Untitled

~ ZHPDiag v2016.8.11.131 Par Nicolas Coolman (2016/08/11)
~ Démarré par JEROME (Administrator)  (2016/08/11 13:05:18)
~ Site: https://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version:  Version OK
~ Mode: Scanner
~ Rapport: C:\Users\JEROME\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\JEROME\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Home, 64-bit  (Build 10586)

---\\ Navigateurs Internet (2) - 0s
MFIE: Mozilla Firefox 47.0.1 (x86 fr)
MSIE: Internet Explorer v11.162.10586.0

---\\ Informations sur les produits Windows (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK

---\\ Logiciels de protection (2) - 10s
Malwarebytes Anti-Malware version 2.2.1.1043
Windows Defender  (Activate)

---\\ Surveillance de Logiciels (2) - 11s
Adobe Flash Player 22 NPAPI
Adobe Reader 9

---\\ Logiciels de partage P2P (1) - 11s
Vuze v5.7.2.0

---\\ Informations sur le système (6) - 0s
~ Operating System: AMD64 Family 18 Model 1 Stepping 0, AuthenticAMD
~ Operating System:  64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4173.588 MB (64% free)
System Restore: Activé (Enable)
System drive C: has 45 GB () free of 238 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC-JEROME
~ User Name: JEROME
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 45 GB free of 238 GB  (System)
~ Drive D: has 144 GB free of 238 GB

---\\ Etat du Centre de Sécurité Windows (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (25) - 2s
[MD5.95D730526EF81792CD6848D8D10FAA1C] - 29/01/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [4502352]  =>.Microsoft Windows®
[MD5.0DCB89B1F3689BC6262FF30BBD603171] - 30/10/2015 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392]  =>.Microsoft Corporation
[MD5.CAD491DD9EC00BB841EA407D9C498C4A] - 30/10/2015 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [290856]  =>.Microsoft Windows Publisher®
[MD5.AE6A68A065D4C26AF4BEFAA53623B266] - 29/03/2016 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [2755584]  =>.Microsoft Corporation
[MD5.7B24B823404D53DA4748F21AD2BF04C9] - 16/01/2016 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [584704]  =>.Microsoft Corporation
[MD5.9EEAA1B69DC3FD620AE576CC8F4147DC] - 30/10/2015 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [430592]  =>.Microsoft Corporation
[MD5.9A3E17CDB177913C2A111C80F3D0DBB4] - 29/03/2016 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [686976]  =>.Microsoft Windows®
[MD5.6A7ACABAE92C837F5C1330188EAE36AE] - 29/03/2016 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [535080]  =>.Microsoft Windows®
[MD5.CE50037751671682D1FDBBE7C9B37F4A] - 30/10/2015 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [20480]  =>.Microsoft Corporation
[MD5.70148EFA9A562E7185B75BBE7D376BF7] - 16/01/2016 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [578912]  =>.Microsoft Windows®
[MD5.492B99D2E3D5D7BFD5F0AE1BE7BD37DD] - 30/10/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512]  =>.Microsoft Windows®
[MD5.7F9C7226D743B232907ED2537B8A574F] - 30/10/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672]  =>.Microsoft Corporation
[MD5.82D97776BF982AA143BDC7DFB5054EA8] - 30/10/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [173568]  =>.Microsoft Corporation
[MD5.935823F79CBEDB91637B63D37E3A5A36] - 29/03/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [148480]  =>.Microsoft Corporation
[MD5.84BC034B6BB763733C1949B7B9BAF976] - 30/10/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [79872]  =>.Microsoft Corporation
[MD5.53FDD9E69189E546DE4740F8C4D8AB2F] - 30/10/2015 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688]  =>.Microsoft Corporation
[MD5.9E5E8F2A1996F23B7E9687846AA81B01] - 30/10/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360]  =>.Microsoft Corporation
[MD5.0B3B0C1D86050355676640488FA897D3] - 23/02/2016 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [430944]  =>.Microsoft Windows®
[MD5.F51C02D992A8D6BC5EC4D990F227D4C7] - 30/10/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [279552]  =>.Microsoft Corporation
[MD5.19BD8A88AAC580592668B070AC0727D9] - 29/03/2016 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2152280]  =>.Microsoft Windows®
[MD5.7D0FC96264C0F8F2C1321E33E8EB646C] - 30/10/2015 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768]  =>.Microsoft Corporation
[MD5.E3C82823B22463BC38AA4F8ADA852624] - 23/02/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960]  =>.Microsoft Corporation
[MD5.1DC2CC74B51E4DC4CD5A20C1021E4010] - 30/10/2015 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [173056]  =>.Microsoft Corporation
[MD5.91D3F2A6253EF83EFBD7903028F58C4D] - 16/01/2016 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [118624]  =>.Microsoft Windows®
[MD5.E1F91A727A04C9F8199D04FF3BBBF63C] - 30/10/2015 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [414560]  =>.Microsoft Windows®

---\\ Liste des services NT non Microsoft et non désactivés (6) - 3s
O23 - Service:  (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\WINDOWS\system32\atiesrxx.exe  =>.AMD
O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - Service Fusion Utility.) - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe  =>.Advanced Micro Devices, Inc.
O23 - Service: cFosSpeed System Service (cFosSpeedS) . (.cFos Software GmbH - cFosSpeed Service.) - C:\Program Files\ASRock\XFast LAN\spd.exe  =>.cFos Software GmbH®
O23 - Service:  (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe  =>.Malwarebytes Corporation®
O23 - Service: Mobizen plugin (Mobizen plugin) . (.Rsupport Corporation - Mobizen service.) - D:\DOSSIER\JEROME\MobizenService\MobizenService.exe {44F57ADAADC4DB6C8A965AA99F675F68}  =>.Rsupport Corporation
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe  =>.Skype Software Sarl®

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (10) - 37s

SS - Demand [29/07/2016] [  270016]  Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe  =>.Adobe Systems Incorporated®
SR - Auto   [16/12/2015] [  255472]   (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe  =>.AMD
SR - Auto   [04/08/2015] [  344064]  AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe  =>.Advanced Micro Devices, Inc.
SR - Auto   [19/10/2011] [  395136]  cFosSpeed System Service (cFosSpeedS) . (.cFos Software GmbH.) - C:\Program Files\ASRock\XFast LAN\spd.exe  =>.cFos Software GmbH®
SS - Disabl [10/03/2016] [ 1514464]   (MBAMScheduler) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe  =>.Malwarebytes Corporation®
SS - Auto   [10/03/2016] [ 1136608]   (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe  =>.Malwarebytes Corporation®
SR - Auto   [23/05/2016] [ 3354440]  Mobizen plugin (Mobizen plugin) . (.Rsupport Corporation.) - D:\DOSSIER\JEROME\MobizenService\MobizenService.exe {44F57ADAADC4DB6C8A965AA99F675F68}  =>.Rsupport Corporation
SS - Auto   [23/05/2016] [  324224]  Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe  =>.Skype Software Sarl®
SS - Demand [03/08/2016] [ 1452320]  Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe  =>.Valve®

---\\ Tâches planifiées en automatique (20) - 4s
[MD5.32B31B696CB8E8F380831DFEB80A67E4] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe   [270016] (.Activate.)  =>.Adobe Systems Incorporated®
[MD5.00000000000000000000000000000000] [APT] [AdobeAAMUpdater-1.0-PC-JEROME-JEROME] (...) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (.not file.)   [0] (.Activate.)  =>.Superfluous.Empty
[MD5.27067191BF35D03B7F81E4E6E8111BD3] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files (x86)\CCleaner\CCleaner.exe   [6851288] (.Activate.)  =>.Piriform Ltd®
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineCore] (...) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.)   [0] (.Activate.)  =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.)   [0] (.Activate.)  =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [SystemHealer Monitor] (...) -- C:\Program Files (x86)\SystemHealer\HealerConsole.exe (.not file.)   [0] (.Activate.)  =>PUP.Optional.SystemHealer
[MD5.00000000000000000000000000000000] [APT] [SystemHealer Run Delay] (...) -- C:\Program Files (x86)\SystemHealer\SystemHealer.exe (.not file.)   [0] (.Activate.)  =>PUP.Optional.SystemHealer
[MD5.00000000000000000000000000000000] [APT] [tasklist] (...) -- C:\Users\JEROME\AppData\Roaming\UPUpdata\service72564.exe (.not file.)   [0] (.Activate.)  =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{471E9176-2690-457D-9AE9-B787286ADABC}] (...) -- C:\Program Files\ZipTool\Uninstall.exe (.not file.)   [0] (.Activate.)  =>.Superfluous.Empty
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job  [1002]   =>.Adobe Systems Incorporated®
O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job  [1092]  (.Orphan.)  =>.Superfluous.Orphan
O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job  [1096]  (.Orphan.)  =>.Superfluous.Orphan
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater  [3978]   =>.Adobe Systems Incorporated®
O39 - APT: AdobeAAMUpdater-1.0-PC-JEROME-JEROME - (...) -- C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-PC-JEROME-JEROME  [3614]  (.Orphan.)  =>.Superfluous.Orphan
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\WINDOWS\System32\Tasks\CCleanerSkipUAC  [2872]   =>.Piriform Ltd®
O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore  [3922]  (.Orphan.)  =>.Superfluous.Orphan
O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA  [4154]  (.Orphan.)  =>.Superfluous.Orphan
O39 - APT: SystemHealer Monitor - (...) -- C:\WINDOWS\System32\Tasks\SystemHealer Monitor  [3342]  (.Orphan.)  =>PUP.Optional.SystemHealer
O39 - APT: SystemHealer Run Delay - (...) -- C:\WINDOWS\System32\Tasks\SystemHealer Run Delay  [3412]  (.Orphan.)  =>PUP.Optional.SystemHealer
O39 - APT: tasklist - (...) -- C:\WINDOWS\System32\Tasks\tasklist  [3134]  (.Orphan.)  =>.Superfluous.Orphan

---\\ Processus lancés (15) - 3s
[MD5.BBADD85854BFB5D43C60B7AC8EEA3DBA] - (.AMD - AMD External Events Service Module.) -- C:\Windows\System32\atiesrxx.exe [255472] [PID.1332]  =>.Microsoft Windows Hardware Compatibility Publisher®
[MD5.B12D8F8A42080B955D027EE56F5BD1C3] - (.Advanced Micro Devices, Inc. - Service Fusion Utility.) -- C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064] [PID.1856]  =>.Advanced Micro Devices, Inc.
[MD5.A469854CD303A39162931FA770EA45A2] - (.cFos Software GmbH - cFosSpeed Service.) -- C:\Program Files\ASRock\XFast LAN\spd.exe [395136] [PID.1956]  =>.cFos Software GmbH®
[MD5.6F605558C67FD9657BB44944EB6AFDEB] - (.Rsupport Corporation - Mobizen service.) -- D:\DOSSIER\JEROME\MobizenService\MobizenService.exe [3354440] [PID.2036] {44F57ADAADC4DB6C8A965AA99F675F68}  =>.Rsupport Corporation
[MD5.9E3E5645FAB90906D28DBE1CA2FA5D4E] - (.Rsupport corporation - MobizenTray.) -- D:\DOSSIER\JEROME\MobizenService\MobizenTray.exe [789320] [PID.2792] {44F57ADAADC4DB6C8A965AA99F675F68}  =>.Rsupport Corporation
[MD5.B3AB2D5B98E67EC56ED4EB9D2A3199BF] - (.AMD - AMD External Events Client Module.) -- C:\Windows\System32\atieclxx.exe [683504] [PID.2140]  =>.Microsoft Windows Hardware Compatibility Publisher®
[MD5.8BB7EC71029066CF86B2E674A68A816F] - (...) -- D:\DOSSIER\JEROME\MobizenService\dat\adb.exe [1016104] [PID.2224]  =>.Rsupport Co., Ltd.®
[MD5.C43D50453404EF1C6801EFFC2492A202] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13307496] [PID.5384]  =>.Realtek Semiconductor Corp®
[MD5.669072AD8B65B2B55CA29E58A68AEF35] - (.cFos Software GmbH - cFosSpeed Window.) -- C:\Program Files\ASRock\XFast LAN\cfosspeed.exe [1441152] [PID.5572]  =>.cFos Software GmbH®
[MD5.D29C3F2BEA792CC2196AF7B2BEB9E899] - (.Creative Technology Ltd - THXAudioNB.) -- C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe [909824] [PID.5832]  =>.Creative Technology Ltd
[MD5.13D47B1FCE71DE8B8B95F6AFC3166852] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe [307400] [PID.4632]  =>.Advanced Micro Devices, Inc.®
[MD5.942E02374F3AE65175EF6FAC30C9246E] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Host application.) -- C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe [307912] [PID.5752]  =>.Advanced Micro Devices, Inc.®
[MD5.C3EF139378171D8BB852BEB6E759B7F1] - (...) -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe [144384] [PID.6596]
[MD5.794CE28547E38EB2AA09D8BEDA03F611] - (.Piriform Ltd - CCleaner.) -- C:\Program Files (x86)\CCleaner\CCleaner64.exe [8891608] [PID.4924]  =>.Piriform Ltd®
[MD5.BD497747E5ACE0894B3B424111B3B996] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\JEROME\Downloads\ZHPDiag3.exe [2287104] [PID.4268]  =>.Nicolas Coolman

