDL:2017/07/07 12:44:20 A . (.Kingsoft Corporation - Kingsoft KSAPI Module.) -- C:\Windows\System32\drivers\ksapi.sys [81768] =>.Beijing Kingsoft Security software Co.,Ltd®
O58 - SDL:2017/07/07 12:44:20 A . (.Kingsoft Corporation - Kingsoft KSAPI Module.) -- C:\Windows\System32\drivers\ksapi64.sys [56680] =>.Beijing Kingsoft Security software Co.,Ltd®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95824] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89168] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848] =>.Microsoft Windows®
O58 - SDL:2017/05/31 11:09:14 A . (...) -- C:\Windows\System32\drivers\mbae.sys [59936] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584] =>.Microsoft Windows®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - McAfee Arbitrary Access Control Driver.) -- C:\Windows\System32\drivers\mfeaack.sys [362000] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - Anti-Virus File System Filter Driver.) -- C:\Windows\System32\drivers\mfeavfk.sys [277008] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\Windows\System32\drivers\mfefirek.sys [390160] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - McAfee Link Driver.) -- C:\Windows\System32\drivers\mfehidk.sys [706064] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - AAC Protected Launch Plugin Driver.) -- C:\Windows\System32\drivers\mfeplk.sys [93712] =>.McAfee, Inc.®
O58 - SDL:2017/05/02 11:07:48 A . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) -- C:\Windows\System32\drivers\mfewfpk.sys [209936] =>.McAfee, Inc.®
O58 - SDL:2009/07/14 03:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624] =>.Microsoft Windows®
O58 - SDL:2010/11/20 23:29:03 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117120] =>.Microsoft Windows®
O58 - SDL:2010/11/20 23:29:03 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [143744] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064] =>.Microsoft Windows®
O58 - SDL:2016/05/26 18:39:06 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [3766016] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/07/13 22:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888] =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072] =>.Microsoft Windows®
O58 - SDL:2017/01/18 17:55:32 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\Windows\System32\drivers\tap0901.sys [30696] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2017/06/15 12:53:26 A . (.Anchorfree Inc. - Anchorfree HSS VPN Adapter.) -- C:\Windows\System32\drivers\taphss6.sys [36944] =>.AnchorFree Inc®
O58 - SDL:2017/07/17 21:18:08 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\System32\drivers\VBoxDrv.sys [806464] =>.Oracle Corporation®
O58 - SDL:2017/07/17 21:18:10 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Host-Only Network Adapt.) -- C:\Windows\System32\drivers\VBoxNetAdp6.sys [113944] =>.Oracle Corporation®
O58 - SDL:2017/07/17 21:18:10 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Lightweight Filter Driv.) -- C:\Windows\System32\drivers\VBoxNetLwf.sys [177880] =>.Oracle Corporation®
O58 - SDL:2017/07/17 21:18:10 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\System32\drivers\VBoxUSBMon.sys [123856] =>.Oracle Corporation®
O58 - SDL:2009/07/14 03:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976] =>.Microsoft Windows®
O58 - SDL:2009/07/25 00:21:14 A . (.RealVNC Ltd. - VNC Mirror Miniport.) -- C:\Windows\System32\drivers\vncmirror.sys [4608] =>.RealVNC Ltd.
O58 - SDL:2009/07/14 03:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904] =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:44 A . (...) -- C:\Windows\System32\country.sys [27097] =>.Microsoft Corporation
O58 - SDL:2017/05/22 16:21:08 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys [27968] =>.LogMeIn, Inc.®
O58 - SDL:2009/07/13 23:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537] =>.Microsoft Corporation
O58 - SDL:2004/12/30 14:43:08 A . (.INCA Internet Co., Ltd. - nProtect NPSC Kernel Mode Driver for NT.) -- C:\Windows\System32\npptNT2.sys [4682] =>.INCA Internet Co., Ltd.
