~ ZHPDiag v2015.7.12.88 Par Nicolas Coolman (2015/07/12)
~ Démarré par WIN8.1 (Administrator)  (2015/07/13 16:47:44)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version:  Version OK
~ Mode: Scanner
~ Rapport: C:\Users\WIN8.1\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\WIN8.1\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
~ Windows 8.1, 64-bit  (Build 9600)

---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v43.0.2357.132
MFIE: Mozilla Firefox 19.0 (x86 fr) v19.0
MSIE: Internet Explorer v11.0.9600.17842

---\\ Informations sur les produits Windows (3) - 2s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Activation Technologies : OK

---\\ Surveillance de Logiciels (2) - 2s
Adobe Flash Player 17 NPAPI
Adobe Reader 9 - Français

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 69 Stepping 1, GenuineIntel
~ Operating System:  64-bit 
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 8290128
~ System Restore: Activé (Enable)
~ System drive C: has 269 GB free of 372 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: WIN8
~ User Name: WIN8.1
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 269 GB free of 372 GB  (System)
~ Drive D: has 556 GB free of 580 GB

---\\ Recherche particulière de fichiers génériques (23) - 2s
[MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2501368]
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [54784]
[MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [145920]
[MD5.417F80E4AFBA1AA9EBBD618F1C6D9165] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2426880]
[MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [572416]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [19456]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [134144]
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [76800]
[MD5.D887446F3F6051C60C26F4FD1FC8D43F] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [142848]
[MD5.31233271EDE50D1BBB220F78AFA60486] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\Windows\System32\drivers\MRxSmb.sys [405504]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [282624]
[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [2025792]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\Windows\System32\drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [107520]
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [310080]

---\\ Processus lancés (19) - 10s
[MD5.B86FB71C9EB0B3EB978A92ECAA2925E2] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.5.) -- C:\Windows\system32\nvvsvc.exe [922912] [PID.928]
[MD5.F1D20C2B36F78863530B251DF504CC51] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520] [PID.1216]
[MD5.D1E343BC00136CE03C4D403194D06A80] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [98208] [PID.1632]
[MD5.2BB7E9A887F26CDB5C19C76636E85394] - (.APN LLC. - APN Updater.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [178568] [PID.1648]  =>Toolbar.Ask
[MD5.F58D8EF3D24B61CA4E822C81E75643B0] - (.Copyright (C) eagleGet 2014 - EGMonito Application.) -- C:\Program Files (x86)\EagleGet\EGMonitor.exe [229376] [PID.1860]
[MD5.1355EBE184F9DAB1718BC587F8A7E05E] - (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376] [PID.1928]
[MD5.2B5178E839F2A6F3007DE2F5F934E7D8] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1196832] [PID.3796]
[MD5.B86FB71C9EB0B3EB978A92ECAA2925E2] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.5.) -- C:\Windows\system32\nvvsvc.exe [922912] [PID.4856]
[MD5.F58D8EF3D24B61CA4E822C81E75643B0] - (.Copyright (C) eagleGet 2014 - EGMonito Application.) -- C:\Program Files (x86)\EagleGet\EGMonitor.exe [229376] [PID.4832]
[MD5.828EDEED8D98B5F545E1A860D076C7D6] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1382256] [PID.6320]
[MD5.7904B8331324003F34CB6055230D349E] - (.Smadsoft - Smadav USB Antivirus & Additional Protectio.) -- C:\Program Files (x86)\SMADAV\SM?RTP.exe [1679360] [PID.5552]
[MD5.1E223C0BDAD3C1F4BE39C4486C4B8CA2] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7562456] [PID.4476]
[MD5.828EDEED8D98B5F545E1A860D076C7D6] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1382256] [PID.3344]
[MD5.C1F24E96BCF43327BC6D47F4A72092F7] - (.Waves Audio Ltd. - Waves MaxxAudio Service Application.) -- C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe [519256] [PID.104]
[MD5.432F4E8794A2EA8A64E4C75EA80B790E] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\WIN8.1\AppData\Roaming\uTorrent\uTorrent.exe [1694560] [PID.4996]
[MD5.C394EE4969CAB94137CAED70B78CEDF0] - (.EagleGet.com - EagleGet Free Downloader.) -- C:\Program Files (x86)\EagleGet\EagleGet.exe [1767936] [PID.2716]
[MD5.B4531BF13B3DDC19A50A71952E6AD198] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3301376] [PID.5388]
[MD5.1FC71A719B45A6A90BAFE2387EA07984] - (.Copyright (C) 2010 - HSDPALauncher MFC Application.) -- C:\Program Files (x86)\HSPA USB Modem\HSPALauncher.exe [233472] [PID.3144]
[MD5.B1227EEFFA56DA6D374169FFFFD17228] - (.APN - Ask Toolbar Notifier.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1684360] [PID.664]  =>Toolbar.Ask

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) (15) - 2s
G2 - GCE: Extension [User Data\Default] [aaaaajhmeplfccacopbgpfaibalfnhcb] Ask Search
G2 - GCE: Extension [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [hgiidlnejdlfoacoeleopkljhbckmlko] Facebook - Delete All Messages
G2 - GCE: Extension [User Data\Default] [jeaohhlajejodfjadcponpnjgkiikocn] IDM Integration Module
G2 - GCE: Extension [User Data\Default] [kaebhgioafceeldhgjmendlfhbfjefmo] EagleGet Free Downloader
G2 - GCE: Extension [User Data\Default] [klmpnhheahecaojonebajllddfhpilan] __MSG_name__
G2 - GCE: Extension [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Extension [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [pdnkcidphdcakpkheohlhocaicfamjie] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest  =>.Google Inc.