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (16) - 17s
M0 - MFSP: prefs.js [JEROME - aongkh82.default] http://www.coldsearch.com/?uid=82699e64-ca8e-4093-b951-8b513b1d7185   =>PUP.Optional.ColdSearch
P2 - EXT FILE: (.YouTube Unblocker Plus - Gesperrte YouTube-Videos ansehen..) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\aongkh82.default\extensions\addon@ytunblocker.com.xpi
P2 - EXT FILE: (.Link64 - Youtube and more - Easy Video Download.) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\aongkh82.default\extensions\vdpure@link64.xpi  =>.Link64
P2 - EXT FILE: (.iMEGA - This add-on is intended to ease the li.) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\aongkh82.default\extensions\{065ee92a-ad57-42a2-b6d5-466b6fd8e24d}.xpi
P2 - EXT FILE: (.Youtube Converter MP3 - Youtube Downloader MP3 Converter.) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\aongkh82.default\extensions\{a3a5c777-f583-4fef-9380-ab4add1bc2a5}.xpi
P2 - EXT FILE: (.Adblock Plus - Ads were yesterday!.) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\aongkh82.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi  =>.Adblock Plus
P2 - EXT FILE: (.Font Finder - Get all CSS styles of selected text..) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\6lyp3gv5.Utilisateur par défaut\extensions\fontfinder@bendodson.com.xpi
P2 - EXT FILE: (.Skyyart Live Extension - Pour savoir quand Skyyart est en Live .) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\6lyp3gv5.Utilisateur par défaut\extensions\jid1-DBhZXGKd3UzWCg@jetpack.xpi
P2 - EXT FILE: (.Instant Translate - Translation, text-to-speech, dictionar.) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\6lyp3gv5.Utilisateur par défaut\extensions\jid1-TMndP6cdKgxLcQ@jetpack.xpi
P2 - EXT FILE: (.Adblock Plus - Ads were yesterday!.) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\6lyp3gv5.Utilisateur par défaut\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi  =>.Adblock Plus
P2 - EXT: (. - Youtube Downloader - 4K Download.) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\6lyp3gv5.Utilisateur par défaut\extensions\paulsaintuzb@gmail.com
P2 - EXT: (.Eugene G. Suslikov - FireShot.) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\6lyp3gv5.Utilisateur par défaut\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}  =>.Eugene G. Suslikov
P2 - FPN: [HKCU] [ubisoft.com/uplaypc] - (...) -- C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll  =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll  =>.Google Inc.
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll  =>.Google Inc.

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (17) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan  =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.)  =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.)  =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (45)

---\\ Internet Explorer, Barre d'outil (1) - 0s
O3 - Toolbar: 0xE3EFEB7F196B494398D2FFB09D4B49CA00EE030000 - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} . (...) --  (.not file.)

---\\ Applications lancées au démarrage du système (26) - 2s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe  =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [XFast LAN] . (.cFos Software GmbH - cFosSpeed Window.) -- C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe  =>.cFos Software GmbH®
O4 - HKLM\..\Run: [THXCfg64] . (.Creative Technology Ltd. - .) -- C:\Windows\System32\THXCfg64.dll  =>.Creative Technology Ltd.
O4 - HKLM\..\Run: [XboxStat] . (.Microsoft Corporation - XBoxStat.exe.) -- C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe  =>.Microsoft Corporation®
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\JEROME\AppData\Local\Microsoft\OneDrive\OneDrive.exe  =>.Microsoft Corporation®
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe  =>.Valve®
O4 - HKCU\..\Run: [AdobeBridge]  (Orphan)
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe  =>.Skype Software Sarl®
O4 - HKCU\..\Run: [Speech Recognition] . (.Microsoft Corporation - Reconnaissance vocale.) -- C:\Windows\Speech\Common\sapisvr.exe  =>.Microsoft Corporation
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files (x86)\CCleaner\CCleaner64.exe  =>.Piriform Ltd®
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\JEROME\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64] C:\Users\JEROME\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64 (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe  =>.Adobe Systems, Incorporated®
O4 - HKLM\..\Wow6432Node\Run: [THX TruStudio NB Settings] . (.Creative Technology Ltd - THXAudioNB.) -- C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe  =>.Creative Technology Ltd
O4 - HKLM\..\Wow6432Node\Run: [UpdReg] . (.Creative Technology Ltd. - Creative UpdReg.) -- C:\Windows\Updreg.EXE  =>.Creative Technology Ltd.
O4 - HKLM\..\Wow6432Node\Run: [WinampAgent] . (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe  =>.Nullsoft Inc.®
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe  =>.Oracle America, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe  =>.Advanced Micro Devices, Inc.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe  =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe  =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-683536479-816015065-891469441-1000\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\JEROME\AppData\Local\Microsoft\OneDrive\OneDrive.exe  =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-683536479-816015065-891469441-1000\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe  =>.Valve®
O4 - HKUS\S-1-5-21-683536479-816015065-891469441-1000\..\Run: [AdobeBridge]  (Orphan)
O4 - HKUS\S-1-5-21-683536479-816015065-891469441-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe  =>.Skype Software Sarl®
O4 - HKUS\S-1-5-21-683536479-816015065-891469441-1000\..\Run: [Speech Recognition] . (.Microsoft Corporation - Reconnaissance vocale.) -- C:\Windows\Speech\Common\sapisvr.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-683536479-816015065-891469441-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files (x86)\CCleaner\CCleaner64.exe  =>.Piriform Ltd®
O4 - HKUS\S-1-5-21-683536479-816015065-891469441-1000\..\RunOnce: [Uninstall C:\Users\JEROME\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64] C:\Users\JEROME\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64 (.not file.)