O58 - SDL:2009/07/13 23:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536] =>.Microsoft Corporation
O58 - SDL:2009/07/13 23:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672] =>.Microsoft Corporation
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (8) - 955s
O61 - LFC: 2017/07/28 17:08:33 SH . (.Bandicam Company.) -- C:\Users\Diaby\bdfilters.dll [41346560]
O61 - LFC: 2017/07/31 16:34:01 A . (..) -- C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\nacl_validation_cache.bin [488]
O61 - LFC: 2017/07/28 17:20:20 A . (..) -- C:\Users\Diaby\AppData\Local\Programs\SwytShopAlgoadChrome_Pkg4\unins000.exe [1202513] =>PUP.Optional.SwytShop
O61 - LFC: 2017/07/28 17:21:32 A . (..) -- C:\Users\Diaby\AppData\Local\uninstallce.exe [3072]
O61 - LFC: 2017/07/30 22:36:36 A . (.Dolakepefo.) -- C:\Users\Diaby\Downloads\dragon-ball-z-sagas_2198152738.exe [1512977]
O61 - LFC: 2017/07/30 19:40:51 A . (..) -- C:\Users\Diaby\Downloads\inst_antispy.exe [613868]
O61 - LFC: 2017/07/29 20:16:35 A . (..) -- C:\Users\Diaby\Downloads\New Release Cheats Ver. 10.5.exe [2290688]
O61 - LFC: 2017/07/30 12:38:12 A . (.Uniblue Systems Limited.) -- C:\Users\Diaby\Downloads\pcmechanicpm.exe [1188216] =>.Superfluous.SpeedUpMyPC
---\\ Associations Shell Spawning (10) - 3s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Menu de démarrage Internet (20) - 5s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Recherche d'infection sur les navigateurs (7) - 28s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (search.yahoo.com) - http://fr.search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKCU] {2211d4a5-48d0-47f5-a7cd-81e861470f7f} - (search.yahoo.com) - http://fr.search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKCU] {C0C3A6C6-03BC-4195-8FCB-AEA091301353} - (Yahoo!) - http://fr.search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKCU] {f79e5d1c-5148-469e-9f98-a11d8d7863f4} - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (search.yahoo.com) - http://fr.search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKLM] {2211d4a5-48d0-47f5-a7cd-81e861470f7f} - (Yahoo! Powered) - http://fr.search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKLM] {f79e5d1c-5148-469e-9f98-a11d8d7863f4} - (Yahoo! Powered) - http://fr.search.yahoo.com/ =>.Yahoo! Inc.
---\\ Enumère les services démarrés par Svchost (32) - 6s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [606720] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [679424] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [474624] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [286208] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [242176] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Stas'M Corp. - Terminal Services Wrapper Library.) -- C:\Windows\System32\rdpwrap.dll [77312] =>.Stas'M Corp.
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2092032] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [585728] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [499712] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [47104] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164864] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [751104] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [113664] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102912] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [149504] =>.Microsoft Corporation
---\\ Liste des exceptions du parefeu Windows (36) - 38s
O87 - FAEL: "{13D5E591-777C-4D09-81EA-2E95B83C392E}" [In-None-P6-TRUE] .(...) -- C:\Users\Diaby\chroome.exe
O87 - FAEL: "{C2DD3C54-CDD0-43BD-914A-28C6105522B2}" [In-None-P17-TRUE] .(...) -- C:\Users\Diaby\chroome.exe
O87 - FAEL: "{A276F1FE-7447-4542-9645-85FAD1C61135}" [In-None-P6-TRUE] .(...) -- C:\Users\Diaby\chroome.exe