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3) (6) - 4s
M0 - MFSP: prefs.js [WIN8.1 - kw8ky7rt.default] http://www.google.com/ 
M1 - SPR:Search Page Redirection - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKCU] [eagleget.com/EagleGet32] - (.EagleGet.) -- C:\Program Files (x86)\EagleGet\npEagleget.dll
P2 - FPN: [HKCU] [eagleget.com/EagleGet64_x86_64] - (.EagleGet.) -- C:\Program Files (x86)\EagleGet\npEagleget64.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_191.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.5] - (.VideoLAN.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (18) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean  =>.Microsoft Internet Explorer
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} Orphean
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer, Proxy Management (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 1s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (3) - 0s
205.199
205.199

~ Nombre lignes détournées 205.199

24 (Hosts file redirected)

---\\ Browser Helper Object de navigateur (BHO) (O2) (6) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2 - BHO: (no name) [64Bits] - {02478D38-C3F9-4efb-9B51-7695ECA05670}  (Orphean)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3}  (Orphean)
O2 - BHO: bteagleget.com [64Bits] - {1E871FF8-029C-4732-8AA7-39E3D3872057}  (Orphean)
O2 - BHO: Solution Real 1.0.0.6 [64Bits] - {bbae01d2-61fd-4f12-befc-202b09dc09c0}  (Orphean)  =>PUP.SolutionReal
O2 - BHO: (no name) [64Bits] - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}  (Orphean)

---\\ Internet Explorer Toolbars (O3) (1) - 0s
O3 - Toolbar: 0x00 - [HKLM]{EF99BD32-C1FB-11D2-892F-0090271D4F88} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll

---\\ Applications lancées au démarrage du sytème (O4) (20) - 2s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O4 - HKLM\..\Run: [WavesSvc] . (.Waves Audio Ltd. - Waves MaxxAudio Service Application.) -- C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [Bdagent] C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe (.not file.)
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\WIN8.1\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [EagleGet] . (.EagleGet.com - EagleGet Free Downloader.) -- C:\Program Files (x86)\EagleGet\EagleGet.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKLM\..\Wow6432Node\Run: [HSPALauncher] . (.Copyright (C) 2010 - HSDPALauncher MFC Application.) -- C:\Program Files (x86)\HSPA USB Modem\HSPALauncher.exe
O4 - HKLM\..\Wow6432Node\Run: [ApnTBMon] . (.APN - Ask Toolbar Notifier.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe  =>Toolbar.Ask
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [TrayServer] . (.Magix - Trayserver.) -- C:\Program Files (x86)\MAGIX\Video_deluxe_17_Version_a_telecharger\TrayServer_fr.exe
O4 - HKUS\S-1-5-21-180574203-2069111456-3747865505-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-180574203-2069111456-3747865505-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\WIN8.1\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-180574203-2069111456-3747865505-1001\..\Run: [EagleGet] . (.EagleGet.com - EagleGet Free Downloader.) -- C:\Program Files (x86)\EagleGet\EagleGet.exe
O4 - HKUS\S-1-5-21-180574203-2069111456-3747865505-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe

---\\ Raccourcis Global Startup (O4G) (1) - 46s
O4 - GS\CommonDesktop [Public]: FLV Player.lnk . (...) C:\Program Files (x86)\FLV Player\FLVPlayer.exe  =>PUP.Optional.FLVPlayer

---\\ Modification Domaine/Adresses DNS (O17) (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = domain.name
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = domain.name

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) (1) - 0s
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 331.) - C:\Windows\system32\nvinitx.dll

---\\ Liste des services NT non Microsoft et non désactivés (O23) (9) - 1s
O23 - Service: Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: Service de mise à jour Ask (APNMCP) . (.APN LLC. - APN Updater.) - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe  =>Toolbar.Ask
O23 - Service: egGetSvc (egGetSvc) . (.Copyright (C) eagleGet 2014 - EGMonito Application.) - C:\Program Files (x86)\EagleGet\EGMonitor.exe
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) . (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.5.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: Service KMSELDI (Service KMSELDI) . (. - Service_KMS.) - C:\Program Files\KMSpico\Service_KMS.exe  =>PUA.KMSpico
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe

---\\ Tâches planifiées en automatique (O39) (10) - 1s
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\Tasks\Adobe Flash Player Updater.job   [1002]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job   [1082]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job   [1086]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater   [3890]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-kaderboudj48@outlook.fr   [3496]  =>PUP.Optional.CrossRider
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\AutoPico Daily Restart   [3706]  =>PUA.KMSpico
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore   [3822]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA   [4058]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\JetCleanLoginCheckUpdate   [3162]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\smadav   [3242]

