cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.7.5.84 Par Nicolas Coolman (2015\07\05)
~ Démarré par Andreas (Administrator) (2015/07/05 18:07:54)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Andreas\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Andreas\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
~ Windows 8.1, 64-bit (Build 9600)

---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v43.0.2357.130
OPIE: Opera v30.0.1835.88
MSIE: Internet Explorer v11.0.9600.17842

---\\ Informations sur les produits Windows (8) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : JTXF3
Windows License : OK
~ Windows Remaining Initializations Number : 999
Windows Activation Technologies : OK

---\\ Logiciels de protection (1) - 1s
Avast Free Antivirus v10.2.2218

---\\ Surveillance de Logiciels (1) - 1s
Adobe Flash Player 17 NPAPI

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 60 Stepping 3, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 16657412
~ System Restore: Activé (Enable)
~ System drive C: has 163 GB free of 381 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: GROSSEBERTHA
~ User Name: Andreas
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 163 GB free of 381 GB (System)
~ Drive D: has 549 GB free of 550 GB

---\\ Recherche particulière de fichiers génériques (23) - 0s
[MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2501368]
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [54784]
[MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [145920]
[MD5.417F80E4AFBA1AA9EBBD618F1C6D9165] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2426880]
[MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [572416]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [19456]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [134144]
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [76800]
[MD5.D887446F3F6051C60C26F4FD1FC8D43F] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [142848]
[MD5.31233271EDE50D1BBB220F78AFA60486] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\Windows\System32\drivers\MRxSmb.sys [405504]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [282624]
[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [2025792]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\Windows\System32\drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [107520]
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [310080]

---\\ Processus lancés (77) - 3s
[MD5.C99CF2E3FD314DCD0B05899EDD3C5EAC] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 333.6.) -- C:\Windows\system32\nvvsvc.exe [929936] [PID.736]
[MD5.C54670F3A62264BA3DD02EEAEF3F9090] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1195328] [PID.1068]
[MD5.C99CF2E3FD314DCD0B05899EDD3C5EAC] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 333.6.) -- C:\Windows\system32\nvvsvc.exe [929936] [PID.1076]
[MD5.564CB886D1A968B9798C1AB03F4EB54F] - (.ASUSTek Computer Inc. - ASLDR Service.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [115512] [PID.1548]
[MD5.DBC598E47E7A382E60E2A4745D41FEF9] - (.ASUS - GFNEXSrv.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896] [PID.1628]
[MD5.54236E79A44F909612391C8A2D70D512] - (.Avast Software s.r.o. - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336] [PID.1652]
[MD5.FB9A914C346E74D66D454A9C46351A2D] - (.Windows (R) Win 7 DDK provider - Windows Setup API.) -- C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [322176] [PID.1676]
[MD5.F4C8038F14324F704A1AA68A29D779DB] - (...) -- C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe [112560] [PID.1860] =>PUP.SearchDonkey
[MD5.F07F814FF63E42C2FB1EE9344012A435] - (.ASUSTek Computer Inc. - Driver MFT Service.) -- C:\Program Files (x86)\ASUS\ASUS Video DSP\DriverMFTService.exe [9728] [PID.2060]
[MD5.5117F48112199D74343318A4520B6D64] - (.Condusiv Technologies - ExpressCache Service.) -- C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [828656] [PID.2148]
[MD5.171CCFEB86294AFAA3609DB3899A841E] - (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656] [PID.2172]
[MD5.0DB1E3F6189C628675F855C0EB510419] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696] [PID.2216]
[MD5.4B1E6975B565883985FB43C3FD6C88C6] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1868432] [PID.2308]
[MD5.5D989663ECA1558D267C0B8E0EF0F77D] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007376] [PID.2416]
[MD5.67EAD2898F681B4ECA6E385AA39C8539] - (.Copyright © 2013-2015 - GameScannerService.) -- C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072] [PID.2476]
[MD5.F5AEA5C2D683A3B5C92E1911886E9AC9] - (...) -- C:\Program Files (x86)\StormWatch\StormWatchSrv.exe [586264] [PID.2672] =>PUP.StormWatch
[MD5.6CE2C1334A7E0423F4F14B69020940E3] - (.Weather Protector LLC - SW Updater Service.) -- C:\Program Files (x86)\StormWatch\SWUpdaterSvc.exe [17584] [PID.2736] =>PUP.StormWatch
[MD5.452C1A01EE098F4B0B052AB85EAFA61A] - (.WS - WS Client Service.) -- C:\Program Files (x86)\WordShark_1.10.0.19\Service\wssvc.exe [299096] [PID.2852] =>PUP.WordShark
[MD5.86B8B1F5C1189D68B07666784BE882FE] - (.Atheros - Atheros Coex Service Application.) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584] [PID.2880]
[MD5.9DC2C995ED57BCF71DDE2BB763A867EE] - (.Irrational Number Applications - WebShield Service.) -- C:\ProgramData\UyxqnepWu\LMPfChjh.exe [2731512] [PID.2932] =>Adware.WebShield
[MD5.ECCABF393C3BFDCAAB2A215817A61AEA] - (.NVIDIA Corporation - NVIDIA Network Stream Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [7902864] [PID.3228]
[MD5.46C430FE178028F7AD151B62EBA3EEC5] - (.Avast Software - AvastVirtualBox Interface.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4034896] [PID.3740]
[MD5.D0117917EB976A484B3A9E3AA7142108] - (.AVAST Software - avast! NG service.) -- C:\Program Files\AVAST Software\Avast\ng\ngservice.exe [171896] [PID.4256]
[MD5.6A80F5C61899D79B755BC41E0C48E793] - (.ASUSTek Computer Inc. - HControl.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe [303928] [PID.4276]
[MD5.4A336C92A790A3F7C2D9952C73FCFA16] - (.WildTangent - WildTangent Games App Integration Service.) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904] [PID.2168]
[MD5.5D989663ECA1558D267C0B8E0EF0F77D] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007376] [PID.5032]
[MD5.D7C763585907733B9F97E08914AF3F9E] - (.ASUS - ACMON.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [58440] [PID.4780]
[MD5.61205A84623464E7B3574E31FE3D5AE8] - (.ASUSTek Computer Inc. - ASUS USB Charger Plus.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19853392] [PID.2104]
[MD5.F29D796587A835DCA983EECFE7D49E8E] - (.AsusTek - ASUS Smart Gesture Loader.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe [357176] [PID.5324]
[MD5.8B94B30149CAC2053A9DE9A72AD11FD4] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2446480] [PID.5784]
[MD5.CFAC0D3B76F75709B03360FDF910CF21] - (.ASUSTek Computer Inc. - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [406328] [PID.6084]
[MD5.279E7E572487ED726CEF996A69C9DA78] - (.AsusTek - ASUS Smart Gesture Center.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe [302904] [PID.5908]
[MD5.2DC2C370F785AD5B2717A205238B03E2] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704] [PID.5804]
[MD5.4F870EF9292559AB9DE6F31527A1DCBF] - (.ASUSTek Computer Inc. - KBFiltr.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe [113312] [PID.5972]
[MD5.A1AAE034B1C463FDC571ADAB950C50D7] - (.ASUSTek Computer Inc. - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [209720] [PID.6140]
[MD5.0C71181B01B1401B51A6057AD95A5264] - (.AsusTek - ASUS Smart Gesture Helper.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe [179000] [PID.6396]
[MD5.3EB41F036098178AC909C783AC58DBE8] - (.Qualcomm®Atheros® - Extension Core.) -- C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784] [PID.6588]
[MD5.718F380A8ECB43D22016B1BE7CF10A7E] - (...) -- C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe [12928] [PID.6652]
[MD5.8DACA62F3E15E45EBAF7AE51A609CBC1] - (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe [2892992] [PID.6724]
[MD5.D471F27FE3414238839979D4203143B3] - (.Valve Corporation - Steam Client WebHelper.) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe [1853632] [PID.6788]
[MD5.16BE7EB47D844AC33E273CDF61DFB67F] - (.Nosibay - Selection Tools.) -- C:\Users\Andreas\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe [1530640] [PID.6800] =>PUP.Nosibay
[MD5.0A3544D7E9AF7D8C991C904339157EDC] - (.Valve Corporation - Steam Client Service.) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe [837312] [PID.6928]
[MD5.DA248D9E01D1D0BCEA13C5EC711AD800] - (.YTDownloader - YTDownloader.) -- C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1988528] [PID.7176] =>PUP.YTDownloader
[MD5.CCBC6DD2A2A03F561B00CA2DAE29EBCF] - (...) -- C:\Program Files (x86)\OLBPre\OLBPre.exe [2462208] [PID.7696] =>PUP.MyPCBackup
[MD5.724B6062BE3453798619A1E6037FEE3B] - (.(C) 2011 ASUS, Inc. - ASUS ROG Gaming Mouse hid.) -- C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872] [PID.7960]
[MD5.CCBC6DD2A2A03F561B00CA2DAE29EBCF] - (...) -- C:\Program Files (x86)\OLBPre\OLBPre.exe [2462208] [PID.8036] =>PUP.MyPCBackup
[MD5.0382488B37EF695EE981A93D5C940F18] - (.Weather Protector LLC - StormWatch.) -- C:\Program Files (x86)\StormWatch\StormWatch.exe [162992] [PID.8080] =>PUP.StormWatch
[MD5.D468102B308978A0D60E11E8E120FDC8] - (.Razer Inc. - Razer Synapse.) -- C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [590144] [PID.8156]
[MD5.CD52F7D23B0A1CEF8D55086714832A32] - (.Development Media 73 - Window Promo.) -- C:\Users\Andreas\AppData\Local\Development Media 73\WindowPromo\WindowPromo.exe [223712] [PID.8308] =>PUP.WindowPromo
[MD5.65C6AA484AD2287D20541C7735989437] - (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496] [PID.8408]
[MD5.DA2D7BED47EF71BDFEEDDEEE76C965FD] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672664] [PID.8644]
[MD5.9928ACBA0AC68AB206D3D5DB950249ED] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387224] [PID.8652]
[MD5.8E1D5B57D86384027DBB7B73CAB42552] - (...) -- C:\Program Files (x86)\StormWatch\StormWatchApp.exe [1556504] [PID.8880] =>PUP.StormWatch
[MD5.CCA67675DFCE2993F788F3FECFBEEFC0] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232] [PID.9184]
[MD5.50E88C7C1EC5B45B02E2AF3227A2B78C] - (.ASUS Cloud Corporation - .) -- C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSPanel.exe [5246272] [PID.9312]
[MD5.005F12ABCC93489177F735218B82BE22] - (.Goobzo - Update Helper.) -- C:\Program Files (x86)\YTDownloader\BrowserHelper.exe [471984] [PID.9708] =>PUP.YTDownloader
[MD5.7016A5D74459577060366F7D1E44F495] - (.FileProperties_CompanyName - FileProperties_FileDescription.) -- C:\Program Files (x86)\fun coupons\fun_coupons_notification_service.exe [1417216] [PID.12484] =>Adware.CrossRider
[MD5.7016A5D74459577060366F7D1E44F495] - (.FileProperties_CompanyName - FileProperties_FileDescription.) -- C:\Program Files (x86)\ext coupons\ext_coupons_notification_service.exe [1417216] [PID.2620] =>Adware.CrossRider
[MD5.7016A5D74459577060366F7D1E44F495] - (.FileProperties_CompanyName - FileProperties_FileDescription.) -- C:\Program Files (x86)\roller coaster park\roller_coaster_park_notification_service.exe [1417216] [PID.13308] =>Adware.CrossRider
[MD5.29C8446F1458CA585DE24B02097310E1] - (.Thorvald Natvig - Mumble - Low-latency VoIP client.) -- C:\Program Files (x86)\Mumble\mumble.exe [5701952] [PID.16152]
[MD5.761986319F4F6EDB33B3F046D254C781] - (.ASUSTeK Computer Inc. - ASUS Live Update.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2998552] [PID.28908]
[MD5.2A14D1363D14A7358353511240A3EA74] - (.Oracle Corporation - Java Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [1058176] [PID.31956]
[MD5.4297278E9B599A997BC323C8B275A83F] - (.© 2014 Razer Inc. All rights reserved. - RzStats.Manager.) -- C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe [291840] [PID.38296]
[MD5.2C8130B85B682C6B03C65DAEB52E6471] - (.Razer, Inc. - RazerIngameEngine.) -- C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe [214232] [PID.38620]
[MD5.29313706ACF733999A9D10E8B0289D77] - (.Razer, Inc. - Razer Chromium Render Process.) -- C:\Users\Andreas\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe [217304] [PID.39252]
[MD5.BC014D1438BDA2DB9D47B1B90D905E08] - (...) -- C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugincontainer.exe [648464] [PID.87080] =>Adware.CrossRider
[MD5.F4F49042AB245E09F90BF7AAC2EEB9A7] - (...) -- C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\2\Plugin.exe [1176848] [PID.84368] =>Adware.CrossRider
[MD5.D3F25C6F6DD38CE3D47C724C75F5F051] - (...) -- C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\4\Plugin.exe [427280] [PID.85176] =>Adware.CrossRider
[MD5.92CBF16C14F228E5AC39F4F5272FC3D3] - (...) -- C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\5\Plugin.exe [783632] [PID.88264] =>Adware.CrossRider
[MD5.3B5D39176961910AEA64D671EC48493F] - (...) -- C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\3\Plugin.exe [612624] [PID.82524] =>Adware.CrossRider
[MD5.170664AB3C2E0B010C691022029B2C9E] - (...) -- C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\6\Plugin.exe [595728] [PID.82356] =>Adware.CrossRider
[MD5.20D123640A278FEB2A9BF0743A41E901] - (...) -- C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\7\Plugin.exe [459536] [PID.88260] =>Adware.CrossRider
[MD5.83176BB6004CBDEF7887C920D5ECDE26] - (...) -- C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\8\Plugin.exe [650512] [PID.87128] =>Adware.CrossRider
[MD5.3B5D39176961910AEA64D671EC48493F] - (...) -- C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\3\Plugin.exe [612624] [PID.83636] =>Adware.CrossRider
[MD5.20D123640A278FEB2A9BF0743A41E901] - (...) -- C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\7\Plugin.exe [459536] [PID.82564] =>Adware.CrossRider
[MD5.3316C260FDE56DA80C09E40CDDFEE6F6] - (...) -- C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe [573712] [PID.81332] =>Adware.CrossRider
[MD5.0702F82B954DABAB891C523344FA0DD6] - (.Irrational Number Applications - WebShield.) -- C:\ProgramData\UyxqnepWu\dat\yBLDyumKQMG.exe [48120] [PID.92028] =>Adware.WebShield

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) (24) - 0s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://fr.search.yahoo.com/?fr=hp-ddc-bd&type=bg_250_bl-is-15__alt__ddc_dsssyc_bd_com"]
G2 - GCE: Extension [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__
G2 - GCE: Extension [User Data\Default] [clkkaggocmafajhbcbknhcgnbmagjohi] __MSG_browserActionTitle__
G2 - GCE: Extension [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [dfhphepmmghimompopllneamgdbelkdd] Gridulator
G2 - GCE: Extension [User Data\Default] [ejpepffjfmamnambagiibghpglaidiec] Facebook Disconnect
G2 - GCE: Extension [User Data\Default] [elggllhppljlljkgfeokjpehmdamkejk] binkiland New Tab =>PUP.Binkiland
G2 - GCE: Extension [User Data\Default] [eofcbnmajmjmplflapaojjnihcjkigck] Avast SafePrice
G2 - GCE: Extension [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [gaaghkhghnijpedknoihgelfibidjccn] Window Promo =>PUP.WindowPromo
G2 - GCE: Extension [User Data\Default] [gecgipfabdickgidpmbicneamekgbaej] Chrome Web Store Launcher (by Google)
G2 - GCE: Extension [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security
G2 - GCE: Extension [User Data\Default] [ijoeapleklopieoejahbpdnhkjjgddem] ijoeapleklopieoejahbpdnhkjjgddem
G2 - GCE: Extension [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Extension [User Data\Default] [mdanidgdpmkimeiiojknlnekblgmpdll] Boomerang for Gmail
G2 - GCE: Extension [User Data\Default] [ndgafedgphnfegpdleilandjadhkecpl] {background:{scripts:[background.js]}content_scrip
G2 - GCE: Extension [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [obbfamljbihbcghcciagdafdpbgcmkne] My Browser Version
G2 - GCE: Extension [User Data\Default] [pbegekjleoplkhibgbmkmnnfffcpfanh] pbegekjleoplkhibgbmkmnnfffcpfanh
G2 - GCE: Extension [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (7) - 0s
M0 - MFSP: prefs.js [Andreas - 6gh5urj9.default] http://services.freshy.com/general/newhometab.php?hometab=home&partner=10817&guid={63329D4B-9F19-4469-81CD-36A3A8C93EBC}&i= =>PUP.CertifiedToolbar
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\mystarttb.xml
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_190.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf] - (...) -- C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.GlobalUpdate
P2 - FPN: [HKLM] [@WildTangent.com/GamesAppPresenceDetector,Version=1.0] - (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