---\\ Raccourcis Global Startup (67) - 11s
O4 - GS\Desktop [Administrateur]: audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) D:\DOSSIER\JEROME\Audacity\audacity.exe  =>.The Audacity Team
O4 - GS\Desktop [Administrateur]: Cheat Engine.lnk . (...) C:\Program Files (x86)\Cheat Engine 6.5\Cheat Engine.exe  =>.Cheat Engine®
O4 - GS\Desktop [Administrateur]: Curse.lnk . (.Curse, Inc - Curse.) C:\Users\JEROME\AppData\Roaming\Curse Client\Bin\Curse.exe  =>.Curse, Inc.®
O4 - GS\Desktop [Administrateur]: Just Cause 2.lnk . (...) D:\Just Cause 2\JustCause2.exe
O4 - GS\Desktop [Administrateur]: osu!.lnk . (.ppy - osu!.) D:\DOSSIER\JEROME\osu!\osu!.exe  =>.Dean Herbert®
O4 - GS\Desktop [Administrateur]: pewdiepie legend of brofist.lnk . (...) D:\DOSSIER\JEROME\PewDiePie Legend of the Brofist\LAUNCHER.exe
O4 - GS\Desktop [Administrateur]: shutdown.lnk . (...) D:\DOSSIER\JEROME\shutdown.exe
O4 - GS\Desktop [Administrateur]: TeamSpeak 3 Client.lnk . (.TeamSpeak Systems GmbH - TeamSpeak 3 Client.) C:\Users\JEROME\AppData\Local\TeamSpeak 3 Client\ts3client_win32.exe  =>.TeamSpeak Systems GmbH®
O4 - GS\Desktop [Administrateur]: universe sandbox.lnk . (...) D:\DOSSIER\JEROME\Universe.Sandbox.2.Alpha.19\LAUNCHER.exe
O4 - GS\Desktop [Administrateur]: Uplay.lnk . (.Ubisoft - Uplay launcher.) D:\DOSSIER\LOGICIEL\Ubisoft\Ubisoft Game Launcher\Uplay.exe  =>.Ubisoft Entertainment Sweden AB®
O4 - GS\Desktop [Administrateur]: YoutubersLife.lnk . (...) D:\DOSSIER\JEROME\Youtubers.Life.v0.7.8\YoutubersLife.exe  =>.U-Play Studios®
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\JEROME\AppData\Roaming\ZHP\ZHPDiag3.exe  =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (...) C:\Program Files (x86)\SpeedSearchesbnd\ShortCccBoost.exe
O4 - GS\Quicklaunch [Administrateur]: Vuze.lnk . (...) C:\Program Files (x86)\Vuze\Azureus.exe
O4 - GS\Quicklaunch [Administrateur]: XSplit Broadcaster.lnk . (.SplitMediaLabs - XSplit Broadcaster.) D:\DOSSIER\JEROME\xsplit\XSplit.Core.exe  =>.SplitMediaLabs
O4 - GS\sendTo [Administrateur]: Format Factory.lnk . (.Free Time - FormatFactory.) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe  =>.Free Time
O4 - GS\sendTo [Administrateur]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe  =>.Skype Software Sarl®
O4 - GS\TaskBar [Administrateur]: AdobeAfterEffectsPortable - Raccourci.lnk . (.Punsh.at.ua (Vladimir aka punsh) - Adobe After Effects CS6 Portable.) D:\DOSSIER\LOGICIEL\After Effect CS6 by WiBioZzYT\AdobeAfterEffectsPortable.exe
O4 - GS\TaskBar [Administrateur]: CINEMA 4D R14 64 Bit.lnk . (.MAXON Computer GmbH - .) C:\Program Files (x86)\MAXON\CINEMA 4D R14\CINEMA 4D 64 Bit.exe  =>.MAXON Computer GmbH
O4 - GS\TaskBar [Administrateur]: firefox - Raccourci.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe  =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: LibreOffice 5.0.lnk . (.The Document Foundation - LibreOffice.) D:\DOSSIER\LOGICIEL\libre office\program\soffice.exe  =>.The Document Foundation®
O4 - GS\TaskBar [Administrateur]: MEGAsync.lnk . (.Mega Limited - MEGAsync.) C:\Users\JEROME\AppData\Local\MEGAsync\MEGAsync.exe  =>.Mega Limited®
O4 - GS\TaskBar [Administrateur]: minecraft.lnk . (.Mojang - Minecraft launcher.) C:\Program Files (x86)\Minecraft\MinecraftLauncher.exe  =>.Mojang AB®
O4 - GS\TaskBar [Administrateur]: Mobizen.lnk . (.RSUPPORT Co., Ltd. - Rsupport Mobizen Mirroring.) D:\DOSSIER\JEROME\Mobizen\Mobizen.exe {44F57ADAADC4DB6C8A965AA99F675F68}
O4 - GS\TaskBar [Administrateur]: PhotoshopCS6Portable - Raccourci.lnk . (.PainteR - Adobe Photoshop CS6 Pre-Release Portable.) D:\DOSSIER\LOGICIEL\AdobePhotoshopCS6Portable\PhotoshopCS6Portable.exe  =>.PainteR
O4 - GS\TaskBar [Administrateur]: vegas pro 13.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13\vegas130.exe  =>.Sony Creative Software Inc.
O4 - GS\TaskBar [Administrateur]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files (x86)\Winamp\winamp.exe  =>.Nullsoft Inc.®
O4 - GS\Startup [Administrateur]: Curse.lnk . (.Curse, Inc - Curse.) C:\Users\JEROME\AppData\Roaming\Curse Client\Bin\Curse.exe  =>.Curse, Inc.®
O4 - GS\Startup [Administrateur]: MEGAsync.lnk . (.Mega Limited - MEGAsync.) C:\Users\JEROME\AppData\Local\MEGAsync\MEGAsync.exe  =>.Mega Limited®
O4 - GS\Desktop [JEROME]: audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) D:\DOSSIER\JEROME\Audacity\audacity.exe  =>.The Audacity Team
O4 - GS\Desktop [JEROME]: Cheat Engine.lnk . (...) C:\Program Files (x86)\Cheat Engine 6.5\Cheat Engine.exe  =>.Cheat Engine®
O4 - GS\Desktop [JEROME]: Curse.lnk . (.Curse, Inc - Curse.) C:\Users\JEROME\AppData\Roaming\Curse Client\Bin\Curse.exe  =>.Curse, Inc.®
O4 - GS\Desktop [JEROME]: Just Cause 2.lnk . (...) D:\Just Cause 2\JustCause2.exe
O4 - GS\Desktop [JEROME]: osu!.lnk . (.ppy - osu!.) D:\DOSSIER\JEROME\osu!\osu!.exe  =>.Dean Herbert®
O4 - GS\Desktop [JEROME]: pewdiepie legend of brofist.lnk . (...) D:\DOSSIER\JEROME\PewDiePie Legend of the Brofist\LAUNCHER.exe
O4 - GS\Desktop [JEROME]: shutdown.lnk . (...) D:\DOSSIER\JEROME\shutdown.exe
O4 - GS\Desktop [JEROME]: TeamSpeak 3 Client.lnk . (.TeamSpeak Systems GmbH - TeamSpeak 3 Client.) C:\Users\JEROME\AppData\Local\TeamSpeak 3 Client\ts3client_win32.exe  =>.TeamSpeak Systems GmbH®
O4 - GS\Desktop [JEROME]: universe sandbox.lnk . (...) D:\DOSSIER\JEROME\Universe.Sandbox.2.Alpha.19\LAUNCHER.exe
O4 - GS\Desktop [JEROME]: Uplay.lnk . (.Ubisoft - Uplay launcher.) D:\DOSSIER\LOGICIEL\Ubisoft\Ubisoft Game Launcher\Uplay.exe  =>.Ubisoft Entertainment Sweden AB®
O4 - GS\Desktop [JEROME]: YoutubersLife.lnk . (...) D:\DOSSIER\JEROME\Youtubers.Life.v0.7.8\YoutubersLife.exe  =>.U-Play Studios®
O4 - GS\Desktop [JEROME]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\JEROME\AppData\Roaming\ZHP\ZHPDiag3.exe  =>.Nicolas Coolman
O4 - GS\Quicklaunch [JEROME]: Google Chrome.lnk . (...) C:\Program Files (x86)\SpeedSearchesbnd\ShortCccBoost.exe
O4 - GS\Quicklaunch [JEROME]: Vuze.lnk . (...) C:\Program Files (x86)\Vuze\Azureus.exe
O4 - GS\Quicklaunch [JEROME]: XSplit Broadcaster.lnk . (.SplitMediaLabs - XSplit Broadcaster.) D:\DOSSIER\JEROME\xsplit\XSplit.Core.exe  =>.SplitMediaLabs
O4 - GS\sendTo [JEROME]: Format Factory.lnk . (.Free Time - FormatFactory.) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe  =>.Free Time
O4 - GS\sendTo [JEROME]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe  =>.Skype Software Sarl®
O4 - GS\TaskBar [JEROME]: AdobeAfterEffectsPortable - Raccourci.lnk . (.Punsh.at.ua (Vladimir aka punsh) - Adobe After Effects CS6 Portable.) D:\DOSSIER\LOGICIEL\After Effect CS6 by WiBioZzYT\AdobeAfterEffectsPortable.exe
O4 - GS\TaskBar [JEROME]: CINEMA 4D R14 64 Bit.lnk . (.MAXON Computer GmbH - .) C:\Program Files (x86)\MAXON\CINEMA 4D R14\CINEMA 4D 64 Bit.exe  =>.MAXON Computer GmbH
O4 - GS\TaskBar [JEROME]: firefox - Raccourci.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe  =>.Mozilla Corporation®
O4 - GS\TaskBar [JEROME]: LibreOffice 5.0.lnk . (.The Document Foundation - LibreOffice.) D:\DOSSIER\LOGICIEL\libre office\program\soffice.exe  =>.The Document Foundation®
O4 - GS\TaskBar [JEROME]: MEGAsync.lnk . (.Mega Limited - MEGAsync.) C:\Users\JEROME\AppData\Local\MEGAsync\MEGAsync.exe  =>.Mega Limited®
O4 - GS\TaskBar [JEROME]: minecraft.lnk . (.Mojang - Minecraft launcher.) C:\Program Files (x86)\Minecraft\MinecraftLauncher.exe  =>.Mojang AB®
O4 - GS\TaskBar [JEROME]: Mobizen.lnk . (.RSUPPORT Co., Ltd. - Rsupport Mobizen Mirroring.) D:\DOSSIER\JEROME\Mobizen\Mobizen.exe {44F57ADAADC4DB6C8A965AA99F675F68}
O4 - GS\TaskBar [JEROME]: PhotoshopCS6Portable - Raccourci.lnk . (.PainteR - Adobe Photoshop CS6 Pre-Release Portable.) D:\DOSSIER\LOGICIEL\AdobePhotoshopCS6Portable\PhotoshopCS6Portable.exe  =>.PainteR
O4 - GS\TaskBar [JEROME]: vegas pro 13.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13\vegas130.exe  =>.Sony Creative Software Inc.
O4 - GS\TaskBar [JEROME]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files (x86)\Winamp\winamp.exe  =>.Nullsoft Inc.®
O4 - GS\Startup [JEROME]: Curse.lnk . (.Curse, Inc - Curse.) C:\Users\JEROME\AppData\Roaming\Curse Client\Bin\Curse.exe  =>.Curse, Inc.®
O4 - GS\Startup [JEROME]: MEGAsync.lnk . (.Mega Limited - MEGAsync.) C:\Users\JEROME\AppData\Local\MEGAsync\MEGAsync.exe  =>.Mega Limited®
O4 - GS\CommonDesktop [Public]: Action!.lnk . (.Mirillis Ltd. - Action!.) C:\Program Files (x86)\Mirillis\Action!\Action.exe  =>.Mirillis®
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files (x86)\CCleaner\CCleaner64.exe  =>.Piriform Ltd®
O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes - Malwarebytes Anti-Malware.) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe  =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: Red Bull Air Race.lnk . (.Slightly Mad Studios - Red Bull Air Race - The Game.) D:\DOSSIER\JEROME\Red Bull Air Race béta fermé\RedBullAirRace.exe {031C834975D99BEE06BDEC935414CD33}  =>.Slightly Mad Studios
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\WINDOWS\Installer\{FC965A47-4839-40CA-B618-18F486F042C6}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper.) C:\Program Files (x86)\Steam\Steam.exe  =>.Valve®
O4 - GS\CommonDesktop [Public]: Vuze.lnk . (.Azureus Software, Inc - Vuze Launcher.) D:\DOSSIER\JEROME\Vuze\Azureus.exe  =>.Azureus Software, Inc.®
O4 - GS\Programs [Public]: Curse.lnk . (.Curse, Inc - Curse.) C:\Users\JEROME\AppData\Roaming\Curse Client\Bin\Curse.exe  =>.Curse, Inc.®
O4 - GS\Programs [Public]: osu!.lnk . (.ppy - osu!.) D:\DOSSIER\JEROME\osu!\osu!.exe  =>.Dean Herbert®

---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{13450225-e8a1-419e-9bec-271b384fcdc9}: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\System\CCS\Services\Tcpip\..\{13450225-e8a1-419e-9bec-271b384fcdc9}: DhcpNameServer = 192.168.1.1 192.168.1.1

---\\ Protocole additionnel (23) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll  =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll  =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll  =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll  =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll  =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll  =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll  =>.Microsoft Corporation
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Photo Gallery Album Download Protocol Handl.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll  =>.Microsoft Corporation®
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll  =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll  =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll  =>.Microsoft Corporation

