cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2014.11.26.167 - Nicolas Coolman (26/11/2014)
~ Lancé par Isabelle (29/11/2014 09:22:47)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program


---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.17148
GCIE: Google Chrome v39.0.2171.65 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : QC736
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
Avast Premier v10.0.2208
McAfee Internet Security Suite v12.8.992
McAfee Security Scan Plus v3.0.285.6
Windows Defender W8 (Deactivate)

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 15 Plugin

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3912 MB (34% free)
System Restore: Activé (Enable)
System drive C: has 400 GB (90%) free of 445 GB

---\\ Mode de connexion au système
~ Computer Name: ISABELLE
~ User Name: Isabelle
~ All Users Names: Isabelle, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Isabelle\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Isabelle\AppData\Roaming\
~ %Desktop% : C:\Users\Isabelle\Desktop\
~ %Favorites% : C:\Users\Isabelle\Favorites\
~ %LocalAppData% : C:\Users\Isabelle\AppData\Local\
~ %StartMenu% : C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 400 Go of 445 Go)
D: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.928791755FDDEA721B053535EF84FA17] - (.Microsoft Corporation - Explorateur Windows.) (.26/07/2012 - 05:49:13.) -- C:\Windows\Explorer.exe [2380440]
[MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de démarrage de Windows.) (.26/07/2012 - 04:08:50.) -- C:\Windows\System32\Wininit.exe [132608]
[MD5.4E0BA41211B870111B8DE9B03B49C18E] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/10/2014 - 02:56:17.) -- C:\Windows\System32\wininet.dll [2237952]
[MD5.75DD70A14145499C9F7D903CF9A8C91B] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.12/04/2014 - 10:10:31.) -- C:\Windows\System32\Winlogon.exe [578048]
[MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Bibliothèque de licences.) (.26/07/2012 - 04:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408]
[MD5.FE7FB9612D354EB41DF4F0FF5D6FB259] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.29/05/2014 - 23:24:46.) -- C:\Windows\system32\Drivers\AFD.sys [576512]
[MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 06:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840]
[MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 03:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544]
[MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 03:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.09D9EB9E7898F8E6561473A20CC808B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/07/2012 - 03:26:53.) -- C:\Windows\system32\Drivers\DfsC.sys [118784]
[MD5.8D6810577E9C4F56DCB8E9BACAC7287B] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.26/07/2012 - 03:27:36.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168]
[MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 03:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640]
[MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 03:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920]
[MD5.1EEAA5A62E8C49DDF58798F06F78BFFA] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.26/07/2012 - 03:23:25.) -- C:\Windows\system32\Drivers\MRxSmb.sys [368128]
[MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 03:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776]
[MD5.4A7EEA9C4AD5CBFDA3C0E5B821C99CAD] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.26/07/2012 - 06:26:46.) -- C:\Windows\system32\Drivers\ntfs.sys [1934064]
[MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parallèle.) (.26/07/2012 - 03:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984]
[MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 03:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.26/07/2012 - 03:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712]
[MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248]
[MD5.2FB3CDFD5EAF4CD9D4AFAF96877D13AE] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.26/07/2012 - 05:57:09.) -- C:\Windows\system32\Drivers\volsnap.sys [332016]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes Favoris (My Favorites) : 1/7
~ Mes Documents (My Documents) : 1/3
~ Mon Bureau (My Desktop) : 1/4
~ Menu demarrer (Programs) : 1/25
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.2F88D2BE39D0BC3415A999C571765159] - (.Pas de propriétaire - ASP.) -- C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe [6713112] [PID.5948] =>PUP.AdvancedSystemProtector
[MD5.2C1F51662456F0D04F5AF240DDB0DACC] - (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8170264] [PID.6064]
[MD5.FC28BCCD8B999366A9B9947C9BFA051C] - (.SUPER PC TOOLS LIMITED - Super Optimizer Smart Scan.) -- C:\Program Files (x86)\Super Optimizer\SupOptSmartScan.exe [951400] [PID.6100] =>PUP.SuperOptimizer
[MD5.1B38F4C2BCDB133B757E22BEB61FB3FC] - (.Dritek System Inc. - Launch Manager.) -- C:\Program Files (x86)\Launch Manager\LManager.exe [1176176] [PID.6284]
[MD5.7033E85909C7F7B117AE630947A4D587] - (...) -- C:\Users\Isabelle\AppData\Local\mbot_fr_289\upmbot_fr_289.exe [3308712] [PID.6324] =>PUP.CrossRider
[MD5.944A91AF08BBED92BD0ABC81203042A9] - (...) -- C:\Users\Isabelle\AppData\Local\Vosteran\Application\vosteran.exe [1014272] [PID.7188] =>PUP.Vosteran
[MD5.704A01D402F0275877E7FA1BB151D997] - (.NTI Corporation - Acer Backup Manager.) -- C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [533056] [PID.7488]
[MD5.D89F7ACEDFAD065FC7C2C5B8B563F248] - (.Software Updater - Software Updater.) -- C:\Program Files (x86)\Software Updater\SoftwareUpdater.exe [2208336] [PID.7508] =>PUP.Eorezo
[MD5.7AE4D6C70C2D7912AB2B4651DF595575] - (.CyberLink - MediaEspresso DeviceDetector.) -- C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [990320] [PID.7748]
[MD5.468870EEA20C7A0652CB685AF538A615] - (...) -- C:\Program Files (x86)\mbot_fr_289\mbot_fr_289.exe [3976360] [PID.6324] =>PUP.CrossRider
[MD5.EE5D9EB496A1561964D16FB00AEB21B0] - (.Pas de propriétaire - iuBrowserIEAgent.) -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [44176] [PID.3572]
[MD5.6F47E26D714A8B9B6703991AE40B3A1A] - (.Pas de propriétaire - iuEmailOutlookAgent.) -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [25232] [PID.6940]
[MD5.FFB8CB731D62EC434A552680E0F8EC1A] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [5226600] [PID.5984]
[MD5.A2C1288BD3DEDE03B2327E5972678C2E] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe [271808] [PID.8968]
[MD5.17D0F31B84A09B648A662AD5C06B5600] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8132608] [PID.7856]
~ Processes Running: Scanned in 00mn 01s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Isabelle\AppData\Local\Google\Chrome\User Data\Default\Preferences

---\\ Liste des dossiers d'extension Google Chrome
~ Google Lines Browser: 0 Scanned in 00mn 03s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M2 - MFEP: RegExtension {4727332E-D569-6469-04FC-1482E1C60CEC} . (...) -- C:\Program Files (x86)\ver2BlockAndSurf\183.xpi =>PUP.BlockAndSurf
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_239.dll
P2 - FPN: [HKLM] [@mcafee.com/MSC,version=10] - (...) -- C:\Program Files\mcafee\msc\npMcSnFFPl64.dll
~ Firefox Browser: 3 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com =>Hijacker.OmigaPlus
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga-plus.com =>Hijacker.OmigaPlus
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com =>Hijacker.OmigaPlus
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com =>Hijacker.OmigaPlus
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga-plus.com =>Hijacker.OmigaPlus
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com =>Hijacker.OmigaPlus
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com =>Hijacker.OmigaPlus
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16384 (win8_rtm.120725-1247)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 16 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: a7c9e3c0eb27013147ac1bd4f3c7881c0061195 [64Bits] - {11111111-1111-1111-1111-110611111195} . (.SBG - Cinemax BHO.) -- C:\Program Files (x86)\Cinemax\Cinemax-bho.dll
O2 - BHO: eba99200f5600131931909dd7c8eb7090062180 [64Bits] - {11111111-1111-1111-1111-110611211180} . (.InstallMoon - GoHD BHO.) -- C:\Program Files (x86)\GoHD\GoHD-bho.dll
O2 - BHO: 24365fa5db744bf7bf434334da0778c60065779 [64Bits] - {11111111-1111-1111-1111-110611571179} . (.HQ ProV21.11 - HQProVideo 1.6V21.11 BHO.) -- C:\Program Files (x86)\HQProVideo 1.6V21.11\HQProVideo 1.6V21.11-bho.dll =>PUP.CrossRider
O2 - BHO: Linkey [64Bits] - {4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47} Clé orpheline =>PUP.LinkeySearch
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: ClickCaption [64Bits] - {A18EA34C-6D33-4298-8A54-7F16499904C0} . (.ClickCaption - Click Caption Client BHO x86.) -- C:\Program Files (x86)\ClickCaption_1.10.0.2\IE\ClickCaptionClientIE.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: McAfee SiteAdvisor BHO [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} . (.McAfee, Inc. - SiteAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
O2 - BHO: BlockAndSurf [64Bits] - {F2548C35-30B7-88A1-6ABC-F34892EE0433} . (...) -- C:\Program Files (x86)\ver2BlockAndSurf\183.dll =>PUP.BlockAndSurf
O2 - BHO: IESpeakDoc [64Bits] - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} Clé orpheline
~ BHO: 19 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: McAfee SiteAdvisor Toolbar - [HKLM]{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (.McAfee, Inc. - SiteAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Acheter en ligne.lnk . (...) -- C:\Program Files (x86)\Accessory Store\StartUrl.exe (.not file.)
O4 - GS\Desktop [Public]: eBay.lnk . (...) -- c:\WINDOWS\Installer\{A694AF57-9891-4D62-824C-7E55A1361A14}\_5D21023432338C3A124C18.exe =>Toolbar.eBay
O4 - GS\QuickLaunch [Isabelle]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://isearch.omiga-plus.com =>Hijacker.OmigaPlus
O4 - GS\QuickLaunch [Isabelle]: SpeedUpMyPC.lnk . (.Uniblue Systems Limited - Uniblue SpeedUpMyPC.) -- C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe =>PUP.SpeedUpMyPC
O4 - GS\QuickLaunch [Isabelle]: Vosteran.lnk . (...) -- C:\Users\Isabelle\AppData\Local\Vosteran\Application\vosteran.exe =>PUP.Vosteran
O4 - GS\TaskBar [Isabelle]: Vosteran.lnk . (...) -- C:\Users\Isabelle\AppData\Local\Vosteran\Application\vosteran.exe =>PUP.Vosteran
O4 - GS\Program [Isabelle]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://isearch.omiga-plus.com =>Hijacker.OmigaPlus
~ Global Startup: 8 Scanned in 00mn 01s