---\\ Logiciels installés (O42) (53) - 17s
O42 - Logiciel: Bitdefender Internet Security 2015 - (.Bitdefender.) [HKLM][64Bits] -- Bitdefender
O42 - Logiciel: KMSpico v9.0.5.20131112 - (...) [HKLM][64Bits] -- KMSpico_is1  =>PUA.KMSpico
O42 - Logiciel: Solution Real - (.Solution Real.) [HKLM][64Bits] -- Solution Real  =>PUP.Optional.Sambreel
O42 - Logiciel: TAP-Windows 9.9.2 - (...) [HKLM][64Bits] -- TAP-Windows
O42 - Logiciel: MPC-HC 1.7.8 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1
O42 - Logiciel: MotioninJoy DS3 driver version 0.6.0005 - (.www.motioninjoy.com.) [HKLM][64Bits] -- {330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1
O42 - Logiciel: NVIDIA Pilote graphique 331.56 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 17 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: JetClean - (.BlueSprig.) [HKLM][64Bits] -- BlueSprig_JetClean_is1
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser
O42 - Logiciel: Combined Community Codec Pack 2008-09-21 16:18 - (.CCCP Project.) [HKLM][64Bits] -- Combined Community Codec Pack_is1
O42 - Logiciel: Dev-C++ 5 beta 9 release (4.9.9.2) - (...) [HKLM][64Bits] -- Dev-C++
O42 - Logiciel: FL Studio 11 - (.Image-Line.) [HKLM][64Bits] -- FL Studio 11
O42 - Logiciel: FlowStone FL 3.0 - (...) [HKLM][64Bits] -- FlowStone
O42 - Logiciel: FLV Player 2.0 (build 25) - (.Martijn de Visser.) [HKLM][64Bits] -- FLV Player
O42 - Logiciel: GOM Player - (.Gretech Corporation.) [HKLM][64Bits] -- GOM Player
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: IL Download Manager - (.Image-Line.) [HKLM][64Bits] -- IL Download Manager
O42 - Logiciel: HSPA USB Modem - (...) [HKLM][64Bits] -- InstallShield_{06ADE2A0-E46A-4A84-A211-64CF50520185}
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager
O42 - Logiciel: MAGIX Vidéo deluxe 17 Version à télécharger - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_MSI_Videodeluxe17
O42 - Logiciel: Mozilla Firefox 19.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 19.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++
O42 - Logiciel: The KMPlayer (remove only) - (...) [HKLM][64Bits] -- The KMPlayer
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: WinRAR archiver - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Yahoo! Toolbar - (...) [HKLM][64Bits] -- Yahoo! Companion
O42 - Logiciel: Skype™ 7.5 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}
O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM][64Bits] -- {3677B336-9F6D-45DF-9543-C049E35EE590}
O42 - Logiciel: Search App by Ask - (.APN, LLC.) [HKLM][64Bits] -- {4254522D-5350-006A-76A7-A75C790C1D00}  =>PUP.Optional.BrowserTabSearch
O42 - Logiciel: MAGIX Vidéo deluxe 17 Version à télécharger - (.MAGIX AG.) [HKLM][64Bits] -- {5965E2D2-6E8D-4B14-BFBE-B6C3B6F22633}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {7BBAEC47-1CC0-4CB8-ADB4-531B78DBD1DD}
O42 - Logiciel: SMADAV version 10.1.1 - (.SmadSoft.) [HKLM][64Bits] -- {8B9FA5FF-3E61-4658-B0DA-E6DDB46D6BAD}_is1
O42 - Logiciel: Adobe Dreamweaver CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}
O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- {A72DAA6B-A81F-4EE5-B1B2-C7620888776B}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Adobe Reader 9 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A90000000001}
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1}
O42 - Logiciel: Pro Evolution Soccer 2013 version 5.1 - (.Black_Box.) [HKLM][64Bits] -- {B810D852-DFD6-PES13-89A5-CC4D47756DAF}_is1
O42 - Logiciel: Pro Evolution Soccer 2013 - (.KONAMI.) [HKLM][64Bits] -- {C2523AE6-F335-4D0B-BC15-1C07E4ACE629}
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: EagleGet version 2.0.1.6 - (.EagleGet.) [HKLM][64Bits] -- {F6D8142A-B30B-454B-9EE0-08A7B997DFE4}_is1
O42 - Logiciel: CodeBlocks - (.The Code::Blocks Team.) [HKCU][64Bits] -- CodeBlocks
O42 - Logiciel: PhotoFiltre Studio X - (...) [HKCU][64Bits] -- PhotoFiltre Studio X
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys (90) - 17s
HKLM\SOFTWARE\Wow6432Node\4shared Desktop
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork  =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Bitdefender
HKLM\SOFTWARE\Wow6432Node\Combined-Community-Codec-Pack
HKLM\SOFTWARE\Wow6432Node\Dev-C++
HKLM\SOFTWARE\Wow6432Node\DSPRobotics
HKLM\SOFTWARE\Wow6432Node\EagleGet
HKLM\SOFTWARE\Wow6432Node\Gabest
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\GRETECH
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\HSPA
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Image-Line
HKLM\SOFTWARE\Wow6432Node\Inmatrix
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\KMPlayer
HKLM\SOFTWARE\Wow6432Node\KONAMI
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\MAGIX
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\ORACLE
HKLM\SOFTWARE\Wow6432Node\Propellerhead Software
HKLM\SOFTWARE\Wow6432Node\QQQQQQ
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SoftVoice
HKLM\SOFTWARE\Wow6432Node\Solution Real  =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Yahoo
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Allround Automations
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\AskPartnerNetwork  =>Toolbar.Ask
HKCU\SOFTWARE\Binary Noise
HKCU\SOFTWARE\Bitdefender
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\CodeBlocks
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\DSPRobotics
HKCU\SOFTWARE\EagleGet
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GRETECH
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Image-Line
HKCU\SOFTWARE\InstallCore  =>PUP.Optional.InstallCore
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\KMPlayer
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Magix
HKCU\SOFTWARE\MAGIX AG
HKCU\SOFTWARE\MainConcept (Magix)
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\PhotoFiltre Studio X
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SMAD?V
HKCU\SOFTWARE\SoftVoice
HKCU\SOFTWARE\Solution Real  =>PUP.Optional.Sambreel
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\VirtuaMedia
HKCU\SOFTWARE\Waves Audio
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Yahoo
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Yahoo