---\\ Opera, Démarrage,Recherche,Plugins (B0,B1,B2) (10) - 0s
B2 - EXT: [zenguard] C:\Users\Andreas\AppData\Roaming\Opera Software\Opera Stable\Extensions\cnhbkkedmelfmalgjpkngiaoifpdfcnl
B2 - EXT: [roller coaster park] C:\Users\Andreas\AppData\Roaming\Opera Software\Opera Stable\Extensions\dfhphepmmghimompopllneamgdbelkdd
B2 - EXT: [gecgipfabdickgidpmbicneamekgbaej] C:\Users\Andreas\AppData\Roaming\Opera Software\Opera Stable\Extensions\gecgipfabdickgidpmbicneamekgbaej
B2 - EXT: [iWebar] C:\Users\Andreas\AppData\Roaming\Opera Software\Opera Stable\Extensions\hdhmofnopkgkpgnpggloijpbnaonhplc
B2 - EXT: [gorhill] C:\Users\Andreas\AppData\Roaming\Opera Software\Opera Stable\Extensions\kccohkcpppjjkkjppopfnflnebibpida
B2 - EXT: [Object Browser] C:\Users\Andreas\AppData\Roaming\Opera Software\Opera Stable\Extensions\kfgaibfbmkjgmimhbbaikfnpkkjkpoan
B2 - EXT: [mdanidgdpmkimeiiojknlnekblgmpdll] C:\Users\Andreas\AppData\Roaming\Opera Software\Opera Stable\Extensions\mdanidgdpmkimeiiojknlnekblgmpdll
B2 - EXT: [{background:{scripts:[background.js]}content_scrip] C:\Users\Andreas\AppData\Roaming\Opera Software\Opera Stable\Extensions\ndgafedgphnfegpdleilandjadhkecpl
B2 - EXT: [ext coupons] C:\Users\Andreas\AppData\Roaming\Opera Software\Opera Stable\Extensions\obbfamljbihbcghcciagdafdpbgcmkne
B2 - EXT: [Opera Stable] C:\Users\Andreas\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.search.yahoo.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://services.freshy.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer, Proxy Management (R5) (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 1s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object de navigateur (BHO) (O2) (4) - 0s
O2 - BHO: nitrodeeal [64Bits] - {12B92C3C-A2B0-4AE3-9E92-70CB927BA202} . (...) -- C:\Program Files (x86)\nitrodeeal\gNN8j2AMIJJe7d.x64.dll (.not file.) =>PUP.Deeal
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Avast Software s.r.o. - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
O2 - BHO: ShopperProBHO [64Bits] - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} . (.Goobzo Ltd. - ShopperPro Extension.) -- C:\ProgramData\ShopperPro\ShopperPro64.dll =>PUP.ShopperPro
O2 - BHO: MyStart Toolbar [64Bits] - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} . (...) -- C:\Program Files (x86)\mystarttb\mystartDx64.dll (.not file.)

---\\ Internet Explorer Toolbars (O3) (2) - 0s
O3 - Toolbar: 0xAB0C11EFB74DA9449B2267C35E7B9183 - [HKCU]{EF110CAB-4DB7-44A9-9B22-67C35E7B9183} . (...) -- (.not file.)
O3 - Toolbar: MyStart Toolbar - [HKLM]{ccb24e92-62c4-4c53-95d2-65f9eed476bc} . (...) -- C:\Program Files (x86)\mystarttb\mystartDx.dll (.not file.)

---\\ Applications lancées au démarrage du sytème (O4) (21) - 0s
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [ShadowPlay] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe
O4 - HKLM\..\Run: [3D BubbleSound] C:\Program Files\BubbleSound\3D BubbleSound.exe (.not file.) =>PUP.BubbleSound
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKCU\..\Run: [WindApp] C:\Users\Andreas\AppData\Roaming\Store\WindApp\WindApp.exe (.not file.) =>PUP.Nosibay
O4 - HKCU\..\Run: [Selection Tools] . (.Nosibay - Selection Tools.) -- C:\Users\Andreas\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe =>PUP.Nosibay
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_46A172103AF55F16E10754CCD32BD34E] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKCU\..\Run: [SPDriver] C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2030\jsdrv.exe (.not file.) =>PUP.ShopperPro
O4 - HKCU\..\Run: [YTDownloader] . (.YTDownloader - YTDownloader.) -- C:\Program Files (x86)\YTDownloader\YTDownloader.exe =>PUP.YTDownloader
O4 - HKCU\..\RunOnce: [Binkiland] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\SysWOW64\wscript.exe
O4 - HKLM\..\Wow6432Node\Run: [WebStorage] . (...) -- C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\ASUSWSLoader.exe
O4 - HKLM\..\Wow6432Node\Run: [ROGNB] . (.(C) 2011 ASUS, Inc. - ASUS ROG Gaming Mouse hid.) -- C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
O4 - HKLM\..\Wow6432Node\RunOnce: [Binkiland] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\SysWOW64\wscript.exe
O4 - HKLM\..\policies\Explorer\Run: [BtvStack] . (.Qualcomm®Atheros® - Extension Core.) -- C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
O4 - HKUS\S-1-5-21-3787474523-397623174-173382215-1001\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKUS\S-1-5-21-3787474523-397623174-173382215-1001\..\Run: [WindApp] C:\Users\Andreas\AppData\Roaming\Store\WindApp\WindApp.exe (.not file.) =>PUP.Nosibay
O4 - HKUS\S-1-5-21-3787474523-397623174-173382215-1001\..\Run: [Selection Tools] . (.Nosibay - Selection Tools.) -- C:\Users\Andreas\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe =>PUP.Nosibay
O4 - HKUS\S-1-5-21-3787474523-397623174-173382215-1001\..\Run: [GoogleChromeAutoLaunch_46A172103AF55F16E10754CCD32BD34E] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKUS\S-1-5-21-3787474523-397623174-173382215-1001\..\Run: [SPDriver] C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2030\jsdrv.exe (.not file.) =>PUP.ShopperPro
O4 - HKUS\S-1-5-21-3787474523-397623174-173382215-1001\..\Run: [YTDownloader] . (.YTDownloader - YTDownloader.) -- C:\Program Files (x86)\YTDownloader\YTDownloader.exe =>PUP.YTDownloader
O4 - HKUS\S-1-5-21-3787474523-397623174-173382215-1001\..\RunOnce: [Binkiland] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\SysWOW64\wscript.exe

---\\ Raccourcis Global Startup (O4G) (16) - 2s
O4 - GS\Quicklaunch [Administrateur]: speed browser.lnk . (...) C:\Program Files (x86)\speed browser\Application\browser.exe =>PUP.SpeedBrowser
O4 - GS\TaskBar [Administrateur]: speed browser.lnk . (...) C:\Program Files (x86)\speed browser\Application\browser.exe =>PUP.SpeedBrowser
O4 - GS\Startup [Administrateur]: MyPC Backup.lnk . (...) C:\Program Files (x86)\OLBPre\OLBPre.exe =>PUP.MyPCBackup
O4 - GS\Startup [Administrateur]: StormWatch.lnk . (.Weather Protector LLC - StormWatch.) C:\Program Files (x86)\StormWatch\StormWatch.exe =>PUP.StormWatch
O4 - GS\Startup [Administrateur]: WindowPromo.lnk . (.Development Media 73 - Window Promo.) C:\Users\Andreas\AppData\Local\Development Media 73\WindowPromo\WindowPromo.exe =>PUP.WindowPromo
O4 - GS\Quicklaunch [Andreas]: speed browser.lnk . (...) C:\Program Files (x86)\speed browser\Application\browser.exe =>PUP.SpeedBrowser
O4 - GS\TaskBar [Andreas]: speed browser.lnk . (...) C:\Program Files (x86)\speed browser\Application\browser.exe =>PUP.SpeedBrowser
O4 - GS\Startup [Andreas]: MyPC Backup.lnk . (...) C:\Program Files (x86)\OLBPre\OLBPre.exe =>PUP.MyPCBackup
O4 - GS\Startup [Andreas]: StormWatch.lnk . (.Weather Protector LLC - StormWatch.) C:\Program Files (x86)\StormWatch\StormWatch.exe =>PUP.StormWatch
O4 - GS\Startup [Andreas]: WindowPromo.lnk . (.Development Media 73 - Window Promo.) C:\Users\Andreas\AppData\Local\Development Media 73\WindowPromo\WindowPromo.exe =>PUP.WindowPromo
O4 - GS\Quicklaunch [Invité]: speed browser.lnk . (...) C:\Program Files (x86)\speed browser\Application\browser.exe =>PUP.SpeedBrowser
O4 - GS\TaskBar [Invité]: speed browser.lnk . (...) C:\Program Files (x86)\speed browser\Application\browser.exe =>PUP.SpeedBrowser
O4 - GS\Startup [Invité]: MyPC Backup.lnk . (...) C:\Program Files (x86)\OLBPre\OLBPre.exe =>PUP.MyPCBackup
O4 - GS\Startup [Invité]: StormWatch.lnk . (.Weather Protector LLC - StormWatch.) C:\Program Files (x86)\StormWatch\StormWatch.exe =>PUP.StormWatch
O4 - GS\Startup [Invité]: WindowPromo.lnk . (.Development Media 73 - Window Promo.) C:\Users\Andreas\AppData\Local\Development Media 73\WindowPromo\WindowPromo.exe =>PUP.WindowPromo
O4 - GS\Programs [Public]: eclipse.lnk . (...) C:\Program Files (x86)\AskPartnerNetwork\eclipse\eclipse.exe =>Toolbar.Ask

---\\ Modification Domaine/Adresses DNS (O17) (6) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 31.168.228.244,82.166.96.242
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = SWDL.WDS
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 31.168.228.244,82.166.96.242
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = SWDL.WDS

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) (1) - 0s
O20 - AppInit_DLLs: . (.Auteurs - .) - C:\Windows\System32\

---\\ Liste des services NT non Microsoft et non désactivés (O23) (29) - 1s
O23 - Service: ASLDR Service (ASLDRService) . (.ASUSTek Computer Inc. - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
O23 - Service: (Asus WebStorage Windows Service) . (.ASUS Cloud Corporation - Asus WebStorage Windows Service.) - C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe
O23 - Service: AtherosSvc (AtherosSvc) . (.Windows (R) Win 7 DDK provider - Windows Setup API.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS - GFNEXSrv.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) . (.Avast Software s.r.o. - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: (BrsHelper) . (...) - C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe =>PUP.YTDownloader
O23 - Service: (DriverMFTService) . (.ASUSTek Computer Inc. - Driver MFT Service.) - C:\Program Files (x86)\ASUS\ASUS Video DSP\DriverMFTService.exe
O23 - Service: ExpressCache (ExpressCache) . (.Condusiv Technologies - ExpressCache Service.) - C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
O23 - Service: GamesAppIntegrationService (GamesAppIntegrationService) . (.WildTangent - WildTangent Games App Integration Service.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe =>PUP.GlobalUpdate
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\system32\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service (Intel(R) ME Service) . (.Intel Corporation - Intel(R) ME Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: LMPfChjh (LMPfChjh) . (.Irrational Number Applications - WebShield Service.) - C:\ProgramData\UyxqnepWu\LMPfChjh.exe =>Adware.WebShield
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 333.6.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) . (.Copyright © 2013-2015 - GameScannerService.) - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: Service Mgr StrongSignal (Service Mgr StrongSignal) . (...) - C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugincontainer.exe =>PUP.StrongSignal
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: StormWatch Update Service (StormWatch Update Service) . (...) - C:\Program Files (x86)\StormWatch\StormWatchSrv.exe =>PUP.StormWatch
O23 - Service: SWUpdaterSvc (SWUpdater) . (.Weather Protector LLC - SW Updater Service.) - C:\Program Files (x86)\StormWatch\SWUpdaterSvc.exe =>PUP.StormWatch
O23 - Service: Update Mgr StrongSignal (Update Mgr StrongSignal) . (...) - C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe =>PUP.StrongSignal
O23 - Service: WS 1.10.0.19 Client Service (wssvc_1.10.0.19) . (.WS - WS Client Service.) - C:\Program Files (x86)\WordShark_1.10.0.19\Service\wssvc.exe =>PUP.WordShark
O23 - Service: ZAtheros Bt and Wlan Coex Agent (ZAtheros Bt and Wlan Coex Agent) . (.Atheros - Atheros Coex Service Application.) - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

---\\ Enumère les données de BootExecute (BEX) (O34) (1) - 0s
O34 - HKLM BootExecute: (aswBoot.exe /M:68080edb /wow /dir:"C:\Program Files\AVAST Software\Avast") - File not found