---\\ Applications lancées au démarrage du système (O4)
O4 - GS\Startup [Public]: SoftwareUpdater.lnk . (.Software Updater - Software Updater.) -- C:\Program Files (x86)\Software Updater\SoftwareUpdater.exe =>PUP.Eorezo
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [RtHDVBg_Dolby] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [BtPreLoad] . (...) -- C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe
O4 - HKCU\..\Run: [Super Optimizer] . (.SUPER PC TOOLS LIMITED - Super Optimizer Launcher.) -- C:\Program Files (x86)\Super Optimizer\SupOptLauncher.exe =>PUP.SuperOptimizer
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_F126F000005C22460EEB76672DB6FE4B] . (...) -- C:\Users\Isabelle\AppData\Local\Vosteran\Application\vosteran.exe =>PUP.Vosteran
O4 - HKLM\..\Wow6432Node\Run: [BakupManagerTray] . (.NTI Corporation - Acer Backup Manager.) -- C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O4 - HKLM\..\Wow6432Node\Run: [mcui_exe] . (.McAfee, Inc. - McAfee Security Center.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe
O4 - HKLM\..\Wow6432Node\Run: [Dolby Home Theater v4] . (.Dolby Laboratories Inc. - Dolby Profile Selector.) -- C:\Dolby PCEE4\pcee4.exe
O4 - HKLM\..\Wow6432Node\Run: [LManager] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [Norton Online Backup] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe =>.Symantec Corporation
O4 - HKLM\..\Wow6432Node\Run: [mbot_fr_289] . (...) -- C:\Program Files (x86)\mbot_fr_289\mbot_fr_289.exe =>PUP.CrossRider
O4 - HKLM\..\Wow6432Node\Run: [mcpltui_exe] . (.McAfee, Inc. - McAfee Security Center.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\RunOnce: [upmbot_fr_289.exe] . (...) -- C:\Users\Isabelle\AppData\Local\mbot_fr_289\upmbot_fr_289.exe =>PUP.CrossRider
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [IsMyWinLockerReboot] . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [IsMyWinLockerReboot] . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe
O4 - HKUS\S-1-5-21-3622414748-2507317344-3855549923-1001\..\Run: [Super Optimizer] . (.SUPER PC TOOLS LIMITED - Super Optimizer Launcher.) -- C:\Program Files (x86)\Super Optimizer\SupOptLauncher.exe =>PUP.SuperOptimizer
O4 - HKUS\S-1-5-21-3622414748-2507317344-3855549923-1001\..\Run: [GoogleChromeAutoLaunch_F126F000005C22460EEB76672DB6FE4B] . (...) -- C:\Users\Isabelle\AppData\Local\Vosteran\Application\vosteran.exe =>PUP.Vosteran
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Send by Bluetooth to [64Bits] - {7815BE26-237D-41A8-A98F-F7BD75F71086} -- Clé orpheline
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll
~ Winsock: 7 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{6E272871-8AB9-4C36-8E20-9E1D149AB4F5}: NameServer = 31.168.224.106,5.135.12.52
O17 - HKLM\System\CCS\Services\Tcpip\..\{B797AA63-9320-4A82-A579-49202D743FE5}: NameServer = 31.168.224.106,5.135.12.52
O17 - HKLM\System\CCS\Services\Tcpip\..\{6E272871-8AB9-4C36-8E20-9E1D149AB4F5}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{B797AA63-9320-4A82-A579-49202D743FE5}: DhcpNameServer = 192.168.32.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{B797AA63-9320-4A82-A579-49202D743FE5}: DhcpDomain = ANCD.com
O17 - HKLM\System\CS1\Services\Tcpip\..\{6E272871-8AB9-4C36-8E20-9E1D149AB4F5}: NameServer = 31.168.224.106,5.135.12.52
O17 - HKLM\System\CS1\Services\Tcpip\..\{B797AA63-9320-4A82-A579-49202D743FE5}: NameServer = 31.168.224.106,5.135.12.52
O17 - HKLM\System\CS1\Services\Tcpip\..\{6E272871-8AB9-4C36-8E20-9E1D149AB4F5}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{B797AA63-9320-4A82-A579-49202D743FE5}: DhcpNameServer = 192.168.32.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{B797AA63-9320-4A82-A579-49202D743FE5}: DhcpDomain = ANCD.com
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.Search Protect - Search Protect.) - C:\Program Files (x86)\SearchProtect\SearchProtect\bin\VC64Loader.dll =>PUP.SearchProtect
~ AppInit DLL: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: AtherosSvc (AtherosSvc) . (.Qualcomm Atheros Commnucations - AdminService Application.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Super Optimizer (cae99edb) . (...) - c:\Program Files (x86)\Super Optimizer\SupOptCrash.dll =>PUP.SuperOptimizer
O23 - Service: CCDMonitorService (CCDMonitorService) . (.Acer Incorporated - CCD Monitor Service.) - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Click Caption 1.10.0.2 Client Service (ccsvc_1.10.0.2) . (.ClickCaption - Click Caption Client Service.) - C:\Program Files (x86)\ClickCaption_1.10.0.2\Service\ccsvc.exe
O23 - Service: Search Protect Service (CltMngSvc) . (.Search Protect - Search Protect.) - C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe =>PUP.SearchProtect
O23 - Service: Dritek WMI Service (DsiWMIService) . (.Dritek System Inc. - Dritek WMI Service.) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: F06DEFF2-5B9C-490D-910F-35D3A9119622 (F06DEFF2-5B9C-490D-910F-35D3A9119622) . (...) - C:\Program Files (x86)\Settings Manager\smdmf\x64\smdmfmgrc2.cfg =>PUP.SystemK
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: McAfee Home Network (HomeNetSvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee AP Service (McAPExe) . (.McAfee, Inc. - McAfee Access Protection.) - C:\Program Files\McAfee\MSC\McAPexe.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee OOBE Service (McOobeSv) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Platform Services (mcpltsvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) . (.McAfee, Inc. - McAfee On-Access Scanner service.) - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) . (.McAfee, Inc. - McAfee Core Firewall Service.) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) . (.McAfee, Inc. - McAfee Process Validation Service.) - C:\windows\system32\mfevtps.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Norton Online Backup (NOBU) . (.Symantec Corporation - Norton Online Backup Service.) - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe =>.Symantec Corporation
O23 - Service: PgRTZfwRBuc (PgRTZfwRBuc) . (.Small Island Development - TVWizard Service.) - C:\ProgramData\inqQruaxLC\PgRTZfwRBuc.exe =>PUP.SmallIsland
O23 - Service: Reimage Real Time Protector (ReimageRealTimeProtector) . (.Reimage® - Reimage Real Time Protection.) - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe =>Rogue.ReimageRepair
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) . (.Dritek System INC. - RfBtnSvc Application.) - C:\Windows\RfBtnSvc64.exe
O23 - Service: VO Service component (servervo) . (...) - C:\Users\Isabelle\AppData\Roaming\VOPackage\VOsrv.exe =>Adware.Downware
O23 - Service: SmdmF Service (SmdmFService) . (...) - C:\Program Files (x86)\Settings Manager\smdmf\SmdmFService.exe =>PUP.SystemK
O23 - Service: Universal Updater Service (UniversalUpdater) . (.Pas de propriétaire - Universal Updater.) - C:\Program Files (x86)\0ca45c95134d\cf3e08d747e4.exe =>PUP.Salus
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Update CommonShare (Update CommonShare) . (...) - C:\Program Files (x86)\CommonShare\updateCommonShare.exe =>PUP.CommonShare
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) . (.Fuyu LIMITED - WindowsProtectManger Service.) - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe =>PUP.Fuyu
O23 - Service: ZAtheros Wlan Agent (ZAtheros Wlan Agent) . (.Atheros - Atheros Coex Service Application.) - C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe
~ Services: 37 Scanned in 00mn 21s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (aswBoot.exe /M:26574e3252 /wow /dir:"C:\Program Files\AVAST Software\Avast") - File not found
~ BEX: 2 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.59CCF318A35CEE28B90889B9FC74CA68] [APT] [5142dff1-967c-4bd6-8f90-b84f6ac2b90a-1] (.InstallMoon.) -- C:\Program Files (x86)\GoHD\GoHD-codedownloader.exe [1140136]
[MD5.C08A10E633714D8ADC6835D4D04F7AB9] [APT] [5142dff1-967c-4bd6-8f90-b84f6ac2b90a-11] (.InstallMoon.) -- C:\Program Files (x86)\GoHD\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-11.exe [2053544]
[MD5.887D292DDDF5D38DACCB6ADB1D88020F] [APT] [5142dff1-967c-4bd6-8f90-b84f6ac2b90a-2] (.InstallMoon.) -- C:\Program Files (x86)\GoHD\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-2.exe [953768]
[MD5.F9D1095E417B0F9590297EDC138EDE63] [APT] [5142dff1-967c-4bd6-8f90-b84f6ac2b90a-4] (.InstallMoon.) -- C:\Program Files (x86)\GoHD\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-4.exe [1561000]
[MD5.57426F06FC7B351C8FDAEA8E24F61394] [APT] [5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5] (.InstallMoon.) -- C:\Program Files (x86)\GoHD\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5.exe [1185704]
[MD5.57426F06FC7B351C8FDAEA8E24F61394] [APT] [5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5_user] (.InstallMoon.) -- C:\Program Files (x86)\GoHD\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5.exe [1185704]
[MD5.19C6C21238CCC64B1CAE8D34300951DB] [APT] [5142dff1-967c-4bd6-8f90-b84f6ac2b90a-6] (.InstallMoon.) -- C:\Program Files (x86)\GoHD\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-6.exe [1207720]
[MD5.59CCF318A35CEE28B90889B9FC74CA68] [APT] [5142dff1-967c-4bd6-8f90-b84f6ac2b90a-7] (.InstallMoon.) -- C:\Program Files (x86)\GoHD\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-7.exe [1140136]
[MD5.A715637BA7630107610BD93AED7FC6A8] [APT] [848943cd-0256-4068-a995-d9e20240544a-1] (.HQ ProV21.11.) -- C:\Program Files (x86)\HQProVideo 1.6V21.11\HQProVideo 1.6V21.11-codedownloader.exe [1140120] =>PUP.CrossRider
[MD5.C33F74B58B153495519FDABB1D3175EE] [APT] [848943cd-0256-4068-a995-d9e20240544a-10_user] (.HQ ProV21.11.) -- C:\Program Files (x86)\HQProVideo 1.6V21.11\848943cd-0256-4068-a995-d9e20240544a-10.exe [564120] =>PUP.CrossRider
[MD5.BB924F7D3796D49E83A1107C7412EF4E] [APT] [848943cd-0256-4068-a995-d9e20240544a-11] (.HQ ProV21.11.) -- C:\Program Files (x86)\HQProVideo 1.6V21.11\848943cd-0256-4068-a995-d9e20240544a-11.exe [2053528] =>PUP.CrossRider
[MD5.4C896540B97E9AA22C85A14BF239E5C1] [APT] [848943cd-0256-4068-a995-d9e20240544a-2] (.HQ ProV21.11.) -- C:\Program Files (x86)\HQProVideo 1.6V21.11\848943cd-0256-4068-a995-d9e20240544a-2.exe [953752] =>PUP.CrossRider
[MD5.BB924F7D3796D49E83A1107C7412EF4E] [APT] [848943cd-0256-4068-a995-d9e20240544a-3] (.HQ ProV21.11.) -- C:\Program Files (x86)\HQProVideo 1.6V21.11\848943cd-0256-4068-a995-d9e20240544a-3.exe [2053528] =>PUP.CrossRider
[MD5.73C3CE18307110AE94D846638CF4DEBC] [APT] [848943cd-0256-4068-a995-d9e20240544a-4] (.HQ ProV21.11.) -- C:\Program Files (x86)\HQProVideo 1.6V21.11\848943cd-0256-4068-a995-d9e20240544a-4.exe [1560984] =>PUP.CrossRider
[MD5.D5E6684B914FF3A9B65E0DCBA6141757] [APT] [848943cd-0256-4068-a995-d9e20240544a-5] (.HQ ProV21.11.) -- C:\Program Files (x86)\HQProVideo 1.6V21.11\848943cd-0256-4068-a995-d9e20240544a-5.exe [1185688] =>PUP.CrossRider
[MD5.D5E6684B914FF3A9B65E0DCBA6141757] [APT] [848943cd-0256-4068-a995-d9e20240544a-5_user] (.HQ ProV21.11.) -- C:\Program Files (x86)\HQProVideo 1.6V21.11\848943cd-0256-4068-a995-d9e20240544a-5.exe [1185688] =>PUP.CrossRider
[MD5.094E5774B488AAA0CD347883C890908F] [APT] [a9d46685-5978-4ebb-bc5f-c8ee7815c83c] (...) -- C:\Program Files (x86)\Information\a9d46685-5978-4ebb-bc5f-c8ee7815c83c.exe [32664]
[MD5.F79623288F2A357AB20288B5DC4F452A] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [267440]
[MD5.A35F3BCC83B932F0F50571F7B12632DF] [APT] [ALU] (...) -- C:\Program Files (x86)\Acer\Live Updater\updater.exe [3331216]
[MD5.BD0BA490E0300E859DB99DA3AB024371] [APT] [ALUAgent] (...) -- C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [39568]
[MD5.642B58F2CEC4F23D25A3EF9C625252AC] [APT] [APSnotifierPP1] (.AnyProtect.com.) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [6434816] =>PUP.AnyProtect
[MD5.642B58F2CEC4F23D25A3EF9C625252AC] [APT] [APSnotifierPP2] (.AnyProtect.com.) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [6434816] =>PUP.AnyProtect
[MD5.642B58F2CEC4F23D25A3EF9C625252AC] [APT] [APSnotifierPP3] (.AnyProtect.com.) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [6434816] =>PUP.AnyProtect
[MD5.4BB7714617D50D77FCDA6B0182FD8A9A] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [857888]
[MD5.4A0CD8BA37C791E5D8B3D2F2502E9E74] [APT] [b25622d0-fe6c-4cfb-8730-c6ca910be042-1] (.SBG.) -- C:\Program Files (x86)\Cinemax\Cinemax-codedownloader.exe [1108896]
[MD5.5738C278DEF97CAF96051330DDD0CA00] [APT] [b25622d0-fe6c-4cfb-8730-c6ca910be042-11] (.SBG.) -- C:\Program Files (x86)\Cinemax\b25622d0-fe6c-4cfb-8730-c6ca910be042-11.exe [2004896]
[MD5.D497E8FF46A601C5C67297D9AC985DB6] [APT] [b25622d0-fe6c-4cfb-8730-c6ca910be042-2] (.SBG.) -- C:\Program Files (x86)\Cinemax\b25622d0-fe6c-4cfb-8730-c6ca910be042-2.exe [928160]
[MD5.B5AE0FAB03668DD329FA8FA45119F1E5] [APT] [b25622d0-fe6c-4cfb-8730-c6ca910be042-4] (.SBG.) -- C:\Program Files (x86)\Cinemax\b25622d0-fe6c-4cfb-8730-c6ca910be042-4.exe [1521568]
[MD5.484AC7F1AA4C5D1A3BE8CF85E39FADB7] [APT] [b25622d0-fe6c-4cfb-8730-c6ca910be042-6] (.SBG.) -- C:\Program Files (x86)\Cinemax\b25622d0-fe6c-4cfb-8730-c6ca910be042-6.exe [1296800]
[MD5.4A0CD8BA37C791E5D8B3D2F2502E9E74] [APT] [b25622d0-fe6c-4cfb-8730-c6ca910be042-7] (.SBG.) -- C:\Program Files (x86)\Cinemax\b25622d0-fe6c-4cfb-8730-c6ca910be042-7.exe [1108896]
[MD5.4B6361E401DD67C38C8E8CA9745E55C6] [APT] [CloudScout] (.www.CloudGuard.me.) -- C:\Program Files (x86)\CloudGuard\CloudGuard.exe [528384] =>PUP.CloudGuard
[MD5.7AE4D6C70C2D7912AB2B4651DF595575] [APT] [DeviceDetector] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [990320]
[MD5.3E0513090A7CBA876F031D7F6E14A6EF] [APT] [DriverRestore_DailyScan] (...) -- C:\Program Files (x86)\DriverRestore\DriverRestore.exe [726136]
[MD5.3E0513090A7CBA876F031D7F6E14A6EF] [APT] [DriverRestore_ScheduledScan] (...) -- C:\Program Files (x86)\DriverRestore\DriverRestore.exe [726136]
[MD5.DD829C52E1F7DC59A506407953FE3E8F] [APT] [ec53544f-7e15-46a7-b354-483d67d1c926] (.HQ ProV21.11.) -- C:\Program Files (x86)\Information\ec53544f-7e15-46a7-b354-483d67d1c926.exe [390040]
[MD5.4942FBE3BA93C1536EC775A0104C11E9] [APT] [EgisUpdate] (.Egis Technology Inc..) -- C:\Program Files\EgisTec IPS\EgisUpdate.exe [202832]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.EE5D9EB496A1561964D16FB00AEB21B0] [APT] [iuBrowserIEAgent] (...) -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [44176]
[MD5.6F47E26D714A8B9B6703991AE40B3A1A] [APT] [iuEmailOutlookAgent] (...) -- C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [25232]
[MD5.301751EF050575A91F5AAEAC86FFD6A7] [APT] [PC Health Kit Schedule] (.PC Health Labs.) -- C:\Program Files (x86)\PC Health Kit\PCHKSchedule.exe [1049888] =>PUP.DealPly
[MD5.773C84EA68CF5359A6B4C82D6A96A938] [APT] [PMMUpdate] (.Egis Technology Inc..) -- C:\Program Files\EgisTec IPS\PMMUpdate.exe [467024]
[MD5.A05EACA4BAA606947B948B3EE213F8D1] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [5294736]
[MD5.2C1F51662456F0D04F5AF240DDB0DACC] [APT] [RegClean Pro] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8170264] =>Rogue.RegistryPowerCleaner
[MD5.2C1F51662456F0D04F5AF240DDB0DACC] [APT] [RegClean Pro_DEFAULT] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8170264] =>Rogue.RegistryPowerCleaner
[MD5.2C1F51662456F0D04F5AF240DDB0DACC] [APT] [RegClean Pro_UPDATES] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8170264] =>Rogue.RegistryPowerCleaner
[MD5.FC168E2683F62C6B711EE1E5C31C1C6F] [APT] [Reimage Reminder] (...) -- C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe [4376416] =>Rogue.ReimageRepair
[MD5.76220CAD504113D6D6CBEDE4F302CBDB] [APT] [ReimageUpdater] (.Reimage®.) -- C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [7111528] =>Rogue.ReimageRepair
[MD5.AB97B015F61624BFB39BC4A86F894D0A] [APT] [SpeedUpMyPC Maintenance] (.Uniblue Systems Limited.) -- C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe [4141400] =>PUP.SpeedUpMyPC
[MD5.AB97B015F61624BFB39BC4A86F894D0A] [APT] [SpeedUpMyPC Startup] (.Uniblue Systems Limited.) -- C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe [4141400] =>PUP.SpeedUpMyPC
[MD5.9975D471E404518309F1A3B843FEF996] [APT] [Super Optimizer Schedule] (.SUPER PC TOOLS LIMITED.) -- C:\Program Files (x86)\Super Optimizer\SupOptLauncher.exe [676968] =>PUP.SuperOptimizer
[MD5.00000000000000000000000000000000] [APT] [WSE_Vosteran] (...) -- C:\Users\Isabelle\AppData\Roaming\WSE_VO~1\UPDATE~1\UPDATE~1.exe (.not file.) [0] =>PUP.Vosteran
[MD5.BB924F7D3796D49E83A1107C7412EF4E] [APT] [XDEXEHW] (.HQ ProV21.11.) -- C:\Users\Isabelle\AppData\Roaming\XDexeHW.exe [2053528]
[MD5.73C3CE18307110AE94D846638CF4DEBC] [APT] [ZZKN] (.HQ ProV21.11.) -- C:\Users\Isabelle\AppData\Roaming\ZZKN.exe [1560984]
[MD5.74988526720334CD44ACC1DD78525517] [APT] [Notification] (.Acer Incorporated.) -- C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [521360]
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-1 - (.InstallMoon.) -- C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-1.job [3086] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-1 - (.InstallMoon.) -- C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-1 [3086] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-11 - (.InstallMoon.) -- C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-11.job [4830] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-11 - (.InstallMoon.) -- C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-11 [4830] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-2 - (.InstallMoon.) -- C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-2.job [2100] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-2 - (.InstallMoon.) -- C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-2 [2100] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-4 - (.InstallMoon.) -- C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-4.job [4148] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-4 - (.InstallMoon.) -- C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-4 [4148] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5 - (.InstallMoon.) -- C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5.job [2436] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5 - (.InstallMoon.) -- C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5 [2436] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5_user - (.InstallMoon.) -- C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5_user.job [2436] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5_user - (.InstallMoon.) -- C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5_user [2436] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-6 - (.InstallMoon.) -- C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-6.job [5508] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-6 - (.InstallMoon.) -- C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-6 [5508] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-7 - (.InstallMoon.) -- C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-7.job [5508] =>PUP.CrossRider
O39 - APT: 5142dff1-967c-4bd6-8f90-b84f6ac2b90a-7 - (.InstallMoon.) -- C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-7 [5508] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-1 - (.HQ ProV21.11.) -- C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-1.job [3150] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-1 - (.HQ ProV21.11.) -- C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-1 [3150] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-10_user - (.HQ ProV21.11.) -- C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-10_user.job [1262]
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-10_user - (.HQ ProV21.11.) -- C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-10_user [1262]
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-11 - (.HQ ProV21.11.) -- C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-11.job [5206] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-11 - (.HQ ProV21.11.) -- C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-11 [5206] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-2 - (.HQ ProV21.11.) -- C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-2.job [2132] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-2 - (.HQ ProV21.11.) -- C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-2 [2132] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-3 - (.HQ ProV21.11.) -- C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-3.job [4180] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-3 - (.HQ ProV21.11.) -- C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-3 [4180] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-4 - (.HQ ProV21.11.) -- C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-4.job [4180] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-4 - (.HQ ProV21.11.) -- C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-4 [4180] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-5 - (.HQ ProV21.11.) -- C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-5.job [2468] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-5 - (.HQ ProV21.11.) -- C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-5 [2468] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-5_user - (.HQ ProV21.11.) -- C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-5_user.job [2468] =>PUP.CrossRider
O39 - APT: 848943cd-0256-4068-a995-d9e20240544a-5_user - (.HQ ProV21.11.) -- C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-5_user [2468] =>PUP.CrossRider
O39 - APT: a9d46685-5978-4ebb-bc5f-c8ee7815c83c - (...) -- C:\Windows\Tasks\a9d46685-5978-4ebb-bc5f-c8ee7815c83c.job [650]
O39 - APT: a9d46685-5978-4ebb-bc5f-c8ee7815c83c - (...) -- C:\Windows\System32\Tasks\a9d46685-5978-4ebb-bc5f-c8ee7815c83c [650]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: APSnotifierPP1 - (.AnyProtect.com.) -- C:\Windows\Tasks\APSnotifierPP1.job [378] =>PUP.AnyProtect
O39 - APT: APSnotifierPP1 - (.AnyProtect.com.) -- C:\Windows\System32\Tasks\APSnotifierPP1 [378] =>PUP.AnyProtect
O39 - APT: APSnotifierPP2 - (.AnyProtect.com.) -- C:\Windows\Tasks\APSnotifierPP2.job [376] =>PUP.AnyProtect
O39 - APT: APSnotifierPP2 - (.AnyProtect.com.) -- C:\Windows\System32\Tasks\APSnotifierPP2 [376] =>PUP.AnyProtect
O39 - APT: APSnotifierPP3 - (.AnyProtect.com.) -- C:\Windows\Tasks\APSnotifierPP3.job [376] =>PUP.AnyProtect
O39 - APT: APSnotifierPP3 - (.AnyProtect.com.) -- C:\Windows\System32\Tasks\APSnotifierPP3 [376] =>PUP.AnyProtect
O39 - APT: b25622d0-fe6c-4cfb-8730-c6ca910be042-1 - (.SBG.) -- C:\Windows\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-1.job [3098] =>PUP.CrossRider
O39 - APT: b25622d0-fe6c-4cfb-8730-c6ca910be042-1 - (.SBG.) -- C:\Windows\System32\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-1 [3098] =>PUP.CrossRider
O39 - APT: b25622d0-fe6c-4cfb-8730-c6ca910be042-11 - (.SBG.) -- C:\Windows\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-11.job [4836] =>PUP.CrossRider
O39 - APT: b25622d0-fe6c-4cfb-8730-c6ca910be042-11 - (.SBG.) -- C:\Windows\System32\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-11 [4836] =>PUP.CrossRider
O39 - APT: b25622d0-fe6c-4cfb-8730-c6ca910be042-2 - (.SBG.) -- C:\Windows\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-2.job [2106] =>PUP.CrossRider
O39 - APT: b25622d0-fe6c-4cfb-8730-c6ca910be042-2 - (.SBG.) -- C:\Windows\System32\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-2 [2106] =>PUP.CrossRider
O39 - APT: b25622d0-fe6c-4cfb-8730-c6ca910be042-4 - (.SBG.) -- C:\Windows\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-4.job [4154] =>PUP.CrossRider
O39 - APT: b25622d0-fe6c-4cfb-8730-c6ca910be042-4 - (.SBG.) -- C:\Windows\System32\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-4 [4154] =>PUP.CrossRider
O39 - APT: b25622d0-fe6c-4cfb-8730-c6ca910be042-6 - (.SBG.) -- C:\Windows\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-6.job [5178] =>PUP.CrossRider
O39 - APT: b25622d0-fe6c-4cfb-8730-c6ca910be042-6 - (.SBG.) -- C:\Windows\System32\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-6 [5178] =>PUP.CrossRider
O39 - APT: b25622d0-fe6c-4cfb-8730-c6ca910be042-7 - (.SBG.) -- C:\Windows\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-7.job [5178] =>PUP.CrossRider
O39 - APT: b25622d0-fe6c-4cfb-8730-c6ca910be042-7 - (.SBG.) -- C:\Windows\System32\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-7 [5178] =>PUP.CrossRider
O39 - APT: - (..) -- C:\Windows\Tasks\BlockAndSurf Update.job [448] =>PUP.BlockAndSurf
O39 - APT: ec53544f-7e15-46a7-b354-483d67d1c926 - (.HQ ProV21.11.) -- C:\Windows\Tasks\ec53544f-7e15-46a7-b354-483d67d1c926.job [1454]
O39 - APT: ec53544f-7e15-46a7-b354-483d67d1c926 - (.HQ ProV21.11.) -- C:\Windows\System32\Tasks\ec53544f-7e15-46a7-b354-483d67d1c926 [1454]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1104]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1104]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1108]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1108]
O39 - APT: RegClean Pro_DEFAULT - (...) -- C:\Windows\Tasks\RegClean Pro_DEFAULT.job [282] =>Rogue.RegistryPowerCleaner
O39 - APT: RegClean Pro_DEFAULT - (...) -- C:\Windows\System32\Tasks\RegClean Pro_DEFAULT [282] =>Rogue.RegistryPowerCleaner
O39 - APT: RegClean Pro_UPDATES - (...) -- C:\Windows\Tasks\RegClean Pro_UPDATES.job [290] =>Rogue.RegistryPowerCleaner
O39 - APT: RegClean Pro_UPDATES - (...) -- C:\Windows\System32\Tasks\RegClean Pro_UPDATES [290] =>Rogue.RegistryPowerCleaner
O39 - APT: SpeedUpMyPC Maintenance - (.Uniblue Systems Limited.) -- C:\Windows\Tasks\SpeedUpMyPC Maintenance.job [302] =>PUP.SpeedUpMyPC
O39 - APT: SpeedUpMyPC Maintenance - (.Uniblue Systems Limited.) -- C:\Windows\System32\Tasks\SpeedUpMyPC Maintenance [302] =>PUP.SpeedUpMyPC
O39 - APT: SpeedUpMyPC Startup - (.Uniblue Systems Limited.) -- C:\Windows\Tasks\SpeedUpMyPC Startup.job [296] =>PUP.SpeedUpMyPC
O39 - APT: SpeedUpMyPC Startup - (.Uniblue Systems Limited.) -- C:\Windows\System32\Tasks\SpeedUpMyPC Startup [296] =>PUP.SpeedUpMyPC
O39 - APT: WSE_Vosteran - (...) -- C:\Windows\Tasks\WSE_Vosteran.job [322] =>PUP.Vosteran
O39 - APT: WSE_Vosteran - (...) -- C:\Windows\System32\Tasks\WSE_Vosteran [322] =>PUP.Vosteran
O39 - APT: XDEXEHW - (.HQ ProV21.11.) -- C:\Windows\Tasks\XDEXEHW.job [1714]
O39 - APT: XDEXEHW - (.HQ ProV21.11.) -- C:\Windows\System32\Tasks\XDEXEHW [1714]
O39 - APT: ZZKN - (.HQ ProV21.11.) -- C:\Windows\Tasks\ZZKN.job [1364]
O39 - APT: ZZKN - (.HQ ProV21.11.) -- C:\Windows\System32\Tasks\ZZKN [1364]
~ Scheduled Task: 128 Scanned in 00mn 07s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswKbd) . (.AVAST Software - avast! Keyboard Filter Driver.) - C:\Windows\system32\drivers\aswKbd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (b786bdb3c67d) . (.Windows (R) Win 7 DDK provider - NetFilter SDK WFP Driver (WPP).) - C:\Windows\System32\drivers\b786bdb3c67d.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: (ccnfd_1_10_0_2) . (.ClickCaption - Click Caption Driver x64.) - C:\Windows\System32\drivers\ccnfd_1_10_0_2.sys
O41 - Driver: (ccSet_NARA) . (.Symantec Corporation - Common Client Settings Driver.) - C:\Windows\system32\drivers\NARAx64\0401000.00A\ccSetx64.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (F06DEFF2-5B9C-490D-910F-35D3A9119622) . (...) - C:\Program Files (x86)\Settings Manager\smdmf\x64\smdmfmgrc2.cfg =>PUP.SystemK
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (mwlPSDFilter) . (.Egis Technology Inc. - PSD Mini Filter Driver.) - C:\Windows\System32\DRIVERS\mwlPSDFilter.sys
O41 - Driver: (mwlPSDNServ) . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
O41 - Driver: (mwlPSDVDisk) . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Drivers: 56 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: ALPS Touch Pad Driver - (.Alps Electric.) [HKLM][64Bits] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}
O42 - Logiciel: Acer Backup Manager - (.NTI Corporation.) [HKLM][64Bits] -- InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}
O42 - Logiciel: Acer Device Fast-lane - (.Acer Incorporated.) [HKLM][64Bits] -- {3F62D2FD-13C1-49A2-8B5D-47623D9460D7}
O42 - Logiciel: Acer Instant Update Service - (.Acer Incorporated.) [HKLM][64Bits] -- {D32367AC-8FCA-4DE8-A2C6-037AE14B4001}
O42 - Logiciel: Acer Power Management - (.Acer Incorporated.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479}
O42 - Logiciel: Acer Recovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {07F2005A-8CAC-4A4B-83A2-DA98A722CA61}
O42 - Logiciel: AcerCloud - (.Acer Incorporated.) [HKLM][64Bits] -- {A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}
O42 - Logiciel: AcerCloud Docs - (.Acer Incorporated.) [HKLM][64Bits] -- {CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}
O42 - Logiciel: Adobe Flash Player 15 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Advanced-System Protector - (.systweak.com.) [HKLM][64Bits] -- 00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~4A5BE654_is1 =>PUP.AdvancedSystemProtector
O42 - Logiciel: Agatha Christie - Death on the Nile - (.WildTangent.) [HKLM][64Bits] -- WTA-62df1d34-8385-4f4c-9165-3775e530ef64 =>.WildTangent
O42 - Logiciel: Aloha TriPeaks - (.WildTangent.) [HKLM][64Bits] -- WTA-37744105-a852-4220-ac75-e4de15b84f9c =>.WildTangent