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (194) - 18s
O43 - CFD: 2015/03/03 21:19:41 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/02/13 23:50:09 - [] D -- C:\Program Files (x86)\AskPartnerNetwork  =>Toolbar.Ask
O43 - CFD: 2015/02/13 18:51:41 - [] D -- C:\Program Files (x86)\Bing Bar Installer
O43 - CFD: 2015/04/23 16:23:29 - [] D -- C:\Program Files (x86)\BlueSprig
O43 - CFD: 2015/02/20 11:46:53 - [] D -- C:\Program Files (x86)\CodeBlocks
O43 - CFD: 2015/01/21 20:32:15 - [] D -- C:\Program Files (x86)\Combined Community Codec Pack
O43 - CFD: 2015/06/21 12:00:43 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/01/22 23:34:06 - [] D -- C:\Program Files (x86)\DSPRobotics
O43 - CFD: 2015/02/14 00:44:51 - [] D -- C:\Program Files (x86)\EagleGet
O43 - CFD: 2015/01/21 20:33:13 - [] D -- C:\Program Files (x86)\FLV Player
O43 - CFD: 2015/01/22 15:39:12 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/01/21 20:32:40 - [] D -- C:\Program Files (x86)\GRETECH
O43 - CFD: 2015/01/26 11:32:18 - [] D -- C:\Program Files (x86)\HSPA USB Modem
O43 - CFD: 2015/01/22 23:34:21 - [] D -- C:\Program Files (x86)\Image-Line
O43 - CFD: 2015/03/06 14:57:47 - [] D -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/01/21 19:40:46 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/02/14 14:34:08 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 2015/06/11 22:46:43 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/03/23 01:32:19 - [] D -- C:\Program Files (x86)\MAGIX
O43 - CFD: 2015/01/21 20:23:22 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/01/21 20:23:20 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 2015/01/21 20:23:33 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/06/11 20:45:24 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/01/21 20:35:16 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2015/02/07 17:40:33 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/03/23 14:28:23 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 2015/01/21 20:14:26 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2015/05/08 18:52:28 - [] D -- C:\Program Files (x86)\Oracle
O43 - CFD: 2015/02/08 21:00:41 - [] D -- C:\Program Files (x86)\PES 13
O43 - CFD: 2015/03/01 22:34:20 - [] D -- C:\Program Files (x86)\PhotoFiltre Studio X
O43 - CFD: 2015/03/06 15:24:55 - [] D -- C:\Program Files (x86)\PLSQL Developer
O43 - CFD: 2015/02/16 20:26:20 - [] D -- C:\Program Files (x86)\Pro Evolution Soccer 2013
O43 - CFD: 2015/02/07 17:40:33 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/06/25 14:06:58 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2015/07/13 13:25:17 - [] D -- C:\Program Files (x86)\SMADAV
O43 - CFD: 2015/01/22 21:14:55 - [] D -- C:\Program Files (x86)\Solution Real  =>PUP.SolutionReal
O43 - CFD: 2015/01/21 20:35:55 - [] D -- C:\Program Files (x86)\The KMPlayer
O43 - CFD: 2015/01/21 20:34:26 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2015/02/15 19:44:06 - [] D -- C:\Program Files (x86)\VstPlugins
O43 - CFD: 2015/03/17 11:46:02 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/05/27 09:01:20 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/05/27 09:01:20 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2015/05/27 09:01:20 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/05/27 09:01:20 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/05/27 09:01:20 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2013/08/22 17:36:30 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 2015/01/21 20:33:20 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2015/01/21 20:33:12 - [] D -- C:\Program Files (x86)\Yahoo!
O43 - CFD: 2015/05/27 09:03:49 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/05/27 09:03:49 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/06/11 22:46:41 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/02/20 11:44:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++
O43 - CFD: 2015/02/20 11:46:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
O43 - CFD: 2015/01/21 20:32:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack
O43 - CFD: 2015/02/14 00:44:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EagleGet
O43 - CFD: 2015/06/15 17:58:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasyPHP DevServer 14.1 VC11
O43 - CFD: 2015/01/21 20:33:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FLV Player
O43 - CFD: 2015/05/23 10:41:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player
O43 - CFD: 2015/01/22 15:39:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/01/26 11:32:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HSPA USB Modem
O43 - CFD: 2015/02/14 14:32:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2015/04/23 16:23:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetClean
O43 - CFD: 2015/01/21 19:33:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico  =>PUA.KMSpico
O43 - CFD: 2015/03/23 01:32:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/01/21 20:24:07 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2015/02/07 17:18:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy
O43 - CFD: 2015/02/07 15:51:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
O43 - CFD: 2015/03/23 14:28:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2015/05/08 18:37:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle - OraClient10g_home1
O43 - CFD: 2015/05/08 18:57:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle - OraClient10g_home2
O43 - CFD: 2015/01/30 21:23:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PES 13
O43 - CFD: 2015/01/30 21:33:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PESEdit.com 2013 Patch
O43 - CFD: 2015/03/01 22:34:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
O43 - CFD: 2015/02/16 20:26:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2013
O43 - CFD: 2015/01/22 15:58:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/07/04 19:26:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMADAV Antivirus
O43 - CFD: 2013/08/22 17:36:33 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/05/27 09:03:49 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2013/09/30 06:03:03 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/04/30 20:25:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/01/21 20:33:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/03/04 09:43:47 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2015/02/13 23:47:24 - [] D -- C:\ProgramData\APN
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/02/13 23:50:09 - [] D -- C:\ProgramData\AskPartnerNetwork  =>Toolbar.Ask
O43 - CFD: 2015/07/07 14:50:14 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2015/07/07 22:26:30 - [] D -- C:\ProgramData\Bitdefender
O43 - CFD: 2015/01/21 19:28:07 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/02/14 00:44:50 - [] D -- C:\ProgramData\EagleGet
O43 - CFD: 2015/05/25 16:13:36 - [] D -- C:\ProgramData\GRETECH
O43 - CFD: 2015/01/21 20:36:36 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 2015/01/30 21:33:05 - [] D -- C:\ProgramData\KONAMI
O43 - CFD: 2015/03/23 01:32:19 - [] D -- C:\ProgramData\MAGIX