O87 - FAEL: "{FCB48A8F-86C2-460D-AFDA-A12582B97AAE}" [In-None-P17-TRUE] .(...) -- C:\Users\Diaby\chroome.exe
O87 - FAEL: "{463FA5B2-5EE8-4077-B8CC-56AD0D60CC45}" [In-None-P6-FALSE] .(.Smilegate Europe - CF_SGI.) -- C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGI.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{6A26E352-8FF7-4167-A886-4762952C5A3E}" [In-None-P17-FALSE] .(.Smilegate Europe - CF_SGI.) -- C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGI.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{BFE1D465-A215-431D-B60D-EBA250CE5E37}" [In-None-P6-FALSE] .(.Smilegate Europe - CF_SGI.) -- C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGIN.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{4C178425-8BBE-43AD-81F0-351E254B0028}" [In-None-P17-FALSE] .(.Smilegate Europe - CF_SGI.) -- C:\Program Files\Smilegate\Crossfire Europe EU\CF_SGIN.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{F14929DF-532C-4BCD-A294-2345D33CFF0D}" [In-None-P6-FALSE] .(.Copyright (C) 1997 - Client MFC Application.) -- C:\Program Files\Smilegate\Crossfire Europe EU\crossfire.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{D8EE6208-5DFD-4347-B4D3-58CC48E6FCCA}" [In-None-P17-FALSE] .(.Copyright (C) 1997 - Client MFC Application.) -- C:\Program Files\Smilegate\Crossfire Europe EU\crossfire.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{C4CDB097-37A8-4062-86DD-25628C2959A5}" [In-None-P6-TRUE] .(.Smilegate Games Inc. - Hacking GateWay Client.) -- C:\Program Files\Smilegate\Crossfire Europe EU\HGWC.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{73CC62E5-F114-4BCF-BF2B-8C2E1A42F056}" [In-None-P17-TRUE] .(.Smilegate Games Inc. - Hacking GateWay Client.) -- C:\Program Files\Smilegate\Crossfire Europe EU\HGWC.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{24559BC8-8856-45C1-BE4B-178CFB1DAFB3}" [In-None-P6-FALSE] .(.Smilegate Games Inc. - Hacking GateWay Client.) -- C:\Program Files\Smilegate\Crossfire Europe EU\HGWC.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{2FC97218-D1B0-441B-AEE4-59CCAA0796E2}" [In-None-P17-FALSE] .(.Smilegate Games Inc. - Hacking GateWay Client.) -- C:\Program Files\Smilegate\Crossfire Europe EU\HGWC.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{15482131-C439-4CEE-82AB-6C1D1CA68F35}" [In-None-P6-FALSE] .(.Smilegate Entertainment - EU Crossfire Patcher.) -- C:\Program Files\Smilegate\Crossfire Europe EU\patcher_cf.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{D46A9BCC-05FD-4EF6-8217-8B4D13156C94}" [In-None-P17-FALSE] .(.Smilegate Entertainment - EU Crossfire Patcher.) -- C:\Program Files\Smilegate\Crossfire Europe EU\patcher_cf.exe {10B2BA377EB4BBAFD3D849446561A001}
O87 - FAEL: "{CC5484FF-EB00-4ABE-8331-B9293F848B0D}" [In-None-P6-TRUE] .(.Copyright 2011 Neowiz - SelfUpdate Module.) -- C:\Program Files\Smilegate\Crossfire Europe EU\SelfUpdate.exe {220FA9CD9CB251C266327874C4782FC3}
O87 - FAEL: "{0199540C-44DB-41ED-BC1D-E4F211835B88}" [In-None-P17-TRUE] .(.Copyright 2011 Neowiz - SelfUpdate Module.) -- C:\Program Files\Smilegate\Crossfire Europe EU\SelfUpdate.exe {220FA9CD9CB251C266327874C4782FC3}
O87 - FAEL: "{CCEE74C3-EE4A-474A-870F-FF677A73B561}" [In-None-P6-FALSE] .(.Copyright 2011 Neowiz - SelfUpdate Module.) -- C:\Program Files\Smilegate\Crossfire Europe EU\SelfUpdate.exe {220FA9CD9CB251C266327874C4782FC3}
O87 - FAEL: "{26858C60-644D-4D01-B059-6C98A95F311D}" [In-None-P17-FALSE] .(.Copyright 2011 Neowiz - SelfUpdate Module.) -- C:\Program Files\Smilegate\Crossfire Europe EU\SelfUpdate.exe {220FA9CD9CB251C266327874C4782FC3}
O87 - FAEL: "{3D427CF5-89C5-4FB9-B724-A34CD435B5A4}" [In-None-P6-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe (.not file.)