---\\ Tâches planifiées en automatique (O39) (119) - 5s
[MD5.00000000000000000000000000000000] [APT] [11c17527-3cff-4b80-b0cb-b19fecbcd7f9-1-6] (...) -- C:\Program Files (x86)\iWebar\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-1-6.exe (.not file.) [0] =>Adware.CrossRider
[MD5.00000000000000000000000000000000] [APT] [11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5] (...) -- C:\Program Files (x86)\iWebar\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5.exe (.not file.) [0] =>Adware.CrossRider
[MD5.00000000000000000000000000000000] [APT] [11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5_user] (...) -- C:\Program Files (x86)\iWebar\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5.exe (.not file.) [0] =>Adware.CrossRider
[MD5.00000000000000000000000000000000] [APT] [4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-6] (...) -- C:\Program Files (x86)\SmartSaver+ 21\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-6.exe (.not file.) [0] =>Adware.CrossRider
[MD5.00000000000000000000000000000000] [APT] [4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-7] (...) -- C:\Program Files (x86)\SmartSaver+ 21\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-7.exe (.not file.) [0] =>Adware.CrossRider
[MD5.00000000000000000000000000000000] [APT] [4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5] (...) -- C:\Program Files (x86)\SmartSaver+ 21\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5.exe (.not file.) [0] =>Adware.CrossRider
[MD5.00000000000000000000000000000000] [APT] [4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5_user] (...) -- C:\Program Files (x86)\SmartSaver+ 21\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5.exe (.not file.) [0] =>Adware.CrossRider
[MD5.00000000000000000000000000000000] [APT] [4ea237fa-e5e7-418f-b5af-d0b42809b6c8-7] (...) -- C:\Program Files (x86)\SmartSaver+ 21\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-7.exe (.not file.) [0] =>Adware.CrossRider
[MD5.6259A5B669AE018A5E53247259A101C3] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268464]
[MD5.761986319F4F6EDB33B3F046D254C781] [APT] [ASUS Live Update1] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2998552]
[MD5.761986319F4F6EDB33B3F046D254C781] [APT] [ASUS Live Update2] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2998552]
[MD5.24B7AEFCA2403E01819E73F7F127E16C] [APT] [ASUS Smart Gesture Launcher] (.AsusTek.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18232]
[MD5.D7C763585907733B9F97E08914AF3F9E] [APT] [ASUS Splendid ACMON] (.ASUS.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [58440]
[MD5.61205A84623464E7B3574E31FE3D5AE8] [APT] [ASUS USB Charger Plus] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19853392]
[MD5.08B018EF53C79AF2DAC005B494B9AF53] [APT] [ATK Package 36D18D69AFC3] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [109880]
[MD5.FAAE091936E04BDE3B6041AB5C16BC7B] [APT] [avast! Emergency Update] (.Avast Software s.r.o..) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1298776]
[MD5.7016A5D74459577060366F7D1E44F495] [APT] [ext_coupons_notification_service] (.FileProperties_CompanyName.) -- C:\Program Files (x86)\ext coupons\ext_coupons_notification_service.exe [1417216] =>Adware.CrossRider
[MD5.00000000000000000000000000000000] [APT] [EYHL] (.FileProperties_CompanyName.) -- C:\Users\Andreas\AppData\Roaming\EYHL.exe (.not file.) [0] =>Adware.CrossRider
[MD5.00000000000000000000000000000000] [APT] [f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-6] (.FileProperties_CompanyName.) -- C:\Program Files (x86)\Object Browser\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-6.exe (.not file.) [0] =>PUP.ObjectBrowser
[MD5.00000000000000000000000000000000] [APT] [f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-7] (.FileProperties_CompanyName.) -- C:\Program Files (x86)\Object Browser\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-7.exe (.not file.) [0] =>PUP.ObjectBrowser
[MD5.00000000000000000000000000000000] [APT] [f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-4] (.FileProperties_CompanyName.) -- C:\Program Files (x86)\Object Browser\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-4.exe (.not file.) [0] =>PUP.ObjectBrowser
[MD5.7016A5D74459577060366F7D1E44F495] [APT] [fun_coupons_notification_service] (.FileProperties_CompanyName.) -- C:\Program Files (x86)\fun coupons\fun_coupons_notification_service.exe [1417216] =>Adware.CrossRider
[MD5.5F126BD699C6B4D75E22DACDB74AD314] [APT] [fun_coupons_updating_service] (...) -- C:\Program Files (x86)\fun coupons\fun_coupons_updating_service.exe [96256]
[MD5.3C14AAE26EA06BADAC98520773772CEB] [APT] [globalUpdateUpdateTaskMachineCore] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608] =>PUP.GlobalUpdate
[MD5.3C14AAE26EA06BADAC98520773772CEB] [APT] [globalUpdateUpdateTaskMachineUA] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608] =>PUP.GlobalUpdate
[MD5.0C03FB91E17987EED93F60007B08DAA0] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200]
[MD5.0C03FB91E17987EED93F60007B08DAA0] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200]
[MD5.CCBC6DD2A2A03F561B00CA2DAE29EBCF] [APT] [LaunchPreSignup] (...) -- C:\Program Files (x86)\OLBPre\OLBPre.exe [2462208] =>PUP.MyPCBackup
[MD5.00000000000000000000000000000000] [APT] [LaunchSignup] (...) -- C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe (.not file.) [0] =>PUP.MyPCBackup
[MD5.00000000000000000000000000000000] [APT] [Microsoft Office 15 Sync Maintenance for GROSSEBERTHA-Andreas GrosseBertha] (...) -- C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe (.not file.) [0]
[MD5.1B74F7F7CB3C8351409FB2DD81D3BB50] [APT] [Opera scheduled Autoupdate 1427657951] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [908408]
[MD5.00000000000000000000000000000000] [APT] [Overwolf Updater Task] (.Opera Software.) -- C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [ProPCCleaner_Start] (.Opera Software.) -- C:\Program Files (x86)\Pro PC Cleaner\ProPCCleaner.exe (.not file.) [0] =>PUP.ProPCCleaner
[MD5.00000000000000000000000000000000] [APT] [RocketTab Update Task] (.Opera Software.) -- C:\Program Files (x86)\Search Extensions\uninstall.exe (.not file.) [0] =>PUP.RocketTab
[MD5.7016A5D74459577060366F7D1E44F495] [APT] [roller_coaster_park_notification_service] (.FileProperties_CompanyName.) -- C:\Program Files (x86)\roller coaster park\roller_coaster_park_notification_service.exe [1417216] =>Adware.CrossRider
[MD5.5F126BD699C6B4D75E22DACDB74AD314] [APT] [roller_coaster_park_updating_service] (...) -- C:\Program Files (x86)\roller coaster park\roller_coaster_park_updating_service.exe [96256]
[MD5.00000000000000000000000000000000] [APT] [RPHPVXVMZ] (...) -- C:\ProgramData\367d2bf6ce1e45b48925da8ab44e9dde\367d2bf6ce1e45b48925da8ab44e9dde.exe (.not file.) [0]
[MD5.9928ACBA0AC68AB206D3D5DB950249ED] [APT] [RtHDVBg] (.Realtek Semiconductor.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387224]
[MD5.DA2D7BED47EF71BDFEEDDEEE76C965FD] [APT] [RTKCPL] (.Realtek Semiconductor.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672664]
[MD5.B12E1E78D09BB37D9C2BC10CB59915FA] [APT] [Selection Tools Update] (.Nosibay.) -- C:\Users\Andreas\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe [165072] =>PUP.Nosibay
[MD5.28CC9CACFAA776D1DCFB4B942EC5A04D] [APT] [ShopperPro] (.Goobzo LTD.) -- C:\Program Files (x86)\ShopperPro\ShopperPro.exe [1111472] =>PUP.ShopperPro
[MD5.B69C451455D4A313A95C11A98DB968D1] [APT] [ShopperProJSUpd] (.Goobzo.) -- C:\Program Files (x86)\ShopperPro\Updater.exe [764336] =>PUP.ShopperPro
[MD5.98FA788238E71D9563D4BF177A4FC22C] [APT] [TempTask14841] (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896]
[MD5.EFF8FFF2D81A26919EC1D1FCEEDEDAAD] [APT] [Update Checker] (...) -- C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [12288]
[MD5.4B20F56017947856D400F403C0852BA8] [APT] [WindApp Update] (.Nosibay.) -- C:\Users\Andreas\AppData\Roaming\Store\WindApp\WindApp Update.exe [165112] =>PUP.Nosibay
[MD5.697A9B24B1680B35EEED970FBD283F41] [APT] [WordShark Auto Updater 1.10.0.19 Core] (.WS.) -- C:\Program Files (x86)\WordShark_1.10.0.19\Update\WordSharkAutoUpdateClient.exe [68184] =>PUP.WordShark
[MD5.697A9B24B1680B35EEED970FBD283F41] [APT] [WordShark Auto Updater 1.10.0.19 Pending Update] (.WS.) -- C:\Program Files (x86)\WordShark_1.10.0.19\Update\WordSharkAutoUpdateClient.exe [68184] =>PUP.WordShark
[MD5.DA248D9E01D1D0BCEA13C5EC711AD800] [APT] [YTDownloader] (.YTDownloader.) -- C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1988528] =>PUP.YTDownloader
[MD5.1B74F7F7CB3C8351409FB2DD81D3BB50] [APT] [{5C7837E0-358B-40A9-91DC-BD9B13AA1B06}] (.Opera Software.) -- c:\program files (x86)\Opera\launcher.exe [908408]
[MD5.1B74F7F7CB3C8351409FB2DD81D3BB50] [APT] [{6F632228-CA6B-43A3-9272-7EC45A6DEADF}] (.Opera Software.) -- c:\program files (x86)\Opera\launcher.exe [908408]
[MD5.B5C90CBC7AC91FF982C2C8C71ABBE5EA] [APT] [ASUS\ASUS Product Register Service] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\APRP\aprp.exe [1271424]
O39 - APT: 11c17527-3cff-4b80-b0cb-b19fecbcd7f9-1-6 - (..) -- C:\Windows\Tasks\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-1-6.job [3474] =>Adware.CrossRider
O39 - APT: 11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5 - (..) -- C:\Windows\Tasks\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5.job [2790] =>Adware.CrossRider
O39 - APT: 11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5_user - (..) -- C:\Windows\Tasks\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5_user.job [2790] =>Adware.CrossRider
O39 - APT: 4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-6 - (..) -- C:\Windows\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-6.job [3154] =>Adware.CrossRider
O39 - APT: 4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-7 - (..) -- C:\Windows\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-7.job [3490] =>Adware.CrossRider
O39 - APT: 4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5 - (..) -- C:\Windows\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5.job [2462] =>Adware.CrossRider
O39 - APT: 4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5_user - (..) -- C:\Windows\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5_user.job [2462] =>Adware.CrossRider
O39 - APT: 4ea237fa-e5e7-418f-b5af-d0b42809b6c8-7 - (..) -- C:\Windows\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-7.job [5534] =>Adware.CrossRider
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\Tasks\Binkiland tona.job [794] =>PUP.Binkiland
O39 - APT: ext_coupons_notification_service - (.FileProperties_CompanyName.) -- C:\Windows\Tasks\ext_coupons_notification_service.job [1350] =>Adware.CrossRider
O39 - APT: EYHL - (.FileProperties_CompanyName.) -- C:\Windows\Tasks\EYHL.job [1368] =>Adware.CrossRider
O39 - APT: f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-6 - (.FileProperties_CompanyName.) -- C:\Windows\Tasks\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-6.job [3154] =>Adware.CrossRider
O39 - APT: f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-7 - (.FileProperties_CompanyName.) -- C:\Windows\Tasks\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-7.job [3154] =>Adware.CrossRider
O39 - APT: f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-4 - (.FileProperties_CompanyName.) -- C:\Windows\Tasks\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-4.job [4510] =>Adware.CrossRider
O39 - APT: fun_coupons_notification_service - (.FileProperties_CompanyName.) -- C:\Windows\Tasks\fun_coupons_notification_service.job [1350] =>Adware.CrossRider
O39 - APT: fun_coupons_updating_service - (..) -- C:\Windows\Tasks\fun_coupons_updating_service.job [712]
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job [928] =>PUP.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job [932] =>PUP.GlobalUpdate
O39 - APT: roller_coaster_park_notification_service - (.FileProperties_CompanyName.) -- C:\Windows\Tasks\roller_coaster_park_notification_service.job [1398] =>Adware.CrossRider
O39 - APT: roller_coaster_park_updating_service - (..) -- C:\Windows\Tasks\roller_coaster_park_updating_service.job [760]
O39 - APT: 11c17527-3cff-4b80-b0cb-b19fecbcd7f9-1-6 - (..) -- C:\Windows\System32\Tasks\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-1-6 [6478] =>Adware.CrossRider
O39 - APT: 11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5 - (..) -- C:\Windows\System32\Tasks\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5 [5794] =>Adware.CrossRider
O39 - APT: 11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5_user - (..) -- C:\Windows\System32\Tasks\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5_user [5802] =>Adware.CrossRider
O39 - APT: 4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-6 - (..) -- C:\Windows\System32\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-6 [6158] =>Adware.CrossRider
O39 - APT: 4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-7 - (..) -- C:\Windows\System32\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-7 [6494] =>Adware.CrossRider
O39 - APT: 4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5 - (..) -- C:\Windows\System32\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5 [5466] =>Adware.CrossRider
O39 - APT: 4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5_user - (..) -- C:\Windows\System32\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5_user [5474] =>Adware.CrossRider
O39 - APT: 4ea237fa-e5e7-418f-b5af-d0b42809b6c8-7 - (..) -- C:\Windows\System32\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-7 [8538] =>Adware.CrossRider
O39 - APT: ASUS Live Update1 - (.ASUSTeK Computer Inc..) -- C:\Windows\System32\Tasks\ASUS Live Update1 [3474]
O39 - APT: ASUS Live Update2 - (.ASUSTeK Computer Inc..) -- C:\Windows\System32\Tasks\ASUS Live Update2 [3464]
O39 - APT: ASUS Smart Gesture Launcher - (.AsusTek.) -- C:\Windows\System32\Tasks\ASUS Smart Gesture Launcher [3538]
O39 - APT: ASUS Splendid ACMON - (.ASUS.) -- C:\Windows\System32\Tasks\ASUS Splendid ACMON [2986]
O39 - APT: ASUS USB Charger Plus - (.ASUSTek Computer Inc..) -- C:\Windows\System32\Tasks\ASUS USB Charger Plus [3026]
O39 - APT: ATK Package 36D18D69AFC3 - (.ASUSTek Computer Inc..) -- C:\Windows\System32\Tasks\ATK Package 36D18D69AFC3 [3562]
O39 - APT: avast! Emergency Update - (.Avast Software s.r.o..) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Binkiland tona [3800] =>PUP.Binkiland
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\CleanerPro_Start [3198]
O39 - APT: ext_coupons_notification_service - (.FileProperties_CompanyName.) -- C:\Windows\System32\Tasks\ext_coupons_notification_service [4360] =>Adware.CrossRider
O39 - APT: EYHL - (.FileProperties_CompanyName.) -- C:\Windows\System32\Tasks\EYHL [4384] =>Adware.CrossRider
O39 - APT: f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-6 - (.FileProperties_CompanyName.) -- C:\Windows\System32\Tasks\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-6 [6158] =>Adware.CrossRider
O39 - APT: f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-7 - (.FileProperties_CompanyName.) -- C:\Windows\System32\Tasks\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-7 [6158] =>Adware.CrossRider
O39 - APT: f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-4 - (.FileProperties_CompanyName.) -- C:\Windows\System32\Tasks\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-4 [7514] =>Adware.CrossRider
O39 - APT: fun_coupons_notification_service - (.FileProperties_CompanyName.) -- C:\Windows\System32\Tasks\fun_coupons_notification_service [4360] =>Adware.CrossRider
O39 - APT: fun_coupons_updating_service - (..) -- C:\Windows\System32\Tasks\fun_coupons_updating_service [3722]
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore [3668] =>PUP.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA [3904] =>PUP.GlobalUpdate
O39 - APT: LaunchPreSignup - (..) -- C:\Windows\System32\Tasks\LaunchPreSignup [3996]
O39 - APT: LaunchSignup - (..) -- C:\Windows\System32\Tasks\LaunchSignup [4026]
O39 - APT: Microsoft Office 15 Sync Maintenance for GROSSEBERTHA-Andreas GrosseBertha - (..) -- C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for GROSSEBERTHA-Andreas GrosseBertha [5094]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\RocketTab [3550] =>Adware.Sambreel
O39 - APT: roller_coaster_park_notification_service - (.FileProperties_CompanyName.) -- C:\Windows\System32\Tasks\roller_coaster_park_notification_service [4408] =>Adware.CrossRider
O39 - APT: roller_coaster_park_updating_service - (..) -- C:\Windows\System32\Tasks\roller_coaster_park_updating_service [3770]
O39 - APT: RPHPVXVMZ - (..) -- C:\Windows\System32\Tasks\RPHPVXVMZ [3574]
O39 - APT: RtHDVBg - (.Realtek Semiconductor.) -- C:\Windows\System32\Tasks\RtHDVBg [3138]
O39 - APT: RTKCPL - (.Realtek Semiconductor.) -- C:\Windows\System32\Tasks\RTKCPL [3132]
O39 - APT: Selection Tools Update - (.Nosibay.) -- C:\Windows\System32\Tasks\Selection Tools Update [3764] =>PUP.Nosibay
O39 - APT: ShopperPro - (.Goobzo LTD.) -- C:\Windows\System32\Tasks\ShopperPro [4520] =>PUP.ShopperPro
O39 - APT: ShopperProJSUpd - (.Goobzo.) -- C:\Windows\System32\Tasks\ShopperProJSUpd [3580] =>PUP.ShopperPro
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\SMupdate1 [3734]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\SPBIW_UpdateTask_Time_3137353631363036382d4137345a376c453278345a41 [4250]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Super Optimizer Schedule [3264] =>PUP.SuperOptimizer
O39 - APT: Update Checker - (..) -- C:\Windows\System32\Tasks\Update Checker [3382]
O39 - APT: WindApp Update - (.Nosibay.) -- C:\Windows\System32\Tasks\WindApp Update [3730] =>PUP.Nosibay
O39 - APT: WordShark Auto Updater 1.10.0.19 Core - (.WS.) -- C:\Windows\System32\Tasks\WordShark Auto Updater 1.10.0.19 Core [4164] =>PUP.WordShark
O39 - APT: WordShark Auto Updater 1.10.0.19 Pending Update - (.WS.) -- C:\Windows\System32\Tasks\WordShark Auto Updater 1.10.0.19 Pending Update [4176] =>PUP.WordShark
O39 - APT: YTDownloader - (.YTDownloader.) -- C:\Windows\System32\Tasks\YTDownloader [3594] =>PUP.YTDownloader
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\{0F60CDE2-4EA6-4561-B3B1-4DFFABF63D8A} [3200]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\{5F1C145B-EAAA-4385-95A0-F6F05480C227} [3274]