O43 - CFD: 2015/01/21 19:28:07 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/02/13 01:41:07 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/06/15 17:34:11 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2015/01/21 19:28:07 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/01/21 20:35:16 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/01/21 20:15:00 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2015/01/21 20:14:28 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/03/03 21:20:39 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 2015/05/27 09:01:18 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/06/25 14:07:02 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/01/21 20:33:12 - [] D -- C:\ProgramData\Yahoo! Companion
O43 - CFD: 2015/03/03 21:19:47 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2015/04/30 20:24:31 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2015/06/21 12:00:43 - [] D -- C:\Program Files (x86)\Common Files\Bitdefender
O43 - CFD: 2015/01/21 20:23:20 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2015/02/14 00:44:50 - [] D -- C:\Program Files (x86)\Common Files\EagleGet
O43 - CFD: 2015/03/06 14:51:10 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2015/01/21 19:40:39 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 2015/03/23 01:31:22 - [] D -- C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 2015/06/15 17:34:08 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2015/01/22 23:34:30 - [] D -- C:\Program Files (x86)\Common Files\Propellerhead Software
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/01/22 15:58:02 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2015/05/27 09:01:18 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/04/30 20:24:37 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Adobe
O43 - CFD: 2015/07/07 22:26:43 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Bitdefender
O43 - CFD: 2015/04/23 16:23:50 - [] D -- C:\Users\WIN8.1\AppData\Roaming\BlueSprig
O43 - CFD: 2015/04/11 18:55:17 - [] D -- C:\Users\WIN8.1\AppData\Roaming\codeblocks
O43 - CFD: 2015/02/20 13:24:17 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Dev-Cpp
O43 - CFD: 2015/07/13 05:31:37 - [] D -- C:\Users\WIN8.1\AppData\Roaming\DMCache
O43 - CFD: 2015/02/14 00:44:51 - [] D -- C:\Users\WIN8.1\AppData\Roaming\EagleGet
O43 - CFD: 2015/01/24 15:21:01 - [] D -- C:\Users\WIN8.1\AppData\Roaming\FlowStone
O43 - CFD: 2015/04/14 17:43:59 - [] D -- C:\Users\WIN8.1\AppData\Roaming\GRETECH
O43 - CFD: 2015/05/27 12:41:58 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Identities
O43 - CFD: 2015/04/27 11:46:41 - [] D -- C:\Users\WIN8.1\AppData\Roaming\IDM
O43 - CFD: 2015/02/16 23:56:44 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Image-Line
O43 - CFD: 2015/01/21 22:05:36 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Macromedia
O43 - CFD: 2015/03/23 01:33:54 - [] D -- C:\Users\WIN8.1\AppData\Roaming\MAGIX
O43 - CFD: 2015/04/27 11:46:41 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\Media Player Classic
O43 - CFD: 2015/03/10 21:07:30 - [] SD -- C:\Users\WIN8.1\AppData\Roaming\Microsoft
O43 - CFD: 2015/02/07 17:18:13 - [] D -- C:\Users\WIN8.1\AppData\Roaming\MotioninJoy
O43 - CFD: 2015/01/21 20:44:33 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Mozilla
O43 - CFD: 2015/02/07 15:52:43 - [] D -- C:\Users\WIN8.1\AppData\Roaming\MPC-HC
O43 - CFD: 2015/07/04 20:26:48 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\notepad
O43 - CFD: 2015/03/23 14:30:05 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Notepad++
O43 - CFD: 2015/05/25 16:13:40 - [] D -- C:\Users\WIN8.1\AppData\Roaming\NVIDIA
O43 - CFD: 2015/02/13 23:48:25 - [] D -- C:\Users\WIN8.1\AppData\Roaming\OpenCandy  =>PUP.Optional.OpenCandy
O43 - CFD: 2015/03/01 22:37:17 - [] D -- C:\Users\WIN8.1\AppData\Roaming\PhotoFiltre Studio X
O43 - CFD: 2015/02/28 22:31:00 - [] D -- C:\Users\WIN8.1\AppData\Roaming\PLSQL Developer
O43 - CFD: 2015/06/21 11:58:40 - [] D -- C:\Users\WIN8.1\AppData\Roaming\QuickScan
O43 - CFD: 2015/07/13 04:42:03 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Skype
O43 - CFD: 2015/07/04 19:26:21 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\Smadav
O43 - CFD: 2015/07/13 16:49:21 - [] D -- C:\Users\WIN8.1\AppData\Roaming\uTorrent
O43 - CFD: 2015/06/09 21:52:27 - [] D -- C:\Users\WIN8.1\AppData\Roaming\vlc
O43 - CFD: 2015/01/21 20:36:12 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\WinRAR
O43 - CFD: 2015/01/21 20:33:11 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Yahoo!
O43 - CFD: 2015/07/13 16:48:58 - [] D -- C:\Users\WIN8.1\AppData\Roaming\ZHP
O43 - CFD: 2015/07/13 02:00:12 - [] D -- C:\Users\WIN8.1\AppData\Local\Adobe
O43 - CFD: 2015/01/21 19:28:48 - [0] SHD -- C:\Users\WIN8.1\AppData\Local\Application Data
O43 - CFD: 2015/02/13 23:50:13 - [] D -- C:\Users\WIN8.1\AppData\Local\AskPartnerNetwork  =>Toolbar.Ask
O43 - CFD: 2015/06/25 02:45:24 - [0] D -- C:\Users\WIN8.1\AppData\Local\Diagnostics
O43 - CFD: 2015/03/07 13:05:32 - [0] D -- C:\Users\WIN8.1\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/06/12 14:20:27 - [0] SHD -- C:\Users\WIN8.1\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/06/12 14:20:27 - [0] SHD -- C:\Users\WIN8.1\AppData\Local\EmieSiteList
O43 - CFD: 2015/06/12 14:20:27 - [0] SHD -- C:\Users\WIN8.1\AppData\Local\EmieUserList
O43 - CFD: 2015/01/22 15:39:27 - [] D -- C:\Users\WIN8.1\AppData\Local\Google
O43 - CFD: 2015/06/13 20:50:45 - [] D -- C:\Users\WIN8.1\AppData\Local\GWX
O43 - CFD: 2015/01/21 19:28:48 - [0] SHD -- C:\Users\WIN8.1\AppData\Local\Historique
O43 - CFD: 2015/01/21 20:02:35 - [] D -- C:\Users\WIN8.1\AppData\Local\Intel_Corporation
O43 - CFD: 2015/01/21 23:58:28 - [] D -- C:\Users\WIN8.1\AppData\Local\Macromedia
O43 - CFD: 2015/05/27 12:41:57 - [] D -- C:\Users\WIN8.1\AppData\Local\Microsoft
O43 - CFD: 2015/03/10 21:07:28 - [] D -- C:\Users\WIN8.1\AppData\Local\Microsoft Help
O43 - CFD: 2015/03/25 15:04:35 - [] DC -- C:\Users\WIN8.1\AppData\Local\MigWiz
O43 - CFD: 2015/01/21 20:44:13 - [] D -- C:\Users\WIN8.1\AppData\Local\Mozilla
O43 - CFD: 2015/03/29 21:09:55 - [] D -- C:\Users\WIN8.1\AppData\Local\Packages
O43 - CFD: 2015/01/21 19:32:58 - [] D -- C:\Users\WIN8.1\AppData\Local\Programs
O43 - CFD: 2015/01/22 15:58:10 - [] D -- C:\Users\WIN8.1\AppData\Local\Skype
O43 - CFD: 2015/07/13 16:49:21 - [] D -- C:\Users\WIN8.1\AppData\Local\Temp
O43 - CFD: 2015/01/21 19:28:48 - [0] SHD -- C:\Users\WIN8.1\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/01/24 15:20:49 - [] D -- C:\Users\WIN8.1\AppData\Local\VirtualStore
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/03/15 12:52:38 - [] RD -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/02/20 11:46:35 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks
O43 - CFD: 2015/01/22 23:34:23 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
O43 - CFD: 2015/02/14 14:32:16 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2013/08/22 17:36:32 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/03/23 14:28:16 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2015/03/01 22:34:20 - [0] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
O43 - CFD: 2015/06/13 10:22:31 - [] RD -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/01/21 20:35:54 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
O43 - CFD: 2015/01/21 20:33:20 - [] D -- C:\Users\WIN8.1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Liste des pilotes du système (SDL) (O58) (52) - 16s
O58 - SDL:2013/08/22 14:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys   [108896]
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra - PMC-Sierra Storport  Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys   [782176]