---\\ Logiciels installés (83) - 28s
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {77DCDCE3-2DED-62F3-8154-05E745472D07}  =>.Adobe Systems Incorporated
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1  =>.Adobe Systems Incorporated®
O42 - Logiciel: Action! - (.Mirillis.) [HKLM][64Bits] -- Mirillis Action!  =>.Mirillis
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {00203668-8170-44A0-BE44-B632FA4D780F}  =>.Adobe Systems Inc.
O42 - Logiciel: Adobe Flash Player 22 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI  =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Photoshop CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}  =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-A90000000001}  =>.Adobe Systems Incorporated
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}  =>.Advanced Micro Devices Inc.
O42 - Logiciel: AMD Catalyst Control Center - (.Nom de votre société.) [HKLM][64Bits] -- {215C3078-DD8E-BAC4-695B-CFECF0C9BBFE}
O42 - Logiciel: AMD Fuel - (.Nom de votre société.) [HKLM][64Bits] -- {3C0237F9-A94D-B08F-00E5-D47E6EAE2FBA}
O42 - Logiciel: Ashampoo Burning Studio 2015 v.1.15.0 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {91B33C97-21E3-DF34-9630-2EE80DDE1648}_is1  =>.Ashampoo GmbH & Co. KG®
O42 - Logiciel: ASRock App Charger v1.0.5 - (.ASRock Inc..) [HKLM][64Bits] -- ASRock App Charger_is1  =>.ASROCK Incorporation®
O42 - Logiciel: ASRock eXtreme Tuner v0.1.225 - (...) [HKLM][64Bits] -- ASRock eXtreme Tuner_is1  =>.ASROCK Incorporation®
O42 - Logiciel: ASRock XFast RAM v2.0.9 - (.ASRock Inc..) [HKLM][64Bits] -- ASRock XFast RAM_is1  =>.ASROCK Incorporation®
O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0}  =>.Your Company Name
O42 - Logiciel: Blender - (.Blender Foundation.) [HKLM][64Bits] -- {3ABDE236-0A3F-4D0D-BECB-DB67EE21C593}  =>.Blender Foundation
O42 - Logiciel: Boost mode manager - (.RSUPPORT.) [HKLM][64Bits] -- {17154B8D-5829-4ED5-A120-2E03DC6FB0C6}  =>.RSUPPORT
O42 - Logiciel: Brawlhalla - (.Blue Mammoth Games.) [HKLM][64Bits] -- Steam App 291550  =>.Valve®
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner  =>.Piriform Ltd®
O42 - Logiciel: Cheat Engine 6.5 - (.Cheat Engine.) [HKLM][64Bits] -- Cheat Engine 6.5_is1  =>.Cheat Engine®
O42 - Logiciel: CINEMA 4D R14 - (...) [HKLM][64Bits] -- CINEMA 4D R14
O42 - Logiciel: CPUID HWMonitor 1.28 - (...) [HKLM][64Bits] -- CPUID HWMonitor_is1
O42 - Logiciel: Curse - (.Curse.) [HKLM][64Bits] -- {F36ED29E-33E1-48AB-95DA-2498AD41A9A0}  =>.Curse
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}  =>.Microsoft
O42 - Logiciel: EVEREST Ultimate Edition v5.50 - (.Lavalys, Inc..) [HKLM][64Bits] -- EVEREST Ultimate Edition_is1  =>.Lavalys, Inc.
O42 - Logiciel: FormatFactory 2.60 - (.Free Time.) [HKLM][64Bits] -- FormatFactory  =>.Free Time
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B}  =>.Microsoft Corporation
O42 - Logiciel: Garry's Mod - (.Facepunch Studios.) [HKLM][64Bits] -- Steam App 4000  =>.Valve®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}  =>.Google Inc.
O42 - Logiciel: Grand Theft Auto V - (.Rockstar North.) [HKLM][64Bits] -- Steam App 271590  =>.Valve®
O42 - Logiciel: HandBrake 0.10.5 - (...) [HKLM][64Bits] -- HandBrake
O42 - Logiciel: Hotspot Shield 5.4.6 Embedded - (.Buildbot.) [HKLM][64Bits] -- {AF599C42-A2E5-4251-B7EE-4925A1670923}  =>.Buildbot
O42 - Logiciel: Java 8 Update 91 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218091F0}  =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10}  =>.Oracle Corporation
O42 - Logiciel: Just Cause 2 - (...) [HKLM][64Bits] -- Just Cause 2_is1
O42 - Logiciel: LibreOffice 5.0.5.2 - (.The Document Foundation.) [HKLM][64Bits] -- {43D862C3-739D-4FF6-91C0-25612368CC81}  =>.The Document Foundation
O42 - Logiciel: Logitech Gaming Software - (.Logitech Inc..) [HKLM][64Bits] -- {690285C2-2481-44FB-8402-162EA970A6DD}  =>.Logitech Inc.
O42 - Logiciel: Magic Bullet Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- {93488C33-D8D6-472A-83BB-F71603355CF0}  =>.Red Giant Software
O42 - Logiciel: Magic Bullet Suite 64-bit - (.Red Giant Software.) [HKLM][64Bits] -- InstallShield_{93488C33-D8D6-472A-83BB-F71603355CF0}  =>.Red Giant Software
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.1.1043 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1  =>.Malwarebytes
O42 - Logiciel: MEGAsync - (.Mega Limited.) [HKLM][64Bits] -- MEGAsync  =>.Mega Limited®
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE}  =>.Microsoft Corporation
O42 - Logiciel: Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291. - (.Microsoft Corporation.) [HKLM][64Bits] -- {25E80DAA-FD87-DCE5-202C-CC02F6673002}  =>.Microsoft Corporation
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6}  =>.Microsoft Corporation
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}  =>.Microsoft Corporation
O42 - Logiciel: Microsoft Xbox 360 Accessories 1.2 - (.Microsoft.) [HKLM][64Bits] -- {45CD67FD-3218-4207-A0A2-BC41245189E3}  =>.Microsoft
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}  =>.Microsoft Corporation
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 Refresh - (.Microsoft Corporation.) [HKLM][64Bits] -- {D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}  =>.Microsoft Corporation
O42 - Logiciel: Minecraft - (.Mojang.) [HKLM][64Bits] -- {1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}  =>.Mojang
O42 - Logiciel: Mobizen - (.RSUPPORT.) [HKLM][64Bits] -- {BA0D3A44-BCEE-4C8B-BCD4-F7F1E64F41E3}  =>.RSUPPORT
O42 - Logiciel: Mozilla Firefox 47.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 47.0.1 (x86 fr)  =>.Mozilla Corporation®
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}  =>.Microsoft
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}  =>.Microsoft
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}  =>.Microsoft
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer  =>.NVIDIA Corporation
O42 - Logiciel: OCCT 4.4.1 - (.Ocbase.com.) [HKLM][64Bits] -- OCCT  =>.Ocbase.com
O42 - Logiciel: osu! - (.ppy Pty Ltd.) [HKLM][64Bits] -- {d52ac9c8-9da7-4917-a037-c4594c8130eb}  =>.Dean Herbert®
O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A}  =>.Your Company Name
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}  =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}  =>.Realtek Semiconductor Corp®
O42 - Logiciel: Red Bull Air Race - The Game - (.Wingracers Sports Games.) [HKLM][64Bits] -- {6577A275-7D02-4DD9-A619-41FF2E30BB2F}_is1 {031C834975D99BEE06BDEC935414CD33}
O42 - Logiciel: Rocket League - (.Psyonix.) [HKLM][64Bits] -- Steam App 252950  =>.Valve®
O42 - Logiciel: Rockstar Games Social Club - (.Rockstar Games.) [HKLM][64Bits] -- Rockstar Games Social Club  =>.Rockstar Games, Inc.®
O42 - Logiciel: Samsung Kies3 - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {88547073-C566-4895-9005-EBE98EA3F7C7}  =>.Samsung Electronics Co., Ltd.
O42 - Logiciel: Scrap Mechanic - (.Axolot Games.) [HKLM][64Bits] -- Steam App 387990  =>.Valve®
O42 - Logiciel: Skype™ 7.26 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6}  =>.Skype Technologies S.A.
O42 - Logiciel: SpeedFan (remove only) - (...) [HKLM][64Bits] -- SpeedFan
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam  =>.Valve®
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKCU][64Bits] -- TeamSpeak 3 Client  =>.TeamSpeak Systems GmbH
O42 - Logiciel: THX TruStudio - (.Creative Technology Limited.) [HKLM][64Bits] -- {AFB907F5-C0E6-4753-8284-DE955EF86AC2}  =>.Creative Technology Limited
O42 - Logiciel: Toribash - (.Nabi Studios.) [HKLM][64Bits] -- Steam App 248570  =>.Valve®
O42 - Logiciel: TrackMania Nations Forever - (.Nadeo.) [HKLM][64Bits] -- Steam App 11020  =>.Valve®
O42 - Logiciel: Trials Evolution Gold Edition - (.Ubisoft.) [HKLM][64Bits] -- {07D857B8-C956-401D-BC8F-EDA8459AF037}  =>.Ubisoft
O42 - Logiciel: Trials Evolution Gold Edition - (.Ubisoft.) [HKLM][64Bits] -- InstallShield_{07D857B8-C956-401D-BC8F-EDA8459AF037}  =>.Ubisoft
O42 - Logiciel: Vegas Pro 13.0 (64-bit) - (.Sony.) [HKLM][64Bits] -- {D0360940-CCC6-11E3-B9C6-F04DA23A5C58}  =>.Sony
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player  =>.VideoLAN
O42 - Logiciel: Vulkan Run Time Libraries 1.0.3.0 - (.LunarG, Inc..) [HKLM][64Bits] -- VulkanRT1.0.3.0  =>.LunarG, Inc.
O42 - Logiciel: Vuze - (.Azureus Software, Inc..) [HKLM][64Bits] -- 8461-7759-5462-8226-1  =>.Azureus Software, Inc.®
O42 - Logiciel: Why So Evil - (.Zonitron Productions.) [HKLM][64Bits] -- Steam App 331710  =>.Valve®
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp  =>.Nullsoft, Inc
O42 - Logiciel: WinRAR 5.21 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver  =>.win.rar GmbH®
O42 - Logiciel: XFast LAN v6.61 - (.cFos Software GmbH, Bonn.) [HKLM][64Bits] -- XFast LAN  =>.cFos Software GmbH®
O42 - Logiciel: XSplit Broadcaster - (.SplitmediaLabs.) [HKLM][64Bits] -- {7BC30FB1-9AA6-4B0C-8E5A-574EA5B6CB2F}  =>.SplitMediaLabs

---\\ HKCU & HKLM Software Keys (165) - 28s
HKLM\SOFTWARE\Wow6432Node\0CD16C20EDA10A269E88C671FF8F1FB6  =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\360Safe
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AMD
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\Ashampoo
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies
HKLM\SOFTWARE\Wow6432Node\AviSynth
HKLM\SOFTWARE\Wow6432Node\Azureus
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\Creative Tech
HKLM\SOFTWARE\Wow6432Node\ej-technologies
HKLM\SOFTWARE\Wow6432Node\FastCompress-Zip
HKLM\SOFTWARE\Wow6432Node\Fraps
HKLM\SOFTWARE\Wow6432Node\Freemake
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\GOG.com
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\HotspotShield
HKLM\SOFTWARE\Wow6432Node\HotspotShield MSI
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\jhdbca
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\LibreOffice
HKLM\SOFTWARE\Wow6432Node\Logitech
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Mojang
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugin
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MustangUp
HKLM\SOFTWARE\Wow6432Node\Nullsoft
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Open Broadcaster Software
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Rebellion
HKLM\SOFTWARE\Wow6432Node\Red Giant Software
HKLM\SOFTWARE\Wow6432Node\Rockstar Games
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Sony Creative Software
HKLM\SOFTWARE\Wow6432Node\SpeedFan
HKLM\SOFTWARE\Wow6432Node\SplitmediaLabs
HKLM\SOFTWARE\Wow6432Node\The Document Foundation
HKLM\SOFTWARE\Wow6432Node\Ubisoft
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WIN
HKLM\SOFTWARE\Wow6432Node\Wingracers Sports Games
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\0CD16C20EDA10A269E88C671FF8F1FB6  =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AI_RecycleBin
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Ashampoo
HKCU\SOFTWARE\ASRock
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\Automobile
HKCU\SOFTWARE\AutoTime  =>Adware.TopTools
HKCU\SOFTWARE\Azureus
HKCU\SOFTWARE\Blender Foundation
HKCU\SOFTWARE\Boneloaf
HKCU\SOFTWARE\BugSplat
HKCU\SOFTWARE\Caphyon
HKCU\SOFTWARE\Cheat Engine
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Creative Tech
HKCU\SOFTWARE\Curse
HKCU\SOFTWARE\Daniel Mullins Games
HKCU\SOFTWARE\DefaultCompany
HKCU\SOFTWARE\DirectShow
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\Downloader
HKCU\SOFTWARE\Drivers
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\Dry Cactus
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\FastCompress-Zip
HKCU\SOFTWARE\FireShot
HKCU\SOFTWARE\Freemake
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GenArts
HKCU\SOFTWARE\Giant Army
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\GOG.com
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\HmelyoffLabs
HKCU\SOFTWARE\Hyperspace
HKCU\SOFTWARE\IGA
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Joe Williams
HKCU\SOFTWARE\JustCause2
HKCU\SOFTWARE\Landfall Games
HKCU\SOFTWARE\Lavalys
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Magnet
HKCU\SOFTWARE\MC4D
HKCU\SOFTWARE\Mirillis
HKCU\SOFTWARE\Mojang
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\OpenAutomate
HKCU\SOFTWARE\osu!
HKCU\SOFTWARE\Outerminds Inc.
HKCU\SOFTWARE\PACE Anti-Piracy
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\PopWnd
HKCU\SOFTWARE\Pudding
HKCU\SOFTWARE\QGuan10in1
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Raptr
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Red Giant Software
HKCU\SOFTWARE\RedGiantSoftware
HKCU\SOFTWARE\Refract
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Robot Gentleman
HKCU\SOFTWARE\Rockstar Games
HKCU\SOFTWARE\Room710Games
HKCU\SOFTWARE\RSUPPORT
HKCU\SOFTWARE\Rtp
HKCU\SOFTWARE\Secret Exit Ltd.
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Sony Creative Software
HKCU\SOFTWARE\SpeedFan
HKCU\SOFTWARE\SplitmediaLabs
HKCU\SOFTWARE\System Healer  =>PUP.Optional.SystemHealer
HKCU\SOFTWARE\System32
HKCU\SOFTWARE\TeamSpeak 3 Client
HKCU\SOFTWARE\The Document Foundation
HKCU\SOFTWARE\The Silicon Realms Toolworks
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\U-Play online
HKCU\SOFTWARE\Ubisoft
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\Win
HKCU\SOFTWARE\Winamp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wizzlabs  =>Adware.Kazy
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Yahoo