O42 - Logiciel: AnyProtect - (.CMI Limited.) [HKLM][64Bits] -- AnyProtect =>PUP.AnyProtect
O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: Avast Premier - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: Backup Manager v4 - (.NTI Corporation.) [HKLM][64Bits] -- {9DDDF20E-9FD1-4434-A43E-E7889DBC9420}
O42 - Logiciel: Bejeweled 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-47e66693-96e2-4d91-bb09-7cf4eb7ac063 =>.WildTangent
O42 - Logiciel: BlockAndSurf - (.BlockAndSurf-software.) [HKLM][64Bits] -- 3B0FFFD7-8787-A687-FADD-EF61A1046ABF =>PUP.BlockAndSurf
O42 - Logiciel: Cinemax - (.SBG.) [HKLM][64Bits] -- Cinemax
O42 - Logiciel: Click Caption 1.10.0.2 - (.ClickCaption.) [HKLM][64Bits] -- ClickCaption_1.10.0.2
O42 - Logiciel: CloudScout Parental Control - (.CloudGuard.me.) [HKLM][64Bits] -- CloudGuard =>PUP.CloudGuard
O42 - Logiciel: CommonShare - (.CommonShare.) [HKLM][64Bits] -- CommonShare =>PUP.CommonShare
O42 - Logiciel: ConvertAd - (.ConvertAd.) [HKLM][64Bits] -- ConvertAd =>Adware.Pirrit
O42 - Logiciel: CyberLink MediaEspresso 6.5 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink MediaEspresso 6.5 - (.CyberLink Corp..) [HKLM][64Bits] -- {E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: Delicious: Emily's True Love Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-550c5023-da86-4642-8041-18ab25bbf3d0 =>.WildTangent
O42 - Logiciel: Dolby Home Theater v4 - (.Dolby Laboratories Inc.) [HKLM][64Bits] -- {B26438B4-BF51-49C3-9567-7F14A5E40CB9}
O42 - Logiciel: DriverRestore - (.383 Media, Inc..) [HKLM][64Bits] -- DriverRestore
O42 - Logiciel: Final Drive: Nitro - (.WildTangent.) [HKLM][64Bits] -- WTA-6310355f-c8e5-47f1-a3e1-2d1e8072cd13 =>.WildTangent
O42 - Logiciel: GoHD - (.InstallMoon.) [HKLM][64Bits] -- GoHD
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Governor of Poker 2 Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-0bd4c9fe-868d-4738-b9a9-cc81494fae84 =>.WildTangent
O42 - Logiciel: HQProVideo 1.6V21.11 - (.HQ ProV21.11.) [HKLM][64Bits] -- HQProVideo 1.6V21.11 =>PUP.CrossRider
O42 - Logiciel: Identity Card - (.Acer Incorporated.) [HKLM][64Bits] -- {3D9CB654-99AD-4301-89C6-0D12A790767C}
O42 - Logiciel: Information - (.Information.) [HKLM][64Bits] -- Information
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}
O42 - Logiciel: Island Tribe - (.WildTangent.) [HKLM][64Bits] -- WTA-f07e221f-dd23-4bb4-838b-94ec1acecbf0 =>.WildTangent
O42 - Logiciel: Jewel Match 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-e6e81b47-129e-4a2b-8b20-0d7ac64ec24b =>.WildTangent
O42 - Logiciel: John Deere Drive Green - (.WildTangent.) [HKLM][64Bits] -- WTA-f45cf8fa-0609-4397-8c21-275f94d389ad =>.WildTangent
O42 - Logiciel: Launch Manager - (.Acer Inc..) [HKLM][64Bits] -- LManager
O42 - Logiciel: Linkey - (.Aztec Media Inc.) [HKCU][64Bits] -- Linkey =>PUP.LinkeySearch
O42 - Logiciel: Live Updater - (.Acer Incorporated.) [HKLM][64Bits] -- {EE26E302-876A-48D9-9058-3129E5B99999}
O42 - Logiciel: Magic Academy - (.WildTangent.) [HKLM][64Bits] -- WTA-d9d42e17-9089-4735-8e54-9dfea050f82a =>.WildTangent
O42 - Logiciel: McAfee Internet Security Suite - (.McAfee, Inc..) [HKLM][64Bits] -- MSC
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan
O42 - Logiciel: McAfee SiteAdvisor - (.McAfee, Inc..) [HKLM][64Bits] -- {35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}
O42 - Logiciel: MyBestOffersToday 001.289 - (.MYBESTOFFERSTODAY.) [HKLM][64Bits] -- mbot_fr_289_is1 =>PUP.CrossRider
O42 - Logiciel: MyWinLocker - (.Egis Technology Inc..) [HKLM][64Bits] -- {0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}
O42 - Logiciel: MyWinLocker 4 - (.Egis Technology Inc..) [HKLM][64Bits] -- {39F15B50-A977-4CA6-B1C3-6A8724CDA025}
O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}
O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- {17DF9714-60C9-43C9-A9C2-32BCAED44CBE}
O42 - Logiciel: NTI Media Maker 9 - (.NTI Corporation.) [HKLM][64Bits] -- InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}
O42 - Logiciel: Norton Online Backup - (.Symantec Corporation.) [HKLM][64Bits] -- {40A66DF6-22D3-44B5-A7D3-83B118A2C0DC} =>.Symantec Corporation
O42 - Logiciel: Norton Online Backup ARA - (.Symantec Corporation.) [HKLM][64Bits] -- NARA =>.Symantec Corporation
O42 - Logiciel: Office Addin - (.Acer.) [HKLM][64Bits] -- {6D2BBE1D-E600-4695-BA37-0B0E605542CC}
O42 - Logiciel: PC Health Kit v4.0 - (.PC Health Labs.) [HKLM][64Bits] -- PC Health Kit_is1 =>PUP.DealPly
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WTA-e56a5e2a-39d4-4a51-b70c-0739565b361e =>.WildTangent
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-2f826d57-c72f-4bbe-96f6-7b8f5f4ec506 =>.WildTangent
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WTA-41b16fa2-50f6-4b0d-85c0-95f804019bd2 =>.WildTangent
O42 - Logiciel: Qualcomm Atheros Bluetooth Suite (64) - (.Nom de votre société.) [HKLM][64Bits] -- {A84A4FB1-D703-48DB-89E0-68B6499D2801}
O42 - Logiciel: Qualcomm Atheros WiFi Driver Installation - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: RegClean-Pro - (.systweak.com.) [HKLM][64Bits] -- RegClean-Pro_is1 =>Rogue.RegistryPowerCleaner
O42 - Logiciel: Reimage Repair - (.Reimage.) [HKLM][64Bits] -- Reimage Repair =>Rogue.ReimageRepair
O42 - Logiciel: Remote Desktop Access (VuuPC) - (.CMI Limited.) [HKLM][64Bits] -- VOPackage =>PUP.VuuPC
O42 - Logiciel: Salus - (.Salus.) [HKLM][64Bits] -- Salus =>PUP.Salus
O42 - Logiciel: Search Protect - (.Search Protect.) [HKLM][64Bits] -- SearchProtect =>PUP.SearchProtect
O42 - Logiciel: Settings Manager - (.Aztec Media Inc.) [HKLM][64Bits] -- Settings Manager =>PUP.SystemK
O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054}
O42 - Logiciel: Shredder - (.Egis Technology Inc..) [HKLM][64Bits] -- {C2695E83-CF1D-43D1-84FE-B3BEC561012A}
O42 - Logiciel: Software Updater version 1.9.9 - (...) [HKLM][64Bits] -- Software Updater_is1
O42 - Logiciel: SpeedUpMyPC - (.Uniblue Systems Limited.) [HKLM][64Bits] -- {E55B3271-7CA8-4D0C-AE06-69A24856E996}_is1 =>PUP.SpeedUpMyPC
O42 - Logiciel: Spotify - (.Spotify AB.) [HKLM][64Bits] -- Spotify
O42 - Logiciel: Super Optimizer v3.2 - (.Super PC Tools ltd.) [HKLM][64Bits] -- Super Optimizer_is1 =>PUP.SuperOptimizer
O42 - Logiciel: TV Wizard - (.Small Island Development.) [HKLM][64Bits] -- TVWizard =>PUP.SmallIsland
O42 - Logiciel: Tales of Lagoona - (.WildTangent.) [HKLM][64Bits] -- WTA-aa4cf2b2-52d9-4a71-825d-63292ba4d251 =>.WildTangent
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App =>.WildTangent
O42 - Logiciel: Visual Studio 2005 Tools pour Office Second Edition Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Visual Studio 2005 Tools for Office Runtime
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Visual Studio Tools for the Office system 3.0 Runtime
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258
O42 - Logiciel: Vosteran - (.Vosteran.) [HKCU][64Bits] -- Vosteran =>PUP.Vosteran
O42 - Logiciel: WSE_Vosteran - (.WSE_Vosteran.) [HKLM][64Bits] -- WSE_Vosteran =>PUP.Vosteran
O42 - Logiciel: Wajam - (.Wajam.) [HKLM][64Bits] -- Wajam =>PUP.Wajam
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall =>.WildTangent
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer =>.WildTangent
O42 - Logiciel: WindowsMangerProtect20.0.0.1270 - (.WindowsProtect LIMITED.) [HKLM][64Bits] -- WindowsMangerProtect =>PUP.Fuyu
O42 - Logiciel: Zuma's Revenge - (.WildTangent.) [HKLM][64Bits] -- WTA-c4a81f0a-ec6b-4b53-a057-0111509d5153 =>.WildTangent
O42 - Logiciel: clear.fi Media - (.Acer Incorporated.) [HKLM][64Bits] -- {E9AF1707-3F3A-49E2-8345-4F2D629D0876}
O42 - Logiciel: clear.fi Photo - (.Acer Incorporated.) [HKLM][64Bits] -- {B5AD89F2-03D3-4206-8487-018298007DD0}
O42 - Logiciel: clear.fi SDK - Video 2 - (.CyberLink Corp..) [HKLM][64Bits] -- {EBA33CAD-E071-48d5-A168-FBA4EEB42E93}
O42 - Logiciel: clear.fi SDK- Movie 2 - (.CyberLink Corp..) [HKLM][64Bits] -- {35DA427D-BB23-49B8-9AFD-CFFCFE3B708D}
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {A694AF57-9891-4D62-824C-7E55A1361A14} =>Toolbar.eBay
O42 - Logiciel: omiga-plus uninstall - (.omiga-plus.) [HKLM][64Bits] -- omiga-plus uninstall =>Hijacker.OmigaPlus
~ Logic: 85 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVAST Software]
[HKCU\Software\Alps]
[HKCU\Software\AnyProtect] =>PUP.AnyProtect
[HKCU\Software\AppDataLow\Software\BlockAndSurf] =>PUP.BlockAndSurf
[HKCU\Software\AppDataLow\Software\Cinemax]
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\DynConIE] =>PUP.DynConIE
[HKCU\Software\AppDataLow\Software\GoHD]
[HKCU\Software\AppDataLow\Software\HQProVideo 1.6V21.11] =>PUP.CrossRider
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}]
[HKCU\Software\AppDataLow]
[HKCU\Software\Atheros]
[HKCU\Software\Chromium]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CommonShare] =>PUP.CommonShare
[HKCU\Software\Dritek]
[HKCU\Software\DriverRestore]
[HKCU\Software\Google]
[HKCU\Software\HQProVideo 1.6V21.11] =>PUP.CrossRider
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\InstalledBrowserExtensions] =>Adware.VidSaver
[HKCU\Software\Intel]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\McAfee]
[HKCU\Software\Mine]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\OEM]
[HKCU\Software\PC Health Kit] =>PUP.DealPly
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\Reg]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Reimage] =>Rogue.ReimageRepair
[HKCU\Software\SmdmF] =>PUP.SystemK
[HKCU\Software\SoftwareUpdater] =>PUP.Eorezo
[HKCU\Software\SupHpUISoft] =>PUP.CrossRider
[HKCU\Software\Super Optimizer] =>PUP.SuperOptimizer
[HKCU\Software\TutoTag] =>PUP.AgenceExclusive
[HKCU\Software\Tutorials] =>PUP.AgenceExclusive
[HKCU\Software\Vosteran Browser] =>PUP.Vosteran
[HKCU\Software\Wajam] =>PUP.Wajam
[HKCU\Software\Wow6432Node]
[HKCU\Software\XDEXEHW]
[HKCU\Software\ZZKN]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\eSupport.com]
[HKCU\Software\globalUpdate] =>PUP.GlobalUpdate
[HKCU\Software\mybestofferstoday] =>PUP.MyBestOffersToday
[HKCU\Software\systweak]
[HKCU\Software\wse_vosteran] =>PUP.Vosteran
[HKLM\Software\ATI Technologies]
[HKLM\Software\Alps]
[HKLM\Software\Atheros]
[HKLM\Software\Cinemax-nv]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\EgisTec IPS]
[HKLM\Software\EgisTec Shredder]
[HKLM\Software\Google]
[HKLM\Software\InstalledBrowserExtensions] =>Adware.VidSaver
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Linkey] =>PUP.LinkeySearch
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfee]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Policies]
[HKLM\Software\Qualcomm Atheros Fast Reconnect]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Reimage] =>Rogue.ReimageRepair
[HKLM\Software\SRS Labs]
[HKLM\Software\SiteAdvisor]
[HKLM\Software\SonicFocus]
[HKLM\Software\Symantec]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\ATHEROS]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Atheros Communications Inc.]
[HKLM\Software\Wow6432Node\Cinemax-nv]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CommonShare] =>PUP.CommonShare
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Dritek]
[HKLM\Software\Wow6432Node\EgisTec IPS]
[HKLM\Software\Wow6432Node\EgisTec MyWinLockerSuite]
[HKLM\Software\Wow6432Node\EgisTec MyWinLocker]
[HKLM\Software\Wow6432Node\EgisTec Shredder]
[HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate
[HKLM\Software\Wow6432Node\GoHD-nv]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\InstallCore] =>Adware.InstallCore
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\InstalledBrowserExtensions] =>Adware.VidSaver
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Linkey] =>PUP.LinkeySearch
[HKLM\Software\Wow6432Node\MYBESTOFFERSTODAY] =>PUP.MyBestOffersToday
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Macrovision]
[HKLM\Software\Wow6432Node\MaxPower]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\McAfee]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NewTech Infosystems]
[HKLM\Software\Wow6432Node\Norton]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\ORBTR] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros WiFi Driver Installation]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\Reg]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SPPDCOM] =>Rogue.PCSpeedUp
[HKLM\Software\Wow6432Node\SiteAdvisor]
[HKLM\Software\Wow6432Node\SmdmF] =>PUP.SystemK
[HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\Systweak]
[HKLM\Software\Wow6432Node\Tutorials] =>PUP.AgenceExclusive
[HKLM\Software\Wow6432Node\Uniblue]
[HKLM\Software\Wow6432Node\Universal]
[HKLM\Software\Wow6432Node\VirualDiskRedist]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\ada12fbd-a59b-4944-99a8-c2698347eab8] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\d3ebafa3-ed1e-4e9d-9232-dbb020a54085] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\fe242c41-531b-4750-b7cc-5c9f1b8491b2] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\omiga-plusSoftware] =>Hijacker.OmigaPlus
[HKLM\Software\Wow6432Node\supTab] =>PUP.SupTab
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager
[HKLM\Software\Wow6432Node\supWindowsMangerProtect] =>PUP.Fuyu
[HKLM\Software\Wow6432Node]
~ Key Software: 348 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 23/11/2014 - 08:10:22 - [] ----D C:\Program Files (x86)\0ca45c95134d
O43 - CFD: 21/11/2014 - 18:35:11 - [] ----D C:\Program Files (x86)\3b0d6835-624e-4aea-a88d-46b23f3c1342
O43 - CFD: 21/11/2014 - 18:15:10 - [] ----D C:\Program Files (x86)\Acer
O43 - CFD: 29/11/2014 - 09:09:49 - [] ----D C:\Program Files (x86)\AnyProtectEx =>PUP.AnyProtect
O43 - CFD: 21/11/2014 - 18:32:34 - [] ----D C:\Program Files (x86)\ASP
O43 - CFD: 26/08/2012 - 21:14:18 - [] ----D C:\Program Files (x86)\Bluetooth Suite
O43 - CFD: 23/11/2014 - 12:15:21 - [] ----D C:\Program Files (x86)\Cinemax
O43 - CFD: 21/11/2014 - 18:27:27 - [] ----D C:\Program Files (x86)\ClickCaption_1.10.0.2
O43 - CFD: 21/11/2014 - 18:03:10 - [] ----D C:\Program Files (x86)\CloudGuard =>PUP.CloudGuard
O43 - CFD: 26/08/2012 - 21:39:01 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 29/11/2014 - 08:52:42 - [] ----D C:\Program Files (x86)\CommonShare =>PUP.CommonShare
O43 - CFD: 02/08/2012 - 12:38:10 - [] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 21/11/2014 - 18:17:45 - [] ----D C:\Program Files (x86)\DriverRestore
O43 - CFD: 02/08/2012 - 12:36:27 - [] ----D C:\Program Files (x86)\EgisTec IPS
O43 - CFD: 02/08/2012 - 12:36:34 - [] ----D C:\Program Files (x86)\EgisTec MyWinLocker
O43 - CFD: 02/08/2012 - 12:35:44 - [] ----D C:\Program Files (x86)\EgisTec MyWinLockerSuite
O43 - CFD: 02/08/2012 - 12:36:50 - [] ----D C:\Program Files (x86)\EgisTec Shredder
O43 - CFD: 23/11/2014 - 21:15:05 - [] ----D C:\Program Files (x86)\f552dd4c52e3
O43 - CFD: 21/11/2014 - 18:15:10 - [] ----D C:\Program Files (x86)\fce7f594-3ac5-4b08-abb3-81831e05f54b
O43 - CFD: 21/11/2014 - 17:58:56 - [] ----D C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 21/11/2014 - 18:35:42 - [] ----D C:\Program Files (x86)\GoHD
O43 - CFD: 23/11/2014 - 08:37:18 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 21/11/2014 - 18:00:12 - [] ----D C:\Program Files (x86)\HQProVideo 1.6V21.11 =>PUP.CrossRider
O43 - CFD: 21/11/2014 - 18:00:04 - [] ----D C:\Program Files (x86)\Information
O43 - CFD: 26/08/2012 - 21:44:10 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 26/08/2012 - 21:07:07 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 23/11/2014 - 22:04:12 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 26/08/2012 - 21:10:44 - [] ----D C:\Program Files (x86)\Launch Manager
O43 - CFD: 21/11/2014 - 17:57:15 - [] ----D C:\Program Files (x86)\mbot_fr_289 =>PUP.CrossRider
O43 - CFD: 28/11/2014 - 20:44:58 - [] ----D C:\Program Files (x86)\McAfee
O43 - CFD: 29/11/2014 - 09:07:43 - [] ----D C:\Program Files (x86)\McAfee Security Scan
O43 - CFD: 02/08/2012 - 12:33:16 - [] ----D C:\Program Files (x86)\mcafee.com
O43 - CFD: 26/08/2012 - 21:37:45 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 26/07/2012 - 09:12:59 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 02/08/2012 - 12:24:05 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 26/08/2012 - 21:40:31 - [] ----D C:\Program Files (x86)\Norton Online Backup ARA =>.Symantec Corporation
O43 - CFD: 26/08/2012 - 21:40:23 - [] ----D C:\Program Files (x86)\NortonInstaller
O43 - CFD: 26/08/2012 - 21:39:21 - [] ----D C:\Program Files (x86)\NTI
O43 - CFD: 21/11/2014 - 06:16:13 - [] ----D C:\Program Files (x86)\OEM
O43 - CFD: 29/11/2014 - 08:51:19 - [] ----D C:\Program Files (x86)\ORBTR =>Toolbar.Conduit
O43 - CFD: 21/11/2014 - 18:16:00 - [] ----D C:\Program Files (x86)\PC Health Kit =>PUP.DealPly
O43 - CFD: 26/08/2012 - 21:21:34 - [] ----D C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 21/11/2014 - 18:31:56 - [] ----D C:\Program Files (x86)\RCP
O43 - CFD: 26/08/2012 - 21:08:21 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 02/08/2012 - 12:24:05 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 29/11/2014 - 08:51:36 - [] ----D C:\Program Files (x86)\SearchProtect =>PUP.SearchProtect
O43 - CFD: 21/11/2014 - 18:30:27 - [] ----D C:\Program Files (x86)\Settings Manager =>PUP.SystemK
O43 - CFD: 21/11/2014 - 18:14:29 - [] ----D C:\Program Files (x86)\Software Updater
O43 - CFD: 26/08/2012 - 21:24:35 - [] ----D C:\Program Files (x86)\Spotify
O43 - CFD: 24/11/2014 - 18:50:40 - [] ----D C:\Program Files (x86)\Super Optimizer =>PUP.SuperOptimizer
O43 - CFD: 23/11/2014 - 21:15:07 - [] ----D C:\Program Files (x86)\SupTab =>PUP.SupTab
O43 - CFD: 26/08/2012 - 21:41:15 - [] ----D C:\Program Files (x86)\Symantec
O43 - CFD: 26/08/2012 - 21:09:42 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 21/11/2014 - 18:48:38 - [] ----D C:\Program Files (x86)\Uniblue
O43 - CFD: 21/11/2014 - 18:13:40 - [0] ----D C:\Program Files (x86)\Universal Updater =>PUP.UniversalUpdater
O43 - CFD: 21/11/2014 - 18:28:11 - [] ----D C:\Program Files (x86)\ver2BlockAndSurf =>PUP.BlockAndSurf
O43 - CFD: 21/11/2014 - 18:29:50 - [] ----D C:\Program Files (x86)\Wajam =>PUP.Wajam
O43 - CFD: 02/08/2012 - 12:31:44 - [] ----D C:\Program Files (x86)\WildGames
O43 - CFD: 02/08/2012 - 12:32:10 - [] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 23/11/2014 - 22:04:29 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 27/08/2012 - 06:41:09 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 27/08/2012 - 06:41:09 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 26/07/2012 - 09:13:01 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 26/07/2012 - 09:12:59 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 27/08/2012 - 06:41:09 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 26/07/2012 - 09:13:01 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 26/07/2012 - 09:12:59 - [] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 21/11/2014 - 18:27:47 - [] ----D C:\Program Files (x86)\WSE_Vosteran =>PUP.Vosteran
O43 - CFD: 29/11/2014 - 09:21:58 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 26/08/2012 - 21:14:42 - [] ----D C:\Program Files (x86)\Common Files\Atheros
O43 - CFD: 02/08/2012 - 12:36:26 - [] ----D C:\Program Files (x86)\Common Files\EgisTec
O43 - CFD: 26/08/2012 - 21:08:19 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 26/08/2012 - 20:50:42 - [] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 26/08/2012 - 21:39:01 - [] ----D C:\Program Files (x86)\Common Files\Macrovision Shared
O43 - CFD: 21/11/2014 - 18:19:58 - [] ----D C:\Program Files (x86)\Common Files\mcafee
O43 - CFD: 26/08/2012 - 21:50:15 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 26/08/2012 - 21:05:44 - [] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 26/08/2012 - 21:15:28 - [] ----D C:\Program Files (x86)\Common Files\QCA_Bluetooth
O43 - CFD: 26/07/2012 - 09:13:01 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 27/08/2012 - 06:41:09 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 26/08/2012 - 21:47:58 - [] ----D C:\ProgramData\Acer
O43 - CFD: 26/07/2012 - 08:22:08 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 26/08/2012 - 21:25:43 - [] ----D C:\ProgramData\Atheros
O43 - CFD: 23/11/2014 - 08:29:21 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 02/08/2012 - 12:32:42 - [] ----D C:\ProgramData\BackupManager
O43 - CFD: 26/08/2012 - 21:41:20 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 24/11/2014 - 18:52:51 - [] ----D C:\ProgramData\Browser
O43 - CFD: 20/11/2014 - 22:02:13 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 26/08/2012 - 21:44:33 - [] ----D C:\ProgramData\CLSK
O43 - CFD: 26/08/2012 - 21:44:33 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 26/07/2012 - 08:22:08 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 26/07/2012 - 08:22:08 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 26/08/2012 - 21:35:35 - [] ----D C:\ProgramData\EgisTec
O43 - CFD: 21/11/2014 - 06:24:40 - [] ----D C:\ProgramData\EgisTec IPS
O43 - CFD: 26/08/2012 - 21:39:02 - [] ----D C:\ProgramData\FLEXnet
O43 - CFD: 23/11/2014 - 08:37:32 - [] ----D C:\ProgramData\Google
O43 - CFD: 23/11/2014 - 21:15:07 - [] ----D C:\ProgramData\IePluginServices =>PUP.IePluginService
O43 - CFD: 21/11/2014 - 17:59:19 - [] ----D C:\ProgramData\inqQruaxLC
O43 - CFD: 26/08/2012 - 21:44:10 - [] ----D C:\ProgramData\install_clap
O43 - CFD: 26/08/2012 - 21:07:07 - [] ----D C:\ProgramData\Intel
O43 - CFD: 23/11/2014 - 08:05:06 - [] ----D C:\ProgramData\McAfee
O43 - CFD: 29/11/2014 - 09:07:47 - [] ----D C:\ProgramData\McAfee Security Scan
O43 - CFD: 20/11/2014 - 22:02:13 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 24/11/2014 - 20:41:29 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 20/11/2014 - 22:02:13 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 26/08/2012 - 21:40:29 - [] ----D C:\ProgramData\Norton
O43 - CFD: 26/08/2012 - 21:40:23 - [] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 26/08/2012 - 21:40:02 - [] ----D C:\ProgramData\NTI Launcher
O43 - CFD: 21/11/2014 - 06:15:34 - [] ----D C:\ProgramData\OEM
O43 - CFD: 02/08/2012 - 12:25:41 - [] ----D C:\ProgramData\PRICache
O43 - CFD: 26/08/2012 - 21:21:27 - [] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 26/07/2012 - 08:52:44 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 21/11/2014 - 17:48:31 - [] ----D C:\ProgramData\Reimage Protector =>Rogue.ReimageRepair
O43 - CFD: 29/11/2014 - 08:46:52 - [] ----D C:\ProgramData\smdmf =>PUP.SystemK
O43 - CFD: 26/07/2012 - 08:22:08 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 26/08/2012 - 21:41:15 - [] ----D C:\ProgramData\Symantec
O43 - CFD: 21/11/2014 - 18:32:33 - [] ----D C:\ProgramData\Systweak
O43 - CFD: 26/08/2012 - 21:44:11 - [] ----D C:\ProgramData\Temp
O43 - CFD: 26/07/2012 - 08:22:08 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 21/11/2014 - 17:57:37 - [] ----D C:\ProgramData\TVWizard =>PUP.TVWizard
O43 - CFD: 02/08/2012 - 12:32:10 - [] ----D C:\ProgramData\WildTangent
O43 - CFD: 21/11/2014 - 17:58:09 - [] ----D C:\ProgramData\WindowsMangerProtect =>PUP.Fuyu
O43 - CFD: 26/07/2012 - 09:13:01 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 26/07/2012 - 08:52:44 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 26/08/2012 - 21:50:12 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
O43 - CFD: 26/07/2012 - 09:13:01 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 21/11/2014 - 18:32:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced-System Protector =>PUP.AdvancedSystemProtector
O43 - CFD: 23/11/2014 - 08:38:35 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 02/08/2012 - 12:39:06 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink MediaEspresso 6.5
O43 - CFD: 26/08/2012 - 21:09:40 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
O43 - CFD: 21/11/2014 - 18:16:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverRestore
O43 - CFD: 02/08/2012 - 12:36:52 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EgisTec
O43 - CFD: 02/08/2012 - 12:32:10 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 21/11/2014 - 17:59:14 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 26/07/2012 - 09:13:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 29/11/2014 - 08:46:59 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
O43 - CFD: 29/11/2014 - 09:07:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
O43 - CFD: 21/11/2014 - 17:57:15 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MYBESTOFFERSTODAY =>PUP.MyBestOffersToday
O43 - CFD: 26/08/2012 - 21:40:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 9
O43 - CFD: 21/11/2014 - 18:16:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Kit =>PUP.DealPly
O43 - CFD: 21/11/2014 - 18:31:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro =>Rogue.RegistryPowerCleaner
O43 - CFD: 21/11/2014 - 17:47:36 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair =>Rogue.ReimageRepair
O43 - CFD: 29/11/2014 - 09:07:45 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 21/11/2014 - 18:27:35 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Optimizer =>PUP.SuperOptimizer
O43 - CFD: 26/07/2012 - 09:13:01 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 26/07/2012 - 08:52:44 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 21/11/2014 - 18:48:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue
O43 - CFD: 21/11/2014 - 18:29:51 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wajam =>PUP.Wajam
O43 - CFD: 29/11/2014 - 09:21:57 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 21/11/2014 - 06:15:30 - [] ----D C:\Users\Isabelle\AppData\Roaming\Adobe
O43 - CFD: 21/11/2014 - 18:35:49 - [] -SH-D C:\Users\Isabelle\AppData\Roaming\AnyProtectEx =>PUP.AnyProtect
O43 - CFD: 29/11/2014 - 09:20:26 - [] ----D C:\Users\Isabelle\AppData\Roaming\ASP
O43 - CFD: 21/11/2014 - 06:16:10 - [] ----D C:\Users\Isabelle\AppData\Roaming\Atheros
O43 - CFD: 23/11/2014 - 21:03:50 - [] ----D C:\Users\Isabelle\AppData\Roaming\AVAST Software
O43 - CFD: 24/11/2014 - 19:02:09 - [0] ----D C:\Users\Isabelle\AppData\Roaming\Google
O43 - CFD: 21/11/2014 - 06:15:29 - [] ----D C:\Users\Isabelle\AppData\Roaming\lm
O43 - CFD: 21/11/2014 - 06:17:50 - [] ----D C:\Users\Isabelle\AppData\Roaming\Macromedia
O43 - CFD: 21/11/2014 - 06:16:38 - [] -S--D C:\Users\Isabelle\AppData\Roaming\Microsoft
O43 - CFD: 21/11/2014 - 17:57:28 - [] ----D C:\Users\Isabelle\AppData\Roaming\omiga-plus =>Hijacker.OmigaPlus
O43 - CFD: 21/11/2014 - 18:21:01 - [] ----D C:\Users\Isabelle\AppData\Roaming\PC Health Kit =>PUP.DealPly
O43 - CFD: 21/11/2014 - 18:32:43 - [] ----D C:\Users\Isabelle\AppData\Roaming\Super Optimizer =>PUP.SuperOptimizer
O43 - CFD: 21/11/2014 - 18:32:36 - [] ----D C:\Users\Isabelle\AppData\Roaming\systweak
O43 - CFD: 21/11/2014 - 18:48:38 - [] ----D C:\Users\Isabelle\AppData\Roaming\Uniblue
O43 - CFD: 21/11/2014 - 18:16:35 - [] ----D C:\Users\Isabelle\AppData\Roaming\VOPackage =>Adware.Downware
O43 - CFD: 21/11/2014 - 18:27:57 - [] ----D C:\Users\Isabelle\AppData\Roaming\WSE_Vosteran =>PUP.Vosteran
O43 - CFD: 29/11/2014 - 09:23:27 - [] ----D C:\Users\Isabelle\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 21/11/2014 - 18:39:43 - [] ----D C:\Users\Isabelle\AppData\Roaming\{37E99E86-D615-4B08-937F-F8F935C455F3}_ANZHUANG
O43 - CFD: 29/11/2014 - 09:07:50 - [0] ----D C:\Users\Isabelle\AppData\Local\Adobe
O43 - CFD: 21/11/2014 - 06:14:24 - [] -SH-D C:\Users\Isabelle\AppData\Local\Application Data
O43 - CFD: 29/11/2014 - 08:46:20 - [] ----D C:\Users\Isabelle\AppData\Local\ConvertAd =>Adware.Pirrit
O43 - CFD: 29/11/2014 - 09:19:45 - [] ----D C:\Users\Isabelle\AppData\Local\CrashDumps
O43 - CFD: 21/11/2014 - 06:24:40 - [] ----D C:\Users\Isabelle\AppData\Local\EgisTec IPS
O43 - CFD: 21/11/2014 - 17:58:56 - [] ----D C:\Users\Isabelle\AppData\Local\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 24/11/2014 - 19:02:12 - [] ----D C:\Users\Isabelle\AppData\Local\Google
O43 - CFD: 21/11/2014 - 06:14:24 - [] -SH-D C:\Users\Isabelle\AppData\Local\Historique
O43 - CFD: 21/11/2014 - 18:31:14 - [] ----D C:\Users\Isabelle\AppData\Local\Linkey =>PUP.LinkeySearch
O43 - CFD: 29/11/2014 - 08:50:36 - [] ----D C:\Users\Isabelle\AppData\Local\mbot_fr_289 =>PUP.CrossRider
O43 - CFD: 24/11/2014 - 20:25:40 - [] ----D C:\Users\Isabelle\AppData\Local\Microsoft
O43 - CFD: 21/11/2014 - 06:15:30 - [] ----D C:\Users\Isabelle\AppData\Local\Packages
O43 - CFD: 21/11/2014 - 17:57:11 - [] ----D C:\Users\Isabelle\AppData\Local\Programs
O43 - CFD: 29/11/2014 - 08:51:56 - [] ----D C:\Users\Isabelle\AppData\Local\SearchProtect =>PUP.SearchProtect
O43 - CFD: 29/11/2014 - 09:23:01 - [] ----D C:\Users\Isabelle\AppData\Local\Temp
O43 - CFD: 21/11/2014 - 06:14:24 - [] -SH-D C:\Users\Isabelle\AppData\Local\Temporary Internet Files
O43 - CFD: 21/11/2014 - 18:07:23 - [] ----D C:\Users\Isabelle\AppData\Local\TVWizard =>PUP.TVWizard
O43 - CFD: 21/11/2014 - 06:14:51 - [0] ----D C:\Users\Isabelle\AppData\Local\VirtualStore
O43 - CFD: 22/11/2014 - 09:27:08 - [] ----D C:\Users\Isabelle\AppData\Local\Vosteran =>PUP.Vosteran
O43 - CFD: 26/07/2012 - 09:13:00 - [] R---D C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 26/07/2012 - 09:13:00 - [] R---D C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 21/11/2014 - 06:15:33 - [] R---D C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 21/11/2014 - 18:38:11 - [] ----D C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.AnyProtect