O87 - FAEL: "{C9B16962-A746-452F-8266-6052C8AF3770}" [In-None-P17-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe (.not file.)
O87 - FAEL: "{F51AC3C7-2C05-4F4B-82A9-6D7D00860F56}" [In-None-P6-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe (.not file.)
O87 - FAEL: "{C933D294-62EF-4DB1-9403-9AC5FDCFB046}" [In-None-P17-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe (.not file.)
O87 - FAEL: "{ED9FD8B6-8C16-47A6-8760-249B66230751}" [In-None-P6-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{A3135243-BCCC-47C6-9D90-457070296462}" [In-None-P17-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{100498FD-C1D0-4737-BB95-FDC967F1E44E}" [In-None-P6-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{77883A27-0B1C-4C30-A90D-5F2E27376D8B}" [In-None-P17-TRUE] .(...) -- C:\Users\Diaby\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{B2C4C927-E74C-4C15-B54B-AE89A763D3E3}" [In-None-P6-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{31617CB1-65E6-4D5E-80D2-3021EB321B4D}" [In-None-P17-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{F3B6761E-389B-43CB-BB90-BA3F01FFAE66}" [In-None-P6-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{ACB1C313-5B0F-4FA4-B234-D64FD552041E}" [In-None-P17-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Windows Audio Device Graph.exe (.not file.)
O87 - FAEL: "{9DAB0D8F-0486-4E70-94E3-52C647B6DC58}" [In-None-P6-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe
O87 - FAEL: "{DF01D074-3F3E-4576-906F-16039E622166}" [In-None-P17-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe
O87 - FAEL: "{C412DB7A-1E44-4FD4-8455-2F5718DC2197}" [In-None-P6-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe
O87 - FAEL: "{A5D6C0D6-8813-4765-997E-C64DDB74BC94}" [In-None-P17-TRUE] .(...) -- C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Microsoft Windows Audio Device Graphic Card Isolation.exe
---\\ Recherche de clés de registre Tracing (4) - 16s
HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceScan_RASAPI32 =>.Superfluous.ByteFence
HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceScan_RASMANCS =>.Superfluous.ByteFence
HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 =>.Superfluous.ByteFence
HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS =>.Superfluous.ByteFence
---\\ Scan Additionnel (100) - 3s
[HKLM\SYSTEM\CurrentControlSet\Services\76f1c620a777bf6a6ddcfefa9f394791] =>PUP.Optional.Wajam
C:\Program Files\76f1c620a777bf6a6ddcfefa9f394791\738f470830b3668d66d5f0a992feb250.exe =>PUP.Optional.Wajam
[HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService] =>.Superfluous.ByteFence
C:\Program Files\ByteFence\ByteFenceService.exe =>.Superfluous.ByteFence
[HKLM\SYSTEM\CurrentControlSet\Services\rtop] =>.Superfluous.ByteFence
C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe =>.Superfluous.ByteFence
C:\Windows\Tasks\ReimageUpdater.job =>.Superfluous.ReimageRepair
C:\Windows\System32\Tasks\ByteFence =>.Superfluous.ByteFence
C:\Windows\System32\Tasks\ByteFence Scan =>.Superfluous.ByteFence
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ByteFence] =>.Superfluous.ByteFence
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ByteFence Scan] =>.Superfluous.ByteFence
C:\Program Files\Skillbrains\lightshot\Lightshot.exe =>.Superfluous.Skillbrains
C:\Users\Diaby\AppData\Local\Akamai\netsession_win.exe =>.Superfluous.AkamaiHD
C:\Program Files\VQJX3YA67N\9XV5352AV.exe =>Adware.Wizzcaster
C:\Program Files\cgmemeyesu2\N84IB.exe =>Adware.Wizzcaster
C:\Program Files\WMRHXXUH0F\1OLD5AKQC.exe =>Adware.Wizzcaster
C:\Program Files\1ABKMYMX0N\3U7W9DLR4.exe =>Adware.Wizzcaster
C:\Program Files\O9J4S1YMCM\9MAHNIY1A.exe =>Adware.Wizzcaster
C:\Program Files\5SMJZZ84T1\PLGL71APN.exe =>Adware.Wizzcaster
C:\Program Files\5V0M24Q3NB\WRJAAAP8A.exe =>Adware.Wizzcaster
C:\Program Files\K068PKZ6UO\R4UUPNVPO.exe =>Adware.Wizzcaster
C:\Program Files\HB8NBYQRQS\EDCPMOQW5.exe =>Adware.Wizzcaster