---\\ Contenu des dossiers Programmes (332) - 79s
O43 - CFD: 05/07/2016 - [] D -- C:\Program Files\Adobe
O43 - CFD: 01/08/2016 - [] D -- C:\Program Files\AdobePhotoshopCS6Portable
O43 - CFD: 10/08/2016 - [] D -- C:\Program Files\AMD
O43 - CFD: 14/01/2016 - [] D -- C:\Program Files\ASRock  =>.cFos Software GmbH®
O43 - CFD: 14/01/2016 - [] D -- C:\Program Files\ASRock Utility  =>.ASROCK Incorporation®
O43 - CFD: 14/01/2016 - [] D -- C:\Program Files\ATI
O43 - CFD: 03/04/2016 - [] D -- C:\Program Files\Blender Foundation
O43 - CFD: 10/08/2016 - [] D -- C:\Program Files\Common Files
O43 - CFD: 14/01/2016 - [] D -- C:\Program Files\CPUID  =>.CPUID®
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 14/01/2016 - [0] SHD -- C:\Program Files\Fichiers communs
O43 - CFD: 27/03/2016 - [] D -- C:\Program Files\Handbrake
O43 - CFD: 17/03/2016 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 12/07/2016 - [0] D -- C:\Program Files\Logitech
O43 - CFD: 26/03/2016 - [] AD -- C:\Program Files\Magic Bullet Looks Vegas
O43 - CFD: 28/03/2016 - [] D -- C:\Program Files\MAXON  =>.MAXON Computer GmbH®
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 14/01/2016 - [] AD -- C:\Program Files\Microsoft Silverlight  =>.Microsoft Corporation®
O43 - CFD: 14/01/2016 - [] AD -- C:\Program Files\Microsoft Xbox 360 Accessories  =>.Microsoft Corporation®
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 10/08/2016 - [] D -- C:\Program Files\NVIDIA Corporation  =>.NVIDIA Corporation®
O43 - CFD: 10/04/2016 - [] D -- C:\Program Files\PhotoShop CS6
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files\Realtek  =>.Andrea Electronics®
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 05/08/2016 - [] D -- C:\Program Files\Rockstar Games  =>.Rockstar Games, Inc.®
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files\Sony
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 17/03/2016 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 17/03/2016 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 17/03/2016 - [] D -- C:\Program Files\Windows Multimedia Platform
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files\Windows Photo Viewer  =>.Microsoft Corporation®
O43 - CFD: 17/03/2016 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 16/01/2016 - [] SHD -- C:\Program Files\Windows Sidebar
O43 - CFD: 11/08/2016 - [] HD -- C:\Program Files\WindowsApps  =>.Microsoft Corporation®
O43 - CFD: 30/10/2015 - [] SD -- C:\Program Files\WindowsPowerShell
O43 - CFD: 05/07/2016 - [] AD -- C:\Program Files (x86)\Adobe  =>.Adobe Systems, Incorporated®
O43 - CFD: 10/08/2016 - [] D -- C:\Program Files (x86)\AMD
O43 - CFD: 14/01/2016 - [] AD -- C:\Program Files (x86)\AMD APP
O43 - CFD: 14/01/2016 - [] D -- C:\Program Files (x86)\Ashampoo  =>.Ashampoo GmbH & Co. KG®
O43 - CFD: 14/01/2016 - [] D -- C:\Program Files (x86)\ASRock Utility  =>.ASROCK Incorporation®
O43 - CFD: 10/08/2016 - [] D -- C:\Program Files (x86)\CCleaner  =>.Piriform Ltd®
O43 - CFD: 23/05/2016 - [] AD -- C:\Program Files (x86)\Cheat Engine 6.5  =>.Cheat Engine®
O43 - CFD: 10/08/2016 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 14/01/2016 - [] D -- C:\Program Files (x86)\Creative  =>.Creative Technology Ltd®
O43 - CFD: 06/08/2016 - [] HD -- C:\Program Files (x86)\cyuE3A9
O43 - CFD: 14/01/2016 - [] D -- C:\Program Files (x86)\FreeTime
O43 - CFD: 11/07/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information  =>.Macrovision Corporation®
O43 - CFD: 17/03/2016 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 27/04/2016 - [] D -- C:\Program Files (x86)\Java  =>.Oracle America, Inc.®
O43 - CFD: 14/01/2016 - [] D -- C:\Program Files (x86)\Lavalys  =>.LAVALYS®
O43 - CFD: 26/03/2016 - [] D -- C:\Program Files (x86)\LooksBuilder
O43 - CFD: 27/03/2016 - [] AD -- C:\Program Files (x86)\Malwarebytes Anti-Malware  =>.Malwarebytes Corporation®
O43 - CFD: 21/01/2016 - [] D -- C:\Program Files (x86)\Microsoft ASP.NET
O43 - CFD: 14/01/2016 - [] D -- C:\Program Files (x86)\Microsoft Silverlight  =>.Microsoft Corporation®
O43 - CFD: 27/04/2016 - [] D -- C:\Program Files (x86)\Microsoft XNA  =>.Microsoft Corporation®
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 02/07/2016 - [] AD -- C:\Program Files (x86)\Minecraft  =>.Mojang AB®
O43 - CFD: 10/04/2016 - [] D -- C:\Program Files (x86)\Mirillis  =>.Mirillis®
O43 - CFD: 02/07/2016 - [] AD -- C:\Program Files (x86)\Mozilla Firefox  =>.Mozilla Corporation®
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 14/01/2016 - [] D -- C:\Program Files (x86)\OCCTPT
O43 - CFD: 14/01/2016 - [] D -- C:\Program Files (x86)\Realtek  =>.Realtek Semiconductor Corp®
O43 - CFD: 26/03/2016 - [] D -- C:\Program Files (x86)\Red Giant  =>.red giant software llc®
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 05/08/2016 - [] D -- C:\Program Files (x86)\Rockstar Games  =>.Rockstar Games, Inc.®
O43 - CFD: 06/08/2016 - [] RD -- C:\Program Files (x86)\Skype  =>.Skype Software Sarl®
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files (x86)\Sony
O43 - CFD: 05/07/2016 - [] D -- C:\Program Files (x86)\SpeedFan  =>.SOKNO S.R.L.®
O43 - CFD: 10/08/2016 - [] D -- C:\Program Files (x86)\Steam  =>.Valve®
O43 - CFD: 14/01/2016 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 16/01/2016 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 15/07/2016 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 10/08/2016 - [] D -- C:\Program Files (x86)\VulkanRT
O43 - CFD: 12/04/2016 - [] D -- C:\Program Files (x86)\Winamp  =>.Nullsoft Inc.®
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 11/04/2016 - [] AD -- C:\Program Files (x86)\Windows Live  =>.Microsoft Corporation®
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 17/03/2016 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer  =>.Microsoft Corporation®
O43 - CFD: 17/03/2016 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 16/01/2016 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 30/10/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 14/01/2016 - [] AD -- C:\Program Files (x86)\WinRAR  =>.win.rar GmbH®
O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 16/01/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 10/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
O43 - CFD: 10/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 23/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.5
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
O43 - CFD: 14/01/2016 - [0] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 06/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\id Software
O43 - CFD: 27/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
O43 - CFD: 25/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0
O43 - CFD: 26/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magic Bullet Looks
O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 27/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 17/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAXON
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
O43 - CFD: 30/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
O43 - CFD: 10/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MX vs ATV Supercross Encore Edition
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OCCT
O43 - CFD: 12/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 26/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Giant
O43 - CFD: 06/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RSUPPORT
O43 - CFD: 30/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SQUARE ENIX - Eidos Interactive
O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 10/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Healer  =>PUP.Optional.SystemHealer
O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 30/10/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 12/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 16/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN
O43 - CFD: 22/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit
O43 - CFD: 28/03/2016 - [] D -- C:\ProgramData\19a87fa1ec024bbcbb41931263354405  =>Adware.Suspect
O43 - CFD: 05/07/2016 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 10/08/2016 - [] D -- C:\ProgramData\AMD
O43 - CFD: 16/01/2016 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 14/01/2016 - [] D -- C:\ProgramData\Ashampoo
O43 - CFD: 10/08/2016 - [] D -- C:\ProgramData\ATI
O43 - CFD: 08/05/2016 - [] D -- C:\ProgramData\BlueStacks
O43 - CFD: 15/07/2016 - [0] D -- C:\ProgramData\BlueStacksGameManager
O43 - CFD: 07/06/2016 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 14/01/2016 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 14/01/2016 - [] D -- C:\ProgramData\cFos
O43 - CFD: 10/08/2016 - [] D -- C:\ProgramData\CloudPrinter
O43 - CFD: 30/10/2015 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 14/01/2016 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 07/08/2016 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 10/08/2016 - [0] D -- C:\ProgramData\desktopfindkey  =>HackTool.WinActivator
O43 - CFD: 16/01/2016 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 14/01/2016 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 14/01/2016 - [] D -- C:\ProgramData\FNET
O43 - CFD: 14/04/2016 - [0] D -- C:\ProgramData\Freemake
O43 - CFD: 26/03/2016 - [] D -- C:\ProgramData\GenArts
O43 - CFD: 21/01/2016 - [] D -- C:\ProgramData\Google
O43 - CFD: 05/08/2016 - [] D -- C:\ProgramData\Hotspot Shield
O43 - CFD: 10/08/2016 - [] D -- C:\ProgramData\Lamzap
O43 - CFD: 11/07/2016 - [] D -- C:\ProgramData\LogiShrd
O43 - CFD: 14/01/2016 - [] D -- C:\ProgramData\Logs
O43 - CFD: 15/01/2016 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 14/01/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 11/04/2016 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 09/04/2016 - [] D -- C:\ProgramData\Mirillis
O43 - CFD: 14/01/2016 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 14/01/2016 - [] D -- C:\ProgramData\Norton
O43 - CFD: 14/01/2016 - [] D -- C:\ProgramData\NortonInstaller
O43 - CFD: 10/08/2016 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 10/08/2016 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 27/04/2016 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 22/04/2016 - [] D -- C:\ProgramData\PACE Anti-Piracy
O43 - CFD: 16/03/2016 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 26/03/2016 - [] D -- C:\ProgramData\RedGiant
O43 - CFD: 23/04/2016 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 10/08/2016 - [] D -- C:\ProgramData\RenewalService
O43 - CFD: 06/08/2016 - [] D -- C:\ProgramData\Skype
O43 - CFD: 31/07/2016 - [] D -- C:\ProgramData\Slightly Mad Studios
O43 - CFD: 30/10/2015 - [0] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 29/07/2016 - [] D -- C:\ProgramData\Solid State Networks
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Sony
O43 - CFD: 22/05/2016 - [] D -- C:\ProgramData\SplitMediaLabs
O43 - CFD: 14/01/2016 - [] D -- C:\ProgramData\Steam
O43 - CFD: 22/05/2016 - [] SHD -- C:\ProgramData\System Restore
O43 - CFD: 14/01/2016 - [] D -- C:\ProgramData\Temp