O58 - SDL:2013/08/22 14:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys   [79200]
O58 - SDL:2013/08/22 14:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys   [259424]
O58 - SDL:2013/08/22 14:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys   [25952]
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys   [114016]
O58 - SDL:2013/09/11 18:44:04 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\drivers\athwbx.sys   [3855872]
O58 - SDL:2013/08/13 01:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2  Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys   [17624]
O58 - SDL:2013/10/23 02:46:24 A . (.Qualcomm Atheros - Qualcomm Atheros BtFilter Driver.) -- C:\Windows\System32\drivers\btfilter.sys   [596168]
O58 - SDL:2013/08/22 14:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys   [531296]
O58 - SDL:2013/01/24 16:12:08 A . (.OSR Open Systems Resources, Inc. - Airplane Mode Switch Driver.) -- C:\Windows\System32\drivers\DellRbtn.sys   [10752]
O58 - SDL:2014/09/13 20:06:52 A . (.eagleGet - eagleGet Network Filter.) -- C:\Windows\System32\drivers\eagleGet.sys   [79184]
O58 - SDL:2013/08/22 14:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys   [3357024]
O58 - SDL:2015/02/24 17:52:40 A . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\drivers\gzflt.sys   [160544]
O58 - SDL:2013/08/22 14:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys   [64352]
O58 - SDL:2013/07/30 20:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys   [24568]
O58 - SDL:2013/07/25 21:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys   [99320]
O58 - SDL:2013/08/08 13:17:30 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver.) -- C:\Windows\System32\drivers\iaLPSS_GPIO.sys   [24568]
O58 - SDL:2013/08/08 13:17:30 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver.) -- C:\Windows\System32\drivers\iaLPSS_I2C.sys   [99320]
O58 - SDL:2013/09/20 14:41:20 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStorA.sys   [630632]
O58 - SDL:2013/08/10 02:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\Windows\System32\drivers\iaStorAV.sys   [651248]
O58 - SDL:2013/08/22 14:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys   [412000]
O58 - SDL:2014/11/29 02:37:06 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys   [180648]
O58 - SDL:2013/11/13 17:34:47 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys   [4208640]
O58 - SDL:2013/10/28 12:13:24 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys   [449496]
O58 - SDL:2013/10/29 03:08:35 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\intelaud.sys   [39320]
O58 - SDL:2013/10/29 03:08:35 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\iwdbus.sys   [27032]
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys   [109408]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys   [93536]
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3.sys   [81760]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys   [82784]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys   [56672]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys   [575840]
O58 - SDL:2013/08/22 14:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys   [63840]
O58 - SDL:2013/10/14 08:03:14 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys   [12537120]
O58 - SDL:2013/08/22 14:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys   [150368]
O58 - SDL:2013/08/22 14:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys   [168288]
O58 - SDL:2013/08/15 08:28:42 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\Windows\System32\drivers\Rt630x64.sys   [830680]
O58 - SDL:2014/03/25 12:46:28 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys   [3903320]
O58 - SDL:2013/08/08 10:27:54 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\drivers\RtsUVStor.sys   [329944]
O58 - SDL:2013/08/22 17:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys   [23040]
O58 - SDL:2013/08/22 14:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys   [44896]
O58 - SDL:2013/08/22 14:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys   [81760]
O58 - SDL:2014/01/22 09:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys   [108800]
O58 - SDL:2014/01/22 09:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudmdm.sys   [206080]
O58 - SDL:2013/08/22 14:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys   [31072]
O58 - SDL:2013/08/22 14:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\tap0901.sys   [40664]
O58 - SDL:2013/09/16 10:20:12 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriverx64.sys   [99288]
O58 - SDL:2014/10/15 17:14:12 A . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\Windows\System32\drivers\trufos.sys   [452040]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys   [19808]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys   [168800]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS   [305504]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (18) - 168s
O61 - LFC: 2015/07/07 22:15:15 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\Q93XXB1B\bdav_localization[1].exe   [0]
O61 - LFC: 2015/07/07 22:15:14 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\Q93XXB1B\bdav_win7_commonfilesfolder[1].exe   [0]
O61 - LFC: 2015/07/07 22:15:14 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\Q93XXB1B\bdav_winxp_winvista_win7_system32[1].exe   [0]
O61 - LFC: 2015/07/07 22:16:35 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\Q93XXB1B\threatscanner[1].exe   [7829344]
O61 - LFC: 2015/07/07 22:15:14 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\NEVOX860\antiphishing[1].exe   [0]
O61 - LFC: 2015/07/07 22:15:15 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\NEVOX860\bdav_win8_systemfolder[1].exe   [0]
O61 - LFC: 2015/07/07 22:15:14 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\NEVOX860\bdav_winxp_winvista_win7_programfilesfolder[1].exe   [0]
O61 - LFC: 2015/07/07 22:14:35 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\NEVOX860\installerpackage[1].exe   [9334184]
O61 - LFC: 2015/07/07 22:15:14 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\D4XKID9Q\bdav_winvista_win7_programfilesfolder[1].exe   [0]
O61 - LFC: 2015/07/07 22:15:14 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\D4XKID9Q\bdav_winxp_winvista_win7_systemfolder[1].exe   [0]
O61 - LFC: 2015/07/07 22:15:15 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\D4XKID9Q\localization_appdata[1].exe   [0]
O61 - LFC: 2015/07/07 22:15:15 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\43PFT34S\bdav_win8_commonfilesfolder[1].exe   [0]
O61 - LFC: 2015/07/07 22:15:14 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\43PFT34S\bdav_win8_programfilesfolder[1].exe   [0]
O61 - LFC: 2015/07/07 22:15:14 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\43PFT34S\bdav_winxp_winvista_win7_commonfilesfolder[1].exe   [0]
O61 - LFC: 2015/07/07 22:26:16 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\43PFT34S\bdrescue[1].exe   [60121904]
O61 - LFC: 2015/07/07 23:11:37 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\43PFT34S\pluginsx64[1].exe   [46461971]
O61 - LFC: 2015/07/12 01:13:55 A . (..) -- C:\Users\WIN8.1\AppData\Local\Microsoft\Windows\INetCache\IE\0O6QMQUM\urlblockindex[2].bin   [16]
O61 - LFC: 2015/07/13 13:25:34 A . (..) -- C:\Users\WIN8.1\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin   [1113849]