O43 - CFD: 26/07/2012 - 09:13:00 - [] ----D C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 21/11/2014 - 06:15:33 - [] R---D C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 26/07/2012 - 09:13:00 - [] R---D C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 21/11/2014 - 18:16:20 - [] ----D C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>Adware.Downware
O43 - CFD: 21/11/2014 - 18:29:05 - [] ----D C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vosteran =>PUP.Vosteran
~ Program Folder: 195 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.FA3CF380EC4FADDA655AE0580E8E16F1] - 20/11/2014 - 21:47:08 ---A- . (.Windows (R) Win 7 DDK provider - NetFilter SDK WFP Driver (WPP).) -- C:\Windows\System32\Drivers\b786bdb3c67d.sys [51528]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 20/11/2014 - 23:00:57 ---A- . (...) -- C:\Recovery.txt [0]
O44 - LFC:[MD5.52EF6BEF7ED66F60B8E6F6C9E66CE07A] - 21/11/2014 - 05:06:58 ---A- . (...) -- C:\Windows\System32\netcfg-25547187.txt [117]
O44 - LFC:[MD5.52EF6BEF7ED66F60B8E6F6C9E66CE07A] - 21/11/2014 - 05:10:00 ---A- . (...) -- C:\Windows\System32\netcfg-25729406.txt [117]
O44 - LFC:[MD5.52EF6BEF7ED66F60B8E6F6C9E66CE07A] - 21/11/2014 - 06:10:05 ---A- . (...) -- C:\Windows\System32\netcfg-25732875.txt [117]
O44 - LFC:[MD5.52EF6BEF7ED66F60B8E6F6C9E66CE07A] - 21/11/2014 - 09:34:28 ---A- . (...) -- C:\Windows\System32\netcfg-37995687.txt [117]
O44 - LFC:[MD5.52EF6BEF7ED66F60B8E6F6C9E66CE07A] - 21/11/2014 - 09:34:28 ---A- . (...) -- C:\Windows\System32\netcfg-37996750.txt [117]
O44 - LFC:[MD5.52EF6BEF7ED66F60B8E6F6C9E66CE07A] - 21/11/2014 - 17:44:49 ---A- . (...) -- C:\Windows\System32\netcfg-67411812.txt [117]
O44 - LFC:[MD5.52EF6BEF7ED66F60B8E6F6C9E66CE07A] - 21/11/2014 - 17:44:49 ---A- . (...) -- C:\Windows\System32\netcfg-67411890.txt [117]
O44 - LFC:[MD5.6D1C80E8EC2C618D9BD168B60043CC1F] - 21/11/2014 - 18:19:25 ---A- . (...) -- C:\Windows\Reimage.ini [156] =>Rogue.ReimageRepair
O44 - LFC:[MD5.628DC155C32875B286B2742D10D196C2] - 21/11/2014 - 18:20:26 ---A- . (...) -- C:\Windows\System32\Drivers\mfencbdc.inf [5442]
O44 - LFC:[MD5.947EA0AFF75E3E70D5BE9F88F6325F30] - 21/11/2014 - 18:20:26 ---A- . (...) -- C:\Windows\System32\Drivers\mfencrk.inf [2641]
O44 - LFC:[MD5.29F981739E50305128022CBE10B3659C] - 21/11/2014 - 18:20:52 ---A- . (.McAfee, Inc. - McAfee HIP IPS Driver.) -- C:\Windows\System32\Drivers\HipShieldK.sys [197704]
O44 - LFC:[MD5.E07104ADA4972888FC2FADAC22CE4591] - 21/11/2014 - 18:23:09 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\System32\wuapp.exe [40448]
O44 - LFC:[MD5.56BCA2F14F696FBB619D042770859D7B] - 21/11/2014 - 18:23:09 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\System32\wuwebv.dll [144384]
O44 - LFC:[MD5.B9E015C3C45556C39AD9A3F1C0F73639] - 21/11/2014 - 18:23:21 ---A- . (.Microsoft Corporation - Expérience utilisateur du client Windows Up.) -- C:\Windows\System32\wucltux.dll [1623040]
O44 - LFC:[MD5.3B61E09694F82333A4A0609714469E1E] - 21/11/2014 - 18:23:22 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\System32\wuapi.dll [773632]
O44 - LFC:[MD5.F2463B2E9818D242B4F72B237E9BD545] - 21/11/2014 - 18:23:22 ---A- . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3286528]
O44 - LFC:[MD5.7B013D1DB9D532C90B2A13C81A300362] - 21/11/2014 - 18:23:23 ---A- . (.Microsoft Corporation - Ressources de l’interface utilisateur parta.) -- C:\Windows\System32\wushareduxresources.dll [99328]
O44 - LFC:[MD5.C7D91C7FF92B935FBEB1285DF720AE89] - 21/11/2014 - 18:23:23 ---A- . (.Microsoft Corporation - Windows Update Modern WuApp.) -- C:\Windows\System32\WUSettingsProvider.dll [253440]
O44 - LFC:[MD5.F9D935D60C397809FC6E1E0676F4AC6E] - 21/11/2014 - 18:23:23 ---A- . (.Microsoft Corporation - Windows Update Wu exports.) -- C:\Windows\System32\wuaext.dll [17408]
O44 - LFC:[MD5.633B9891D7C18B992CE9C6AF08DF4D05] - 21/11/2014 - 18:23:23 ---A- . (.Microsoft Corporation - Windows Update client proxy stub 2.) -- C:\Windows\System32\wups2.dll [49152]
O44 - LFC:[MD5.A0C07056756C94FA19B231BBE58C33DF] - 21/11/2014 - 18:23:23 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\System32\wups.dll [49664]
O44 - LFC:[MD5.7B0A0BE4B067C9CC4898CFFC30BAD425] - 21/11/2014 - 18:23:23 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe [59416]
O44 - LFC:[MD5.07DE21A44C96710A2696CAC2D60942FC] - 21/11/2014 - 18:23:24 ---A- . (.Microsoft Corporation - Authentication Provider.) -- C:\Windows\System32\storewuauth.dll [176640]
O44 - LFC:[MD5.2762E48274640A6E8F17CACF49AA8DF0] - 21/11/2014 - 18:23:24 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\System32\wudriver.dll [100352]
O44 - LFC:[MD5.3A67C5CFE1475D317818861060BA1CBE] - 21/11/2014 - 18:27:50 ---A- . (.Corsica - Web Instrumentation New Driver.) -- C:\Windows\System32\Drivers\webinstrT.sys [63696]
O44 - LFC:[MD5.2C1B004F5A7029D092A8E3238B4244B5] - 21/11/2014 - 18:28:11 ---A- . (...) -- C:\Windows\setupact.log [23671]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 21/11/2014 - 18:28:13 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_webinstrT_01009.Wdf [0]
O44 - LFC:[MD5.D7E1AD8A283BA0B578E5125F37D8805D] - 21/11/2014 - 18:28:16 ---A- . (...) -- C:\Windows\patsearch.bin [2139]
O44 - LFC:[MD5.DD82057D5DCA07B2A425FB10EB415291] - 21/11/2014 - 18:31:57 ---A- . (.Pas de propriétaire - Registry Optimizer.) -- C:\Windows\System32\roboot64.exe [20248]
O44 - LFC:[MD5.CB8572E790FCE09714143741C20E9934] - 21/11/2014 - 18:32:31 ---A- . (...) -- C:\Windows\System32\sasnative64.exe [16896]
O44 - LFC:[MD5.52EF6BEF7ED66F60B8E6F6C9E66CE07A] - 21/11/2014 - 18:41:43 ---A- . (...) -- C:\Windows\System32\netcfg-132937.txt [117]
O44 - LFC:[MD5.8025E7521EB601207627E8B4722ACE19] - 23/11/2014 - 08:35:21 ---A- . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\Windows\System32\Drivers\aswNdisFlt.sys [449936]
O44 - LFC:[MD5.EAFC6970073525E98D4D0E2B56741227] - 23/11/2014 - 08:35:26 ---A- . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\aswKbd.sys [28184]
O44 - LFC:[MD5.B59EF013D567E5746F1DEE2565F747ED] - 23/11/2014 - 08:35:34 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [43152]
O44 - LFC:[MD5.9BE9F2B83DE80E2752B1405CC427E2EC] - 23/11/2014 - 08:35:35 ---A- . (...) -- C:\Windows\System32\Drivers\aswHwid.sys [29208]
O44 - LFC:[MD5.1323269A92645705DEFA053F3596829D] - 23/11/2014 - 08:35:35 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65776]
O44 - LFC:[MD5.1A5BDDE65B648DC3AD48B6ECAA3AE9C8] - 23/11/2014 - 08:35:35 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [267632]
O44 - LFC:[MD5.7509F07BA6F84C1E3B2C0D78A1F6F782] - 23/11/2014 - 08:35:35 ---A- . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\Drivers\aswStm.sys [116728]
O44 - LFC:[MD5.2DA1C1AEDF454F8E32A863A1AEACDD8C] - 23/11/2014 - 08:35:35 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [83280]
O44 - LFC:[MD5.4750016EF9CC1DEC6DA3FE5AF9A7F095] - 23/11/2014 - 08:35:35 ---A- . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [93568]
O44 - LFC:[MD5.B1881A01E301990B671694CA1623F1B6] - 23/11/2014 - 08:35:35 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [436624]
O44 - LFC:[MD5.6663B30328C239D2AB10D2583054CF2E] - 23/11/2014 - 08:35:35 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [364512]
O44 - LFC:[MD5.E74FD717476B30E23F45354B8F3ACB30] - 23/11/2014 - 08:37:53 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswsnx.sys [1050432]
O44 - LFC:[MD5.5DE0E0CE4716A83A1198FA1D7196B911] - 23/11/2014 - 08:38:26 ---A- . (...) -- C:\Windows\System32\netcfg-136709359.txt [250]
O44 - LFC:[MD5.40E9EE55EFD504E72EDE7FC791D63291] - 23/11/2014 - 08:58:45 ---A- . (...) -- C:\Windows\System32\2014-11-23-07-58-44.000-AvastVBoxSVC.exe-6524.log [197]
O44 - LFC:[MD5.F74CF099E4B0FCF3525A9D5AD29372E5] - 23/11/2014 - 08:58:55 ---A- . (...) -- C:\Windows\System32\2014-11-23-07-58-55.096-aswFe.exe-8436.log [247]
O44 - LFC:[MD5.FDA6525D9018812E4237ED5EEB29F5DA] - 23/11/2014 - 09:05:46 ---A- . (.Microsoft Corporation - Fichier DLL de ressources des fuseaux horai.) -- C:\Windows\System32\tzres.dll [2048]
O44 - LFC:[MD5.709AF101E72F2FB30B1A47B7EBD8034C] - 23/11/2014 - 09:05:54 ---A- . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Inter.) -- C:\Windows\System32\msieftp.dll [312320]
O44 - LFC:[MD5.D43A3D71B6F16ACF2D6E895B5EE58827] - 23/11/2014 - 09:25:13 ---A- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\System32\msxml6r.dll [2048]
O44 - LFC:[MD5.36E419B92BFBF76438B8C0C4DD28B9E6] - 23/11/2014 - 09:25:15 ---A- . (.Microsoft Corporation - MSXML 6.0.) -- C:\Windows\System32\msxml6.dll [2361344]
O44 - LFC:[MD5.13D62F90D06CDE48A5A68686F524940A] - 23/11/2014 - 09:26:00 ---A- . (.Microsoft Corporation - Exécuteur de file d’attente d’opérations pr.) -- C:\Windows\System32\poqexec.exe [148480]
O44 - LFC:[MD5.19D7C8C2186B5D0230361D7BDBA3558D] - 23/11/2014 - 09:26:05 ---A- . (.Microsoft Corporation - CMI app Server plug-in.) -- C:\Windows\System32\appserverai.dll [135680]
O44 - LFC:[MD5.6C164DB26B40E4EC1B60AAF87C8BCA63] - 23/11/2014 - 09:26:05 ---A- . (.Microsoft Corporation - CMI vmhost plug-in.) -- C:\Windows\System32\VmHostAI.dll [122880]
O44 - LFC:[MD5.6BA877DC84A42BB6EFCDD300D32DE230] - 23/11/2014 - 09:26:06 ---A- . (.Microsoft Corporation - CMI tsportal plug-in.) -- C:\Windows\System32\RDWebAI.dll [126976]
O44 - LFC:[MD5.AFB0FFB0E349B72EB335BDE6FDFD164B] - 23/11/2014 - 09:26:09 ---A- . (.Microsoft Corporation - CMI tssdis plug-in.) -- C:\Windows\System32\tssdisai.dll [144896]
O44 - LFC:[MD5.AE54A060C9A76ADACD6A09BCA83D50BF] - 23/11/2014 - 09:34:46 ---A- . (.Microsoft Corporation - Gestionnaire de liaisons d’objets2.) -- C:\Windows\System32\packager.dll [79872]
O44 - LFC:[MD5.D0FE275A6C25CD1BD6B40C726E87564A] - 23/11/2014 - 09:34:54 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll [197120]
O44 - LFC:[MD5.FBCCEDE1720306CBC2D448248CDA0772] - 23/11/2014 - 09:34:54 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll [67072]
O44 - LFC:[MD5.C987F9E6981F1EDF7AAC65A8734D4267] - 23/11/2014 - 09:34:54 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll [39936]
O44 - LFC:[MD5.345BEAB65EB2DD9A9813C97C559972AE] - 23/11/2014 - 09:34:55 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [53760]
O44 - LFC:[MD5.2094F0FBF3E4FF5B53DD46C2C4BFBD6D] - 23/11/2014 - 09:35:15 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [3959296]
O44 - LFC:[MD5.BB9EDB136C117014C9ECC281E15568F3] - 23/11/2014 - 09:35:30 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [19284480]
O44 - LFC:[MD5.02D8C74F640D2116E07A46AD7D4064E4] - 23/11/2014 - 09:35:33 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll [97280]
O44 - LFC:[MD5.305A20D511396D77C9A81EC1A6D4F243] - 23/11/2014 - 09:35:36 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll [855552]
O44 - LFC:[MD5.4E0BA41211B870111B8DE9B03B49C18E] - 23/11/2014 - 09:35:37 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2237952]
O44 - LFC:[MD5.469B033F7E48F7B9943523055FA1EAF9] - 23/11/2014 - 09:35:38 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl [1509376]
O44 - LFC:[MD5.71882DBD92A58EC265508E5F4F5894B3] - 23/11/2014 - 09:35:40 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [15399424]
O44 - LFC:[MD5.237DD0E5230B0E78C09836D888798380] - 23/11/2014 - 09:35:41 ---A- . (.Microsoft Corporation - Utilitaire à l’exécution pour Internet Expl.) -- C:\Windows\System32\iertutil.dll [2655232]
O44 - LFC:[MD5.D39E6B207EEA4867BD62FBC511C320E0] - 23/11/2014 - 09:35:43 ---A- . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll [255488]
O44 - LFC:[MD5.1952844CFCB6BEA72CFE538F2E951A1D] - 23/11/2014 - 09:35:46 ---A- . (.Microsoft Corporation - Bibliothèque de thèmes Ux Microsoft.) -- C:\Windows\System32\uxtheme.dll [915968]
O44 - LFC:[MD5.71B20011967F1E4F550A8DDD095C8251] - 23/11/2014 - 09:35:46 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [603136]
O44 - LFC:[MD5.CCA72EBB1E4B0849EA251211F7C1B4AE] - 23/11/2014 - 09:35:48 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [51712]
O44 - LFC:[MD5.88D1D38F87E4EF2129E6988E08CAB222] - 23/11/2014 - 09:35:50 ---A- . (.Microsoft Corporation - Windows User Experience Session Initializat.) -- C:\Windows\System32\UXInit.dll [53760]
O44 - LFC:[MD5.624EA391F837DD143B649C62D0A661F9] - 23/11/2014 - 09:35:51 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\System32\iesysprep.dll [136704]
O44 - LFC:[MD5.CAFB7296295D473364DE6B57C970A445] - 23/11/2014 - 09:35:52 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1409536]
O44 - LFC:[MD5.7D996CEA7CDA7342FE091ADFF14DFAB0] - 23/11/2014 - 09:35:53 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2706432]
O44 - LFC:[MD5.6F4B5DDDC3B86091E94BC47347A78AF7] - 23/11/2014 - 09:42:43 ---A- . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys [35232]
O44 - LFC:[MD5.99D404A9A0AFC4734E014EBEBAC13F8F] - 23/11/2014 - 09:42:45 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) -- C:\Windows\System32\Drivers\WdFilter.sys [230904]
O44 - LFC:[MD5.6C85CF01BEDFF87E696BD126BFD6B9C6] - 23/11/2014 - 09:45:42 ---A- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\System32\msxml3r.dll [2048]
O44 - LFC:[MD5.6F4DB6ED4AB48721D7E477B301177AFA] - 23/11/2014 - 09:45:43 ---A- . (.Microsoft Corporation - MSXML 3.0.) -- C:\Windows\System32\msxml3.dll [1845760]
O44 - LFC:[MD5.A5F88AEFDE2AB3C7B3215B30122754E8] - 23/11/2014 - 09:47:13 ---A- . (.Microsoft Corporation - GDI Client DLL.) -- C:\Windows\System32\gdi32.dll [1300992]
O44 - LFC:[MD5.3505F9E3FAC5B46E8C3CACDB66733BE9] - 23/11/2014 - 09:47:15 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [4036096]
O44 - LFC:[MD5.E6A730CD372B10DB1AA3BC7D4DF39AD7] - 23/11/2014 - 09:48:42 ---A- . (.Microsoft Corporation - DLL du fournisseur du service de gestion d’.) -- C:\Windows\System32\dimsroam.dll [45056]
O44 - LFC:[MD5.14D42343D1FBA771C8884B705637A821] - 23/11/2014 - 09:48:42 ---A- . (.Microsoft Corporation - LSA SSPI RPC interface DLL.) -- C:\Windows\System32\sspisrv.dll [27648]
O44 - LFC:[MD5.F1DA34D64F2BA200D28A7451804E2FEE] - 23/11/2014 - 09:48:42 ---A- . (.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe [35840]
O44 - LFC:[MD5.8B3EB6372436195B8EA8AE09A184BCE2] - 23/11/2014 - 09:48:47 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [100184]
O44 - LFC:[MD5.0D56D94264702B235C87EAD49D443949] - 23/11/2014 - 09:48:49 ---A- . (.Microsoft Corporation - DPAPI Server.) -- C:\Windows\System32\dpapisrv.dll [179712]
O44 - LFC:[MD5.37C282CF52358E6CF25A36B2D94EC4D1] - 23/11/2014 - 09:48:50 ---A- . (.Microsoft Corporation - Dialogue du Sélecteur d’objet.) -- C:\Windows\System32\objsel.dll [684032]
O44 - LFC:[MD5.773DF0EC54E53CE2CEEFB776CF941A93] - 23/11/2014 - 09:48:51 ---A- . (.Microsoft Corporation - Security Support Provider Interface.) -- C:\Windows\System32\sspicli.dll [164864]
O44 - LFC:[MD5.8501267018C90AE5C6D736D673B8DA2A] - 23/11/2014 - 09:48:54 ---A- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\System32\KernelBase.dll [982016]
O44 - LFC:[MD5.425B488F076DF105CFB8A700D2A50352] - 23/11/2014 - 09:48:57 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe [6987096]
O44 - LFC:[MD5.F4A91D985EB9D1D2717D538F3424603C] - 23/11/2014 - 09:50:32 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys [861184]
O44 - LFC:[MD5.F5BAFB32D8EC6286B96C23E27CEF2578] - 23/11/2014 - 09:50:34 ---A- . (.Microsoft Corporation - Microsoft ® Console Based Script Host.) -- C:\Windows\System32\cscript.exe [146944]
O44 - LFC:[MD5.907B7589463313452942F17297D8CDB7] - 23/11/2014 - 09:50:35 ---A- . (.Microsoft Corporation - Microsoft ® Script Runtime.) -- C:\Windows\System32\scrrun.dll [194048]
O44 - LFC:[MD5.D890ECBF9D1BE08B81C7832690DD16B0] - 23/11/2014 - 09:50:35 ---A- . (.Microsoft Corporation - Windows Script Host Runtime Library.) -- C:\Windows\System32\wshom.ocx [143872]
O44 - LFC:[MD5.C867433D5C96E4F616F0AEC2E0E46B5D] - 23/11/2014 - 09:50:35 ---A- . (.Microsoft Corporation - Windows ® Script Component Runtime.) -- C:\Windows\System32\scrobj.dll [222720]
O44 - LFC:[MD5.BDE6B6048E943717D0B5EED35A821150] - 23/11/2014 - 09:51:22 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys [20992]
O44 - LFC:[MD5.A0E8D530E58BB197B296CD90B8CB78A1] - 23/11/2014 - 09:51:48 ---A- . (.Microsoft Corporation - Extension du Panneau de configuration du sy.) -- C:\Windows\System32\SysFxUI.dll [370176]
O44 - LFC:[MD5.946ECE07334A74373FAFBFAA063E62F2] - 23/11/2014 - 09:51:48 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmk.sys [111616]
O44 - LFC:[MD5.9C7C183F937951AE17C5B8B3259CF3FF] - 23/11/2014 - 09:51:48 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmkaud.sys [5632]
O44 - LFC:[MD5.857433889008F86728E8C099C740729D] - 23/11/2014 - 09:51:49 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport.) -- C:\Windows\System32\Drivers\portcls.sys [288768]
O44 - LFC:[MD5.DC5547F48A48636BB50179AECDD94A0B] - 23/11/2014 - 09:51:49 ---A- . (.Microsoft Corporation - SysFx DSP.) -- C:\Windows\System32\WMALFXGFXDSP.dll [1636672]
O44 - LFC:[MD5.93CF42531671EA4E24DA842B124FA269] - 23/11/2014 - 09:51:59 ---A- . (.Microsoft Corporation - Fournisseur d’impression de rendu côté clie.) -- C:\Windows\System32\win32spl.dll [733184]
O44 - LFC:[MD5.47C22FAAC1EC02467790C79B8DB6FCCB] - 23/11/2014 - 09:52:14 ---A- . (.Microsoft Corporation - Édition DirectShow..) -- C:\Windows\System32\qedit.dll [596480]
O44 - LFC:[MD5.D64A5E3C4656AB0A50363620B1A07D7D] - 23/11/2014 - 09:52:16 ---A- . (.Microsoft Corporation - Font Subsetting DLL.) -- C:\Windows\System32\fontsub.dll [96256]
O44 - LFC:[MD5.CC81790E0A18535853C33BABBFF15D56] - 23/11/2014 - 09:52:16 ---A- . (.Microsoft Corporation - Language Pack.) -- C:\Windows\System32\lpk.dll [3072]
O44 - LFC:[MD5.469A5DCF1E51DC9AF03CE1B3B4360DEE] - 23/11/2014 - 09:52:17 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [46080]
O44 - LFC:[MD5.2CAC5C2B89FEB2497D78DBC3F8D25C65] - 23/11/2014 - 09:52:17 ---A- . (.Microsoft Corporation - DCI Manager.) -- C:\Windows\System32\dciman32.dll [14336]
O44 - LFC:[MD5.FD16BDF463EF68ADD48026ACCEA100B8] - 23/11/2014 - 09:52:18 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [362496]
O44 - LFC:[MD5.E4E889A9CA3E8CCEE6FB5D1B4F94296F] - 23/11/2014 - 09:52:32 ---A- . (.Microsoft Corporation - Tâche AppRepSync.) -- C:\Windows\System32\apprepsync.dll [98304]
O44 - LFC:[MD5.F68F697F5B4E74217159C38FFFD37964] - 23/11/2014 - 09:52:33 ---A- . (.Microsoft Corporation - Application Reputation APIs Dll.) -- C:\Windows\System32\apprepapi.dll [124416]
O44 - LFC:[MD5.5CE2742F063731EC10C1B2EE386A2C08] - 23/11/2014 - 09:52:33 ---A- . (.Microsoft Corporation - Services de chiffrement.) -- C:\Windows\System32\cryptsvc.dll [68096]
O44 - LFC:[MD5.74466D77EE8588C04B95AE9DBC693EF8] - 23/11/2014 - 09:52:34 ---A- . (.Microsoft Corporation - Microsoft Trust Verification APIs.) -- C:\Windows\System32\wintrust.dll [337408]
O44 - LFC:[MD5.B6FCC2BB7D1044EA0FC4B573951BE8DC] - 23/11/2014 - 09:52:35 ---A- . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll [1889280]
O44 - LFC:[MD5.36E2B5A5AC7688FFB3270F57103507D2] - 23/11/2014 - 09:52:41 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [411880]
O44 - LFC:[MD5.0E0C16EE82E2F4EBC2FBCA24C8F00D9E] - 23/11/2014 - 09:52:42 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [2233176]
O44 - LFC:[MD5.A5B395E459C1389816BDE0055D1BB64D] - 23/11/2014 - 09:54:11 ---A- . (.Microsoft Corporation - Microsoft DirectPlay8 Address.) -- C:\Windows\System32\dpnaddr.dll [3584]
O44 - LFC:[MD5.C59A382FA9751537EFD57EE70C4C0F76] - 23/11/2014 - 09:54:12 ---A- . (.Microsoft Corporation - Microsoft DirectPlay NAT Helper PAST.) -- C:\Windows\System32\dpnhpast.dll [9216]
O44 - LFC:[MD5.D4EF346DA9C78D97B6C5D5DF210E1BEE] - 23/11/2014 - 09:54:12 ---A- . (.Microsoft Corporation - Microsoft DirectPlay NAT Helper UPNP.) -- C:\Windows\System32\dpnhupnp.dll [9216]
O44 - LFC:[MD5.2527E7EBB0C7013EEDE58421E64002A1] - 23/11/2014 - 09:54:12 ---A- . (.Microsoft Corporation - Microsoft DirectPlay8 Lobby.) -- C:\Windows\System32\dpnlobby.dll [4096]
O44 - LFC:[MD5.C78C7105A964B202D265CA3BF27BE3B6] - 23/11/2014 - 09:54:13 ---A- . (.Microsoft Corporation - Microsoft DirectPlay NAT Helper UPnP.) -- C:\Windows\System32\dpnathlp.dll [67584]
O44 - LFC:[MD5.1A41F8B43EF1438BEE8F8F29A8BC0BC2] - 23/11/2014 - 09:54:14 ---A- . (.Microsoft Corporation - Microsoft DirectPlay.) -- C:\Windows\System32\dpnet.dll [463872]
O44 - LFC:[MD5.A6A31EEEBC2D3376B4B6E96397CCEBD8] - 23/11/2014 - 09:54:14 ---A- . (.Microsoft Corporation - Serveur Microsoft DirectPlay 8.) -- C:\Windows\System32\dpnsvr.exe [34816]
O44 - LFC:[MD5.FE7FB9612D354EB41DF4F0FF5D6FB259] - 23/11/2014 - 09:54:32 ---A- . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\Drivers\afd.sys [576512]
O44 - LFC:[MD5.DE5D9300DAE9279D6554E5875A079093] - 23/11/2014 - 09:55:27 ---A- . (.Microsoft Corporation - ActiveX Interface Marshaling Library.) -- C:\Windows\System32\actxprxy.dll [2146304]
O44 - LFC:[MD5.65DF4D0333CFC7AE430F5D210F77F4CE] - 23/11/2014 - 09:55:27 ---A- . (.Microsoft Corporation - Interface utilisateur de consentement pour.) -- C:\Windows\System32\consent.exe [112984]
O44 - LFC:[MD5.4F750B7EFCB6520AE01E01D082D7D476] - 23/11/2014 - 09:55:27 ---A- . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144]
O44 - LFC:[MD5.B8CDF3317BD77FCF8C798EEB9DEFC5C9] - 23/11/2014 - 09:55:27 ---A- . (.Microsoft Corporation - Windows® installer.) -- C:\Windows\System32\msihnd.dll [393216]
O44 - LFC:[MD5.0698DEDEAD6A00AD0D468C687D830FBF] - 23/11/2014 - 09:55:28 ---A- . (.Microsoft Corporation - Power Dependency Coordinator Driver.) -- C:\Windows\System32\Drivers\pdc.sys [69864]
O44 - LFC:[MD5.1BE70D6051837B74BCD06DCE040F102E] - 23/11/2014 - 09:55:30 ---A- . (.Microsoft Corporation - Interface utilisateur d’authentification Wi.) -- C:\Windows\System32\authui.dll [2306560]
O44 - LFC:[MD5.60B4FDF22A85713621E6528E68CD8FC9] - 23/11/2014 - 09:55:31 ---A- . (.Microsoft Corporation - Windows Installer.) -- C:\Windows\System32\msi.dll [2885632]
O44 - LFC:[MD5.4079B9196F0353E57EFBB5E16B5727C0] - 23/11/2014 - 09:55:37 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\System32\twinui.dll [10116608]
O44 - LFC:[MD5.20E0FC5F724B85CA09C82D2776E84C5E] - 23/11/2014 - 09:56:08 ---A- . (.Microsoft Corporation - WinFX OpenType/CFF Rasterizer.) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll [124112]
O44 - LFC:[MD5.D05FDB359808642231FC244CD06E8E4C] - 23/11/2014 - 09:56:14 ---A- . (.Microsoft Corporation - Direct3D 10 Rasterizer.) -- C:\Windows\System32\d3d10warp.dll [2238976]
O44 - LFC:[MD5.B9868B46EC3A67EF9B85B9437DB2CB65] - 23/11/2014 - 09:56:15 ---A- . (.Microsoft Corporation - Bibliothèque Microsoft D2D.) -- C:\Windows\System32\d2d1.dll [3842560]
O44 - LFC:[MD5.578F8E769CAB4B52D132843B6FE85475] - 23/11/2014 - 09:58:51 ---A- . (.Microsoft Corporation - Framebuffer Display Driver.) -- C:\Windows\System32\workerdd.dll [14848]
O44 - LFC:[MD5.5579488320C3C827E75F5E8BBDF44AF6] - 23/11/2014 - 09:58:52 ---A- . (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll [20480]
O44 - LFC:[MD5.0EB535ADDC065F2D0CBFC089630A6065] - 23/11/2014 - 09:58:53 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecpkg.sys [171840]
O44 - LFC:[MD5.2ACBE51AA462AD845D2F484780AA312C] - 23/11/2014 - 09:58:53 ---A- . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll [238080]
O44 - LFC:[MD5.3639852ECE97DF80A23DF26E41C5A9AF] - 23/11/2014 - 09:58:53 ---A- . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\TSpkg.dll [94720]
O44 - LFC:[MD5.7926C10A43BBED1D04DFC17A7042FF68] - 23/11/2014 - 09:58:55 ---A- . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll [208896]
O44 - LFC:[MD5.D736F2A53EEC2CD9AEAE44B653A7CCDB] - 23/11/2014 - 09:58:56 ---A- . (.Microsoft Corporation - Utilisateur du Panneau de configuration.) -- C:\Windows\System32\usercpl.dll [1043968]
O44 - LFC:[MD5.A294087B82A4EB0CD179D0A90DE3B651] - 23/11/2014 - 09:58:57 ---A- . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll [318464]
O44 - LFC:[MD5.01CA660050B7228B99C9A2FC9A3D6979] - 23/11/2014 - 09:58:57 ---A- . (.Microsoft Corporation - SHCORE.) -- C:\Windows\System32\SHCore.dll [588288]
O44 - LFC:[MD5.DBF9E5346431557BF56F41E7F8EC0DC1] - 23/11/2014 - 09:58:58 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys [570216]
O44 - LFC:[MD5.822797E780335497E0CC7D059ADF64B6] - 23/11/2014 - 09:58:58 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll [827904]
O44 - LFC:[MD5.1DC9B701F8EB7D67774035AC9C3104F6] - 23/11/2014 - 09:58:58 ---A- . (.Microsoft Corporation - Service du gestionnaire de session locale.) -- C:\Windows\System32\lsm.dll [439808]
O44 - LFC:[MD5.75DD70A14145499C9F7D903CF9A8C91B] - 23/11/2014 - 09:58:59 ---A- . (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\winlogon.exe [578048]
O44 - LFC:[MD5.20ED904FE289689B076D5DB690C5CA77] - 23/11/2014 - 09:58:59 ---A- . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\System32\lsasrv.dll [1281536]
O44 - LFC:[MD5.67AB74C4493C123D1E32F013222DA107] - 23/11/2014 - 09:59:34 ---A- . (.Microsoft Corporation - Décodeur vidéo Windows Media.) -- C:\Windows\System32\WMVDECOD.DLL [2842112]
O44 - LFC:[MD5.F39B36FC340ED4F322E0FB41FC7307BA] - 23/11/2014 - 09:59:37 ---A- . (.Microsoft Corporation - Runtime d’appel de procédure distante.) -- C:\Windows\System32\rpcrt4.dll [1312768]
O44 - LFC:[MD5.94C0D6C5B967720B59B134DDDA97FC7A] - 23/11/2014 - 10:01:07 ---A- . (.Microsoft Corporation - DLL des événements d’audit de la sécurité.) -- C:\Windows\System32\msaudite.dll [146944]
O44 - LFC:[MD5.0D477C50E1C3BC82E2A75A3AD990527B] - 23/11/2014 - 10:01:07 ---A- . (.Microsoft Corporation - Microsoft RemoteFX VM Transport.) -- C:\Windows\System32\rfxvmt.dll [36352]
O44 - LFC:[MD5.A2D7F03BA538D9EFF7EF283E2FDBB30B] - 23/11/2014 - 10:01:07 ---A- . (.Microsoft Corporation - UMRDP Display Driver.) -- C:\Windows\System32\rdpudd.dll [235520]
O44 - LFC:[MD5.57F4787E4602A3FCA719C0A33137C6DA] - 23/11/2014 - 10:01:08 ---A- . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys [27880]
O44 - LFC:[MD5.76E0CE29EF5BC3EEDC7962AE18508FC1] - 23/11/2014 - 10:01:09 ---A- . (.Microsoft Corporation - DLL du schéma d’audit de sécurité.) -- C:\Windows\System32\adtschema.dll [713728]
O44 - LFC:[MD5.2ADDCFA35A7D45FDB883312821E2561C] - 23/11/2014 - 10:01:11 ---A- . (.Microsoft Corporation - DLL RDPCore TS.) -- C:\Windows\System32\rdpcorets.dll [3248640]
O44 - LFC:[MD5.3E57DE8477F6F851B43904B50B1816C5] - 23/11/2014 - 10:01:23 ---A- . (.Microsoft Corporation - Services de typographie Microsoft DirectX.) -- C:\Windows\System32\DWrite.dll [1838080]
O44 - LFC:[MD5.76714016993263794ECBF8EF317F6E45] - 23/11/2014 - 10:03:01 ---A- . (.Microsoft Corporation - Microsoft SChannel Provider.) -- C:\Windows\System32\ncryptsslp.dll [86528]
O44 - LFC:[MD5.3DA84EED8FD188EA00FAF7352D3C8A22] - 23/11/2014 - 10:03:05 ---A- . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll [414208]
O44 - LFC:[MD5.325F6179009B5A7F6118951A5BA422AB] - 23/11/2014 - 10:03:16 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys [27136]
O44 - LFC:[MD5.B24FDEB1B18496F1B463782235AA3AF1] - 23/11/2014 - 10:03:17 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [79192]
O44 - LFC:[MD5.1ABF657259DB57F7E5558E4DF1357C0C] - 23/11/2014 - 10:03:17 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [32256]
O44 - LFC:[MD5.C976C4306F9AE133D6BBD47FDFC3BF92] - 23/11/2014 - 10:03:17 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [120832]
O44 - LFC:[MD5.9F83642C3709D1A4DD49EEE9F48F839D] - 23/11/2014 - 10:03:17 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [21848]
O44 - LFC:[MD5.F8C2A832DF9403F5EA8080CBDBDA95FB] - 23/11/2014 - 10:03:18 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys [623448]
O44 - LFC:[MD5.7CB7E04259F323D051A10515B8863564] - 23/11/2014 - 10:03:18 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys [498008]
O44 - LFC:[MD5.061BA3EE0D2BE17944990544008CF190] - 23/11/2014 - 10:03:20 ---A- . (.Microsoft Corporation - USB Controller Extension.) -- C:\Windows\System32\Drivers\UCX01000.SYS [213336]
O44 - LFC:[MD5.8DC398D7B8E02C929A2096E74A170970] - 23/11/2014 - 10:03:21 ---A- . (.Microsoft Corporation - USB XHCI Driver.) -- C:\Windows\System32\Drivers\USBXHCI.SYS [337752]
O44 - LFC:[MD5.B1E910DDC08A8536116214326124903C] - 23/11/2014 - 10:03:21 ---A- . (.Microsoft Corporation - USB3 HUB Driver.) -- C:\Windows\System32\Drivers\USBHUB3.SYS [447320]
O44 - LFC:[MD5.8D454387D12D4DB13805F4128DE8F117] - 23/11/2014 - 10:35:15 ---A- . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll [141312]
O44 - LFC:[MD5.3C300826241468F59D7C0244B4D8B867] - 23/11/2014 - 10:35:16 ---A- . (.Microsoft Corporation - CertUtil.exe.) -- C:\Windows\System32\certutil.exe [1255936]
O44 - LFC:[MD5.6DBE73C09215E281F4283641144110A5] - 23/11/2014 - 21:16:02 ---A- . (.Microsoft Corporation - Windows Presentation Foundation Terminal Se.) -- C:\Windows\System32\TsWpfWrp.exe [35480]
O44 - LFC:[MD5.D92FB5770CBDE049A4732B76A77F6864] - 24/11/2014 - 20:23:00 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [103374192]
O44 - LFC:[MD5.406E76BE63C65E0BF4B263156320254E] - 28/11/2014 - 18:11:59 ---A- . (...) -- C:\Windows\System32\ScannerSettings [464]
O44 - LFC:[MD5.77E5E015C71A3BE566823A73800C47FC] - 28/11/2014 - 18:18:37 ---A- . (...) -- C:\Windows\System32\ScanResults.xml [15244]