O43 - CFD: 31/07/2016 - [] D -- C:\ProgramData\TrackMania
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 14/01/2016 - [] HD -- C:\ProgramData\{8533ADFA-85F0-4dc1-946A-2A0BA58E78E3}
O43 - CFD: 07/08/2016 - [] AD -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 22/04/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 15/01/2016 - [] D -- C:\Program Files (x86)\Common Files\Freemake Shared
O43 - CFD: 14/01/2016 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 27/04/2016 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 27/04/2016 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 05/06/2016 - [] AD -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 27/03/2016 - [] AD -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 22/04/2016 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 03/08/2016 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 10/08/2016 - [] D -- C:\Program Files (x86)\Common Files\Unafax
O43 - CFD: 11/04/2016 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 09/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\.minecraft
O43 - CFD: 24/05/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\.Paladium
O43 - CFD: 07/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Adobe
O43 - CFD: 22/06/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Ashampoo
O43 - CFD: 10/08/2016 - [0] D -- C:\Users\JEROME\AppData\Roaming\ASPackage  =>PUP.Optional.ASPackage
O43 - CFD: 10/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\ATI
O43 - CFD: 08/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Audacity
O43 - CFD: 02/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Axolot Games
O43 - CFD: 10/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Azureus
O43 - CFD: 03/04/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Blender Foundation
O43 - CFD: 02/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\BrawlhallaAir
O43 - CFD: 11/07/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Curse
O43 - CFD: 08/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Curse Client
O43 - CFD: 04/07/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\FireShot
O43 - CFD: 26/03/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\GenArts
O43 - CFD: 10/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\HandBrake
O43 - CFD: 27/03/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\HandBrake Team
O43 - CFD: 30/01/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\java
O43 - CFD: 11/07/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Leadertech
O43 - CFD: 10/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\library_dir
O43 - CFD: 25/04/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\LibreOffice
O43 - CFD: 15/01/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Logishrd
O43 - CFD: 15/01/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Logitech
O43 - CFD: 14/01/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Macromedia
O43 - CFD: 18/01/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\MAXON
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\JEROME\AppData\Roaming\Media Center Programs
O43 - CFD: 10/04/2016 - [] SD -- C:\Users\JEROME\AppData\Roaming\Microsoft
O43 - CFD: 09/04/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Mirillis
O43 - CFD: 28/03/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Mozilla
O43 - CFD: 06/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Profiles
O43 - CFD: 17/01/2016 - [0] D -- C:\Users\JEROME\AppData\Roaming\Publish Providers
O43 - CFD: 26/03/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Red Giant Link
O43 - CFD: 06/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Rsupport
O43 - CFD: 10/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Skype
O43 - CFD: 15/07/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\SmartSteamEmu
O43 - CFD: 26/03/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Sony
O43 - CFD: 27/03/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Sony Creative Software Inc
O43 - CFD: 22/05/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\SplitmediaLabs
O43 - CFD: 18/01/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Steam
O43 - CFD: 16/03/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Sun
O43 - CFD: 10/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\System Healer  =>PUP.Optional.SystemHealer
O43 - CFD: 08/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\TeamViewer
O43 - CFD: 22/05/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\TS3Client
O43 - CFD: 10/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\vlc
O43 - CFD: 10/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Winamp
O43 - CFD: 16/01/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\WinRAR
O43 - CFD: 11/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\ZHP
O43 - CFD: 10/08/2016 - [0] D -- C:\Users\JEROME\AppData\Local\ActiveSync
O43 - CFD: 07/08/2016 - [] D -- C:\Users\JEROME\AppData\Local\Adobe
O43 - CFD: 10/08/2016 - [] D -- C:\Users\JEROME\AppData\Local\AMD
O43 - CFD: 16/01/2016 - [0] SHD -- C:\Users\JEROME\AppData\Local\Application Data
O43 - CFD: 14/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\Apps
O43 - CFD: 14/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\ashampoo
O43 - CFD: 26/03/2016 - [] D -- C:\Users\JEROME\AppData\Local\assembly
O43 - CFD: 10/08/2016 - [] D -- C:\Users\JEROME\AppData\Local\ATI
O43 - CFD: 26/03/2016 - [] D -- C:\Users\JEROME\AppData\Local\Audacity
O43 - CFD: 15/07/2016 - [] D -- C:\Users\JEROME\AppData\Local\BlueStacks
O43 - CFD: 16/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\CEF
O43 - CFD: 14/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\cFos
O43 - CFD: 16/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\Comms
O43 - CFD: 10/08/2016 - [0] D -- C:\Users\JEROME\AppData\Local\CrashDumps
O43 - CFD: 07/07/2016 - [] D -- C:\Users\JEROME\AppData\Local\CrashRpt  =>.Superfluous.CrashReports
O43 - CFD: 14/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\Cyberlink
O43 - CFD: 09/08/2016 - [] D -- C:\Users\JEROME\AppData\Local\Diagnostics
O43 - CFD: 26/03/2016 - [] D -- C:\Users\JEROME\AppData\Local\Downloaded Installations
O43 - CFD: 04/08/2016 - [] D -- C:\Users\JEROME\AppData\Local\ElevatedDiagnostics
O43 - CFD: 15/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\Google
O43 - CFD: 15/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\GWX
O43 - CFD: 16/01/2016 - [0] SHD -- C:\Users\JEROME\AppData\Local\Historique
O43 - CFD: 11/07/2016 - [] D -- C:\Users\JEROME\AppData\Local\LogiShrd
O43 - CFD: 15/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\Logitech
O43 - CFD: 11/07/2016 - [0] D -- C:\Users\JEROME\AppData\Local\Logitech-LS
O43 - CFD: 26/03/2016 - [] D -- C:\Users\JEROME\AppData\Local\LooksBuilder
O43 - CFD: 29/03/2016 - [] D -- C:\Users\JEROME\AppData\Local\Macromedia
O43 - CFD: 11/04/2016 - [] D -- C:\Users\JEROME\AppData\Local\Mega Limited
O43 - CFD: 06/08/2016 - [] D -- C:\Users\JEROME\AppData\Local\MEGAsync
O43 - CFD: 26/04/2016 - [] D -- C:\Users\JEROME\AppData\Local\Microsoft
O43 - CFD: 16/03/2016 - [] D -- C:\Users\JEROME\AppData\Local\MicrosoftEdge
O43 - CFD: 09/04/2016 - [] D -- C:\Users\JEROME\AppData\Local\Mirillis
O43 - CFD: 28/03/2016 - [] D -- C:\Users\JEROME\AppData\Local\Mozilla
O43 - CFD: 16/03/2016 - [] D -- C:\Users\JEROME\AppData\Local\Nvidia Corporation
O43 - CFD: 15/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\OCCT_-_Ocbase_-_Adrien_Me
O43 - CFD: 06/08/2016 - [] D -- C:\Users\JEROME\AppData\Local\Packages
O43 - CFD: 27/03/2016 - [] D -- C:\Users\JEROME\AppData\Local\POLARIS_OFFICE_Corp
O43 - CFD: 06/08/2016 - [0] D -- C:\Users\JEROME\AppData\Local\Profiles
O43 - CFD: 14/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\Programs
O43 - CFD: 16/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\Publishers
O43 - CFD: 31/07/2016 - [] D -- C:\Users\JEROME\AppData\Local\Red Bull Air Race The Game
O43 - CFD: 17/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\Rockstar Games
O43 - CFD: 19/01/2016 - [0] D -- C:\Users\JEROME\AppData\Local\Skype
O43 - CFD: 17/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\Sony
O43 - CFD: 22/05/2016 - [] D -- C:\Users\JEROME\AppData\Local\SplitMediaLabs
O43 - CFD: 16/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\Steam
O43 - CFD: 22/05/2016 - [] D -- C:\Users\JEROME\AppData\Local\streamtip-alerter
O43 - CFD: 23/04/2016 - [] D -- C:\Users\JEROME\AppData\Local\TeamSpeak 3 Client
O43 - CFD: 11/08/2016 - [] D -- C:\Users\JEROME\AppData\Local\Temp
O43 - CFD: 28/03/2016 - [0] D -- C:\Users\JEROME\AppData\Local\Tempfolder
O43 - CFD: 16/01/2016 - [0] SHD -- C:\Users\JEROME\AppData\Local\Temporary Internet Files
O43 - CFD: 16/01/2016 - [] D -- C:\Users\JEROME\AppData\Local\TileDataLayer
O43 - CFD: 07/05/2016 - [] D -- C:\Users\JEROME\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 16/03/2016 - [] D -- C:\Users\JEROME\AppData\Local\VirtualStore
O43 - CFD: 25/05/2016 - [] D -- C:\Users\JEROME\AppData\Local\Windows Live
O43 - CFD: 14/01/2016 - [0] D -- C:\Users\JEROME\AppData\Local\Programs\Common
O43 - CFD: 30/10/2015 - [] RD -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 16/01/2016 - [] RD -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 25/03/2016 - [] RD -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 26/03/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
O43 - CFD: 10/08/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASPackage  =>PUP.Optional.ASPackage
O43 - CFD: 03/04/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender
O43 - CFD: 16/01/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 16/01/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 16/01/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
O43 - CFD: 27/03/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
O43 - CFD: 30/10/2015 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 11/04/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync
O43 - CFD: 22/05/2016 - [0] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA Demos
O43 - CFD: 14/01/2016 - [0] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OCCT
O43 - CFD: 26/03/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
O43 - CFD: 22/01/2016 - [0] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
O43 - CFD: 16/01/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
O43 - CFD: 11/08/2016 - [] RD -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 30/03/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 30/10/2015 - [] RD -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 29/03/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
O43 - CFD: 07/05/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
O43 - CFD: 30/10/2015 - [] RSD -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 16/01/2016 - [] D -- C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 0 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\CrashDumps
O43 - CFD: 0 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\DataSharing
O43 - CFD: 16/01/2016 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft
O43 - CFD: 0 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Packages