---\\ Associations Shell Spawning (O67) (10) - 0s
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <jsfile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

---\\ Menu de démarrage Internet (SMI) (O68) (12) - 1s
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe 
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (3) - 5s
O69 - SBI: prefs.js [WIN8.1 - kw8ky7rt.default] user_pref("extensions.firefox@solutionreal.com.install-event-fired", true);  =>PUP.SolutionReal
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {DECA3892-BA8F-44b8-A993-A466AD694AE4} [DefaultScope] - (Yahoo! Search) - http://fr.search.yahoo.com/

---\\ Enumère les services démarrés par Svchost (SSS) (O83) (36) - 5s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [214528]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll   [156160]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll   [156160]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll   [329216]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [1360896]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [1084416]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll   [926208]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll   [31744]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [110080]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll   [151040]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [110592]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll   [1265152]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll   [230400]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll   [71168]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [135168]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll   [225280]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll   [339968]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll   [101376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [348672]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll   [521728]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\system32\wlidsvc.dll   [1639424]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll   [59392]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll   [206848]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\ncasvc.dll   [166400]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll   [102912]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll   [542208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [226816]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\sens.dll   [73728]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll   [452608]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll   [313344]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll   [3678720]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll   [933376]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [640000]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll   [187904]
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filt.) -- C:\Windows\System32\KeyboardFilterSvc.dll   [92992]

---\\ Liste des exceptions du parefeu (FirewallRules) (O87) (18) - 7s
O87 - FAEL: "{812B1A95-32DE-43FB-B883-54801B041D75}" [In-None-P6-TRUE] .(. - KMS GUI ELDI.) -- C:\Program Files\KMSpico\KMSELDI.exe  =>PUA.KMSpico
O87 - FAEL: "{D49000F9-9DE4-448A-BE3A-4384DECA104F}" [In-None-P17-TRUE] .(. - KMS GUI ELDI.) -- C:\Program Files\KMSpico\KMSELDI.exe  =>PUA.KMSpico
O87 - FAEL: "{B7997D71-46CB-4323-B2B9-7AADDABA347E}" [In-None-P6-TRUE] .(. - Service_KMS.) -- C:\Program Files\KMSpico\Service_KMS.exe  =>PUA.KMSpico
O87 - FAEL: "{CFCC8B56-B020-48FD-BA4F-0545F7924984}" [In-None-P17-TRUE] .(. - Service_KMS.) -- C:\Program Files\KMSpico\Service_KMS.exe  =>PUA.KMSpico
O87 - FAEL: "TCP Query User{12CB04AE-AFF3-480B-AE48-FBFA88B4DFA9}C:\program files (x86)\pro evolution soccer 2013\pes2013.exe" [In-None-P6-TRUE] .(.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2013.) -- C:\program files (x86)\pro evolution soccer 2013\pes2013.exe
O87 - FAEL: "UDP Query User{74894CED-862E-490C-8250-8C51EC85E5C4}C:\program files (x86)\pro evolution soccer 2013\pes2013.exe" [In-None-P17-TRUE] .(.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2013.) -- C:\program files (x86)\pro evolution soccer 2013\pes2013.exe
O87 - FAEL: "TCP Query User{AE541D2E-A547-46FA-A925-21D9F8E701ED}C:\program files (x86)\pro evolution soccer 2013\pes2013.exe" [In-None-P6-TRUE] .(.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2013.) -- C:\program files (x86)\pro evolution soccer 2013\pes2013.exe
O87 - FAEL: "UDP Query User{3A60A025-0BC9-4F93-8408-89D448B03876}C:\program files (x86)\pro evolution soccer 2013\pes2013.exe" [In-None-P17-TRUE] .(.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2013.) -- C:\program files (x86)\pro evolution soccer 2013\pes2013.exe
O87 - FAEL: "{9A353316-F4C3-4DCB-B5FE-43AED2583847}" [In-None-P6-TRUE] .(.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2013.) -- C:\Program Files (x86)\PES 13\Pro Evolution Soccer.exe
O87 - FAEL: "{5AB38104-0792-46FE-A18C-5FB8CD04BBFE}" [In-None-P17-TRUE] .(.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2013.) -- C:\Program Files (x86)\PES 13\Pro Evolution Soccer.exe
O87 - FAEL: "{D5192172-DDC4-434B-AF93-3C02E6CA3871}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\WIN8.1\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{2C844383-63D8-468A-BA94-CD99506893A7}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\WIN8.1\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{9F2B07A7-C01E-47F1-8F23-8A8D6363C12F}" [In-None-P6-TRUE] .(. - AutoPico.) -- C:\Program Files\KMSpico\AutoPico.exe  =>PUA.KMSpico
O87 - FAEL: "{29CD617D-CAAC-4498-8B32-426D22B7F27C}" [In-None-P17-TRUE] .(. - AutoPico.) -- C:\Program Files\KMSpico\AutoPico.exe  =>PUA.KMSpico
O87 - FAEL: "{9B28762D-1255-4AE2-ACE1-3AC8E9E5D4E9}" [In-None-P6-TRUE] .(. - Service_KMS.) -- C:\Program Files\KMSpico\Service_KMS.exe  =>PUA.KMSpico
O87 - FAEL: "{6C4CC4D7-8D0D-40FB-A184-043794A122B1}" [In-None-P17-TRUE] .(. - Service_KMS.) -- C:\Program Files\KMSpico\Service_KMS.exe  =>PUA.KMSpico
O87 - FAEL: "{D1D8AB68-FE18-4941-8CC6-36E4B476465F}" [In-None-P6-TRUE] .(. - AutoPico.) -- C:\Program Files\KMSpico\AutoPico.exe  =>PUA.KMSpico
O87 - FAEL: "{92A10F9F-91E7-4CDA-8A47-E97712D9A0C7}" [In-None-P17-TRUE] .(. - AutoPico.) -- C:\Program Files\KMSpico\AutoPico.exe  =>PUA.KMSpico