O44 - LFC:[MD5.DF707BDF801084AE8D245A4C3AD9A241] - 28/11/2014 - 20:41:58 ---A- . (...) -- C:\Windows\PFRO.log [20298]
O44 - LFC:[MD5.622C339FCBCFA4EE5B84BC5330B44C33] - 28/11/2014 - 20:42:45 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [281704]
O44 - LFC:[MD5.75FCBFA584A33DB66C59DC5438332C88] - 28/11/2014 - 20:47:50 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1793362]
O44 - LFC:[MD5.60848F26202F113F568988F91286CB32] - 28/11/2014 - 20:47:50 ---A- . (...) -- C:\Windows\System32\perfc009.dat [132614]
O44 - LFC:[MD5.9EE422AA9513AE1F93BFBDC37DEF742C] - 28/11/2014 - 20:47:50 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [155650]
O44 - LFC:[MD5.588A60C2D869ECF17BEBA0F05427E1BB] - 28/11/2014 - 20:47:50 ---A- . (...) -- C:\Windows\System32\perfh009.dat [710244]
O44 - LFC:[MD5.5CB45BBAB10914D0F3803C07043B1D06] - 28/11/2014 - 20:47:50 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [800978]
O44 - LFC:[MD5.AEB8323ECD1E4D03385329EFB434EF59] - 29/11/2014 - 08:43:59 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.5E19427E507BE21C6B70F1E7650F7977] - 29/11/2014 - 08:54:47 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1578254]
~ Files: 189 Scanned in 01mn 24s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.4983476878776B674DA3D63A3C8D602F] - 24/11/2014 - 18:53:10 ---A- - C:\Windows\Prefetch\ANYPROTECT.EXE-53752276.pf =>PUP.AnyProtect
O45 - LFCP:[MD5.2D92914626579F28D16EAD851CA79CC1] - 29/11/2014 - 08:50:29 ---A- - C:\Windows\Prefetch\COMMONSHARE.MG.EXE-B67DECDE.pf =>PUP.CommonShare
O45 - LFCP:[MD5.4EB3F11617179139DC48135B3675575C] - 29/11/2014 - 08:51:57 ---A- - C:\Windows\Prefetch\COMMONSHARE_SETUP.EXE-E53EC794.pf =>PUP.CommonShare
O45 - LFCP:[MD5.2DDE9DB2103E2F48A78352605E308650] - 29/11/2014 - 08:50:24 ---A- - C:\Windows\Prefetch\COMMONSHARE_SOFT_PARTNER.EXE-B3EF5C6E.pf =>PUP.CommonShare
O45 - LFCP:[MD5.481575DA6AF22780DD1988631A67A38D] - 29/11/2014 - 08:52:20 ---A- - C:\Windows\Prefetch\DLLOGIC.EXE-CEC35A6E.pf =>Toolbar.Conduit
O45 - LFCP:[MD5.161A6BACEC33EA4BCE99F70517B62413] - 29/11/2014 - 09:20:42 ---A- - C:\Windows\Prefetch\HQPROVIDEO 1.6V21.11-BG.EXE-34BC9497.pf =>PUP.CrossRider
O45 - LFCP:[MD5.31D235E9065A5438DB421C57D013A4D5] - 28/11/2014 - 20:35:54 ---A- - C:\Windows\Prefetch\HQPROVIDEO 1.6V21.11-CODEDOWN-01939F1C.pf =>PUP.CrossRider
O45 - LFCP:[MD5.49EEE55DDCDC834EB38A00D0422301F8] - 29/11/2014 - 08:45:38 ---A- - C:\Windows\Prefetch\MBOT_FR_289.EXE-780A23E1.pf =>PUP.CrossRider
O45 - LFCP:[MD5.5F6FA0BBC83103DA33D883EA27040FBA] - 21/11/2014 - 17:57:15 ---A- - C:\Windows\Prefetch\MYBESTOFFERSTODAY.TMP-FEC9FEC1.pf =>PUP.MyBestOffersToday
O45 - LFCP:[MD5.E7F5927FE2921A01584E7ECE3DF332B4] - 29/11/2014 - 08:50:13 ---A- - C:\Windows\Prefetch\PACKAGE_COMMONSHARE_INSTALLER-18EEF63D.pf =>PUP.CommonShare
O45 - LFCP:[MD5.CEEA0DCF47C22DF13774BC6747DB15C3] - 29/11/2014 - 08:50:13 ---A- - C:\Windows\Prefetch\PACKAGE_COMMONSHARE_INSTALLER-D070680C.pf =>PUP.CommonShare
O45 - LFCP:[MD5.A554ED3D546AFDDC6A39F02F0F058262] - 21/11/2014 - 18:47:49 ---A- - C:\Windows\Prefetch\R0BLOCKANDSURFQ33.EXE-F60A7737.pf =>PUP.BlockAndSurf
O45 - LFCP:[MD5.5B5F2AFE4FF8801E003CEC64F5CEAB45] - 21/11/2014 - 17:48:43 ---A- - C:\Windows\Prefetch\REIMAGE.EXE-BEE43FC1.pf =>Rogue.ReimageRepair
O45 - LFCP:[MD5.832C8308C6F776AE343D0C2F99ADDF3C] - 21/11/2014 - 17:47:33 ---A- - C:\Windows\Prefetch\REIMAGEPACKAGE.EXE-919916E6.pf =>Rogue.ReimageRepair
O45 - LFCP:[MD5.647AA08972C55734460E03D5B448EB98] - 21/11/2014 - 18:18:31 ---A- - C:\Windows\Prefetch\REIMAGEREPAIR (1).EXE-DF6E7196.pf =>Rogue.ReimageRepair
O45 - LFCP:[MD5.E4983FA89B098C0401A0AC62BAC735E3] - 21/11/2014 - 18:19:34 ---A- - C:\Windows\Prefetch\REIMAGEREPAIR (2).EXE-44E0E2D3.pf =>Rogue.ReimageRepair
O45 - LFCP:[MD5.761FC8A33EC0043A0982A72B2161C6B2] - 21/11/2014 - 18:17:27 ---A- - C:\Windows\Prefetch\REIMAGEREPAIR.EXE-3D6EBC34.pf =>Rogue.ReimageRepair
O45 - LFCP:[MD5.E4668DA6272D2912FB696411A6060295] - 21/11/2014 - 17:46:30 ---A- - C:\Windows\Prefetch\REIMAGEREPAIR.EXE-7B377786.pf =>Rogue.ReimageRepair
O45 - LFCP:[MD5.C956D43044FE2737560D668C8E17948B] - 21/11/2014 - 18:13:44 ---A- - C:\Windows\Prefetch\SALUS_INSTALL.EXE-221D998C.pf =>PUP.Salus
O45 - LFCP:[MD5.E62A4C6FA23E66FD2F4654E5233F0439] - 29/11/2014 - 08:45:31 ---A- - C:\Windows\Prefetch\SOFTWAREUPDATER.EXE-A53D7243.pf =>PUP.Eorezo
O45 - LFCP:[MD5.2BF4CBDE449D01D9EBBFE47834D9194E] - 21/11/2014 - 18:48:40 ---A- - C:\Windows\Prefetch\SPEEDUPMYPC-STANDALONE-SETUP.-315AD6EF.pf =>PUP.SpeedUpMyPC
O45 - LFCP:[MD5.EE6ED50ADC1C2E1FBDF8989C0ECBE377] - 29/11/2014 - 08:48:01 ---A- - C:\Windows\Prefetch\SPEEDUPMYPC.EXE-7C35B7A1.pf =>PUP.SpeedUpMyPC
O45 - LFCP:[MD5.E1DF86A67E98754CBF38A8F165A033B1] - 21/11/2014 - 18:47:03 ---A- - C:\Windows\Prefetch\SPEEDUPMYPCFR3.TMP-98B5CEA5.pf =>PUP.SpeedUpMyPC
O45 - LFCP:[MD5.306D904DC085EED9D8B2E4D170F6A8B0] - 29/11/2014 - 08:52:45 ---A- - C:\Windows\Prefetch\UPDATECOMMONSHARE.EXE-B66B351A.pf =>PUP.CommonShare
O45 - LFCP:[MD5.C32430D1750DA9FDE55474FFD1968E66] - 29/11/2014 - 08:48:00 ---A- - C:\Windows\Prefetch\UPMBOT_FR_289.EXE-8CC6C2B9.pf =>PUP.CrossRider
O45 - LFCP:[MD5.FDF544C853405A59A5CAFD7140C865F0] - 24/11/2014 - 19:17:13 ---A- - C:\Windows\Prefetch\VOPACKAGE.EXE-3E406996.pf =>Adware.Downware
O45 - LFCP:[MD5.F95318C7D722CCA04256F1BF70C61F34] - 29/11/2014 - 09:01:50 ---A- - C:\Windows\Prefetch\VOSTERAN.EXE-964ABFB6.pf =>PUP.Vosteran
O45 - LFCP:[MD5.A259F66C4711E8B9A4B450B6790CA27A] - 28/11/2014 - 20:09:16 ---A- - C:\Windows\Prefetch\WAJAMINTERNETENHANCER.EXE-7CCC0C89.pf =>PUP.Wajam
O45 - LFCP:[MD5.D2E0440DE0BEF4EFA9851F7B9DD6C845] - 28/11/2014 - 20:36:26 ---A- - C:\Windows\Prefetch\WAJAMINTERNETENHANCERSERVICE.-85203576.pf =>PUP.Wajam
O45 - LFCP:[MD5.A2101059EE5B33FE00DCA3805289BC3C] - 21/11/2014 - 18:29:16 ---A- - C:\Windows\Prefetch\WAJAM_DOWNLOAD_V2.EXE-740CA52D.pf =>PUP.Wajam
~ Prefetcher: 30 Scanned in 00mn 02s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\mfefirek.sys . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\Windows\System32\Drivers\mfefirek.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\mfehidk.sys . (.McAfee, Inc. - McAfee Link Driver.) -- C:\Windows\System32\Drivers\mfehidk.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 19 Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableCAD"=1
O55 - MWPS:[HKLM\...\Policies\System] - "DisableTaskMgr"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0
O55 - MWPS:[HKLM\...\Policies\System] - "SoftwareSASGeneration"=1
~ MWPS: 21 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRun"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoFolderOptions"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoControlPanel"=0
~ MWPE Keys: 6 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:26/07/2012 - 06:00:49 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [106736]
O58 - SDL:26/07/2012 - 06:00:49 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [492272]
O58 - SDL:26/07/2012 - 06:00:48 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [340720]
O58 - SDL:26/07/2012 - 06:00:49 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\Drivers\adpu320.sys [184048]
O58 - SDL:26/07/2012 - 06:00:49 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [76016]
O58 - SDL:26/07/2012 - 06:00:49 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [258288]
O58 - SDL:26/07/2012 - 06:00:48 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [26352]
O58 - SDL:04/07/2012 - 22:44:48 ---A- . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\Windows\System32\Drivers\Apfiltr.sys [446840]
O58 - SDL:26/08/2012 - 21:18:46 ---A- . (.Dritek System Inc. - PS/2 KB to HID Device Driver.) -- C:\Windows\System32\Drivers\aPs2Kb2Hid.sys [26736]
O58 - SDL:26/07/2012 - 06:00:49 ---A- . (.PMC-Sierra, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [104688]
O58 - SDL:26/07/2012 - 06:00:48 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [108272]
O58 - SDL:23/11/2014 - 08:35:35 ---A- . (...) -- C:\Windows\System32\Drivers\aswHwid.sys [29208] =>.ALWIL Software
O58 - SDL:23/11/2014 - 08:35:26 ---A- . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\aswKbd.sys [28184]
O58 - SDL:23/11/2014 - 08:35:35 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [83280]
O58 - SDL:23/11/2014 - 08:35:21 ---A- . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\Windows\System32\Drivers\aswNdisFlt.sys [449936]
O58 - SDL:23/11/2014 - 08:35:35 ---A- . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [93568]
O58 - SDL:23/11/2014 - 08:35:35 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65776] =>.ALWIL Software
O58 - SDL:23/11/2014 - 08:37:53 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswsnx.sys [1050432]
O58 - SDL:23/11/2014 - 08:35:35 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [436624]
O58 - SDL:23/11/2014 - 08:35:35 ---A- . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\Drivers\aswStm.sys [116728]
O58 - SDL:23/11/2014 - 08:35:35 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [267632] =>.ALWIL Software
O58 - SDL:01/08/2012 - 11:41:34 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athw8x.sys [3618304]
O58 - SDL:20/11/2014 - 21:47:08 ---A- . (.Windows (R) Win 7 DDK provider - NetFilter SDK WFP Driver (WPP).) -- C:\Windows\System32\Drivers\b786bdb3c67d.sys [51528]
O58 - SDL:31/07/2012 - 16:24:50 ---A- . (.Qualcomm Atheros - Qualcomm Atheros A2DP driver.) -- C:\Windows\System32\Drivers\btath_a2dp.sys [344216]
O58 - SDL:31/07/2012 - 16:24:50 ---A- . (.Qualcomm Atheros - Qualcomm Atheros Bluetooth AVDT driver.) -- C:\Windows\System32\Drivers\btath_avdt.sys [114840]
O58 - SDL:31/07/2012 - 16:24:50 ---A- . (.Qualcomm Atheros - Qualcomm Atheros BUS driver.) -- C:\Windows\System32\Drivers\btath_bus.sys [33944]
O58 - SDL:31/07/2012 - 16:24:52 ---A- . (.Qualcomm Atheros - Qualcomm Atheros FILTER driver.) -- C:\Windows\System32\Drivers\btath_flt.sys [88728]
O58 - SDL:31/07/2012 - 16:24:52 ---A- . (.Qualcomm Atheros - Qualcomm Atheros HCRP driver.) -- C:\Windows\System32\Drivers\btath_hcrp.sys [178840]
O58 - SDL:31/07/2012 - 16:24:56 ---A- . (.Qualcomm Atheros - Qualcomm Atheros FILTER driver.) -- C:\Windows\System32\Drivers\btath_lwflt.sys [76952]
O58 - SDL:31/07/2012 - 16:24:58 ---A- . (.Qualcomm Atheros - Qualcomm Atheros AVRCP driver.) -- C:\Windows\System32\Drivers\btath_rcp.sys [135832]
O58 - SDL:31/07/2012 - 16:25:02 ---A- . (.Qualcomm Atheros - Qualcomm Atheros BtFilter Driver.) -- C:\Windows\System32\Drivers\btfilter.sys [574616]
O58 - SDL:26/07/2012 - 06:00:49 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [539376]
O58 - SDL:30/10/2014 - 22:39:28 ---A- . (.ClickCaption - Click Caption Driver x64.) -- C:\Windows\System32\Drivers\ccnfd_1_10_0_2.sys [58232]
O58 - SDL:20/06/2014 - 10:38:22 ---A- . (.McAfee, Inc. - McAfee Personal Firewall IDS Plugin.) -- C:\Windows\System32\Drivers\cfwids.sys [72128]
O58 - SDL:26/07/2012 - 06:00:52 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3295984]
O58 - SDL:02/07/2012 - 08:16:02 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys [62784]
O58 - SDL:23/09/2013 - 13:49:22 ---A- . (.McAfee, Inc. - McAfee HIP IPS Driver.) -- C:\Windows\System32\Drivers\HipShieldK.sys [197704]
O58 - SDL:26/07/2012 - 06:00:52 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [64752]
O58 - SDL:09/07/2012 - 12:43:12 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\Drivers\iaStorA.sys [645952]
O58 - SDL:26/07/2012 - 06:00:52 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [411888]
O58 - SDL:07/08/2012 - 15:11:40 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys [8987456]
O58 - SDL:26/07/2012 - 06:00:52 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [45296]
O58 - SDL:19/06/2012 - 00:40:50 ---A- . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\Drivers\IntcDAud.sys [342528]
O58 - SDL:21/06/2012 - 22:02:52 ---A- . (.Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabit Ethernet Controlle.) -- C:\Windows\System32\Drivers\L1C63x64.sys [110744]
O58 - SDL:26/07/2012 - 06:00:52 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [108784]
O58 - SDL:26/07/2012 - 06:00:52 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [92400]
O58 - SDL:26/07/2012 - 06:00:52 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [116976]
O58 - SDL:26/07/2012 - 06:00:52 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [81136]
O58 - SDL:26/07/2012 - 06:00:52 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [51952]
O58 - SDL:26/07/2012 - 06:00:52 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [353008]
O58 - SDL:20/06/2014 - 10:20:54 ---A- . (.McAfee, Inc. - Access Protection Filter Driver.) -- C:\Windows\System32\Drivers\mfeapfk.sys [181704]
O58 - SDL:20/06/2014 - 10:21:48 ---A- . (.McAfee, Inc. - Anti-Virus File System Filter Driver.) -- C:\Windows\System32\Drivers\mfeavfk.sys [313544]
O58 - SDL:20/08/2014 - 08:07:00 ---A- . (.McAfee, Inc. - McAfee Driver Cleaning Driver.) -- C:\Windows\System32\Drivers\mfeclnrk.sys [11336]
O58 - SDL:20/06/2014 - 10:09:34 ---A- . (.McAfee, Inc. - McAfee ELAM Driver.) -- C:\Windows\System32\Drivers\mfeelamk.sys [70600]
O58 - SDL:20/06/2014 - 10:23:40 ---A- . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\Windows\System32\Drivers\mfefirek.sys [523792]
O58 - SDL:20/06/2014 - 10:26:02 ---A- . (.McAfee, Inc. - McAfee Link Driver.) -- C:\Windows\System32\Drivers\mfehidk.sys [786296]
O58 - SDL:20/08/2014 - 08:05:28 ---A- . (.McAfee, Inc. - Event Driver.) -- C:\Windows\System32\Drivers\mfencbdc.sys [445512]
O58 - SDL:20/08/2014 - 08:06:14 ---A- . (.McAfee, Inc. - Detection driver.) -- C:\Windows\System32\Drivers\mfencrk.sys [96592]
O58 - SDL:20/06/2014 - 10:31:06 ---A- . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) -- C:\Windows\System32\Drivers\mfewfpk.sys [348552]
O58 - SDL:26/07/2012 - 06:00:55 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [64240]
O58 - SDL:02/08/2012 - 12:36:34 ---A- . (.Egis Technology Inc. - PSD Mini Filter Driver.) -- C:\Windows\System32\Drivers\mwlPSDFilter.sys [22648]
O58 - SDL:02/08/2012 - 12:36:34 ---A- . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) -- C:\Windows\System32\Drivers\mwlPSDNserv.sys [20520]
O58 - SDL:02/08/2012 - 12:36:34 ---A- . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) -- C:\Windows\System32\Drivers\mwlPSDVDisk.sys [62776]
O58 - SDL:26/07/2012 - 06:00:55 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [52464]
O58 - SDL:20/04/2010 - 03:35:14 ---A- . (.NTI Corporation - NTI CD-ROM Filter Driver.) -- C:\Windows\System32\Drivers\NTIDrvr.sys [18432]
O58 - SDL:26/07/2012 - 06:00:55 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [150256]
O58 - SDL:26/07/2012 - 06:00:55 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [168176]
O58 - SDL:31/07/2012 - 11:10:34 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [4102928]
O58 - SDL:04/07/2012 - 03:41:58 ---A- . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vista/Win7/Win8.) -- C:\Windows\System32\Drivers\RtsPStor.sys [339600]
O58 - SDL:26/07/2012 - 09:11:43 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040]
O58 - SDL:26/07/2012 - 06:00:55 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [44784]
O58 - SDL:26/07/2012 - 06:00:56 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [81648]
O58 - SDL:26/07/2012 - 06:00:55 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [30960]
O58 - SDL:09/07/2010 - 04:51:38 ---A- . (.NTI Corporation - NTI CD-ROM Filter Driver.) -- C:\Windows\System32\Drivers\UBHelper.sys [17408]
O58 - SDL:26/07/2012 - 06:00:58 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [19184]
O58 - SDL:26/07/2012 - 06:00:58 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [164080]
O58 - SDL:26/07/2012 - 06:00:58 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [322800]
O58 - SDL:21/11/2014 - 18:27:50 ---A- . (.Corsica - Web Instrumentation New Driver.) -- C:\Windows\System32\Drivers\webinstrT.sys [63696]
O58 - SDL:01/07/2014 - 18:37:56 ---A- . (.Phoenix Technologies - DriverAgent Direct I/O for 64-bit Windows.) -- C:\Windows\SysWOW64\drivers\DrvAgent64.SYS [20872]
~ Drivers: 79 Scanned in 00mn 07s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 22/11/2014 - 09:25:12 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Google\Chrome\User Data\nacl_validation_cache.bin [200]
O61 - LFC: 23/11/2014 - 09:25:31 ---A- . (.AVAST Software.) -- C:\Users\Isabelle\Downloads\avast_premier_antivirus_setup_online (1).exe [4978536]
O61 - LFC: 23/11/2014 - 09:25:31 ---A- . (.AVAST Software.) -- C:\Users\Isabelle\Downloads\avast_premier_antivirus_setup_online.exe [4978536]
O61 - LFC: 24/11/2014 - 09:25:23 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-4JDA2.tmp\gentlemjmp_ieu.exe [6834560]
O61 - LFC: 24/11/2014 - 09:25:25 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_boxore_installer_multilang.exe [491216] =>Adware.Boxore
O61 - LFC: 24/11/2014 - 09:25:25 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_commonshare_installer_multilang.exe [443352] =>PUP.CommonShare
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_MyStartSearch_installer_multilang.exe [443232] =>PUP.StartSearch
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_linkey_installer_multilang.exe [443536] =>PUP.LinkeySearch
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_obrowser_installer_multilang.exe [443176]
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_optimizerpro_installer_multilang.exe [443488] =>PUP.OptimizerPro
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_plumoweb_installer_multilang.exe [443360] =>PUP.PlumoWeb
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_plushd_installer_multilang.exe [443704]
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_priceless_installer_multilang.exe [443224]
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_secprotkeys_installer_multilang.exe [443272]
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_secprotwhite_installer_multilang.exe [443136]
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_secureprotect_installer_multilang.exe [443336]
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_shoppinghelper_installer_multilang.exe [442920]
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_spbp_installer_multilang.exe [443208]
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_speeditup_installer_multilang.exe [443360]
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_storm_installer_multilang.exe [443176]
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_stormpariente_installer_multilang.exe [443312]
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_superpc_installer_multilang.exe [443328]
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_wajam_installer_multilang.exe [443264] =>PUP.Wajam
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_websearches_pariente_installer_multilang.exe [442952]
O61 - LFC: 24/11/2014 - 09:25:26 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_wordproser_installer_multilang.exe [443904] =>PUP.WordProser
O61 - LFC: 24/11/2014 - 09:25:27 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_ytd_installer_multilang.exe [447856]
O61 - LFC: 24/11/2014 - 09:25:27 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\package_zombie_installer_multilang.exe [443416]
O61 - LFC: 24/11/2014 - 09:25:27 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\xml_package_groovorio_installer_multilang.exe [443640] =>PUP.Groovorio
O61 - LFC: 25/11/2014 - 09:25:23 ---A- . (.Microsoft Corporation.) -- C:\Users\Isabelle\AppData\Local\Temp\is-4JDA2.tmp\_isetup\_shfoldr.dll [23312]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_0_10.bin [116118]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_0_11.bin [58134]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_0_17.bin [111492]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_0_18.bin [17214]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_0_19.bin [69494]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_0_2.bin [17503]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_0_23.bin [39702]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_0_3.bin [14183]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_0_6.bin [18981]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_0_7.bin [3696]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_0_8.bin [3696]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_0_9.bin [14183]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_1_18.bin [24654]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_1_23.bin [168054]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\res_2_18.bin [63134]
O61 - LFC: 25/11/2014 - 09:25:27 ---A- . (.Microsoft Corporation.) -- C:\Users\Isabelle\AppData\Local\Temp\is-I5EC2.tmp\_isetup\_shfoldr.dll [23312]
O61 - LFC: 27/11/2014 - 09:25:23 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-23S3T.tmp\gentlemjmp_ieu.exe [7166664]
O61 - LFC: 27/11/2014 - 09:25:23 ---A- . (.Microsoft Corporation.) -- C:\Users\Isabelle\AppData\Local\Temp\is-23S3T.tmp\_isetup\_shfoldr.dll [23312]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_0_10.bin [3696]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_MyStartSearch_installer_multilang.exe [443808] =>PUP.StartSearch
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_boxore_installer_multilang.exe [491704] =>Adware.Boxore
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_commonshare_installer_multilang.exe [443832] =>PUP.CommonShare
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_linkey_installer_multilang.exe [444216] =>PUP.LinkeySearch
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_obrowser_installer_multilang.exe [443984]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_optimizerpro_installer_multilang.exe [444072] =>PUP.OptimizerPro
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_plumoweb_installer_multilang.exe [444024] =>PUP.PlumoWeb
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_plushd_installer_multilang.exe [443984]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_priceless_installer_multilang.exe [443632]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_secprotkeys_installer_multilang.exe [443824]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_secprotwhite_installer_multilang.exe [443704]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_secureprotect_installer_multilang.exe [443824]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_shoppinghelper_installer_multilang.exe [443624]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_spbp_installer_multilang.exe [444064]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_speeditup_installer_multilang.exe [443808]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_stormpverti_installer_multilang.exe [443968]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_superpc_installer_multilang.exe [443816]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_wajam_installer_multilang.exe [444048] =>PUP.Wajam
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_websearches_pariente_installer_multilang.exe [443720]
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_wordproser_installer_multilang.exe [444624] =>PUP.WordProser
O61 - LFC: 27/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\package_ytd_installer_multilang.exe [448464]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_0_11.bin [14183]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_0_12.bin [14183]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_0_14.bin [17214]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_0_15.bin [58134]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_0_16.bin [111492]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_0_19.bin [17503]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_0_21.bin [39702]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_0_4.bin [18981]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_0_6.bin [3696]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_0_8.bin [116118]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_1_14.bin [24654]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_1_21.bin [168054]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\res_2_14.bin [63134]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (.Microsoft Corporation.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\_isetup\_shfoldr.dll [23312]
O61 - LFC: 27/11/2014 - 09:25:25 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-81PQJ.tmp\xml_package_groovorio_installer_multilang.exe [443960] =>PUP.Groovorio
O61 - LFC: 28/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-7H1EK.tmp\package_commonshare_installer_multilang.exe [443464] =>PUP.CommonShare
O61 - LFC: 28/11/2014 - 09:25:24 ---A- . (.Software.) -- C:\Users\Isabelle\AppData\Local\Temp\is-7H1EK.tmp\package_secprotwhite_installer_multilang.exe [443680]
O61 - LFC: 28/11/2014 - 09:25:25 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\is-BEKOB.tmp\gentlemjmp_ieu.exe [4674816]
O61 - LFC: 29/11/2014 - 09:25:13 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\mbot_fr_289\Download\majmp_gentleeu.exe [5144040] =>PUP.CrossRider
O61 - LFC: 29/11/2014 - 09:25:25 ---A- . (.Microsoft Corporation.) -- C:\Users\Isabelle\AppData\Local\Temp\is-BEKOB.tmp\_isetup\_shfoldr.dll [23312]
O61 - LFC: 29/11/2014 - 09:25:28 ---A- . (...) -- C:\Users\Isabelle\AppData\Local\Temp\nsu7C63.tmp\nsProcess.dll [4096]
O61 - LFC: 29/11/2014 - 09:25:31 ---A- . (...) -- C:\Users\Isabelle\AppData\Roaming\systweak\regclean pro\Version 6.1\backup1.bin [656] =>Rogue.RegistryPowerCleaner
O61 - LFC: 29/11/2014 - 09:25:32 ---A- . (.Nicolas Coolman.) -- C:\Users\Isabelle\Downloads\ZHPDiag2 (1).exe [6864042] =>.Nicolas Coolman
O61 - LFC: 29/11/2014 - 09:25:32 ---A- . (.Nicolas Coolman.) -- C:\Users\Isabelle\Downloads\ZHPDiag2.exe [6860008] =>.Nicolas Coolman
~ 385 Fichiers temporaires (Temporary files)
~ 328 Fichiers cookies (Cookies files)
~ Files: 93 Scanned in 00mn 21s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 11 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [DefaultScope] - (Trovi search) - http://www.trovi.com =>Hijacker.TroviCom
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (omiga-plus) - http://isearch.omiga-plus.com =>Hijacker.OmigaPlus
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {9AD84617-D823-4AA7-A10D-959449BA471A} - (Vosteran) - http://Vosteran.com =>PUP.Vosteran
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2498} - (default-search.net) - http://www.default-search.net =>Hijacker.Browsers
O69 - SBI: SearchScopes [HKCU] {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} - (Vosteran) - http://Vosteran.com =>PUP.Vosteran
~ Keys: Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [190976]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [309248]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1366016]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1071104]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [99840]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll [358400]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [107520]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [62976]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [438784]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [305664]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3286528]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [826368]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [565760]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [894464]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151552]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [105472]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1282560]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [219648]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [80384]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [134144]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [291328]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [97792]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [190464]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1968128]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [47104]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [207872]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [161792]
O83 - Search Svchost Services: SystemEventsBroker (SystemEventsBroker) . (.Microsoft Corporation - Service Broker pour les événements système.) -- C:\Windows\System32\SystemEventsBrokerServer.dll [178176]
~ Services: 34 Scanned in 00mn 01s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.BB924F7D3796D49E83A1107C7412EF4E] [SPRF][21/11/2014] (.HQ ProV21.11 - HQProVideo 1.6V21.11 exe.) -- C:\Users\Isabelle\AppData\Roaming\XDEXEHW.exe [2053528] =>PUP.CrossRider
[MD5.73C3CE18307110AE94D846638CF4DEBC] [SPRF][21/11/2014] (.HQ ProV21.11 - HQProVideo 1.6V21.11 exe.) -- C:\Users\Isabelle\AppData\Roaming\ZZKN.exe [1560984] =>PUP.CrossRider
~ Files: 2 Scanned in 00mn 00s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "75FA496A198926D428C4E7551A63A141" . (.eBay Worldwide.) -- c:\WINDOWS\Installer\{A694AF57-9891-4D62-824C-7E55A1361A14}\_853F67D554F05449430E7E.exe =>Toolbar.eBay
~ Update Products: 1 Scanned in 00mn 00s