---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 1s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JEROME\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll  =>.Microsoft Corporation®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JEROME\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll  =>.Microsoft Corporation®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JEROME\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll  =>.Microsoft Corporation®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JEROME\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll  =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JEROME\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileSyncShell.dll  =>.Microsoft Corporation®
O106 - SIOI: ###MegaShellExtPending [###MegaShellExtPending] - {056D528D-CE28-4194-9BA3-BA2E9197FF8C}. (...) -- C:\Users\JEROME\AppData\Local\MEGAsync\ShellExtX32.dll
O106 - SIOI: ###MegaShellExtSynced [###MegaShellExtSynced] - {05B38830-F4E9-4329-978B-1DD28605D202}. (...) -- C:\Users\JEROME\AppData\Local\MEGAsync\ShellExtX32.dll
O106 - SIOI: ###MegaShellExtSyncing [###MegaShellExtSyncing] - {0596C850-7BDD-4C9D-AFDF-873BE6890637}. (...) -- C:\Users\JEROME\AppData\Local\MEGAsync\ShellExtX32.dll

---\\ Liste des pilotes du système (72) - 17s
O58 - SDL:2015/10/30 09:17:22 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys   [107360]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:22 A . (.PMC-Sierra - PMC-Sierra Storport  Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys   [1135456]  =>.Microsoft Windows®
O58 - SDL:2015/08/09 07:10:10 A . (.Advanced Micro Devices - AMD ACP Binaries.) -- C:\WINDOWS\System32\drivers\amdacpksd.sys   [306424]  =>.Advanced Micro Devices, Inc.®
O58 - SDL:2012/12/04 03:49:38 A . (.Advanced Micro Devices Inc. - AMD miniIDE Driver.) -- C:\WINDOWS\System32\drivers\amdide64.sys   [11944]  =>.Advanced Micro Devices, Inc.®
O58 - SDL:2015/06/03 15:35:36 A . (.Advanced Micro Devices, Inc. - AMD Audio Bus Lower Filter.) -- C:\WINDOWS\System32\drivers\amdkmafd.sys   [31992]  =>.Advanced Micro Devices, Inc.®
O58 - SDL:2015/10/30 09:17:22 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys   [83296]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:22 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys   [259424]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:22 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys   [26976]  =>.Microsoft Windows®
O58 - SDL:2015/03/30 06:08:36 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\WINDOWS\System32\drivers\amd_sata.sys   [85704]  =>.Advanced Micro Devices, Inc.®
O58 - SDL:2015/03/30 06:08:36 A . (.Advanced Micro Devices - Stor Filter Driver.) -- C:\WINDOWS\System32\drivers\amd_xata.sys   [43720]  =>.Advanced Micro Devices, Inc.®
O58 - SDL:2015/10/30 09:17:22 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys   [131936]  =>.Microsoft Windows®
O58 - SDL:2011/05/10 17:28:48 A . (.Windows (R) Win 7 DDK provider - ASRock App Charger Driver.) -- C:\WINDOWS\System32\drivers\AsrAppCharger.sys   [17192]  =>.ASROCK Incorporation®
O58 - SDL:2012/01/13 13:52:38 A . (.ASRock Inc. - ASRock RAM Disk Driver.) -- C:\WINDOWS\System32\drivers\AsrRamDisk.sys   [31016]  =>.ASROCK Incorporation®
O58 - SDL:2015/07/22 01:42:04 A . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\WINDOWS\System32\drivers\AtihdWT6.sys   [102912]  =>.Advanced Micro Devices
O58 - SDL:2015/12/16 20:07:42 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\atikmdag.sys   [21648880]  =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/08/09 07:10:14 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\WINDOWS\System32\drivers\atikmpag.sys   [673816]  =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/10/30 09:17:22 A . (.Windows (R) Win 7 DDK provider - BCM Function 2  Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn.sys   [9728]  =>.Windows (R) Win 7 DDK provider
O58 - SDL:2015/10/30 09:17:22 A . (.Windows (R) Win 7 DDK provider - BCM Function 2  Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys   [9728]  =>.Windows (R) Win 7 DDK provider
O58 - SDL:2015/10/30 09:17:22 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys   [531296]  =>.Microsoft Windows®
O58 - SDL:2011/10/17 03:00:00 N . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys   [10224]  =>.Sonic Solutions®
O58 - SDL:2011/10/17 03:00:00 N . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\WINDOWS\System32\drivers\cdralw2k.sys   [10224]  =>.Sonic Solutions®
O58 - SDL:2011/07/04 16:19:34 A . (.cFos Software GmbH - cFosSpeed Driver.) -- C:\WINDOWS\System32\drivers\cfosspeed6.sys   [1632128]  =>.cFos Software GmbH®
O58 - SDL:2015/10/30 09:17:22 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys   [3436896]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:22 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys   [64352]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:18 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys   [81408]  =>.Intel(R) Corporation
O58 - SDL:2015/10/30 09:17:18 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys   [165888]  =>.Intel Corporation
O58 - SDL:2015/10/30 09:17:18 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys   [38128]  =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/10/30 09:17:18 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys   [113152]  =>.Intel Corporation
O58 - SDL:2015/10/30 09:17:22 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys   [673120]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:22 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys   [412000]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:23 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys   [424800]  =>.Microsoft Windows®
O58 - SDL:2015/06/11 02:33:40 A . (.Logitech Inc. - Logitech WingMan Virtual Bus Enumerator Dri.) -- C:\WINDOWS\System32\drivers\LGBusEnum.sys   [37408]  =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/06/11 02:33:42 A . (.Logitech Inc. - Logitech Gaming Software Joystick Translati.) -- C:\WINDOWS\System32\drivers\LGJoyXlCore.sys   [68384]  =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/06/11 02:33:42 A . (.Logitech Inc. - Logitech GamePanel Virtual Hid Device Drive.) -- C:\WINDOWS\System32\drivers\LGVirHid.sys   [26912]  =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/10/30 09:17:23 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys   [108888]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:23 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys   [104800]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:23 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys   [99168]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:23 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys   [82784]  =>.Microsoft Windows®
O58 - SDL:2016/03/10 15:08:54 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys   [27008]  =>.Malwarebytes Corporation®
O58 - SDL:2016/03/10 15:08:58 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys   [140672]  =>.Malwarebytes Corporation®
O58 - SDL:2016/08/10 21:11:12 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys   [192216]  =>.Malwarebytes Corporation®
O58 - SDL:2009/11/18 01:12:00 A . (.Creative Technology Ltd. - Creative Audio Driver.) -- C:\WINDOWS\System32\drivers\MBfilt64.sys   [32344]  =>.Creative Labs Inc®
O58 - SDL:2015/10/30 09:17:23 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys   [59744]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:23 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys   [575840]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:23 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys   [705376]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:23 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys   [63840]  =>.Microsoft Windows®
O58 - SDL:2016/03/10 15:09:10 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\WINDOWS\System32\drivers\mwac.sys   [65408]  =>.Malwarebytes Corporation®
O58 - SDL:2015/10/30 09:17:23 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys   [76128]  =>.Microsoft Windows®
O58 - SDL:2014/01/12 11:05:46 A . (.Windows (R) Win 7 DDK provider - Serial Port Enumerator.) -- C:\WINDOWS\System32\drivers\nuvserenum.sys   [23552]  =>.Windows (R) Win 7 DDK provider
O58 - SDL:2014/01/12 11:05:46 A . (.Nuvoton Technology Corp. - Nuvoton Serial Device Driver (WDM).) -- C:\WINDOWS\System32\drivers\nuvserial.sys   [86016]  =>.Nuvoton Technology Corp.
O58 - SDL:2015/10/30 09:17:23 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys   [150368]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:23 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys   [166240]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:23 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys   [58208]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:23 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys   [58720]  =>.Microsoft Windows®
O58 - SDL:2011/11/03 03:01:00 N . (.Rovi Corporation - Px Engine Device Driver for 64-bit Windows.) -- C:\WINDOWS\System32\drivers\PxHlpa64.sys   [56208]  =>.Sonic Solutions®
O58 - SDL:2015/05/19 18:39:58 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\WINDOWS\System32\drivers\Rt64win7.sys   [986368]  =>.Realtek Semiconductor Corp®
O58 - SDL:2011/10/18 13:53:14 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys   [2957544]  =>.Realtek Semiconductor Corp®
O58 - SDL:2014/12/10 04:39:24 A . (.Realtek - Realtek 8136/8168/8169 NDIS6 64-bit Driver.) -- C:\WINDOWS\System32\drivers\Rtlh64.sys   [797400]  =>.Realtek Semiconductor Corp®
O58 - SDL:2015/10/30 09:17:23 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys   [44896]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:23 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys   [81760]  =>.Microsoft Windows®
O58 - SDL:2016/04/25 00:35:52 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudbus.sys   [129152]  =>.Samsung Electronics CO., LTD.®
O58 - SDL:2016/04/25 00:35:58 A . (.Samsung Electronics Co., Ltd. - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys   [221824]  =>.Samsung Electronics CO., LTD.®
O58 - SDL:2015/10/30 09:17:23 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys   [31072]  =>.Microsoft Windows®
O58 - SDL:2016/06/28 11:50:16 A . (.Anchorfree Inc. - Anchorfree HSS VPN Adapter.) -- C:\WINDOWS\System32\drivers\taphss6.sys   [42064]  =>.AnchorFree Inc®
O58 - SDL:2016/07/12 16:51:42 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Host-Only Network Adapt.) -- C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys   [121824]  =>.Oracle Corporation®
O58 - SDL:2016/07/12 16:51:42 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Lightweight Filter Driv.) -- C:\WINDOWS\System32\drivers\VBoxNetLwf.sys   [195424]  =>.Oracle Corporation®
O58 - SDL:2015/10/30 09:17:23 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys   [166752]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:23 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS   [305504]  =>.Microsoft Windows®
O58 - SDL:2015/11/12 23:50:10 A . (.Western Digital Technologies, Inc. - Western Digital SCSI Architecture Model (SA.) -- C:\WINDOWS\System32\drivers\wdcsam64.sys   [26880]  =>.WDKTestCert wdclab,130885612892544312®
O58 - SDL:2015/10/30 09:17:23 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys   [26976]  =>.Microsoft Windows®
O58 - SDL:2015/10/30 09:17:23 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys   [59232]  =>.Microsoft Windows®
O58 - SDL:2014/07/02 20:49:08 A . (.SplitmediaLabs Limited - XSplit Stream Audio.) -- C:\WINDOWS\System32\drivers\xspltspk.sys   [26200]  =>.Splitmedialabs Limited®

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (44) - 78s
O61 - LFC: 2016/08/06 16:24:20 A . (..) -- C:\Users\JEROME\AppData\Roaming\SmartSteamEmu\390520\stats.bin   [316]
O61 - LFC: 2016/08/06 15:25:49 A . (.http://getfireshot.comn#FileDescription.) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\6lyp3gv5.Utilisateur par défaut\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\library\sss.dll   [6338288] {00E9A44B3A323EB804271A1DF61BCB605C}
O61 - LFC: 2016/08/08 11:48:12 A . (..) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\6lyp3gv5.Utilisateur par défaut\extensions\paulsaintuzb@gmail.com\modules\ffmpeg\avcodec-55.dll   [10146890]
O61 - LFC: 2016/08/08 11:48:13 A . (..) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\6lyp3gv5.Utilisateur par défaut\extensions\paulsaintuzb@gmail.com\modules\ffmpeg\avfilter-3.dll   [1158947]
O61 - LFC: 2016/08/08 11:48:13 A . (..) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\6lyp3gv5.Utilisateur par défaut\extensions\paulsaintuzb@gmail.com\modules\ffmpeg\avformat-55.dll   [2134348]
O61 - LFC: 2016/08/08 11:48:13 A . (..) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\6lyp3gv5.Utilisateur par défaut\extensions\paulsaintuzb@gmail.com\modules\ffmpeg\avutil-52.dll   [542107]
O61 - LFC: 2016/08/08 11:48:13 A . (..) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\6lyp3gv5.Utilisateur par défaut\extensions\paulsaintuzb@gmail.com\modules\ffmpeg\ffmpeg.exe   [428889]
O61 - LFC: 2016/08/08 11:48:14 A . (..) -- C:\Users\JEROME\AppData\Roaming\Mozilla\Firefox\Profiles\6lyp3gv5.Utilisateur par défaut\extensions\paulsaintuzb@gmail.com\modules\ffmpeg\swresample-0.dll   [159175]
O61 - LFC: 2016/08/08 16:44:51 A . (..) -- C:\Users\JEROME\AppData\Roaming\Mirillis\Action\back.bin   [20]
O61 - LFC: 2016/08/09 16:27:52 N . (..) -- C:\Users\JEROME\AppData\Roaming\.minecraft\versions\1.8-forge1.8-11.14.4.1563\1.8-forge1.8-11.14.4.1563-natives-3591755390243\avutil-ttv-51.dll   [653832]
O61 - LFC: 2016/08/09 16:27:53 N . (..) -- C:\Users\JEROME\AppData\Roaming\.minecraft\versions\1.8-forge1.8-11.14.4.1563\1.8-forge1.8-11.14.4.1563-natives-3591755390243\libmp3lame-ttv.dll   [688161]
O61 - LFC: 2016/08/09 16:27:50 N . (..) -- C:\Users\JEROME\AppData\Roaming\.minecraft\versions\1.8-forge1.8-11.14.4.1563\1.8-forge1.8-11.14.4.1563-natives-3591755390243\lwjgl64.dll   [310272]
O61 - LFC: 2016/08/09 16:27:50 N . (..) -- C:\Users\JEROME\AppData\Roaming\.minecraft\versions\1.8-forge1.8-11.14.4.1563\1.8-forge1.8-11.14.4.1563-natives-3591755390243\OpenAL64.dll   [382464]
O61 - LFC: 2016/08/09 16:27:53 N . (..) -- C:\Users\JEROME\AppData\Roaming\.minecraft\versions\1.8-forge1.8-11.14.4.1563\1.8-forge1.8-11.14.4.1563-natives-3591755390243\swresample-ttv-0.dll   [361103]
O61 - LFC: 2016/08/09 16:27:52 N . (..) -- C:\Users\JEROME\AppData\Roaming\.minecraft\versions\1.8-forge1.8-11.14.4.1563\1.8-forge1.8-11.14.4.1563-natives-3591755390243\twitchsdk.dll   [1384960]
O61 - LFC: 2016/08/06 16:33:34 A . (..) -- C:\Users\JEROME\AppData\Local\Sony\Vegas Pro\13.0\OCL 04812a50-26e6adcf.bin   [305992]
O61 - LFC: 2016/08/06 16:33:29 A . (..) -- C:\Users\JEROME\AppData\Local\Sony\Vegas Pro\13.0\OCL 04812a50-40300984.bin   [119159]
O61 - LFC: 2016/08/06 20:28:32 A . (..) -- C:\Users\JEROME\AppData\Local\Sony\Vegas Pro\13.0\OCL 04812a50-7267dc71.bin   [711616]
O61 - LFC: 2016/08/06 16:34:07 A . (..) -- C:\Users\JEROME\AppData\Local\Sony\Vegas Pro\13.0\OCL 04812a50-7bc2069c.bin   [107979]
O61 - LFC: 2016/08/06 16:34:04 A . (..) -- C:\Users\JEROME\AppData\Local\Sony\Vegas Pro\13.0\OCL 04812a50-920379d4.bin   [68137]
O61 - LFC: 2016/08/06 16:33:31 A . (..) -- C:\Users\JEROME\AppData\Local\Sony\Vegas Pro\13.0\OCL 04812a50-aa490cb6.bin   [169812]
O61 - LFC: 2016/08/06 16:33:32 A . (..) -- C:\Users\JEROME\AppData\Local\Sony\Vegas Pro\13.0\OCL 04812a50-dc7ab1ce.bin   [124891]
O61 - LFC: 2016/08/06 16:33:50 A . (..) -- C:\Users\JEROME\AppData\Local\Sony\Vegas Pro\13.0\OCL 04812a50-fbf764ad.bin   [1322642]
O61 - LFC: 2016/08/08 18:19:58 A . (..) -- C:\Users\JEROME\AppData\Local\Sony\Vegas Pro\13.0\svfx_plugin_cache.bin   [245252]
O61 - LFC: 2016/08/08 18:41:17 A . (..) -- C:\Users\JEROME\AppData\Local\Sony\Vegas Pro\13.0\Media Pool Thumbnails\media_thumbnail_cache.bin   [2880]
O61 - LFC: 2016/08/04 13:07:08 A . (..) -- C:\Users\JEROME\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Header.bin   [32104]
O61 - LFC: 2016/08/11 13:06:38 A . (..) -- C:\Users\JEROME\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin   [8192]
O61 - LFC: 2016/08/10 19:59:41 A . (..) -- C:\Users\JEROME\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\Grammars\PointsOfInterest2_01.040c.digest.bin   [240]
O61 - LFC: 2016/08/10 20:44:17 A . (..) -- C:\Users\JEROME\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\Grammars\PointsOfInterest2_02.040c.digest.bin   [240]
O61 - LFC: 2016/08/10 19:59:40 A . (..) -- C:\Users\JEROME\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\Grammars\PointsOfInterest_01.040c.digest.bin   [240]
O61 - LFC: 2016/08/10 20:44:15 A . (..) -- C:\Users\JEROME\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\Grammars\PointsOfInterest_02.040c.digest.bin   [240]
O61 - LFC: 2016/08/10 19:59:38 A . (..) -- C:\Users\JEROME\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\Grammars\VaStartMenu_01.040c.digest.bin   [21092]
O61 - LFC: 2016/08/10 20:43:43 A . (..) -- C:\Users\JEROME\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\Grammars\VaStartMenu_02.040c.digest.bin   [21092]
O61 - LFC: 2016/08/10 17:50:56 A . (..) -- C:\Users\JEROME\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\cache\proactive\proactive-cache.bin   [209081]
O61 - LFC: 2016/08/11 12:53:22 A . (..) -- C:\Users\JEROME\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\UrlBlock\urlblock_636065053400648985.bin   [213233]
O61 - LFC: 2016/08/11 12:40:16 A . (..) -- C:\Users\JEROME\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin   [16148]
O61 - LFC: 2016/08/10 20:59:11 A . (..) -- C:\Users\JEROME\AppData\Local\Microsoft\Windows\INetCache\IE\8FOTQVPK\ziptool_wc-9015_setup[1].exe   [0]
O61 - LFC: 2016/08/10 19:14:59 A . (..) -- C:\Users\JEROME\AppData\Local\Microsoft\Internet Explorer\UrlBlock\urlblock_636064371493349499.bin   [209365]
O61 - LFC: 2016/08/06 12:32:32 A . (.The c-ares library, http://c-ares.haxx.se/.) -- C:\Users\JEROME\AppData\Local\MEGAsync\cares.dll   [56832]
O61 - LFC: 2016/08/06 12:32:55 A . (.The cURL library, https://curl.haxx.se/.) -- C:\Users\JEROME\AppData\Local\MEGAsync\libcurl.dll   [242176]
O61 - LFC: 2016/08/06 12:34:09 A . (..) -- C:\Users\JEROME\AppData\Local\MEGAsync\libsodium.dll   [482304]
O61 - LFC: 2016/08/06 12:43:02 A . (..) -- C:\Users\JEROME\AppData\Local\MEGAsync\ShellExtX32.dll   [564224]
O61 - LFC: 2016/08/06 12:43:15 A . (..) -- C:\Users\JEROME\AppData\Local\MEGAsync\ShellExtX64.dll   [592384]
O61 - LFC: 2016/08/11 12:41:12 A . (..) -- C:\Users\JEROME\AppData\Local\ATI\ACE\Manifest.Bin   [30042]