C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fngmhnnpilhplaeedifhccceomclgfbg =>Adware.CloudAtlas
C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pilplloabdedfmialnfchjomjmpjcoej =>.Superfluous.SearchManager
C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Local Extension Settings\cfkpefbllpconnkfpdgagkifmflckkdp =>.Superfluous.CookiesControl
C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\zo5cs3w4.default\extensions\300414@extcorp.com.xpi =>Adware.CloudAtlas
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CloudExtender] =>Trojan.ProxyAgent
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SwytShopAlgoadChrome_Pkg4_is1] =>PUP.Optional.SwytShop
C:\Program Files\1ABKMYMX0N\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\1ABKMYMX0N =>Adware.Wizzcaster
C:\Program Files\20ANG3FRGJ\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\20ANG3FRGJ =>Adware.Wizzcaster
C:\Program Files\5SMJZZ84T1\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\5SMJZZ84T1 =>Adware.Wizzcaster
C:\Program Files\5V0M24Q3NB\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\5V0M24Q3NB =>Adware.Wizzcaster
C:\Program Files\B1ZMD2YTCA\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\B1ZMD2YTCA =>Adware.Wizzcaster
C:\Program Files\HB8NBYQRQS\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\HB8NBYQRQS =>Adware.Wizzcaster
C:\Program Files\K068PKZ6UO\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\K068PKZ6UO =>Adware.Wizzcaster
C:\Program Files\O9J4S1YMCM =>Adware.Wizzcaster
C:\Program Files\OG9MTGL701\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\OG9MTGL701 =>Adware.Wizzcaster
C:\Program Files\OJ20A8ZTI8\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\OJ20A8ZTI8 =>Adware.Wizzcaster
C:\Program Files\OYVH9BCITE\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\OYVH9BCITE =>Adware.Wizzcaster
C:\Program Files\U4XP2BBMJF\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\U4XP2BBMJF =>Adware.Wizzcaster
C:\Program Files\VQJX3YA67N\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\VQJX3YA67N =>Adware.Wizzcaster
C:\Program Files\WMRHXXUH0F\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\WMRHXXUH0F =>Adware.Wizzcaster
C:\Program Files\yxexltnc =>.Superfluous.Empty
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware =>.Superfluous.ByteFence
C:\ProgramData\ByteFence =>.Superfluous.ByteFence
C:\Users\Diaby\AppData\Local\Akamai =>.Superfluous.AkamaiHD
C:\Users\Diaby\AppData\Local\Kitty =>.Superfluous.Elex
C:\Users\Diaby\AppData\Local\Programs\GEN =>.Superfluous.Funfeedr
C:\Users\Diaby\AppData\Local\Programs\SwytShopAlgoadChrome_Pkg4 =>PUP.Optional.SwytShop
[HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Advanced SystemCare 9] =>.Superfluous.AdvancedSystemCare
C:\Users\Diaby\AppData\Local\Programs\SwytShopAlgoadChrome_Pkg4\unins000.exe =>PUP.Optional.SwytShop
[HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceScan_RASAPI32] =>.Superfluous.ByteFence
[HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceScan_RASMANCS] =>.Superfluous.ByteFence
[HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32] =>.Superfluous.ByteFence
[HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS] =>.Superfluous.ByteFence
C:\Users\Diaby\AppData\Roaming\cf_hack.exe =>Heuristic.Suspect
C:\Users\Diaby\AppData\Roaming\remover.exe =>Heuristic.Suspect
C:\Users\Diaby\AppData\Roaming\RLHackers.exe =>Heuristic.Suspect
C:\Windows\System32\Drivers\be7150856eafa500edf8d20c62f5d2ac.sys =>PUP.Optional.Wajam
[HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\5ydp3vr3] =>.Superfluous.Elex