---\\ Enumère les codes produits des logiciels (PUC) (O90) (1) - 1s
O90 - PUC: "D22545240535A600677A7AC597C0D100" . (.Search App by Ask.) -- C:\Windows\Installer\{4254522D-5350-006A-76A7-A75C790C1D00}\ToolbarIcon.exe  =>PUP.Optional.BrowserTabSearch  =>PUP.Optional.BrowserTabSearch

---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) (1) - 4s
[MD5.] [WIS][2015/06/05 04:27:39] (.APN, LLC - Ask.com ® - Install Builder.) -- C:\Windows\Installer\308d7.msi   [442368]  =>PUP.Optional.Bandoo

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) (15) - 33s
SS - Demand [2015/07/08 22:48:47] [  268464]  Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - Auto   [2009/11/17 16:14:26] [   98208]  Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
SR - Auto   [2015/04/28 01:05:36] [  178568]  Service de mise à jour Ask (APNMCP) . (.APN LLC..) - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
SS - Demand [2013/11/19 04:21:53] [  279024]  Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe
SR - Auto   [2014/09/13 20:07:12] [  229376]  egGetSvc (egGetSvc) . (.Copyright (C) eagleGet 2014.) - C:\Program Files (x86)\EagleGet\EGMonitor.exe
SR - Auto   [2009/08/27 18:09:10] [ 1253376]  FABS - Helping agent for MAGIX media database (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
SS - Demand [2008/08/07 12:10:02] [ 3276800]  Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) . (.MAGIX®.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
SS - Auto   [2015/01/22 15:31:28] [  107912]  Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2015/01/22 15:31:28] [  107912]  Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2005/04/04 01:41:10] [   69632]  InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SS - Demand [2013/02/16 02:34:06] [  115608]  Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - Auto   [// ::] [  922912]  NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - Auto   [2014/01/08 08:12:46] [  290520]  Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
SS - Auto   [2013/11/13 00:08:04] [  686592]  Service KMSELDI (Service KMSELDI) . (...) - C:\Program Files\KMSpico\Service_KMS.exe
SS - Auto   [2015/02/18 20:11:32] [  315488]  Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe

---\\ Scan Additionnel (O88) (28) - 0s
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe  =>Toolbar.Ask
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe  =>Toolbar.Ask
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bbae01d2-61fd-4f12-befc-202b09dc09c0}  =>PUP.SolutionReal
HKLM\SYSTEM\CurrentControlSet\Services\APNMCP  =>Toolbar.Ask
HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI  =>PUA.KMSpico
C:\Program Files\KMSpico\Service_KMS.exe  =>PUA.KMSpico
C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-kaderboudj48@outlook.fr  =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\AutoPico Daily Restart  =>PUA.KMSpico
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\KMSpico_is1  =>PUA.KMSpico
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Solution Real  =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4254522D-5350-006A-76A7-A75C790C1D00}  =>PUP.Optional.BrowserTabSearch
HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork  =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Solution Real  =>PUP.Optional.Sambreel
HKCU\SOFTWARE\AskPartnerNetwork  =>Toolbar.Ask
HKCU\SOFTWARE\InstallCore  =>PUP.Optional.InstallCore
HKCU\SOFTWARE\Solution Real  =>PUP.Optional.Sambreel
C:\Program Files (x86)\AskPartnerNetwork  =>Toolbar.Ask
C:\Program Files (x86)\Solution Real  =>PUP.SolutionReal
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico  =>PUA.KMSpico
C:\ProgramData\AskPartnerNetwork  =>Toolbar.Ask
C:\Users\WIN8.1\AppData\Roaming\OpenCandy  =>PUP.Optional.OpenCandy
C:\Users\WIN8.1\AppData\Local\AskPartnerNetwork  =>Toolbar.Ask
C:\Program Files\KMSpico\KMSELDI.exe  =>PUA.KMSpico
C:\Program Files\KMSpico\AutoPico.exe  =>PUA.KMSpico
C:\Windows\Installer\{4254522D-5350-006A-76A7-A75C790C1D00}\ToolbarIcon.exe  =>PUP.Optional.BrowserTabSearch
HKLM\Software\Classes\Installer\Products\D22545240535A600677A7AC597C0D100  =>PUP.Optional.BrowserTabSearch
HKLM\Software\Classes\Installer\Features\D22545240535A600677A7AC597C0D100  =>PUP.Optional.BrowserTabSearch
C:\Windows\Installer\308d7.msi  =>PUP.Optional.Bandoo

---\\ Récapitulatif des détections trouvées sur votre station (10) - 0s
http://www.nicolascoolman.fr/toolbar-ask/  =>Toolbar.Ask
http://www.nicolascoolman.fr/blog  =>PUP.SolutionReal
http://www.nicolascoolman.fr/blog  =>PUP.Optional.FLVPlayer
http://www.nicolascoolman.fr/pup-kmspico/  =>PUA.KMSpico
http://www.nicolascoolman.fr/pup-crossrider/  =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/blog  =>PUP.Optional.Sambreel
http://www.nicolascoolman.fr/pup-browsertabsearch/  =>PUP.Optional.BrowserTabSearch
http://www.nicolascoolman.fr/adware-installcore/  =>PUP.Optional.InstallCore
http://www.nicolascoolman.fr/adware-opencandy/  =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/adware-bandoo/  =>PUP.Optional.Bandoo

~ End of the scan, 51403 items in 351 seconds (739)(0)()