---\\ Logiciels installés (O42) (113) - 9s
O42 - Logiciel: Windows Driver Package - ASUS (ATP) Mouse (07/02/2014 1.0.0.228) - (.ASUS.) [HKLM][64Bits] -- 7504488B89E0121B0737D63957491C9CD2633065
O42 - Logiciel: MyPC Backup - (.MyPC Backup.) [HKLM][64Bits] -- OLBPre =>PUP.MyPCBackup
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM][64Bits] -- TeamSpeak 3 Client
O42 - Logiciel: Java 8 Update 40 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418040F0}
O42 - Logiciel: ExpressCache - (.Condusiv Technologies.) [HKLM][64Bits] -- {44EAE7F6-8BBF-4C3F-A573-3CD5A3C067FA}
O42 - Logiciel: PixelMaster Video HDR - (.ASUS.) [HKLM][64Bits] -- {65302154-AAF6-4020-A070-76CAA9CEC8D3}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {89AFB053-A343-46EF-97E4-D593AD7184E6}
O42 - Logiciel: Qualcomm Atheros Bluetooth Suite (64) - (.Qualcomm Atheros Communications.) [HKLM][64Bits] -- {A84A4FB1-D703-48DB-89E0-68B6499D2801}
O42 - Logiciel: NVIDIA Graphics Driver 333.60 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA GeForce Experience 2.4.5.57 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA PhysX System Software 9.14.0702 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: 7-Zip 9.22beta - (...) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: Adobe Flash Player 17 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Advanced Video Compressor 2015 - (.WinSoftMagic Inc..) [HKLM][64Bits] -- Advanced Video Compressor_is1
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: AVS Audio Converter 7 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Audio Converter_is1
O42 - Logiciel: AVS Audio Editor 7.1 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Audio Editor_is1
O42 - Logiciel: AVS Audio Recorder version 4.0 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Audio Recorder_is1
O42 - Logiciel: AVS Disc Creator 5 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Disc Creator_is1
O42 - Logiciel: AVS Document Converter 2.1.2 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Document Converter_is1
O42 - Logiciel: AVS DVD Copy version 4.1.2 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS DVD Copy_is1
O42 - Logiciel: AVS Image Converter 2.1.2.169 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Image Converter_is1
O42 - Logiciel: AVS Media Player 4.1.8.93 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Media Player_is1
O42 - Logiciel: AVS Photo Editor - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Photo Editor_is1
O42 - Logiciel: AVS Ringtone Maker version 1.6 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Ringtone Maker 1.6_is1
O42 - Logiciel: AVS Screen Capture version 2.0.1 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Screen Capture_is1
O42 - Logiciel: AVS Update Manager 1.0 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Update Manager_is1
O42 - Logiciel: AVS Video Editor 6 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Video Editor_is1
O42 - Logiciel: AVS Video Recorder 2.4 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Video Recorder_is1
O42 - Logiciel: AVS Video ReMaker 4.0.8.140 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Video ReMaker_is1
O42 - Logiciel: AVS4YOU Software Navigator 1.4 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Software Navigator_is1
O42 - Logiciel: AVS Video Converter 8 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Video Converter 7_is1
O42 - Logiciel: AVS Cover Editor 2.0.1.3 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVSCoverEditor2_is1
O42 - Logiciel: AVS Registry Cleaner version 2.2 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVSRegistryCleaner_is1
O42 - Logiciel: FileZilla Client 3.11.0 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: FlashBeat - (...) [HKLM][64Bits] -- FlashBeat =>PUP.FlashBeat
O42 - Logiciel: FLV and Media Player 4.2.1.1 - (.Applian Technologies.) [HKLM][64Bits] -- FLV and Media Player
O42 - Logiciel: Fraps (remove only) - (...) [HKLM][64Bits] -- Fraps
O42 - Logiciel: GamesDesktop 001.004010013 - (.GAMESDESKTOP.) [HKLM][64Bits] -- gmsd_fr_004010013_is1 =>Adware.GamesDesktop
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: HQ Cinemax 1.9cV16.02 - (.HQ CinemaV16.02.) [HKLM][64Bits] -- HQ Cinemax 1.9cV16.02 =>Adware.CrossRider
O42 - Logiciel: iWebar - (.Webby.) [HKLM][64Bits] -- iWebar =>Adware.CrossRider
O42 - Logiciel: MyStart Toolbar - (.Visicom Media Inc..) [HKLM][64Bits] -- mystarttb
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++
O42 - Logiciel: Object Browser - (.ObjectB.) [HKLM][64Bits] -- Object Browser =>PUP.ObjectBrowser
O42 - Logiciel: Opera Stable 30.0.1835.88 - (.Opera Software.) [HKLM][64Bits] -- Opera 30.0.1835.88
O42 - Logiciel: RocketTab - (.RocketTab.) [HKLM][64Bits] -- RocketTab =>PUP.RocketTab
O42 - Logiciel: Shopper-Pro - (...) [HKLM][64Bits] -- ShopperPro =>PUP.ShopperPro
O42 - Logiciel: SmartSaver+ 21 - (.smart-saverplus.) [HKLM][64Bits] -- SmartSaver+ 21 =>Adware.CrossRider
O42 - Logiciel: Software Updater - (.Software Updater Ltd.) [HKLM][64Bits] -- SoftwareUpdater
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam
O42 - Logiciel: Plague Inc: Evolved - (.Ndemic Creations.) [HKLM][64Bits] -- Steam App 246620
O42 - Logiciel: Cities: Skylines - (.Colossal Order Ltd..) [HKLM][64Bits] -- Steam App 255710
O42 - Logiciel: Garry's Mod - (.Facepunch Studios.) [HKLM][64Bits] -- Steam App 4000
O42 - Logiciel: StormWatch - (.StormWatch.) [HKLM][64Bits] -- StormWatch =>PUP.StormWatch
O42 - Logiciel: Strong Signal - (.Strong Signal.) [HKLM][64Bits] -- Strong Signal =>PUP.StrongSignal
O42 - Logiciel: System NotifierV25.06 - (.System NotifierV25.06.) [HKLM][64Bits] -- System NotifierV25.06 =>PUP.SystemNotifier
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay
O42 - Logiciel: FarCry 4 - (.Ubisoft.) [HKLM][64Bits] -- Uplay Install 420
O42 - Logiciel: Remote Desktop Access (VuuPC) - (.CMI Limited.) [HKLM][64Bits] -- VOPackage =>Adware.Downware
O42 - Logiciel: Web Shield - (.Irrational Number Applications.) [HKLM][64Bits] -- WebShield =>Adware.WebShield
O42 - Logiciel: WebStorage - (.ASUS Cloud Corporation.) [HKLM][64Bits] -- WebStorage
O42 - Logiciel: WinRAR 5.21 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: WordShark 1.10.0.19 - (.WordShark.) [HKLM][64Bits] -- WordShark_1.10.0.19 =>PUP.WordShark
O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D}
O42 - Logiciel: FainoeDeaLSoft - (.finedeal.) [HKLM][64Bits] -- {0D566ABB-889B-AF39-7B6A-23D4C5D54542} =>Adware.Multiplug
O42 - Logiciel: Razer Synapse - (.Razer Inc..) [HKLM][64Bits] -- {0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}
O42 - Logiciel: TampaMonitor - (.Software Publisher.) [HKLM][64Bits] -- {12DA0E6F-5543-440C-BAA2-28BF01070AFA}{229c2d9f} =>Adware.Graftor
O42 - Logiciel: Minecraft - (.Mojang.) [HKLM][64Bits] -- {1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}
O42 - Logiciel: dowwnloAdietkeep - (."".) [HKLM][64Bits] -- {1C52B8B6-FFA2-12F6-0A5A-E8301F96A568} =>Adware.Multiplug
O42 - Logiciel: appsaavue - (."".) [HKLM][64Bits] -- {1E38F0E0-5499-CDAF-F946-BA3D053AABC2} =>Adware.Multiplug
O42 - Logiciel: Device Setup - (.ASUSTek Computer Inc..) [HKLM][64Bits] -- {1F07F2C7-596F-4F34-B805-2C61A3E50E5A}
O42 - Logiciel: nitrodeeal - (...) [HKLM][64Bits] -- {20188537-BC86-1F4B-6B72-1AA2EC4E9C93} =>PUP.Deeal
O42 - Logiciel: Skype™ 7.3 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Qualcomm Atheros Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App =>.WildTangent
O42 - Logiciel: CheapCoupon - (.CheapCoupon.) [HKLM][64Bits] -- {37476589-E48E-439E-A706-56189E2ED4C4}_is1
O42 - Logiciel: ASUS ROG Gaming Mouse - (.ASUS.) [HKLM][64Bits] -- {3B9E171F-A955-4834-B877-447C0A437260}
O42 - Logiciel: Absolute Radio Live Scores - (."".) [HKLM][64Bits] -- {40DC4B27-4588-C56F-7737-D03A0ACE4383}
O42 - Logiciel: sAlePrizesa - (."".) [HKLM][64Bits] -- {450F78BE-2B5E-C81D-0656-897759985405}
O42 - Logiciel: Plurk Smile - (."".) [HKLM][64Bits] -- {46DF3CE6-BACF-B984-6099-DC25E7054C21}
O42 - Logiciel: ASUS Smart Gesture - (.ASUS.) [HKLM][64Bits] -- {4D3286A6-F6AB-498A-82A4-E4F040529F3D}
O42 - Logiciel: easeyytooshop - (."".) [HKLM][64Bits] -- {532970A2-464B-73CB-BBC4-F209EAD3EEBE} =>Adware.Multiplug
O42 - Logiciel: CyberLink MediaStory - (.CyberLink Corp..) [HKLM][64Bits] -- {55762F9A-FCE3-45d5-817B-051218658423}
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: saVeron - (."".) [HKLM][64Bits] -- {66951628-3E5A-9C96-37EA-490E187974D5} =>Adware.Multiplug
O42 - Logiciel: No Cyrus - (."".) [HKLM][64Bits] -- {6C9B756D-B313-0B9A-29C4-0D41CFAFE000}
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus =>.WildTangent
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D}
O42 - Logiciel: Mumble 1.2.9 - (.Thorvald Natvig.) [HKLM][64Bits] -- {A692D382-A743-4DB4-BF42-F5476BEBA43A}
O42 - Logiciel: ASUS USB Charger Plus - (.ASUS.) [HKLM][64Bits] -- {A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: ATK Package - (.ASUS.) [HKLM][64Bits] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
O42 - Logiciel: Play - (...) [HKLM][64Bits] -- {AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B455E95A-B804-439F-B533-336B1635AE97}
O42 - Logiciel: offferdeal - (."".) [HKLM][64Bits] -- {BC799F5F-37C9-ACBB-BE51-805992C10610} =>Adware.Multiplug
O42 - Logiciel: Buzzdock - (.Alactro LLC.) [HKLM][64Bits] -- {cfd32d46-7d3f-483f-bace-7172aec5592d} =>PUP.BuzzDock
O42 - Logiciel: prizeceOupoN - (."".) [HKLM][64Bits] -- {D9EFCE2A-396E-AAA0-9D20-896DE2ECF595}
O42 - Logiciel: niicenfree - (."".) [HKLM][64Bits] -- {DCFB940E-C3BD-023F-4884-7FD36006422F}
O42 - Logiciel: rOcketdeal - (."".) [HKLM][64Bits] -- {E0D1F60C-E9D9-15B6-AAE9-066CD1EC25A2}
O42 - Logiciel: CloudScout Parental Control version 1.2 - (.www.CloudGuard.me.) [HKLM][64Bits] -- {E1527582-8509-4011-B922-29E3FB548882}_is1
O42 - Logiciel: ASUS Virtual Camera - (.ASUS.) [HKLM][64Bits] -- {EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM][64Bits] -- {FA540E67-095C-4A1B-97BA-4D547DEC9AF4}
O42 - Logiciel: Popcorn Time - (.Popcorn Official.) [HKCU][64Bits] -- Popcorn Time
O42 - Logiciel: Selection Tools - (.WTools.) [HKCU][64Bits] -- Selection Tools =>PUP.Nosibay
O42 - Logiciel: WindApp - (.Store.) [HKCU][64Bits] -- WindApp =>PUP.Nosibay
O42 - Logiciel: WindowPromo - (.Development Media 73.) [HKCU][64Bits] -- WindowPromo =>PUP.WindowPromo