---\\ Associations Shell Spawning (11) - 1s
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe  =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe  =>.Mozilla Corporation®

---\\ Menu de démarrage Internet (12) - 0s
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.coldsearch.com/  =>PUP.Optional.ColdSearch
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.ex http://www.coldsearch.com/  =>PUP.Optional.ColdSearch
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe  =>.Mozilla Corporation
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe  =>.Microsoft Corporation
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe  =>.Mozilla Corporation
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe  =>.Microsoft Corporation
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe  =>.Mozilla Corporation
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe  =>.Microsoft Corporation

---\\ Recherche d'infection sur les navigateurs (9) - 25s
O69 - SBI: prefs.js [JEROME - aongkh82.default] user_pref("browser.search.defaultenginename", "trotux");  =>.Superfluous.Trotux
O69 - SBI: prefs.js [JEROME - aongkh82.default] user_pref("browser.search.searchengine.hp", "http://www.trotux.com/?z=ab0f233d142018b6de1e7f5gaz3m3eez7b0wet4g5q&from=icb&uid=WDCX[...]  =>.Superfluous.Trotux
O69 - SBI: prefs.js [JEROME - aongkh82.default] user_pref("browser.search.searchengine.sp", "http://www.trotux.com/search/?from=icb&q={searchTerms}&type=sp&uid=WDCXWD2500JS-60MHB[...]  =>.Superfluous.Trotux
O69 - SBI: prefs.js [JEROME - aongkh82.default] user_pref("browser.search.searchengine.url", "http://www.trotux.com/search/?from=icb&q={searchTerms}&type=sp&uid=WDCXWD2500JS-60MH[...]  =>.Superfluous.Trotux
O69 - SBI: prefs.js [JEROME - aongkh82.default] user_pref("browser.search.selectedEngine", "trotux");  =>.Superfluous.Trotux
O69 - SBI: prefs.js [JEROME - aongkh82.default] user_pref("browser.startup.homepage", "http://www.coldsearch.com/?uid=82699e64-ca8e-4093-b951-8b513b1d7185");  =>PUP.Optional.ColdSearch
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {76B93282-4598-4f12-A94A-161DC86B3684} - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/

---\\ Enumère les services démarrés par Svchost (41) - 1s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll   [192000]  =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll   [192000]  =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\system32\srvsvc.dll   [283136]  =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll   [1338368]  =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll   [957952]  =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll   [958464]  =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll   [31232]  =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll   [94720]  =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll   [151040]  =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll   [112640]  =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll   [997376]  =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll   [225280]  =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll   [134656]  =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll   [328192]  =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll   [372736]  =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll   [96256]  =>.Microsoft Corporation
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll   [186880]  =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll   [2057216]  =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll   [168960]  =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\WINDOWS\System32\NetSetupSvc.dll   [207360]  =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\system32\themeservice.dll   [59392]  =>.Microsoft Corporation
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll   [1090048]  =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll   [27136]  =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll   [106496]  =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll   [696320]  =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [507904]  =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll   [73216]  =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll   [456704]  =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll   [311808]  =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\system32\wuaueng.dll   [2275328]  =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll   [1144320]  =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [608768]  =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll   [57856]  =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll   [361472]  =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll   [1035776]  =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll   [360960]  =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll   [1139712]  =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll   [278016]  =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll   [205824]  =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll   [912384]  =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll   [948736]  =>.Microsoft Corporation

---\\ Liste des exceptions du parefeu Windows (18) - 12s
O87 - FAEL: "{8A6FD4B0-1E89-4953-BEE4-C25C387EDB08}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe  =>.Steam SteamApps Games
O87 - FAEL: "{078A561A-493A-4431-9742-DC2FC3A8D301}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe  =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{99D2F370-A136-4896-A56E-7FB7423B6A17}D:\dossier\jerome\universe.sandbox.2.alpha.19\universe sandbox.exe" [In-None-P6-TRUE] .(...) -- D:\dossier\jerome\universe.sandbox.2.alpha.19\universe sandbox.exe
O87 - FAEL: "UDP Query User{85251C22-1C9F-425A-B852-0A243568B777}D:\dossier\jerome\universe.sandbox.2.alpha.19\universe sandbox.exe" [In-None-P17-TRUE] .(...) -- D:\dossier\jerome\universe.sandbox.2.alpha.19\universe sandbox.exe
O87 - FAEL: "{D2C88A6D-95F3-4203-818D-C6DBA1B72943}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Toribash\toribash.exe  =>.Steam SteamApps Games
O87 - FAEL: "{552207C0-8784-4DB8-B124-CA07B661CC4F}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Toribash\toribash.exe  =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{12790AC5-0F2C-424B-8F02-1568466D992D}D:\dossier\jerome\pewdiepie legend of the brofist\pewdiepielegendofthebrofist.exe" [In-None-P6-TRUE] .(...) -- D:\dossier\jerome\pewdiepie legend of the brofist\pewdiepielegendofthebrofist.exe
O87 - FAEL: "UDP Query User{D7B9DD7D-4530-4FB1-A081-3A6AD3DED0E5}D:\dossier\jerome\pewdiepie legend of the brofist\pewdiepielegendofthebrofist.exe" [In-None-P17-TRUE] .(...) -- D:\dossier\jerome\pewdiepie legend of the brofist\pewdiepielegendofthebrofist.exe
O87 - FAEL: "{4E79641D-E8B1-4838-B0A9-E35588C0B8C9}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Why So Evil\Why So Evil_50f.exe  =>.Steam SteamApps Games
O87 - FAEL: "{DF769B2F-EECC-480A-8588-5431EE102733}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Why So Evil\Why So Evil_50f.exe  =>.Steam SteamApps Games
O87 - FAEL: "{79497D85-A0B9-4339-81FE-B1C8092B462B}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe  =>.Steam SteamApps Games
O87 - FAEL: "{3CBB4938-E93E-4D14-9E7C-75A1C5F2F4E5}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe  =>.Steam SteamApps Games
O87 - FAEL: "{A2FD9DA2-A51A-42AE-8A22-FB88BBA62240}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe  =>.Steam SteamApps Games
O87 - FAEL: "{D914DDF6-B1BB-4346-843B-C12D12055C4F}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe  =>.Steam SteamApps Games
O87 - FAEL: "{C3878334-CF71-4131-9587-342BACEBF48E}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Scrap Mechanic\Release\ScrapMechanic.exe  =>.Steam SteamApps Games
O87 - FAEL: "{3B49B798-3EA8-4E26-818A-FB28EE23AE80}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Scrap Mechanic\Release\ScrapMechanic.exe  =>.Steam SteamApps Games
O87 - FAEL: "{58FE193F-7659-4DF1-8958-FE7AD3119541}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe  =>.Steam SteamApps Games
O87 - FAEL: "{2C4AD8B1-3475-418B-A3E8-FD53B63FFCC7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe  =>.Steam SteamApps Games

---\\ Scan Additionnel (14) - 0s
C:\WINDOWS\System32\Tasks\SystemHealer Monitor  =>PUP.Optional.SystemHealer
C:\WINDOWS\System32\Tasks\SystemHealer Run Delay  =>PUP.Optional.SystemHealer
HKLM\SOFTWARE\Wow6432Node\0CD16C20EDA10A269E88C671FF8F1FB6  =>PUP.Optional.CrossRider
HKCU\SOFTWARE\0CD16C20EDA10A269E88C671FF8F1FB6  =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AutoTime  =>Adware.TopTools
HKCU\SOFTWARE\System Healer  =>PUP.Optional.SystemHealer
HKCU\SOFTWARE\Wizzlabs  =>Adware.Kazy
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Healer  =>PUP.Optional.SystemHealer
C:\ProgramData\19a87fa1ec024bbcbb41931263354405  =>Adware.Suspect
C:\ProgramData\desktopfindkey  =>HackTool.WinActivator
C:\Users\JEROME\AppData\Roaming\ASPackage  =>PUP.Optional.ASPackage
C:\Users\JEROME\AppData\Roaming\System Healer  =>PUP.Optional.SystemHealer
C:\Users\JEROME\AppData\Local\CrashRpt  =>.Superfluous.CrashReports
C:\Users\JEROME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASPackage  =>PUP.Optional.ASPackage

---\\ Récapitulatif des éléments trouvés sur votre station (10) - 0s
https://www.nicolascoolman.com/fr/pup-optional-systemhealer/  =>PUP.Optional.SystemHealer
https://www.nicolascoolman.com/fr/repaquetage-et_infections/  =>PUP.Optional.ColdSearch
https://www.anti-malware.top/2016/04/30/pup-optional-crossrider/  =>PUP.Optional.CrossRider
https://www.nicolascoolman.com/fr/repaquetage-et_infections/  =>Adware.TopTools
https://www.anti-malware.top/2016/08/09/adware-kazy/  =>Adware.Kazy
https://www.anti-malware.top/2016/05/01/definition-dun-logiciel-pup-lpi/  =>Adware.Suspect
https://www.nicolascoolman.com/fr/hijacker-windows/  =>HackTool.WinActivator
https://www.nicolascoolman.com/fr/pup-optional-aspackage/  =>PUP.Optional.ASPackage
https://www.nicolascoolman.com/fr/logiciels-superflus  =>.Superfluous.CrashReports
https://www.nicolascoolman.com/fr/logiciels-superflus  =>.Superfluous.Trotux

~ End of the scan, 49436 items in 00h06mn15s (1171)