---\\ Recherche de clés de registre Tracing (O100)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateCommonShare_RASAPI32 =>PUP.CommonShare
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateCommonShare_RASMANCS =>PUP.CommonShare
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WajamInternetEnhancer_RASAPI32 =>PUP.Wajam
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WajamInternetEnhancer_RASMANCS =>PUP.Wajam
~ BTK: 31 Scanned in 00mn 00s



---\\ Recherche de clés de registre CLSID (O101)
[HKCR\CLSID\{11111111-1111-1111-1111-110611571179}] (HQProVideo 1.6V21.11) =>PUP.CrossRider
[HKCR\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}] (Linkey) =>PUP.LinkeySearch
[HKCR\CLSID\{54739D49-AC03-4C57-9264-C5195596B3A1}] (SmdmF Module) =>PUP.SystemK
[HKCR\CLSID\{F2548C35-30B7-88A1-6ABC-F34892EE0433}] (BlockAndSurf) =>PUP.BlockAndSurf
~ BCK: 5122 Scanned in 00mn 10s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 29/11/2014 267440 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 08/08/2012 276288 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Demand 31/07/2012 466064 | (DeviceFastLaneService) . (.Acer Incorporated.) - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
SS - | Demand 12/07/2012 174160 | (EgisTec Ticket Service) . (.Egis Technology Inc..) - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
SS - | Demand 26/08/2012 655624 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SS - | Demand 12/10/2010 206072 | (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
SS - | Auto 21/11/2014 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 21/11/2014 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 23/11/2014 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Demand 26/01/2012 332080 | (McAWFwk) . (.McAfee, Inc..) - C:\Program Files\mcafee\msc\McAWFwk.exe
SS - | Demand 05/09/2012 234776 | (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe
SS - | Auto 11/05/2012 200728 | (McOobeSv) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
SS - | Demand 31/07/2012 259136 | (NTI IScheduleSvc) . (.NTI Corporation.) - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
SS - | Auto 10/07/1658 3572240 | (SmdmFService) . (...) - C:\Program Files (x86)\Settings Manager\smdmf\SmdmFService.exe =>PUP.SystemK
SR - | Auto 31/07/2012 207488 | (AtherosSvc) . (.Qualcomm Atheros Commnucations.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
SR - | Auto 23/11/2014 50344 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 23/11/2014 104416 | (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SR - | Demand 23/11/2014 4012248 | (AvastVBoxSvc) . (.Avast Software.) - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
SR - | Auto 21/11/2014 4014184 | (cae99edb) . (...) - c:\Program Files (x86)\Super Optimizer\SupOptCrash.dll =>PUP.SuperOptimizer
SR - | Auto 27/07/2012 2415760 | (CCDMonitorService) . (.Acer Incorporated.) - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
SR - | Auto 30/10/2014 277584 | (ccsvc_1.10.0.2) . (.ClickCaption.) - C:\Program Files (x86)\ClickCaption_1.10.0.2\Service\ccsvc.exe
SR - | Auto 10/11/2014 3056960 | (CltMngSvc) . (.Search Protect.) - C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe =>PUP.SearchProtect
SR - | Auto 21/08/2012 348784 | (DsiWMIService) . (.Dritek System Inc..) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
SR - | Demand 31/07/2012 659600 | (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
SR - | System 10/07/1658 41872 | (F06DEFF2-5B9C-490D-910F-35D3A9119622) . (...) - C:\Program Files (x86)\Settings Manager\smdmf\x64\smdmfmgrc2.cfg =>PUP.SystemK
SR - | Auto 30/07/2013 328928 | (HomeNetSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
SR - | Auto 13/07/2012 2451456 | (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
SR - | Auto 20/04/2012 635104 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 17/07/2012 165760 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 17/07/2012 276864 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 11/05/2012 200728 | (McAfee SiteAdvisor Service) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
SR - | Auto 25/04/2014 178528 | (McAPExe) . (.McAfee, Inc..) - C:\Program Files\McAfee\MSC\McAPexe.exe
SR - | Auto 30/07/2013 328928 | (McMPFSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
SR - | Auto 30/07/2013 328928 | (McNaiAnn) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
SR - | Demand 04/09/2014 603424 | (McODS) . (.McAfee, Inc..) - C:\Program Files\mcafee\VirusScan\mcods.exe
SR - | Auto 30/07/2013 328928 | (mcpltsvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
SR - | Auto 30/07/2013 328928 | (McProxy) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
SR - | Auto 20/08/2014 1041192 | (mfecore) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
SR - | Auto 20/06/2014 219752 | (mfefire) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
SR - | Auto 20/06/2014 189912 | (mfevtp) . (.McAfee, Inc..) - C:\windows\system32\mfevtps.exe
SR - | Auto 30/07/2013 328928 | (MSK80Service) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
SR - | Auto 11/07/2012 3939008 | (NOBU) . (.Symantec Corporation.) - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe =>.Symantec Corporation
SR - | Auto 26/07/2012 30208 | C:\Program Files (x86)\ORBTR\orbiter.dll (Orbiter) . (.Client Connect LTD.) - C:\Windows\System32\svchost.exe =>Toolbar.Conduit
SR - | Auto 21/11/2014 2726256 | (PgRTZfwRBuc) . (.Small Island Development.) - C:\ProgramData\inqQruaxLC\PgRTZfwRBuc.exe =>PUP.SmallIsland
SR - | Auto 10/11/2014 7111528 | (ReimageRealTimeProtector) . (.Reimage®.) - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe =>Rogue.ReimageRepair
SR - | Auto 26/08/2012 93296 | (RfButtonDriverService) . (.Dritek System INC..) - C:\Windows\RfBtnSvc64.exe
SR - | Auto 21/11/2014 89600 | (servervo) . (...) - C:\Users\Isabelle\AppData\Roaming\VOPackage\VOsrv.exe =>Adware.Downware
SR - | Auto 20/11/2014 647680 | (UniversalUpdater) . (...) - C:\Program Files (x86)\0ca45c95134d\cf3e08d747e4.exe =>PUP.Salus
SR - | Auto 17/07/2012 364416 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 27/11/2014 423144 | (Update CommonShare) . (...) - C:\Program Files (x86)\CommonShare\updateCommonShare.exe =>PUP.CommonShare
SR - | Demand 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe
SR - | Auto 21/11/2014 490640 | (WindowsMangerProtect) . (.Fuyu LIMITED.) - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe =>PUP.Fuyu
SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Demand 26/07/2012 30208 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 31/07/2012 81536 | (ZAtheros Wlan Agent) . (.Atheros.) - C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe
~ Services: Scanned in 00mn 18s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by Isabelle at 29/11/2014 09:27:39
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Isabelle at 29/11/2014 09:27:41
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 13026 - (26/11/2014)
Clés trouvées (Keys found) : 80
Valeurs trouvées (Values found) : 10
Dossiers trouvés (Folders found) : 45
Fichiers trouvés (Files found) : 122