---\\ HKCU & HKLM Software Keys (205) - 9s
HKLM\SOFTWARE\Wow6432Node\0ad96ce7-f85e-4626-afad-7109fa813fab =>PUP.CrossRider
HKLM\SOFTWARE\Wow6432Node\34f4e2b1-5d74-b736-d377-26c0f406f703 =>PUP.CrossRider
HKLM\SOFTWARE\Wow6432Node\5da059a482fd494db3f252126fbc3d5b =>PUP.CrossRider
HKLM\SOFTWARE\Wow6432Node\673d82a6-8341-42c1-9bf4-5a1ed5e18ef8 =>PUP.CrossRider
HKLM\SOFTWARE\Wow6432Node\7-Zip
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\AIM Toolbar
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Applian Technologies
HKLM\SOFTWARE\Wow6432Node\ArenaHD =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\ASIO
HKLM\SOFTWARE\Wow6432Node\AsLdr
HKLM\SOFTWARE\Wow6432Node\ASUS
HKLM\SOFTWARE\Wow6432Node\Atheros
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\AVS4YOU
HKLM\SOFTWARE\Wow6432Node\Blueberry Software
HKLM\SOFTWARE\Wow6432Node\Boost
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Conduit
HKLM\SOFTWARE\Wow6432Node\CurrentControlSet
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\ECAREME
HKLM\SOFTWARE\Wow6432Node\Email Notifier
HKLM\SOFTWARE\Wow6432Node\EZ Software Updater =>Adware.EZSoftwareUpdater
HKLM\SOFTWARE\Wow6432Node\FileZilla 3
HKLM\SOFTWARE\Wow6432Node\FileZilla Client
HKLM\SOFTWARE\Wow6432Node\Flashbeat =>PUP.FlashBeat
HKLM\SOFTWARE\Wow6432Node\Foxit Software
HKLM\SOFTWARE\Wow6432Node\Fraps
HKLM\SOFTWARE\Wow6432Node\GAMESDESKTOP =>Adware.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HighDefAction =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\HQ Cinemax 1.9cV16.02 =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\HQ Cinemax 1.9cV16.02-nv-ie =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Iminent =>Adware.IMBooster
HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.BrowserExtensions
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\iWebar =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\iWebar-nv =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\iWebar-nv-ie =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\LogSys
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\MaxPower
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
HKLM\SOFTWARE\Wow6432Node\Mediaplayersversion2.4
HKLM\SOFTWARE\Wow6432Node\Mediaplayersversion2.4-nv-ie =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\Mojang
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.StartSearch
HKLM\SOFTWARE\Wow6432Node\mystarttb
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\Object Browser =>PUP.ObjectBrowser
HKLM\SOFTWARE\Wow6432Node\Object Browser-nv =>PUP.ObjectBrowser
HKLM\SOFTWARE\Wow6432Node\Object Browser-nv-ie =>PUP.ObjectBrowser
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\Overwolf
HKLM\SOFTWARE\Wow6432Node\Pro PC Cleaner =>PUP.DoctorPC
HKLM\SOFTWARE\Wow6432Node\Qualcomm Atheros
HKLM\SOFTWARE\Wow6432Node\Razer
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\RocketTab =>PUP.RocketTab
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.SearchProtect
HKLM\SOFTWARE\Wow6432Node\ShopperPro =>PUP.ShopperPro
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SmartSaver+ 21 =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\SmartSaver+ 21-nv =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\SmartSaver+ 21-nv-ie =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\SpeedBit
HKLM\SOFTWARE\Wow6432Node\SpeedBrowser =>PUP.SpeedBrowser
HKLM\SOFTWARE\Wow6432Node\StormWatch =>PUP.StormWatch
HKLM\SOFTWARE\Wow6432Node\StormWatchApp =>PUP.StormWatch
HKLM\SOFTWARE\Wow6432Node\StrongSignal =>PUP.StrongSignal
HKLM\SOFTWARE\Wow6432Node\SuppHelpDir
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\Ubisoft
HKLM\SOFTWARE\Wow6432Node\udate_teddy
HKLM\SOFTWARE\Wow6432Node\Uniblue =>PUP.UniblueSystem
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WajIntEnhance =>PUP.Wajam
HKLM\SOFTWARE\Wow6432Node\WildTangent
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\WordShark_1.10.0.19 =>PUP.WordShark
HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\YTDownloader =>PUP.YTDownloader
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\APN PIP =>PUP.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ArenaHD =>Adware.CrossRider
HKCU\SOFTWARE\ASUS
HKCU\SOFTWARE\Atheros
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\AVS4YOU
HKCU\SOFTWARE\Binkiland Browser =>PUP.Binkiland
HKCU\SOFTWARE\Blueberry Software
HKCU\SOFTWARE\Boost
HKCU\SOFTWARE\Browser =>Adware.CrossRider
HKCU\SOFTWARE\CamStudioOpenSource for Nick
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CleanerProConfig
HKCU\SOFTWARE\CleanerProLanguage
HKCU\SOFTWARE\Colossal Order
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\ECAREME
HKCU\SOFTWARE\ext coupons
HKCU\SOFTWARE\extcoupons
HKCU\SOFTWARE\EYHL
HKCU\SOFTWARE\Fraps3
HKCU\SOFTWARE\fun coupons
HKCU\SOFTWARE\funcoupons
HKCU\SOFTWARE\gamesdesktop =>Adware.GamesDesktop
HKCU\SOFTWARE\globalUpdate =>PUP.GlobalUpdate
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\HighDefAction =>Adware.CrossRider
HKCU\SOFTWARE\HomeTab =>PUP.CertifiedToolbar
HKCU\SOFTWARE\HQ Cinemax 1.9cV16.02 =>Adware.CrossRider
HKCU\SOFTWARE\HQ Cinemax 1.9cV16.02-nv-ie =>Adware.CrossRider
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\InstallCore =>Adware.InstallCore
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.BrowserExtensions
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\iWebar-nv =>Adware.CrossRider
HKCU\SOFTWARE\iWebar-nv-ie =>Adware.CrossRider
HKCU\SOFTWARE\j25jeqSx
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Kromtech
HKCU\SOFTWARE\LogSys
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mediaplayersversion2.4
HKCU\SOFTWARE\Mediaplayersversion2.4-nv-ie =>Adware.CrossRider
HKCU\SOFTWARE\Mine
HKCU\SOFTWARE\Mojang
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Mumble
HKCU\SOFTWARE\Ndemic Creations
HKCU\SOFTWARE\Nosibay =>Adware.SPointer
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\Object Browser-nv =>PUP.ObjectBrowser
HKCU\SOFTWARE\Object Browser-nv-ie =>PUP.ObjectBrowser
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Optimizer Pro =>PUP.OptimizerPro
HKCU\SOFTWARE\Overwolf
HKCU\SOFTWARE\ProPCCleanerConfig =>PUP.ProPCCleaner
HKCU\SOFTWARE\ProPCCleanerLanguage =>PUP.ProPCCleaner
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\RocketTabInstalled =>PUP.RocketTab
HKCU\SOFTWARE\roller coaster park
HKCU\SOFTWARE\rollercoasterpark
HKCU\SOFTWARE\rttasks =>PUP.RocketTab
HKCU\SOFTWARE\Search Extensions =>PUP.RocketTab
HKCU\SOFTWARE\SearchProtectWS =>PUP.SearchProtect
HKCU\SOFTWARE\SecuredDownload
HKCU\SOFTWARE\SimplyTech =>PUP.SimplyTech
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SmartSaver+ 21 =>Adware.CrossRider
HKCU\SOFTWARE\SmartSaver+ 21-nv =>Adware.CrossRider
HKCU\SOFTWARE\SmartSaver+ 21-nv-ie =>Adware.CrossRider
HKCU\SOFTWARE\Softonic =>PUP.Softonic
HKCU\SOFTWARE\Store =>PUP.Optional
HKCU\SOFTWARE\StormWatchApp =>PUP.StormWatch
HKCU\SOFTWARE\Super Optimizer =>PUP.SuperOptimizer
HKCU\SOFTWARE\System NotifierV25.06 =>PUP.SystemNotifier
HKCU\SOFTWARE\teras games
HKCU\SOFTWARE\TNT2 =>Adware.TidyNetwork
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Tutorials =>PUP.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.AgenceExclusive
HKCU\SOFTWARE\Ubisoft
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\WajIntEnhance =>PUP.Wajam
HKCU\SOFTWARE\Wargaming.net
HKCU\SOFTWARE\Waves Audio
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\WinSoftMagic
HKCU\SOFTWARE\wse_binkiland =>PUP.Binkiland
HKCU\SOFTWARE\WTools
HKCU\SOFTWARE\YorkNewCin =>Adware.CrossRider
HKCU\SOFTWARE\YTDownloader =>PUP.YTDownloader
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Boost
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>Adware.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\DynConIE =>PUP.DynConIE
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (301) - 7s
O43 - CFD: 2015/06/14 18:45:16 - [] D -- C:\Program Files (x86)\7-Zip
O43 - CFD: 2015/06/26 00:28:19 - [] D -- C:\Program Files (x86)\a63cd650-9374-4f36-b892-fbe5ccc9f08b =>Adware.CrossRider
O43 - CFD: 2015/06/26 00:27:14 - [] D -- C:\Program Files (x86)\a8dd3325-94cd-485b-9e5a-074631df91fb =>Adware.CrossRider
O43 - CFD: 2015/04/18 18:34:28 - [] D -- C:\Program Files (x86)\Absolute Radio Live Scores
O43 - CFD: 2015/05/20 21:00:24 - [] D -- C:\Program Files (x86)\Advanced Video Compressor
O43 - CFD: 2015/01/27 15:38:21 - [0] D -- C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 2015/06/21 21:25:43 - [] D -- C:\Program Files (x86)\Applian Technologies
O43 - CFD: 2015/04/18 18:34:28 - [] D -- C:\Program Files (x86)\appsaavue =>Adware.Multiplug
O43 - CFD: 2015/06/27 14:16:58 - [] D -- C:\Program Files (x86)\AskPartnerNetwork =>Toolbar.Ask
O43 - CFD: 2015/05/13 14:06:02 - [] D -- C:\Program Files (x86)\ASUS
O43 - CFD: 2015/01/27 15:57:12 - [] D -- C:\Program Files (x86)\ASUS Gaming Mouse
O43 - CFD: 2015/06/21 21:10:09 - [] D -- C:\Program Files (x86)\AVS4YOU
O43 - CFD: 2015/06/26 00:28:19 - [] D -- C:\Program Files (x86)\b1f6e23f-d2f7-4697-98ab-acef3604ef61 =>Adware.CrossRider
O43 - CFD: 2015/01/27 15:47:06 - [] D -- C:\Program Files (x86)\Bluetooth Suite
O43 - CFD: 2015/02/17 01:00:26 - [] D -- C:\Program Files (x86)\CloudScout Parental Control =>PUP.CloudScout
O43 - CFD: 2015/06/17 22:39:05 - [] D -- C:\Program Files (x86)\Clownfish
O43 - CFD: 2015/06/26 20:48:47 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/02/17 01:03:19 - [0] D -- C:\Program Files (x86)\download Manager
O43 - CFD: 2015/04/18 18:34:27 - [] D -- C:\Program Files (x86)\dowwnloAdietkeep =>Adware.Multiplug
O43 - CFD: 2015/03/08 10:46:48 - [] D -- C:\Program Files (x86)\easeyytooshop =>Adware.Multiplug
O43 - CFD: 2015/04/01 18:08:27 - [] D -- C:\Program Files (x86)\ext coupons
O43 - CFD: 2015/04/08 20:43:15 - [] D -- C:\Program Files (x86)\Facebook Chat Meme Codes
O43 - CFD: 2015/06/23 12:39:02 - [] D -- C:\Program Files (x86)\FainoeDeaLSoft =>Adware.Multiplug
O43 - CFD: 2015/05/19 20:16:56 - [] D -- C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 2015/04/15 00:08:07 - [] D -- C:\Program Files (x86)\fun coupons
O43 - CFD: 2015/02/17 00:42:46 - [] D -- C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 2015/06/26 11:06:22 - [] D -- C:\Program Files (x86)\gmsd_fr_004010013 =>Adware.CrossRider
O43 - CFD: 2015/06/26 13:32:23 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/06/26 00:55:22 - [] D -- C:\Program Files (x86)\HQ Cinemax 1.9cV16.02 =>Adware.CrossRider
O43 - CFD: 2015/01/27 15:34:58 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/06/11 08:21:28 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/06/26 00:55:32 - [] D -- C:\Program Files (x86)\iWebar =>Adware.CrossRider
O43 - CFD: 2015/04/21 00:46:14 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2015/06/26 00:39:31 - [] D -- C:\Program Files (x86)\Mediaplayersversion2.4
O43 - CFD: 2015/06/26 00:59:45 - [0] D -- C:\Program Files (x86)\Microsoft
O43 - CFD: 2014/10/29 08:19:44 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/06/26 00:58:50 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/02/14 21:59:49 - [] D -- C:\Program Files (x86)\Minecraft
O43 - CFD: 2015/06/26 01:00:10 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2014/10/29 13:30:18 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/06/13 14:18:23 - [] D -- C:\Program Files (x86)\Mumble
O43 - CFD: 2015/05/11 19:27:54 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 2015/01/27 15:38:28 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2015/06/26 00:30:44 - [] D -- C:\Program Files (x86)\Object Browser =>PUP.ObjectBrowser
O43 - CFD: 2015/03/08 10:46:48 - [] D -- C:\Program Files (x86)\offferdeal =>Adware.Multiplug
O43 - CFD: 2015/07/02 03:30:37 - [] D -- C:\Program Files (x86)\OLBPre =>PUP.MyPCBackup
O43 - CFD: 2015/07/02 18:30:29 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 2015/02/22 16:50:04 - [] D -- C:\Program Files (x86)\Razer
O43 - CFD: 2015/01/27 15:49:34 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2014/10/29 13:30:18 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/03/08 11:06:47 - [] D -- C:\Program Files (x86)\rOcketdeal =>Adware.Sambreel
O43 - CFD: 2015/04/13 18:08:12 - [] D -- C:\Program Files (x86)\roller coaster park
O43 - CFD: 2015/06/26 00:25:03 - [] D -- C:\Program Files (x86)\ShopperPro =>PUP.ShopperPro
O43 - CFD: 2015/04/15 17:21:42 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2015/06/26 00:39:31 - [] D -- C:\Program Files (x86)\SmartSaver+ 21 =>Adware.CrossRider
O43 - CFD: 2015/07/05 02:24:37 - [] D -- C:\Program Files (x86)\Steam
O43 - CFD: 2015/06/26 00:24:55 - [] D -- C:\Program Files (x86)\StormWatch =>PUP.StormWatch
O43 - CFD: 2015/02/17 23:03:40 - [] D -- C:\Program Files (x86)\Strong Signal =>PUP.StrongSignal
O43 - CFD: 2015/06/26 00:39:31 - [] D -- C:\Program Files (x86)\System NotifierV25.06 =>PUP.SystemNotifier
O43 - CFD: 2015/04/03 17:47:43 - [] D -- C:\Program Files (x86)\TampaMonitor
O43 - CFD: 2015/01/27 15:41:05 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2015/05/31 13:16:53 - [] D -- C:\Program Files (x86)\Ubisoft
O43 - CFD: 2014/10/29 08:26:55 - [] D -- C:\Program Files (x86)\WildTangent Games
O43 - CFD: 2015/03/15 20:50:17 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/04/28 12:27:02 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/04/28 12:27:02 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2015/04/28 12:27:02 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/04/28 12:27:01 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/04/28 12:27:02 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2015/07/01 15:09:27 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2015/06/26 00:33:50 - [] D -- C:\Program Files (x86)\WordShark_1.10.0.19 =>PUP.WordShark
O43 - CFD: 2015/06/26 00:32:11 - [] D -- C:\Program Files (x86)\YTDownloader =>PUP.YTDownloader
O43 - CFD: 2015/06/14 18:45:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2015/04/28 12:31:17 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/04/28 12:31:17 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/04/28 12:31:17 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/06/21 21:25:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Applian Technologies
O43 - CFD: 2015/05/13 14:06:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 2015/01/27 15:57:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Gaming Mouse
O43 - CFD: 2015/04/01 15:22:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 2015/06/21 21:10:07 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 2015/02/19 17:26:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blueberry Software
O43 - CFD: 2015/05/20 21:16:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio 2.7
O43 - CFD: 2015/01/27 15:57:06 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink MediaStory
O43 - CFD: 2015/05/19 20:16:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 2015/06/05 19:19:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
O43 - CFD: 2014/10/29 08:26:56 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/06/26 00:25:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>Adware.GamesDesktop
O43 - CFD: 2015/06/25 16:05:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/01/27 15:34:58 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 2015/06/26 20:47:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015/05/21 21:26:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/05/22 17:46:37 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
O43 - CFD: 2015/06/13 14:18:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mumble
O43 - CFD: 2015/05/11 19:27:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2015/01/27 15:38:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2015/02/17 00:38:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PepperZip =>PUP.PepperZip
O43 - CFD: 2015/02/14 22:01:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
O43 - CFD: 2015/01/27 15:41:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
O43 - CFD: 2015/02/15 16:09:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/06/26 01:00:36 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/06/13 15:50:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2015/06/26 00:24:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StormWatch =>PUP.StormWatch
O43 - CFD: 2015/04/28 12:31:17 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2014/03/18 17:10:16 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/04/13 21:30:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
O43 - CFD: 2015/06/26 11:13:37 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue =>PUP.UniblueSystem
O43 - CFD: 2015/07/01 15:09:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/04/21 17:32:24 - [] D -- C:\ProgramData\.mono
O43 - CFD: 2015/07/05 16:23:18 - [] D -- C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce
O43 - CFD: 2015/06/23 12:39:16 - [] D -- C:\ProgramData\17309918857747518197
O43 - CFD: 2015/04/01 14:41:06 - [0] D -- C:\ProgramData\252b5eba00001f9d
O43 - CFD: 2015/06/26 00:54:59 - [] D -- C:\ProgramData\481c8f8eca9543d2a612109601ae37a8
O43 - CFD: 2015/04/04 11:10:55 - [] D -- C:\ProgramData\53797cc300004a71
O43 - CFD: 2015/02/17 00:59:10 - [] D -- C:\ProgramData\APN
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/10/29 08:25:41 - [] D -- C:\ProgramData\ASUS WebStorage
O43 - CFD: 2014/10/29 08:25:13 - [] D -- C:\ProgramData\ASUSLogos
O43 - CFD: 2015/02/14 21:38:25 - [] D -- C:\ProgramData\Atheros
O43 - CFD: 2015/04/01 15:15:22 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2015/06/21 21:09:38 - [] D -- C:\ProgramData\AVS4YOU
O43 - CFD: 2015/02/19 17:28:53 - [] D -- C:\ProgramData\Blueberry
O43 - CFD: 2015/02/18 04:44:27 - [] D -- C:\ProgramData\Browser
O43 - CFD: 2015/05/21 02:05:50 - [] D -- C:\ProgramData\Bsuriihwsaox
O43 - CFD: 2015/03/28 18:13:48 - [] D -- C:\ProgramData\cceeahbaecpklaliphccehhbohjngbcj
O43 - CFD: 2015/03/08 15:05:09 - [] D -- C:\ProgramData\CheapCoupon
O43 - CFD: 2015/01/27 15:54:15 - [] D -- C:\ProgramData\Condusiv Technologies
O43 - CFD: 2015/03/08 14:45:21 - [] D -- C:\ProgramData\couponcheapchea
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/06/26 00:26:23 - [] D -- C:\ProgramData\EmailNotifier
O43 - CFD: 2015/04/11 20:49:34 - [] D -- C:\ProgramData\EpicScale =>PUP.EpicScale
O43 - CFD: 2015/04/18 18:34:28 - [] D -- C:\ProgramData\FlashBeat =>PUP.FlashBeat
O43 - CFD: 2015/03/28 18:11:11 - [] D -- C:\ProgramData\ighohbigamgalpofpabhehboedambief
O43 - CFD: 2015/01/27 15:57:07 - [] D -- C:\ProgramData\install_clap
O43 - CFD: 2015/01/27 15:34:09 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2015/02/19 17:26:42 - [] D -- C:\ProgramData\LogSys
O43 - CFD: 2015/04/11 09:22:30 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/06/26 00:44:34 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/03/07 23:43:24 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 2015/04/10 23:01:22 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/03/28 18:12:14 - [] D -- C:\ProgramData\nnbdkbfdepfmhbfingpfhknjjcjiajnp
O43 - CFD: 2015/01/27 15:38:12 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2015/06/24 23:04:55 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/06/26 17:29:45 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2015/04/26 16:35:58 - [] D -- C:\ProgramData\Overwolf
O43 - CFD: 2015/01/27 15:56:43 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/01/27 15:46:14 - [] D -- C:\ProgramData\Qualcomm Atheros
O43 - CFD: 2015/04/14 22:10:41 - [] D -- C:\ProgramData\Radio
O43 - CFD: 2015/02/14 22:02:53 - [] D -- C:\ProgramData\Razer
O43 - CFD: 2015/06/26 00:58:43 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/06/26 00:25:13 - [] D -- C:\ProgramData\ShopperPro =>PUP.ShopperPro
O43 - CFD: 2015/04/15 17:21:49 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2015/02/17 00:57:09 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2015/04/08 15:00:21 - [0] D -- C:\ProgramData\T122078ED
O43 - CFD: 2015/01/27 15:56:37 - [] D -- C:\ProgramData\Temp
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/06/26 00:39:27 - [] D -- C:\ProgramData\Uniblue =>PUP.UniblueSystem
O43 - CFD: 2015/02/15 16:09:25 - [] D -- C:\ProgramData\USBChargerPlus
O43 - CFD: 2015/06/26 00:25:45 - [] D -- C:\ProgramData\UyxqnepWu
O43 - CFD: 2015/06/26 11:12:38 - [] D -- C:\ProgramData\WebShield =>Adware.WebShield
O43 - CFD: 2014/10/29 08:25:41 - [] D -- C:\ProgramData\WebStorage
O43 - CFD: 2014/10/29 08:26:56 - [] D -- C:\ProgramData\WildTangent
O43 - CFD: 2015/01/27 15:46:39 - [] D -- C:\ProgramData\{1AFEA24A-A9B9-43AD-8812-810FBC3FF35A}
O43 - CFD: 2015/06/25 00:38:04 - [] D -- C:\ProgramData\{2cd479ac-465b-f560-2cd4-479ac465e6b1}
O43 - CFD: 2015/02/17 23:04:00 - [] D -- C:\ProgramData\{617E89BD-31FC-583B-807A-28B950F8FB37}
O43 - CFD: 2015/03/31 18:08:31 - [] D -- C:\ProgramData\{6c711cbe-138a-0ad6-6c71-11cbe13872f8}
O43 - CFD: 2015/02/22 17:01:15 - [] D -- C:\ProgramData\{784f60aa-c098-1f2c-784f-f60aac0982ab}
O43 - CFD: 2015/06/26 00:42:54 - [] D -- C:\ProgramData\{94c0435b-e627-82f5-94c0-0435be620d6f}
O43 - CFD: 2015/04/18 18:34:28 - [] D -- C:\ProgramData\{b51146fc-bb09-997a-b511-146fcbb01bf2}
O43 - CFD: 2015/04/18 18:34:28 - [] D -- C:\ProgramData\{bc8f45be-df96-7d71-bc8f-f45bedf916fb}
O43 - CFD: 2015/07/05 16:24:23 - [] D -- C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce
O43 - CFD: 2015/01/27 15:47:04 - [] D -- C:\Program Files (x86)\Common Files\Atheros
O43 - CFD: 2015/06/21 21:10:03 - [] D -- C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 2014/10/29 08:25:38 - [] D -- C:\Program Files (x86)\Common Files\AWS
O43 - CFD: 2015/02/19 17:26:40 - [] D -- C:\Program Files (x86)\Common Files\Blueberry Software
O43 - CFD: 2015/01/27 15:40:41 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2015/01/27 15:34:45 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 2015/06/26 20:48:47 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2015/06/26 00:58:50 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2015/05/16 14:26:28 - [] D -- C:\Program Files (x86)\Common Files\Overwolf
O43 - CFD: 2015/01/27 15:33:51 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/02/15 16:09:49 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2015/06/19 22:22:01 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 2015/04/28 12:27:00 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/04/10 22:47:20 - [] D -- C:\Users\Andreas\AppData\Roaming\.atlauncher
O43 - CFD: 2015/07/05 15:47:21 - [] D -- C:\Users\Andreas\AppData\Roaming\.minecraft
O43 - CFD: 2015/04/21 17:32:24 - [] D -- C:\Users\Andreas\AppData\Roaming\.mono
O43 - CFD: 2015/04/18 18:34:28 - [] D -- C:\Users\Andreas\AppData\Roaming\A7105351-1424131293-7C48-B596-3AB70C56130D
O43 - CFD: 2015/02/14 21:37:49 - [] D -- C:\Users\Andreas\AppData\Roaming\Adobe
O43 - CFD: 2015/02/14 21:38:20 - [] D -- C:\Users\Andreas\AppData\Roaming\ASUS
O43 - CFD: 2015/02/14 21:38:19 - [] D -- C:\Users\Andreas\AppData\Roaming\Atheros
O43 - CFD: 2015/04/01 15:22:50 - [] D -- C:\Users\Andreas\AppData\Roaming\AVAST Software
O43 - CFD: 2015/06/21 21:27:20 - [] D -- C:\Users\Andreas\AppData\Roaming\AVS4YOU
O43 - CFD: 2015/02/17 23:04:13 - [] D -- C:\Users\Andreas\AppData\Roaming\Binkiland =>PUP.Binkiland
O43 - CFD: 2015/02/19 17:29:26 - [] D -- C:\Users\Andreas\AppData\Roaming\Blueberry
O43 - CFD: 2015/04/01 15:32:55 - [] D -- C:\Users\Andreas\AppData\Roaming\Dropbox
O43 - CFD: 2015/05/21 21:32:01 - [] D -- C:\Users\Andreas\AppData\Roaming\eclipse
O43 - CFD: 2015/07/01 01:15:21 - [] D -- C:\Users\Andreas\AppData\Roaming\FileZilla
O43 - CFD: 2015/06/24 14:21:22 - [] D -- C:\Users\Andreas\AppData\Roaming\FLV and Media Player
O43 - CFD: 2015/06/12 19:16:23 - [] D -- C:\Users\Andreas\AppData\Roaming\ftblauncher
O43 - CFD: 2015/04/28 12:35:59 - [] D -- C:\Users\Andreas\AppData\Roaming\Identities
O43 - CFD: 2015/02/14 22:00:01 - [] D -- C:\Users\Andreas\AppData\Roaming\java
O43 - CFD: 2015/05/27 18:29:09 - [] D -- C:\Users\Andreas\AppData\Roaming\LibreOffice
O43 - CFD: 2015/02/19 17:26:49 - [] D -- C:\Users\Andreas\AppData\Roaming\LogSys
O43 - CFD: 2015/02/14 21:40:09 - [] D -- C:\Users\Andreas\AppData\Roaming\Macromedia
O43 - CFD: 2015/06/26 00:59:46 - [] SD -- C:\Users\Andreas\AppData\Roaming\Microsoft
O43 - CFD: 2015/05/01 14:05:50 - [] D -- C:\Users\Andreas\AppData\Roaming\Minecraft Skin Viewer
O43 - CFD: 2015/06/26 00:25:51 - [] D -- C:\Users\Andreas\AppData\Roaming\Mozilla
O43 - CFD: 2015/07/02 20:37:25 - [] D -- C:\Users\Andreas\AppData\Roaming\Mumble
O43 - CFD: 2015/06/26 00:47:32 - [0] D -- C:\Users\Andreas\AppData\Roaming\Nosibay =>PUP.BubbleDock
O43 - CFD: 2015/05/11 19:29:55 - [] D -- C:\Users\Andreas\AppData\Roaming\Notepad++
O43 - CFD: 2015/02/14 22:12:56 - [] D -- C:\Users\Andreas\AppData\Roaming\NVIDIA
O43 - CFD: 2015/04/04 13:30:41 - [] D -- C:\Users\Andreas\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 2015/03/29 21:39:16 - [] D -- C:\Users\Andreas\AppData\Roaming\Opera Software
O43 - CFD: 2015/07/05 17:45:43 - [] D -- C:\Users\Andreas\AppData\Roaming\Skype
O43 - CFD: 2015/04/18 18:34:27 - [] D -- C:\Users\Andreas\AppData\Roaming\SoftwareUpdater
O43 - CFD: 2015/06/21 21:21:12 - [] D -- C:\Users\Andreas\AppData\Roaming\Store
O43 - CFD: 2015/07/05 17:47:42 - [] D -- C:\Users\Andreas\AppData\Roaming\TS3Client
O43 - CFD: 2015/06/26 11:05:29 - [] D -- C:\Users\Andreas\AppData\Roaming\uTorrent
O43 - CFD: 2015/02/17 01:01:33 - [] D -- C:\Users\Andreas\AppData\Roaming\VOPackage =>Adware.Downware
O43 - CFD: 2015/02/17 01:06:16 - [] D -- C:\Users\Andreas\AppData\Roaming\Wargaming.net
O43 - CFD: 2015/02/14 21:43:21 - [] D -- C:\Users\Andreas\AppData\Roaming\WebStorage
O43 - CFD: 2015/07/01 15:09:38 - [] D -- C:\Users\Andreas\AppData\Roaming\WinRAR
O43 - CFD: 2015/06/21 21:21:19 - [] D -- C:\Users\Andreas\AppData\Roaming\WTools
O43 - CFD: 2015/07/05 18:07:59 - [] D -- C:\Users\Andreas\AppData\Roaming\ZHP
O43 - CFD: 2015/02/19 23:20:39 - [0] D -- C:\Users\Andreas\AppData\Local\Adobe
O43 - CFD: 2015/02/14 21:37:24 - [0] SHD -- C:\Users\Andreas\AppData\Local\Application Data
O43 - CFD: 2015/04/10 23:19:09 - [] D -- C:\Users\Andreas\AppData\Local\Binkiland =>PUP.Binkiland
O43 - CFD: 2015/02/14 21:38:25 - [] D -- C:\Users\Andreas\AppData\Local\BMExplorer
O43 - CFD: 2015/02/17 01:02:49 - [0] D -- C:\Users\Andreas\AppData\Local\Boost
O43 - CFD: 2015/06/26 00:30:07 - [] D -- C:\Users\Andreas\AppData\Local\BrowserHelper
O43 - CFD: 2015/02/17 23:03:46 - [] D -- C:\Users\Andreas\AppData\Local\CleanerPro
O43 - CFD: 2015/04/21 17:32:23 - [] D -- C:\Users\Andreas\AppData\Local\Colossal Order
O43 - CFD: 2015/07/05 02:24:27 - [] D -- C:\Users\Andreas\AppData\Local\CrashDumps
O43 - CFD: 2015/06/26 00:24:39 - [] D -- C:\Users\Andreas\AppData\Local\CrashRpt =>SUP.CrashReports
O43 - CFD: 2015/06/26 00:54:06 - [] D -- C:\Users\Andreas\AppData\Local\CrossBrowser =>PUP.CrossBrowser
O43 - CFD: 2015/02/26 00:16:19 - [] D -- C:\Users\Andreas\AppData\Local\Development Media 73
O43 - CFD: 2015/06/29 02:43:30 - [0] D -- C:\Users\Andreas\AppData\Local\Diagnostics
O43 - CFD: 2015/07/05 00:34:55 - [] D -- C:\Users\Andreas\AppData\Local\Eclipse
O43 - CFD: 2015/06/27 21:02:01 - [] D -- C:\Users\Andreas\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/06/11 09:08:05 - [0] SHD -- C:\Users\Andreas\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/06/11 09:08:05 - [0] SHD -- C:\Users\Andreas\AppData\Local\EmieSiteList
O43 - CFD: 2015/06/11 09:08:05 - [0] SHD -- C:\Users\Andreas\AppData\Local\EmieUserList
O43 - CFD: 2015/06/26 16:38:09 - [] D -- C:\Users\Andreas\AppData\Local\ftblauncher
O43 - CFD: 2015/02/17 00:42:46 - [] D -- C:\Users\Andreas\AppData\Local\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 2015/06/26 00:39:31 - [] D -- C:\Users\Andreas\AppData\Local\gmsd_fr_004010013 =>Adware.CrossRider
O43 - CFD: 2015/02/17 00:54:01 - [] D -- C:\Users\Andreas\AppData\Local\Google
O43 - CFD: 2015/06/07 21:12:40 - [] D -- C:\Users\Andreas\AppData\Local\GWX
O43 - CFD: 2015/02/14 21:37:24 - [0] SHD -- C:\Users\Andreas\AppData\Local\Historique
O43 - CFD: 2015/06/26 00:24:42 - [] D -- C:\Users\Andreas\AppData\Local\Installer
O43 - CFD: 2015/06/25 15:33:17 - [] D -- C:\Users\Andreas\AppData\Local\Macromedia
O43 - CFD: 2015/06/26 00:58:10 - [] D -- C:\Users\Andreas\AppData\Local\Microsoft
O43 - CFD: 2015/04/10 23:01:37 - [] D -- C:\Users\Andreas\AppData\Local\Mozilla
O43 - CFD: 2015/04/12 19:22:45 - [] D -- C:\Users\Andreas\AppData\Local\Ndemic Creations
O43 - CFD: 2015/02/16 23:52:18 - [] D -- C:\Users\Andreas\AppData\Local\NVIDIA
O43 - CFD: 2015/02/16 23:51:49 - [] D -- C:\Users\Andreas\AppData\Local\NVIDIA Corporation
O43 - CFD: 2015/03/29 21:39:17 - [] D -- C:\Users\Andreas\AppData\Local\Opera Software
O43 - CFD: 2015/06/05 19:19:28 - [] D -- C:\Users\Andreas\AppData\Local\Overwolf
O43 - CFD: 2015/03/11 18:31:31 - [] D -- C:\Users\Andreas\AppData\Local\Packages
O43 - CFD: 2015/03/07 15:58:37 - [] D -- C:\Users\Andreas\AppData\Local\Popcorn Time
O43 - CFD: 2015/07/03 02:32:58 - [] D -- C:\Users\Andreas\AppData\Local\Popcorn-Time
O43 - CFD: 2015/02/17 00:59:48 - [] D -- C:\Users\Andreas\AppData\Local\Programs
O43 - CFD: 2015/02/17 00:44:32 - [] D -- C:\Users\Andreas\AppData\Local\Pro_PC_Cleaner =>USP.PCCleaner
O43 - CFD: 2015/06/07 01:28:00 - [] D -- C:\Users\Andreas\AppData\Local\Purplizer
O43 - CFD: 2015/07/03 19:01:39 - [] D -- C:\Users\Andreas\AppData\Local\Razer
O43 - CFD: 2015/02/14 22:09:23 - [] D -- C:\Users\Andreas\AppData\Local\Razer_Inc
O43 - CFD: 2015/04/18 22:42:07 - [] D -- C:\Users\Andreas\AppData\Local\RzStats
O43 - CFD: 2015/02/14 22:11:09 - [] D -- C:\Users\Andreas\AppData\Local\Skype
O43 - CFD: 2015/05/14 23:10:13 - [] D -- C:\Users\Andreas\AppData\Local\SmallBasic
O43 - CFD: 2015/02/18 13:15:46 - [] D -- C:\Users\Andreas\AppData\Local\speed browser =>PUP.SpeedBrowser
O43 - CFD: 2015/04/12 16:02:03 - [] D -- C:\Users\Andreas\AppData\Local\Steam
O43 - CFD: 2015/06/26 11:14:38 - [] D -- C:\Users\Andreas\AppData\Local\StormWatch =>PUP.StormWatch
O43 - CFD: 2015/07/05 18:07:55 - [] D -- C:\Users\Andreas\AppData\Local\Temp
O43 - CFD: 2015/02/14 21:37:24 - [0] SHD -- C:\Users\Andreas\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/06/21 21:39:30 - [0] D -- C:\Users\Andreas\AppData\Local\TVWizard =>PUP.TVWizard
O43 - CFD: 2015/05/31 21:48:22 - [] D -- C:\Users\Andreas\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 2015/02/14 21:37:48 - [0] D -- C:\Users\Andreas\AppData\Local\VirtualStore
O43 - CFD: 2015/06/26 00:25:14 - [] D -- C:\Users\Andreas\AppData\Local\Weather_Protector_LLC =>PUP.StormWatch
O43 - CFD: 2015/07/05 18:05:03 - [] D -- C:\Users\Andreas\AppData\Local\WebShield =>Adware.WebShield
O43 - CFD: 2014/10/29 16:11:36 - [] RD -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/06/26 00:42:08 - [] RD -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/06/21 21:10:04 - [] D -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 2015/06/26 00:44:00 - [] D -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2013/08/22 17:36:32 - [] D -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/05/11 19:27:53 - [0] D -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2015/04/26 16:35:31 - [] D -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
O43 - CFD: 2015/03/07 15:58:37 - [] D -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
O43 - CFD: 2015/07/01 17:34:33 - [] RD -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/06/13 16:05:39 - [] D -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2015/06/26 00:24:55 - [] D -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormWatch =>PUP.StormWatch
O43 - CFD: 2014/10/29 15:20:38 - [] RD -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/05/31 13:16:56 - [] D -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
O43 - CFD: 2015/02/17 01:01:34 - [] D -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>Adware.Downware
O43 - CFD: 2015/07/01 15:09:27 - [] D -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/06/26 00:25:33 - [] D -- C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader =>PUP.YTDownloader