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1916A2AF346D399F50313C393200F14140456616] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2A83E9020591A55FC6DDAD3FB102794C52B24E70] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2B84BFBB34EE2EF949FE1CBE30AA026416EB2216] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3A850044D8A195CD401A680C012CB0A3B5F8DC08] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\40AA38731BD189F9CDB5B9DC35E2136F38777AF4] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\43D9BCB568E039D073A74A71D8511F7476089CC3] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\471C949A8143DB5AD5CDF1C972864A2504FA23C9] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\61793FCBFA4F9008309BBA5FF12D2CB29CD4151A] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\63FEAE960BAA91E343CE2BD8B71798C76BDB77D0] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\6431723036FD26DEA502792FA595922493030F97] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\80962AE4D6C5B442894E95A13E4A699E07D694CF] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\86E817C81A5CA672FE000F36F878C19518D6F844] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\8E5BD50D6AE686D65252F843A9D4B96D197730AB] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9845A431D51959CAF225322B4A4FE9F223CE6D15] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B533345D06F64516403C00DA03187D3BFEF59156] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B86E791620F759F17B8D25E38CA8BE32E7D5EAC2] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\C060ED44CBD881BD0EF86C0BA287DDCF8167478C] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CEA586B2CE593EC7D939898337C57814708AB2BE] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D018B62DC518907247DF50925BB09ACF4A5CB3AD] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F8A54E03AADC5692B850496A4C4630FFEAA29D83] =>PUM.Misplaced.Certificate [Avast Software]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FA6660A94AB45F6A88C0D7874D89A863D74DEE97] =>PUM.Misplaced.Certificate [Avast Software]
---\\ Récapitulatif des éléments trouvés sur votre station (29) - 0s
https://nicolascoolman.eu/2017/02/24/pup-optional-wajam/ =>PUP.Optional.Wajam
https://nicolascoolman.eu/2017/03/13/superfluous-bytefence/ =>.Superfluous.ByteFence
https://nicolascoolman.eu/2017/01/27/superfluous-reimagerepair/ =>.Superfluous.ReimageRepair
https://www.anti-malware.top/2016/04/30/superfluous-skillbrains/ =>.Superfluous.Skillbrains
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.AkamaiHD
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Adware.Wizzcaster
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Adware.CloudAtlas
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.SearchManager
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.CookiesControl
https://nicolascoolman.eu/2017/03/06/hijacker-startpageing123/ =>Hijacker.StartpageIng123
https://nicolascoolman.eu/2017/05/16/hijacker-ourluckysites/ =>Hijacker.OurLuckySites
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Adware.DNSUnlocker
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Trojan.ProxyAgent
https://nicolascoolman.eu/2017/04/08/pup-optional-swytshop/ =>PUP.Optional.SwytShop
https://nicolascoolman.eu/2017/03/10/adware-amulecustom/ =>Adware.aMULEcustom
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.InterSect
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Paretologic
https://www.anti-malware.top/2016/04/26/superfluous-springfiles/ =>.Superfluous.SpringFiles
https://nicolascoolman.eu/2017/03/12/adware-installcore-2/ =>Adware.InstallCore
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Downloader
https://nicolascoolman.eu/2017/01/18/adware-apptrailers/ =>Adware.AppTrailers
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Empty
https://nicolascoolman.eu/2017/03/28/superfluous-elex/ =>.Superfluous.Elex
https://www.anti-malware.top/2016/05/05/superfluous-funfeedr/ =>.Superfluous.Funfeedr
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.AdvancedSystemCare
https://www.anti-malware.top/2016/08/15/speedupmypc/ =>.Superfluous.SpeedUpMyPC
https://nicolascoolman.eu/2017/01/28/heuristic-suspect/ =>Heuristic.Suspect
https://nicolascoolman.eu/2017/06/26/trojan-certlock/ =>PUM.Misplaced.Certificate
~ Unselected Options: O82,
~ End of the scan, 21712 items in 52mn22s (1599)(0)