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611571179}] =>PUP.CrossRider^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}] =>PUP.LinkeySearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F2548C35-30B7-88A1-6ABC-F34892EE0433}] =>PUP.BlockAndSurf^
[HKLM\SYSTEM\CurrentControlSet\Services\cae99edb] =>PUP.SuperOptimizer^
[HKLM\SYSTEM\CurrentControlSet\Services\CltMngSvc] =>PUP.SearchProtect^
[HKLM\SYSTEM\CurrentControlSet\Services\F06DEFF2-5B9C-490D-910F-35D3A9119622] =>PUP.SystemK^
[HKLM\SYSTEM\CurrentControlSet\Services\PgRTZfwRBuc] =>PUP.SmallIsland^
[HKLM\SYSTEM\CurrentControlSet\Services\ReimageRealTimeProtector] =>Rogue.ReimageRepair^
[HKLM\SYSTEM\CurrentControlSet\Services\servervo] =>Adware.Downware^
[HKLM\SYSTEM\CurrentControlSet\Services\SmdmFService] =>PUP.SystemK^
[HKLM\SYSTEM\CurrentControlSet\Services\UniversalUpdater] =>PUP.Salus^
[HKLM\SYSTEM\CurrentControlSet\Services\Update CommonShare] =>PUP.CommonShare^
[HKLM\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect] =>PUP.Fuyu^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~4A5BE654_is1] =>PUP.AdvancedSystemProtector^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\AnyProtect] =>PUP.AnyProtect^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\3B0FFFD7-8787-A687-FADD-EF61A1046ABF] =>PUP.BlockAndSurf^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\CloudGuard] =>PUP.CloudGuard^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\CommonShare] =>PUP.CommonShare^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ConvertAd] =>Adware.Pirrit^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\HQProVideo 1.6V21.11] =>PUP.CrossRider^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey] =>PUP.LinkeySearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\mbot_fr_289_is1] =>PUP.CrossRider^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\PC Health Kit_is1] =>PUP.DealPly^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\RegClean-Pro_is1] =>Rogue.RegistryPowerCleaner^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair] =>Rogue.ReimageRepair^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage] =>PUP.VuuPC^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Salus] =>PUP.Salus^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect] =>PUP.SearchProtect^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager] =>PUP.SystemK^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E55B3271-7CA8-4D0C-AE06-69A24856E996}_is1] =>PUP.SpeedUpMyPC^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Super Optimizer_is1] =>PUP.SuperOptimizer^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\TVWizard] =>PUP.SmallIsland^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran] =>PUP.Vosteran^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WSE_Vosteran] =>PUP.Vosteran^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Wajam] =>PUP.Wajam^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect] =>PUP.Fuyu^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A694AF57-9891-4D62-824C-7E55A1361A14}] =>Toolbar.eBay^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\omiga-plus uninstall] =>Hijacker.OmigaPlus^
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Classes\protector_dll.protectorbho.1] =>PUP.BProtector
[HKLM\Software\Classes\protector_dll.protectorbho] =>PUP.BProtector
[HKLM\Software\Classes\SpeedUpMyPC] =>PUP.SpeedUpMyPC
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Wow6432Node\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect] =>Toolbar.Conduit
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKLM\Software\Wow6432Node\InstallCore] =>Adware.InstallCore
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\InstalledBrowserExtensions\] =>PUP.CrossRider
[HKCU\Software\Reimage] =>Rogue.ReimageRepair
[HKLM\Software\Reimage] =>Rogue.ReimageRepair
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E55B3271-7CA8-4D0C-AE06-69A24856E996}_is1] =>PUP.SpeedUpMyPC
[HKCU\Software\SoftwareUpdater] =>Hijacker.Eazel
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PC Health Kit_is1] =>PUP.DealPly
[HKCU\Software\PC Health Kit] =>PUP.DealPly
[HKCU\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\InstalledBrowserExtensions] =>PUP.CrossRider
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Wow6432Node\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110611111195}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110611211180}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110611571179}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220622112295}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220622212280}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220622572279}] =>PUP.CrossRider
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611111195}] =>PUP.CrossRider
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611211180}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110611111195}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110611211180}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110611571179}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220622112295}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220622212280}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220622572279}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611111195}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611211180}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611571179}] =>PUP.CrossRider
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2498}] =>Adware.Bandoo^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Super Optimizer =>PUP.SuperOptimizer^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:mbot_fr_289 =>PUP.CrossRider^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]:upmbot_fr_289.exe =>PUP.CrossRider^
C:\Users\Isabelle\AppData\Roaming\Mozilla\Firefox\Profiles\EP: RegExtension {4727332E-D569-6469-04FC-1482E1C60CEC} . (...) -- C:\extensions\Program Files (x86)\ver2BlockAndSurf\183.xpi =>PUP.BlockAndSurf^
C:\Program Files (x86)\AnyProtectEx =>PUP.AnyProtect^
C:\Program Files (x86)\CloudGuard =>PUP.CloudGuard^
C:\Program Files (x86)\CommonShare =>PUP.CommonShare^
C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate^
C:\Program Files (x86)\HQProVideo 1.6V21.11 =>PUP.CrossRider^
C:\Program Files (x86)\mbot_fr_289 =>PUP.CrossRider^
C:\Program Files (x86)\ORBTR =>Toolbar.Conduit^
C:\Program Files (x86)\PC Health Kit =>PUP.DealPly^
C:\Program Files (x86)\SearchProtect =>PUP.SearchProtect^
C:\Program Files (x86)\Settings Manager =>PUP.SystemK^
C:\Program Files (x86)\Super Optimizer =>PUP.SuperOptimizer^
C:\Program Files (x86)\SupTab =>PUP.SupTab^
C:\Program Files (x86)\Universal Updater =>PUP.UniversalUpdater^
C:\Program Files (x86)\ver2BlockAndSurf =>PUP.BlockAndSurf^
C:\Program Files (x86)\Wajam =>PUP.Wajam^
C:\Program Files (x86)\WSE_Vosteran =>PUP.Vosteran^
C:\ProgramData\IePluginServices =>PUP.IePluginService^
C:\ProgramData\Reimage Protector =>Rogue.ReimageRepair^
C:\ProgramData\smdmf =>PUP.SystemK^
C:\ProgramData\TVWizard =>PUP.TVWizard^
C:\ProgramData\WindowsMangerProtect =>PUP.Fuyu^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced-System Protector =>PUP.AdvancedSystemProtector^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MYBESTOFFERSTODAY =>PUP.MyBestOffersToday^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Kit =>PUP.DealPly^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro =>Rogue.RegistryPowerCleaner^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair =>Rogue.ReimageRepair^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Optimizer =>PUP.SuperOptimizer^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wajam =>PUP.Wajam^
C:\Users\Isabelle\AppData\Roaming\AnyProtectEx =>PUP.AnyProtect^
C:\Users\Isabelle\AppData\Roaming\omiga-plus =>Hijacker.OmigaPlus^
C:\Users\Isabelle\AppData\Roaming\PC Health Kit =>PUP.DealPly^
C:\Users\Isabelle\AppData\Roaming\Super Optimizer =>PUP.SuperOptimizer^
C:\Users\Isabelle\AppData\Roaming\VOPackage =>Adware.Downware^
C:\Users\Isabelle\AppData\Roaming\WSE_Vosteran =>PUP.Vosteran^
C:\Users\Isabelle\AppData\Local\ConvertAd =>Adware.Pirrit^
C:\Users\Isabelle\AppData\Local\globalUpdate =>PUP.GlobalUpdate^
C:\Users\Isabelle\AppData\Local\Linkey =>PUP.LinkeySearch^
C:\Users\Isabelle\AppData\Local\mbot_fr_289 =>PUP.CrossRider^
C:\Users\Isabelle\AppData\Local\SearchProtect =>PUP.SearchProtect^
C:\Users\Isabelle\AppData\Local\TVWizard =>PUP.TVWizard^
C:\Users\Isabelle\AppData\Local\Vosteran =>PUP.Vosteran^
C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.AnyProtect^
C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>Adware.Downware^
C:\Users\Isabelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vosteran =>PUP.Vosteran^
C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe =>PUP.AdvancedSystemProtector^
C:\Program Files (x86)\Super Optimizer\SupOptSmartScan.exe =>PUP.SuperOptimizer^
C:\Users\Isabelle\AppData\Local\mbot_fr_289\upmbot_fr_289.exe =>PUP.CrossRider^
C:\Users\Isabelle\AppData\Local\Vosteran\Application\vosteran.exe =>PUP.Vosteran^
C:\Program Files (x86)\Software Updater\SoftwareUpdater.exe =>PUP.Eorezo^
C:\Program Files (x86)\mbot_fr_289\mbot_fr_289.exe =>PUP.CrossRider^
C:\Program Files (x86)\HQProVideo 1.6V21.11\HQProVideo 1.6V21.11-codedownloader.exe =>PUP.CrossRider^
C:\Program Files (x86)\HQProVideo 1.6V21.11\848943cd-0256-4068-a995-d9e20240544a-10.exe =>PUP.CrossRider^
C:\Program Files (x86)\HQProVideo 1.6V21.11\848943cd-0256-4068-a995-d9e20240544a-11.exe =>PUP.CrossRider^
C:\Program Files (x86)\HQProVideo 1.6V21.11\848943cd-0256-4068-a995-d9e20240544a-2.exe =>PUP.CrossRider^
C:\Program Files (x86)\HQProVideo 1.6V21.11\848943cd-0256-4068-a995-d9e20240544a-3.exe =>PUP.CrossRider^
C:\Program Files (x86)\HQProVideo 1.6V21.11\848943cd-0256-4068-a995-d9e20240544a-4.exe =>PUP.CrossRider^
C:\Program Files (x86)\HQProVideo 1.6V21.11\848943cd-0256-4068-a995-d9e20240544a-5.exe =>PUP.CrossRider^
C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.AnyProtect^
C:\Program Files (x86)\CloudGuard\CloudGuard.exe =>PUP.CloudGuard^
C:\Program Files (x86)\PC Health Kit\PCHKSchedule.exe =>PUP.DealPly^
C:\Program Files (x86)\RCP\RegCleanPro.exe =>Rogue.RegistryPowerCleaner^
C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe =>Rogue.ReimageRepair^
C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe =>Rogue.ReimageRepair^
C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe =>PUP.SpeedUpMyPC^
C:\Program Files (x86)\Super Optimizer\SupOptLauncher.exe =>PUP.SuperOptimizer^
C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-1.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-1 =>PUP.CrossRider^
C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-11.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-11 =>PUP.CrossRider^
C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-2.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-2 =>PUP.CrossRider^
C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-4.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-4 =>PUP.CrossRider^
C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5 =>PUP.CrossRider^
C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5_user.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-5_user =>PUP.CrossRider^
C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-6.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-6 =>PUP.CrossRider^
C:\Windows\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-7.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5142dff1-967c-4bd6-8f90-b84f6ac2b90a-7 =>PUP.CrossRider^
C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-1.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-1 =>PUP.CrossRider^
C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-11.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-11 =>PUP.CrossRider^
C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-2.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-2 =>PUP.CrossRider^
C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-3.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-3 =>PUP.CrossRider^
C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-4.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-4 =>PUP.CrossRider^
C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-5.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-5 =>PUP.CrossRider^
C:\Windows\Tasks\848943cd-0256-4068-a995-d9e20240544a-5_user.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\848943cd-0256-4068-a995-d9e20240544a-5_user =>PUP.CrossRider^
C:\Windows\Tasks\APSnotifierPP1.job =>PUP.AnyProtect^
C:\Windows\System32\Tasks\APSnotifierPP1 =>PUP.AnyProtect^
C:\Windows\Tasks\APSnotifierPP2.job =>PUP.AnyProtect^
C:\Windows\System32\Tasks\APSnotifierPP2 =>PUP.AnyProtect^
C:\Windows\Tasks\APSnotifierPP3.job =>PUP.AnyProtect^
C:\Windows\System32\Tasks\APSnotifierPP3 =>PUP.AnyProtect^
C:\Windows\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-1.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-1 =>PUP.CrossRider^
C:\Windows\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-11.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-11 =>PUP.CrossRider^
C:\Windows\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-2.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-2 =>PUP.CrossRider^
C:\Windows\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-4.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-4 =>PUP.CrossRider^
C:\Windows\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-6.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-6 =>PUP.CrossRider^
C:\Windows\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-7.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\b25622d0-fe6c-4cfb-8730-c6ca910be042-7 =>PUP.CrossRider^
C:\Windows\Tasks\BlockAndSurf Update.job =>PUP.BlockAndSurf^
C:\Windows\Tasks\RegClean Pro_DEFAULT.job =>Rogue.RegistryPowerCleaner^
C:\Windows\System32\Tasks\RegClean Pro_DEFAULT =>Rogue.RegistryPowerCleaner^
C:\Windows\Tasks\RegClean Pro_UPDATES.job =>Rogue.RegistryPowerCleaner^
C:\Windows\System32\Tasks\RegClean Pro_UPDATES =>Rogue.RegistryPowerCleaner^
C:\Windows\Tasks\SpeedUpMyPC Maintenance.job =>PUP.SpeedUpMyPC^
C:\Windows\System32\Tasks\SpeedUpMyPC Maintenance =>PUP.SpeedUpMyPC^
C:\Windows\Tasks\SpeedUpMyPC Startup.job =>PUP.SpeedUpMyPC^
C:\Windows\System32\Tasks\SpeedUpMyPC Startup =>PUP.SpeedUpMyPC^
C:\Windows\Tasks\WSE_Vosteran.job =>PUP.Vosteran^
C:\Windows\System32\Tasks\WSE_Vosteran =>PUP.Vosteran^
[HKCU\Software\AnyProtect] =>PUP.AnyProtect^
[HKCU\Software\AppDataLow\Software\BlockAndSurf] =>PUP.BlockAndSurf^
[HKCU\Software\AppDataLow\Software\DynConIE] =>PUP.DynConIE^
[HKCU\Software\AppDataLow\Software\HQProVideo 1.6V21.11] =>PUP.CrossRider^
[HKCU\Software\CommonShare] =>PUP.CommonShare^
[HKCU\Software\HQProVideo 1.6V21.11] =>PUP.CrossRider^
[HKCU\Software\SmdmF] =>PUP.SystemK^
[HKCU\Software\SupHpUISoft] =>PUP.CrossRider^
[HKCU\Software\Super Optimizer] =>PUP.SuperOptimizer^
[HKCU\Software\TutoTag] =>PUP.AgenceExclusive^
[HKCU\Software\Vosteran Browser] =>PUP.Vosteran^
[HKCU\Software\Wajam] =>PUP.Wajam^
[HKCU\Software\globalUpdate] =>PUP.GlobalUpdate^
[HKCU\Software\mybestofferstoday] =>PUP.MyBestOffersToday^
[HKCU\Software\wse_vosteran] =>PUP.Vosteran^
[HKLM\Software\Linkey] =>PUP.LinkeySearch^
[HKLM\Software\Wow6432Node\CommonShare] =>PUP.CommonShare^
[HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate^
[HKLM\Software\Wow6432Node\Linkey] =>PUP.LinkeySearch^
[HKLM\Software\Wow6432Node\MYBESTOFFERSTODAY] =>PUP.MyBestOffersToday^
[HKLM\Software\Wow6432Node\ORBTR] =>Toolbar.Conduit^
[HKLM\Software\Wow6432Node\SPPDCOM] =>Rogue.PCSpeedUp^
[HKLM\Software\Wow6432Node\SmdmF] =>PUP.SystemK^
[HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab^
[HKLM\Software\Wow6432Node\ada12fbd-a59b-4944-99a8-c2698347eab8] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\d3ebafa3-ed1e-4e9d-9232-dbb020a54085] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\fe242c41-531b-4750-b7cc-5c9f1b8491b2] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\omiga-plusSoftware] =>Hijacker.OmigaPlus^
[HKLM\Software\Wow6432Node\supTab] =>PUP.SupTab^
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager^
[HKLM\Software\Wow6432Node\supWindowsMangerProtect] =>PUP.Fuyu^
C:\Users\Isabelle\AppData\Roaming\XDEXEHW.exe =>PUP.CrossRider^
C:\Users\Isabelle\AppData\Roaming\ZZKN.exe =>PUP.CrossRider^
[HKCR\CLSID\{11111111-1111-1111-1111-110611571179}] (HQProVideo 1.6V21.11) =>PUP.CrossRider^
[HKCR\CLSID\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}] (Linkey) =>PUP.LinkeySearch^
[HKCR\CLSID\{54739D49-AC03-4C57-9264-C5195596B3A1}] (SmdmF Module) =>PUP.SystemK^
[HKCR\CLSID\{F2548C35-30B7-88A1-6ABC-F34892EE0433}] (BlockAndSurf) =>PUP.BlockAndSurf^
C:\Windows\Reimage.ini =>Rogue.ReimageRepair
C:\Users\Isabelle\AppData\Local\Temp\dlLogic.exe =>Toolbar.Conduit
C:\Users\Isabelle\AppData\Local\Temp\GCVerifier.dll =>Toolbar.Conduit
~ Additionnel Scan: 193571 Items scanned in 00mn 37s