---\\ Liste des pilotes du système (SDL) (O58) (74) - 4s
O58 - SDL:2013/08/22 14:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [108896]
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [782176]
O58 - SDL:2013/06/18 17:05:45 A . (.LSI Corp - SoftModem Device Driver.) -- C:\Windows\System32\drivers\agrsm64.sys [1146880]
O58 - SDL:2014/09/11 18:48:20 A . (.ASUSTek Computer Inc. - ASUS Charger driver.) -- C:\Windows\System32\drivers\AiCharger.sys [17152]
O58 - SDL:2013/08/22 14:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [79200]
O58 - SDL:2013/08/22 14:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259424]
O58 - SDL:2013/08/22 14:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [25952]
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [114016]
O58 - SDL:2013/10/08 03:47:18 A . (.ASUS - HID driver for ASUS Wireless Radio Control.) -- C:\Windows\System32\drivers\AsHIDSwitch64.sys [20280]
O58 - SDL:2014/07/29 17:26:34 A . (.ASUS Corporation - Asus TP Filter Driver(X64).) -- C:\Windows\System32\drivers\AsusTP.sys [73512]
O58 - SDL:2015/06/26 00:30:13 A . (...) -- C:\Windows\System32\drivers\aswHwid.sys [29168]
O58 - SDL:2015/06/26 00:30:13 A . (.Avast Software s.r.o. - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [89944]
O58 - SDL:2015/06/26 00:30:13 A . (.Avast Software s.r.o. - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [93528]
O58 - SDL:2015/06/26 00:30:13 A . (...) -- C:\Windows\System32\drivers\aswRvrt.sys [65736]
O58 - SDL:2015/06/26 00:30:07 A . (.Avast Software s.r.o. - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [1047320]
O58 - SDL:2015/06/26 00:30:13 A . (.Avast Software s.r.o. - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [442264]
O58 - SDL:2015/06/26 00:30:13 A . (.Avast Software s.r.o. - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [137288]
O58 - SDL:2015/06/26 00:30:13 A . (...) -- C:\Windows\System32\drivers\aswVmm.sys [272248]
O58 - SDL:2014/09/09 02:39:24 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\drivers\athwbx.sys [4221952]
O58 - SDL:2013/08/13 01:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [17624]
O58 - SDL:2014/08/27 21:23:44 A . (.Qualcomm Atheros - Qualcomm Atheros A2DP driver.) -- C:\Windows\System32\drivers\btath_a2dp.sys [338120]
O58 - SDL:2014/08/27 21:23:44 A . (.Qualcomm Atheros - Qualcomm Atheros Bluetooth AVDT driver.) -- C:\Windows\System32\drivers\btath_avdt.sys [118984]
O58 - SDL:2014/08/27 21:23:44 A . (.Qualcomm Atheros - Qualcomm Atheros BUS driver.) -- C:\Windows\System32\drivers\btath_bus.sys [35016]
O58 - SDL:2014/08/27 21:23:44 A . (.Qualcomm Atheros - Qualcomm Atheros FILTER driver.) -- C:\Windows\System32\drivers\btath_flt.sys [89800]
O58 - SDL:2014/08/27 21:23:44 A . (.Qualcomm Atheros - Qualcomm Atheros HCRP driver.) -- C:\Windows\System32\drivers\btath_hcrp.sys [179432]
O58 - SDL:2014/08/27 21:23:44 A . (.Qualcomm Atheros - Qualcomm Atheros FILTER driver.) -- C:\Windows\System32\drivers\btath_lwflt.sys [77464]
O58 - SDL:2014/08/27 21:23:44 A . (.Qualcomm Atheros - Qualcomm Atheros AVRCP driver.) -- C:\Windows\System32\drivers\btath_rcp.sys [137928]
O58 - SDL:2014/08/27 21:23:44 A . (.Qualcomm Atheros - Qualcomm Atheros BtFilter Driver.) -- C:\Windows\System32\drivers\btfilter.sys [599752]
O58 - SDL:2013/08/22 14:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [531296]
O58 - SDL:2013/06/18 16:45:26 A . (.Intel Corporation - Intel(R) Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\System32\drivers\e1i63x64.sys [460288]
O58 - SDL:2013/08/22 14:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3357024]
O58 - SDL:2013/11/18 16:02:00 A . (.Condusiv Technologies - ExpressCache Filesystem Filter Driver.) -- C:\Windows\System32\drivers\excfs.sys [25840]
O58 - SDL:2013/11/18 16:02:00 A . (.Condusiv Technologies - ExpressCache Driver.) -- C:\Windows\System32\drivers\excsd.sys [117488]
O58 - SDL:2013/08/22 14:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64352]
O58 - SDL:2013/07/30 20:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568]
O58 - SDL:2013/07/25 21:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320]
O58 - SDL:2014/05/29 05:25:30 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\Windows\System32\drivers\iaStorA.sys [672104]
O58 - SDL:2013/08/10 02:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\Windows\System32\drivers\iaStorAV.sys [651248]
O58 - SDL:2013/08/22 14:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [412000]
O58 - SDL:2014/05/09 10:16:24 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [3789824]
O58 - SDL:2014/05/05 13:01:50 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [450520]
O58 - SDL:2014/03/26 01:31:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\intelaud.sys [38296]
O58 - SDL:2014/03/26 01:31:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\iwdbus.sys [27032]
O58 - SDL:2012/08/06 05:17:18 A . (. - Keyboard Filter Driver.) -- C:\Windows\System32\drivers\kbfiltr.sys [17280]
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [109408]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [93536]
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3.sys [81760]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [82784]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [56672]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575840]
O58 - SDL:2013/08/22 14:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63840]
O58 - SDL:2013/06/18 16:45:58 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\Netwsw00.sys [11518976]
O58 - SDL:2014/09/16 09:55:08 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [12737864]
O58 - SDL:2013/08/22 14:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150368]
O58 - SDL:2013/08/22 14:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [168288]
O58 - SDL:2015/05/19 05:29:01 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\drivers\nvvad64v.sys [46768]
O58 - SDL:2014/05/29 09:55:48 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\Windows\System32\drivers\Rt630x64.sys [873176]
O58 - SDL:2014/07/01 14:30:36 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4002008]
O58 - SDL:2013/10/18 08:12:34 A . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\Windows\System32\drivers\RtsPer.sys [444632]
O58 - SDL:2014/12/30 11:35:54 A . (.Razer Inc - Razer RzEndPt.) -- C:\Windows\System32\drivers\rzendpt.sys [39592]
O58 - SDL:2015/02/05 02:24:36 A . (.Razer, Inc. - Razer Overlay Support.) -- C:\Windows\System32\drivers\rzpmgrk.sys [37184]
O58 - SDL:2014/12/10 22:43:07 A . (.Razer, Inc. - Razer Overlay Support.) -- C:\Windows\System32\drivers\rzpnk.sys [129600]
O58 - SDL:2014/12/30 11:35:54 A . (.Razer Inc - Razer Rzudd Engine.) -- C:\Windows\System32\drivers\rzudd.sys [177832]
O58 - SDL:2013/08/22 17:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2013/08/22 14:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44896]
O58 - SDL:2013/08/22 14:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81760]
O58 - SDL:2013/08/22 14:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31072]
O58 - SDL:2013/09/03 18:52:14 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriverx64.sys [99288]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [19808]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [168800]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305504]
O58 - SDL:2015/02/17 00:37:22 A . (...) -- C:\Windows\System32\drivers\webTinstMK.sys [50800] =>PUP.CorsicaTechnologies
O58 - SDL:2015/06/16 00:27:22 A . (.WS - WS WFP Driver x64.) -- C:\Windows\System32\drivers\wsfd_1_10_0_19.sys [57728] =>PUP.WordShark
O58 - SDL:2014/09/09 02:39:24 N . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\athwbx.sys [4221952]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (29) - 57s
O61 - LFC: 2015/07/01 01:15:50 A . (.Tim Kosse.) -- C:\Users\Andreas\Downloads\FileZilla_3.11.0.2_win64-setup.exe [6477032]
O61 - LFC: 2015/07/03 23:25:55 A . (.Oracle Corporation.) -- C:\Users\Andreas\Downloads\jre-7u17-windows-x64.exe [33003424]
O61 - LFC: 2015/06/29 20:43:45 A . (..) -- C:\Users\Andreas\Downloads\Setup.exe [682992]
O61 - LFC: 2015/07/01 15:04:39 A . (..) -- C:\Users\Andreas\Downloads\wrar521fr.exe [1850112]
O61 - LFC: 2015/07/03 18:25:16 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\OpenComputersMod-1.5.0.6-native.64.dll [441856]
O61 - LFC: 2015/06/29 13:49:22 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\bin\natives\avutil-ttv-51.dll [653832]
O61 - LFC: 2015/06/29 13:49:22 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\bin\natives\jinput-dx8.dll [61952]
O61 - LFC: 2015/06/29 13:49:22 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\bin\natives\jinput-dx8_64.dll [65024]
O61 - LFC: 2015/06/29 13:49:22 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\bin\natives\jinput-raw.dll [59392]
O61 - LFC: 2015/06/29 13:49:22 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\bin\natives\jinput-raw_64.dll [62464]
O61 - LFC: 2015/06/29 13:49:22 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\bin\natives\jinput-wintab.dll [56832]
O61 - LFC: 2015/06/29 13:49:22 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\bin\natives\libmp3lame-ttv.dll [688161]
O61 - LFC: 2015/06/29 13:49:22 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\bin\natives\lwjgl.dll [298496]
O61 - LFC: 2015/06/29 13:49:22 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\bin\natives\lwjgl64.dll [310272]
O61 - LFC: 2015/06/29 13:49:22 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\bin\natives\OpenAL32.dll [390144]
O61 - LFC: 2015/06/29 13:49:22 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\bin\natives\OpenAL64.dll [382464]
O61 - LFC: 2015/06/29 13:49:22 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\bin\natives\swresample-ttv-0.dll [361103]
O61 - LFC: 2015/06/29 13:49:22 A . (..) -- C:\Users\Andreas\Desktop\AtLauncher\Instances\BevosTechPack\bin\natives\twitchsdk.dll [1127424]
O61 - LFC: 2015/07/05 17:47:36 A . (..) -- C:\Users\Andreas\AppData\Roaming\sp_data.sys [93]
O61 - LFC: 2015/07/05 17:47:12 A . (..) -- C:\Users\Andreas\AppData\Roaming\NVIDIA\GLCache\9a12e53f4de3ba6c77154d9ab5c63d07\44286306be23ea6b\82bd674ac494837f.bin [671005]
O61 - LFC: 2015/07/04 19:45:40 A . (..) -- C:\Users\Andreas\AppData\Roaming\NVIDIA\GLCache\9a12e53f4de3ba6c77154d9ab5c63d07\44286306be23ea6b\82bd674ac4948380.bin [250079]
O61 - LFC: 2015/06/30 14:02:40 A . (..) -- C:\Users\Andreas\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [4438960]
O61 - LFC: 2015/07/04 00:51:18 A . (..) -- C:\Users\Andreas\AppData\Local\NVIDIA\NvBackend\Packages\00007998\DAO.19733759.exe [5871552]
O61 - LFC: 2015/07/01 00:48:32 A . (..) -- C:\Users\Andreas\AppData\Local\NVIDIA\NvBackend\Packages\00007984\CoProc update.19722912.exe [455224]
O61 - LFC: 2015/07/03 12:14:26 A . (.NVIDIA Corporation.) -- C:\Users\Andreas\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe [628664]
O61 - LFC: 2015/07/03 12:14:20 A . (.NVIDIA Corporation.) -- C:\Users\Andreas\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe [172984]
O61 - LFC: 2015/07/03 12:14:14 A . (.NVIDIA Corporation.) -- C:\Users\Andreas\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\Ontology.dll [1357240]
O61 - LFC: 2015/07/01 17:34:22 A . (..) -- C:\Users\Andreas\AppData\Local\Microsoft\Windows\INetCache\IE\J2RAUA4M\Cloud_Backup_Setup[1].exe [73872]
O61 - LFC: 2015/07/02 14:30:14 A . (..) -- C:\Users\Andreas\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]

---\\ Associations Shell Spawning (O67) (9) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (SMI) (O68) (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (24) - 9s
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("browser.startup.homepage", "http://services.freshy.com/general/newhometab.php?hometab=home&partner=10817&guid={63329D4B[...] =>PUP.CertifiedToolbar
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("extensions.StrongSignal.cg", "a4322496-3515-444e-9fde-4d2af01b6ac9"); =>PUP.StrongSignal
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.description", "iWebar"); =>Adware.CrossRider
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_bundledUrls.expi[...] =>PUP.Monetization
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_bundledUrls.valu[...] =>PUP.Monetization
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_bundledWithHash.[...] =>PUP.Monetization
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_notBundledArr_.e[...] =>PUP.Monetization
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_notBundledArr_.v[...] =>PUP.Monetization
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.internaldb.monetization_plugin_regBundledWithSo[...] =>PUP.Monetization
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("extensions.a14fef81ee28d4335a493c2d6383fd42ff9b4872bccb5bcom70121.70121.name", "iWebar"); =>Adware.CrossRider
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("extensions.a9321b2762c2e4c5fbd04b8118e512707c0c8a2d632754caca0b252e936311db9com32850.32850.name", "Object Browser"); =>PUP.ObjectBrowser
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("extensions.crossrider.bic", "14e2cdca95f76110d7c88467747539e2"); =>Adware.CrossRider
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("keyword.URL", "http://search.findwide.com/serp?guid={63329D4B-9F19-4469-81CD-36A3A8C93EBC}&action=default_search&serpv=[...] =>Hijacker.SearchFindWide
O69 - SBI: prefs.js [Andreas - 6gh5urj9.default] user_pref("plugin.state.npconduitfirefoxplugin", 0); =>PUP.Conduit
O69 - SBI: SearchScopes [HKCU] OldSearch - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Binkiland) - http://binkiland.com/ =>PUP.Binkiland
O69 - SBI: SearchScopes [HKCU] {0b4d26f6-61a8-4463-99dd-5f2fe0400fa6} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {12088F29-6171-46AD-9039-4D8FFA6E3C24} - (Yahoo Search!) - http://q.search-simple.com/ =>Hijacker.SearchSimple
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (mystartsearch) - http://www.mystartsearch.com/ =>PUP.StartSearch
O69 - SBI: SearchScopes [HKCU] {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} [DefaultScope] - (Yahoo Search!) - http://fr.search.yahoo.com/
O69 - SBI: SearchScopes [HKCU] {4BFB1FE4-8BE8-4FA0-89C0-2F082188E585} - (FindWide) - http://search.findwide.com/ =>Hijacker.SearchFindWide
O69 - SBI: SearchScopes [HKCU] {603F7C22-FE8D-4EB0-B7C4-DD2ACE90EBFB} - (Yahoo!) - http://search.yahoo.com/
O69 - SBI: SearchScopes [HKCU] {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} - (WebSearch) - http://websearch.coolsearches.info/ =>PUP.CoolSearches
O69 - SBI: SearchScopes [HKCU] {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} - (Yahoo! Search) - http://q.search-simple.com/ =>Hijacker.SearchSimple

---\\ Enumère les services démarrés par Svchost (SSS) (O83) (34) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [214528]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [156160]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [156160]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [329216]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1360896]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1084416]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [926208]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [31744]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [110080]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [151040]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [110592]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1265152]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [230400]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [71168]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [135168]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [225280]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [339968]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [101376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [348672]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [521728]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\system32\wlidsvc.dll [1639424]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [59392]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [206848]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\ncasvc.dll [166400]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [102912]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [542208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [226816]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\sens.dll [73728]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [452608]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [313344]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [3678720]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [933376]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [640000]

---\\ Liste des exceptions du parefeu (FirewallRules) (O87) (3) - 2s
O87 - FAEL: "{6D65285E-A47C-455B-AC85-0A93014B4A04}" [In-None-P17-TRUE] .(...) -- C:\Users\Andreas\AppData\Local\CrossBrowser\Application\crossbrowser.exe =>PUP.CrossBrowser
O87 - FAEL: "TCP Query User{12688F1F-B73E-4927-8929-0046EA26DC5E}C:\program files (x86)\askpartnernetwork\eclipse\eclipse.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\askpartnernetwork\eclipse\eclipse.exe =>Toolbar.Ask
O87 - FAEL: "UDP Query User{30B15EE0-3673-438D-868F-0C1269B43676}C:\program files (x86)\askpartnernetwork\eclipse\eclipse.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\askpartnernetwork\eclipse\eclipse.exe =>Toolbar.Ask

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) (37) - 11s
SS - Demand [2015/06/23 19:25:19] [ 268464] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - Auto [2014/03/26 17:24:44] [ 115512] ASLDR Service (ASLDRService) . (.ASUSTek Computer Inc..) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
SS - Auto [2014/08/20 07:14:40] [ 71168] (Asus WebStorage Windows Service) . (.ASUS Cloud Corporation.) - C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe
SR - Auto [2014/08/27 21:47:58] [ 322176] AtherosSvc (AtherosSvc) . (.Windows (R) Win 7 DDK provider.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
SR - Auto [2011/11/21 16:19:50] [ 96896] ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
SR - Auto [2015/06/26 00:30:10] [ 343336] Avast Antivirus (avast! Antivirus) . (.Avast Software s.r.o..) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - Demand [2015/06/26 00:30:04] [ 4034896] AvastVBox COM Service (AvastVBoxSvc) . (.Avast Software.) - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
SR - Auto [2015/06/24 11:58:18] [ 112560] (BrsHelper) . (...) - C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe
SS - Demand [2014/05/09 10:16:38] [ 278344] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe
SR - Auto [2014/10/29 17:21:04] [ 9728] (DriverMFTService) . (.ASUSTek Computer Inc..) - C:\Program Files (x86)\ASUS\ASUS Video DSP\DriverMFTService.exe
SR - Auto [2013/11/18 16:01:56] [ 828656] ExpressCache (ExpressCache) . (.Condusiv Technologies.) - C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
SR - Auto [2014/04/24 23:04:16] [ 227904] GamesAppIntegrationService (GamesAppIntegrationService) . (.WildTangent.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
SS - Demand [2014/04/24 23:00:06] [ 203344] GamesAppService (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
SR - Auto [2015/06/24 13:37:26] [ 1152656] NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
SS - Auto [2015/06/26 00:26:53] [ 68608] globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate.) - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe
SS - Demand [2015/06/26 00:26:53] [ 68608] globalUpdate Update Service (globalUpdatem) (globalUpdatem) . (.globalUpdate.) - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe
SS - Auto [2015/06/26 13:31:15] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2015/06/26 13:31:15] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - Auto [// ::] [ 314696] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\system32\igfxCUIService.exe
SR - Auto [2013/05/11 19:45:38] [ 733696] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SS - Demand [2013/05/11 19:45:54] [ 822232] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
SR - Auto [2013/09/03 18:52:14] [ 131544] Intel(R) ME Service (Intel(R) ME Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
SR - Auto [2013/09/03 18:52:14] [ 169432] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - Auto [2015/06/26 00:25:33] [ 2731512] LMPfChjh (LMPfChjh) . (.Irrational Number Applications.) - C:\ProgramData\UyxqnepWu\LMPfChjh.exe
SR - Auto [2013/09/03 18:52:56] [ 390616] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - Auto [2015/06/24 13:37:26] [ 1868432] NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
SR - Auto [2015/06/24 13:37:25] [23007376] NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
SR - Auto [// ::] [ 929936] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - Auto [2015/02/05 02:25:00] [ 187072] Razer Game Scanner (Razer Game Scanner Service) . (.Copyright © 2013-2015.) - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
SR - Auto [2015/07/05 16:23:18] [ 648464] Service Mgr StrongSignal (Service Mgr StrongSignal) . (...) - C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugincontainer.exe
SS - Auto [2015/02/18 19:11:32] [ 315488] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - Demand [2015/06/04 20:56:54] [ 837312] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - Auto [2015/04/10 15:49:56] [ 586264] StormWatch Update Service (StormWatch Update Service) . (...) - C:\Program Files (x86)\StormWatch\StormWatchSrv.exe
SR - Auto [2014/11/22 07:19:26] [ 17584] SWUpdaterSvc (SWUpdater) . (.Weather Protector LLC.) - C:\Program Files (x86)\StormWatch\SWUpdaterSvc.exe
SR - Auto [2015/07/05 16:24:23] [ 573712] Update Mgr StrongSignal (Update Mgr StrongSignal) . (...) - C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe
SR - Auto [2015/06/16 00:27:24] [ 299096] WS 1.10.0.19 Client Service (wssvc_1.10.0.19) . (.WS.) - C:\Program Files (x86)\WordShark_1.10.0.19\Service\wssvc.exe
SR - Auto [2014/08/27 21:23:02] [ 323584] ZAtheros Bt and Wlan Coex Agent (ZAtheros Bt and Wlan Coex Agent) . (.Atheros.) - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

---\\ Recherche de clés de registre Tracing (O100) (10) - 1s
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\MixVideoPlayer_RASAPI32 =>PUP.MixVideoPlayer
HKLM\SOFTWARE\Microsoft\Tracing\MixVideoPlayer_RASMANCS =>PUP.MixVideoPlayer
HKLM\SOFTWARE\Microsoft\Tracing\ProPCCleaner_RASAPI32 =>PUP.ProPCCleaner
HKLM\SOFTWARE\Microsoft\Tracing\ProPCCleaner_RASMANCS =>PUP.ProPCCleaner
HKLM\SOFTWARE\Microsoft\Tracing\StormWatch_RASAPI32 =>PUP.StormWatch
HKLM\SOFTWARE\Microsoft\Tracing\StormWatch_RASMANCS =>PUP.StormWatch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSharkAutoUpdateClient_RASAPI32 =>PUP.WordShark
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSharkAutoUpdateClient_RASMANCS =>PUP.WordShark