---\\ Informations complémentaires sur les modules
~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5)
~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2)
~ http://nicolascoolman.fr/o3-internet-explorer-toolbars/ =>.Internet Explorer Toolbars (O3)
~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4)
~ AMI: 4 Scanned in 00mn 00s



---\\ Récapitulatif des détections trouvées sur votre station
http://nicolascoolman.fr/pup-advancedsystemprotector =>PUP.AdvancedSystemProtector
http://www.nicolascoolman.fr/blog/ =>PUP.SuperOptimizer
http://nicolascoolman.fr/pup-crossrider =>PUP.CrossRider
http://www.nicolascoolman.fr/blog/ =>PUP.Vosteran
http://nicolascoolman.fr/pup-eorezo =>PUP.Eorezo
http://nicolascoolman.fr/pup-blockandsurf =>PUP.BlockAndSurf
http://nicolascoolman.fr/hijacker-omigaplus =>Hijacker.OmigaPlus
http://nicolascoolman.fr/pup-linkeysearch =>PUP.LinkeySearch
http://www.nicolascoolman.fr/blog/ =>PUP.SpeedUpMyPC
http://nicolascoolman.fr/pup-searchprotect =>PUP.SearchProtect
http://nicolascoolman.fr/pup-systemk =>PUP.SystemK
http://www.nicolascoolman.fr/blog/ =>PUP.SmallIsland
http://nicolascoolman.fr/rogue-reimagerepair =>Rogue.ReimageRepair
http://nicolascoolman.fr/adware-downware =>Adware.Downware
http://www.nicolascoolman.fr/blog/ =>PUP.Salus
http://nicolascoolman.fr/pup-commonshare =>PUP.CommonShare
http://www.nicolascoolman.fr/blog/ =>PUP.Fuyu
http://nicolascoolman.fr/pup-anyprotect =>PUP.AnyProtect
http://www.nicolascoolman.fr/blog/ =>PUP.CloudGuard
http://nicolascoolman.fr/pup-dealply =>PUP.DealPly
http://nicolascoolman.fr/rogue-registrypowercleaner =>Rogue.RegistryPowerCleaner
http://www.nicolascoolman.fr/blog/ =>Adware.Pirrit
http://nicolascoolman.fr/pup-vuupc =>PUP.VuuPC
http://nicolascoolman.fr/pup-wajam =>PUP.Wajam
http://www.nicolascoolman.fr/blog/ =>PUP.DynConIE
http://nicolascoolman.fr/adware-installcore =>Adware.InstallCore
http://nicolascoolman.fr/adware-vidsaver =>Adware.VidSaver
http://nicolascoolman.fr/spyware-agenceexclusive =>PUP.AgenceExclusive
http://nicolascoolman.fr/pup-globalupdate =>PUP.GlobalUpdate
http://www.nicolascoolman.fr/blog/ =>PUP.MyBestOffersToday
http://nicolascoolman.fr/toolbar-conduit =>Toolbar.Conduit
http://nicolascoolman.fr/rogue-pcspeedup =>Rogue.PCSpeedUp
http://nicolascoolman.fr/pup-suptab =>PUP.SupTab
http://nicolascoolman.fr/pup-wpmanager =>PUP.WpManager
http://www.nicolascoolman.fr/blog/ =>PUP.UniversalUpdater
http://www.nicolascoolman.fr/blog/ =>PUP.IePluginService
http://nicolascoolman.fr/pup-tvwizard =>PUP.TVWizard
http://nicolascoolman.fr/adware-boxore =>Adware.Boxore
http://nicolascoolman.fr/pup-startsearch =>PUP.StartSearch
http://nicolascoolman.fr/pup-optimizerpro =>PUP.OptimizerPro
http://www.nicolascoolman.fr/blog/ =>PUP.PlumoWeb
http://www.nicolascoolman.fr/blog/ =>PUP.WordProser
http://nicolascoolman.fr/pup-groovorio =>PUP.Groovorio
http://nicolascoolman.fr/hijacker-trovicom =>Hijacker.TroviCom
http://nicolascoolman.fr/hijacker-browsers =>Hijacker.Browsers
http://nicolascoolman.fr/pup-v9software =>PUP.V9Software
http://nicolascoolman.fr/pup-bprotector =>PUP.BProtector
http://www.nicolascoolman.fr/blog/ =>Spyware.AgenceExclusive
http://nicolascoolman.fr/hijacker-eazel =>Hijacker.Eazel
http://nicolascoolman.fr/adware-bandoo =>Adware.Bandoo
~ MSI: 50 link(s) detected in 00mn 00s



End of the scan (2043 lines in 05mn 37s)(0)

Publicité


Signaler le contenu de ce document

Publicité