---\\ Scan Additionnel (O88) (266) - 0s
C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe =>PUP.SearchDonkey
C:\Program Files (x86)\StormWatch\StormWatchSrv.exe =>PUP.StormWatch
C:\Program Files (x86)\StormWatch\SWUpdaterSvc.exe =>PUP.StormWatch
C:\Program Files (x86)\WordShark_1.10.0.19\Service\wssvc.exe =>PUP.WordShark
C:\ProgramData\UyxqnepWu\LMPfChjh.exe =>Adware.WebShield
C:\Users\Andreas\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe =>PUP.Nosibay
C:\Program Files (x86)\YTDownloader\YTDownloader.exe =>PUP.YTDownloader
C:\Program Files (x86)\OLBPre\OLBPre.exe =>PUP.MyPCBackup
C:\Program Files (x86)\StormWatch\StormWatch.exe =>PUP.StormWatch
C:\Users\Andreas\AppData\Local\Development Media 73\WindowPromo\WindowPromo.exe =>PUP.WindowPromo
C:\Program Files (x86)\StormWatch\StormWatchApp.exe =>PUP.StormWatch
C:\Program Files (x86)\YTDownloader\BrowserHelper.exe =>PUP.YTDownloader
C:\Program Files (x86)\fun coupons\fun_coupons_notification_service.exe =>Adware.CrossRider
C:\Program Files (x86)\ext coupons\ext_coupons_notification_service.exe =>Adware.CrossRider
C:\Program Files (x86)\roller coaster park\roller_coaster_park_notification_service.exe =>Adware.CrossRider
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugincontainer.exe =>Adware.CrossRider
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\2\Plugin.exe =>Adware.CrossRider
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\4\Plugin.exe =>Adware.CrossRider
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\5\Plugin.exe =>Adware.CrossRider
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\3\Plugin.exe =>Adware.CrossRider
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\6\Plugin.exe =>Adware.CrossRider
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\7\Plugin.exe =>Adware.CrossRider
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugins\8\Plugin.exe =>Adware.CrossRider
C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe =>Adware.CrossRider
C:\ProgramData\UyxqnepWu\dat\yBLDyumKQMG.exe =>Adware.WebShield
C:\Users\Andreas\AppData\Local\Google\Chrome\User Data\Default\Extensions\elggllhppljlljkgfeokjpehmdamkejk
C:\Users\Andreas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaaghkhghnijpedknoihgelfibidjccn
C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.GlobalUpdate
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{12B92C3C-A2B0-4AE3-9E92-70CB927BA202} =>PUP.Deeal
C:\ProgramData\ShopperPro\ShopperPro64.dll =>PUP.ShopperPro
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} =>PUP.ShopperPro
HKLM\SYSTEM\CurrentControlSet\Services\BrsHelper =>PUP.YTDownloader
C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe =>PUP.YTDownloader
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdate =>PUP.GlobalUpdate
C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe =>PUP.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\LMPfChjh =>Adware.WebShield
HKLM\SYSTEM\CurrentControlSet\Services\Service Mgr StrongSignal =>PUP.StrongSignal
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce\plugincontainer.exe =>PUP.StrongSignal
HKLM\SYSTEM\CurrentControlSet\Services\StormWatch Update Service =>PUP.StormWatch
HKLM\SYSTEM\CurrentControlSet\Services\SWUpdater =>PUP.StormWatch
HKLM\SYSTEM\CurrentControlSet\Services\Update Mgr StrongSignal =>PUP.StrongSignal
C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce\Updater.exe =>PUP.StrongSignal
HKLM\SYSTEM\CurrentControlSet\Services\wssvc_1.10.0.19 =>PUP.WordShark
C:\Users\Andreas\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe =>PUP.Nosibay
C:\Program Files (x86)\ShopperPro\ShopperPro.exe =>PUP.ShopperPro
C:\Program Files (x86)\ShopperPro\Updater.exe =>PUP.ShopperPro
C:\Users\Andreas\AppData\Roaming\Store\WindApp\WindApp Update.exe =>PUP.Nosibay
C:\Program Files (x86)\WordShark_1.10.0.19\Update\WordSharkAutoUpdateClient.exe =>PUP.WordShark
C:\Windows\Tasks\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-1-6.job =>Adware.CrossRider
C:\Windows\Tasks\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5.job =>Adware.CrossRider
C:\Windows\Tasks\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5_user.job =>Adware.CrossRider
C:\Windows\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-6.job =>Adware.CrossRider
C:\Windows\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-7.job =>Adware.CrossRider
C:\Windows\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5.job =>Adware.CrossRider
C:\Windows\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5_user.job =>Adware.CrossRider
C:\Windows\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-7.job =>Adware.CrossRider
C:\Windows\Tasks\Binkiland tona.job =>PUP.Binkiland
C:\Windows\Tasks\ext_coupons_notification_service.job =>Adware.CrossRider
C:\Windows\Tasks\EYHL.job =>Adware.CrossRider
C:\Windows\Tasks\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-6.job =>Adware.CrossRider
C:\Windows\Tasks\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-7.job =>Adware.CrossRider
C:\Windows\Tasks\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-4.job =>Adware.CrossRider
C:\Windows\Tasks\fun_coupons_notification_service.job =>Adware.CrossRider
C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job =>PUP.GlobalUpdate
C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job =>PUP.GlobalUpdate
C:\Windows\Tasks\roller_coaster_park_notification_service.job =>Adware.CrossRider
C:\Windows\System32\Tasks\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-1-6 =>Adware.CrossRider
C:\Windows\System32\Tasks\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5 =>Adware.CrossRider
C:\Windows\System32\Tasks\11c17527-3cff-4b80-b0cb-b19fecbcd7f9-5_user =>Adware.CrossRider
C:\Windows\System32\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-6 =>Adware.CrossRider
C:\Windows\System32\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-1-7 =>Adware.CrossRider
C:\Windows\System32\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5 =>Adware.CrossRider
C:\Windows\System32\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-5_user =>Adware.CrossRider
C:\Windows\System32\Tasks\4ea237fa-e5e7-418f-b5af-d0b42809b6c8-7 =>Adware.CrossRider
C:\Windows\System32\Tasks\Binkiland tona =>PUP.Binkiland
C:\Windows\System32\Tasks\ext_coupons_notification_service =>Adware.CrossRider
C:\Windows\System32\Tasks\EYHL =>Adware.CrossRider
C:\Windows\System32\Tasks\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-6 =>Adware.CrossRider
C:\Windows\System32\Tasks\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-1-7 =>Adware.CrossRider
C:\Windows\System32\Tasks\f66f1661-1e95-4f5d-8ca8-2a9ea19efdba-4 =>Adware.CrossRider
C:\Windows\System32\Tasks\fun_coupons_notification_service =>Adware.CrossRider
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore =>PUP.GlobalUpdate
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA =>PUP.GlobalUpdate
C:\Windows\System32\Tasks\RocketTab =>Adware.Sambreel
C:\Windows\System32\Tasks\roller_coaster_park_notification_service =>Adware.CrossRider
C:\Windows\System32\Tasks\Selection Tools Update =>PUP.Nosibay
C:\Windows\System32\Tasks\ShopperPro =>PUP.ShopperPro
C:\Windows\System32\Tasks\ShopperProJSUpd =>PUP.ShopperPro
C:\Windows\System32\Tasks\Super Optimizer Schedule =>PUP.SuperOptimizer
C:\Windows\System32\Tasks\WindApp Update =>PUP.Nosibay
C:\Windows\System32\Tasks\WordShark Auto Updater 1.10.0.19 Core =>PUP.WordShark
C:\Windows\System32\Tasks\WordShark Auto Updater 1.10.0.19 Pending Update =>PUP.WordShark
C:\Windows\System32\Tasks\YTDownloader =>PUP.YTDownloader
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OLBPre =>PUP.MyPCBackup
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\FlashBeat =>PUP.FlashBeat
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_fr_004010013_is1 =>Adware.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\HQ Cinemax 1.9cV16.02 =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\iWebar =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Object Browser =>PUP.ObjectBrowser
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\RocketTab =>PUP.RocketTab
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ShopperPro =>PUP.ShopperPro
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SmartSaver+ 21 =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\StormWatch =>PUP.StormWatch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Strong Signal =>PUP.StrongSignal
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\System NotifierV25.06 =>PUP.SystemNotifier
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage =>Adware.Downware
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WebShield =>Adware.WebShield
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WordShark_1.10.0.19 =>PUP.WordShark
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0D566ABB-889B-AF39-7B6A-23D4C5D54542} =>Adware.Multiplug
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{229c2d9f} =>Adware.Graftor
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1C52B8B6-FFA2-12F6-0A5A-E8301F96A568} =>Adware.Multiplug
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1E38F0E0-5499-CDAF-F946-BA3D053AABC2} =>Adware.Multiplug
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{20188537-BC86-1F4B-6B72-1AA2EC4E9C93} =>PUP.Deeal
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{532970A2-464B-73CB-BBC4-F209EAD3EEBE} =>Adware.Multiplug
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{66951628-3E5A-9C96-37EA-490E187974D5} =>Adware.Multiplug
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BC799F5F-37C9-ACBB-BE51-805992C10610} =>Adware.Multiplug
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{cfd32d46-7d3f-483f-bace-7172aec5592d} =>PUP.BuzzDock
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Selection Tools =>PUP.Nosibay
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WindApp =>PUP.Nosibay
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WindowPromo =>PUP.WindowPromo
HKLM\SOFTWARE\Wow6432Node\ArenaHD =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Conduit
HKLM\SOFTWARE\Wow6432Node\EZ Software Updater =>Adware.EZSoftwareUpdater
HKLM\SOFTWARE\Wow6432Node\Flashbeat =>PUP.FlashBeat
HKLM\SOFTWARE\Wow6432Node\GAMESDESKTOP =>Adware.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\HighDefAction =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\HQ Cinemax 1.9cV16.02 =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\HQ Cinemax 1.9cV16.02-nv-ie =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\Iminent =>Adware.IMBooster
HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.BrowserExtensions
HKLM\SOFTWARE\Wow6432Node\iWebar =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\iWebar-nv =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\iWebar-nv-ie =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\Mediaplayersversion2.4-nv-ie =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.StartSearch
HKLM\SOFTWARE\Wow6432Node\Object Browser =>PUP.ObjectBrowser
HKLM\SOFTWARE\Wow6432Node\Object Browser-nv =>PUP.ObjectBrowser
HKLM\SOFTWARE\Wow6432Node\Object Browser-nv-ie =>PUP.ObjectBrowser
HKLM\SOFTWARE\Wow6432Node\Pro PC Cleaner =>PUP.DoctorPC
HKLM\SOFTWARE\Wow6432Node\RocketTab =>PUP.RocketTab
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.SearchProtect
HKLM\SOFTWARE\Wow6432Node\ShopperPro =>PUP.ShopperPro
HKLM\SOFTWARE\Wow6432Node\SmartSaver+ 21 =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\SmartSaver+ 21-nv =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\SmartSaver+ 21-nv-ie =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\SpeedBrowser =>PUP.SpeedBrowser
HKLM\SOFTWARE\Wow6432Node\StormWatch =>PUP.StormWatch
HKLM\SOFTWARE\Wow6432Node\StormWatchApp =>PUP.StormWatch
HKLM\SOFTWARE\Wow6432Node\StrongSignal =>PUP.StrongSignal
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\Uniblue =>PUP.UniblueSystem
HKLM\SOFTWARE\Wow6432Node\WajIntEnhance =>PUP.Wajam
HKLM\SOFTWARE\Wow6432Node\WordShark_1.10.0.19 =>PUP.WordShark
HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\YTDownloader =>PUP.YTDownloader
HKCU\SOFTWARE\APN PIP =>PUP.Conduit
HKCU\SOFTWARE\ArenaHD =>Adware.CrossRider
HKCU\SOFTWARE\Binkiland Browser =>PUP.Binkiland
HKCU\SOFTWARE\Browser =>Adware.CrossRider
HKCU\SOFTWARE\gamesdesktop =>Adware.GamesDesktop
HKCU\SOFTWARE\globalUpdate =>PUP.GlobalUpdate
HKCU\SOFTWARE\HighDefAction =>Adware.CrossRider
HKCU\SOFTWARE\HomeTab =>PUP.CertifiedToolbar
HKCU\SOFTWARE\HQ Cinemax 1.9cV16.02 =>Adware.CrossRider
HKCU\SOFTWARE\HQ Cinemax 1.9cV16.02-nv-ie =>Adware.CrossRider
HKCU\SOFTWARE\InstallCore =>Adware.InstallCore
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.BrowserExtensions
HKCU\SOFTWARE\iWebar-nv =>Adware.CrossRider
HKCU\SOFTWARE\iWebar-nv-ie =>Adware.CrossRider
HKCU\SOFTWARE\Mediaplayersversion2.4-nv-ie =>Adware.CrossRider
HKCU\SOFTWARE\Nosibay =>Adware.SPointer
HKCU\SOFTWARE\Object Browser-nv =>PUP.ObjectBrowser
HKCU\SOFTWARE\Object Browser-nv-ie =>PUP.ObjectBrowser
HKCU\SOFTWARE\Optimizer Pro =>PUP.OptimizerPro
HKCU\SOFTWARE\ProPCCleanerConfig =>PUP.ProPCCleaner
HKCU\SOFTWARE\ProPCCleanerLanguage =>PUP.ProPCCleaner
HKCU\SOFTWARE\RocketTabInstalled =>PUP.RocketTab
HKCU\SOFTWARE\rttasks =>PUP.RocketTab
HKCU\SOFTWARE\Search Extensions =>PUP.RocketTab
HKCU\SOFTWARE\SearchProtectWS =>PUP.SearchProtect
HKCU\SOFTWARE\SimplyTech =>PUP.SimplyTech
HKCU\SOFTWARE\SmartSaver+ 21 =>Adware.CrossRider
HKCU\SOFTWARE\SmartSaver+ 21-nv =>Adware.CrossRider
HKCU\SOFTWARE\SmartSaver+ 21-nv-ie =>Adware.CrossRider
HKCU\SOFTWARE\Softonic =>PUP.Softonic
HKCU\SOFTWARE\Store =>PUP.Optional
HKCU\SOFTWARE\StormWatchApp =>PUP.StormWatch
HKCU\SOFTWARE\Super Optimizer =>PUP.SuperOptimizer
HKCU\SOFTWARE\System NotifierV25.06 =>PUP.SystemNotifier
HKCU\SOFTWARE\TNT2 =>Adware.TidyNetwork
HKCU\SOFTWARE\Tutorials =>PUP.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.AgenceExclusive
HKCU\SOFTWARE\WajIntEnhance =>PUP.Wajam
HKCU\SOFTWARE\wse_binkiland =>PUP.Binkiland
HKCU\SOFTWARE\YorkNewCin =>Adware.CrossRider
HKCU\SOFTWARE\YTDownloader =>PUP.YTDownloader
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>Adware.CrossRider =>Adware.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\DynConIE =>PUP.DynConIE =>PUP.DynConIE
C:\Program Files (x86)\a63cd650-9374-4f36-b892-fbe5ccc9f08b =>Adware.CrossRider
C:\Program Files (x86)\a8dd3325-94cd-485b-9e5a-074631df91fb =>Adware.CrossRider
C:\Program Files (x86)\appsaavue =>Adware.Multiplug
C:\Program Files (x86)\AskPartnerNetwork =>Toolbar.Ask
C:\Program Files (x86)\b1f6e23f-d2f7-4697-98ab-acef3604ef61 =>Adware.CrossRider
C:\Program Files (x86)\CloudScout Parental Control =>PUP.CloudScout
C:\Program Files (x86)\dowwnloAdietkeep =>Adware.Multiplug
C:\Program Files (x86)\easeyytooshop =>Adware.Multiplug
C:\Program Files (x86)\FainoeDeaLSoft =>Adware.Multiplug
C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate
C:\Program Files (x86)\gmsd_fr_004010013 =>Adware.CrossRider
C:\Program Files (x86)\HQ Cinemax 1.9cV16.02 =>Adware.CrossRider
C:\Program Files (x86)\iWebar =>Adware.CrossRider
C:\Program Files (x86)\Object Browser =>PUP.ObjectBrowser
C:\Program Files (x86)\offferdeal =>Adware.Multiplug
C:\Program Files (x86)\OLBPre =>PUP.MyPCBackup
C:\Program Files (x86)\rOcketdeal =>Adware.Sambreel
C:\Program Files (x86)\ShopperPro =>PUP.ShopperPro
C:\Program Files (x86)\SmartSaver+ 21 =>Adware.CrossRider
C:\Program Files (x86)\StormWatch =>PUP.StormWatch
C:\Program Files (x86)\Strong Signal =>PUP.StrongSignal
C:\Program Files (x86)\System NotifierV25.06 =>PUP.SystemNotifier
C:\Program Files (x86)\WordShark_1.10.0.19 =>PUP.WordShark
C:\Program Files (x86)\YTDownloader =>PUP.YTDownloader
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>Adware.GamesDesktop
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PepperZip =>PUP.PepperZip
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StormWatch =>PUP.StormWatch
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue =>PUP.UniblueSystem
C:\ProgramData\EpicScale =>PUP.EpicScale
C:\ProgramData\FlashBeat =>PUP.FlashBeat
C:\ProgramData\ShopperPro =>PUP.ShopperPro
C:\ProgramData\Uniblue =>PUP.UniblueSystem
C:\ProgramData\WebShield =>Adware.WebShield
C:\Users\Andreas\AppData\Roaming\Binkiland =>PUP.Binkiland
C:\Users\Andreas\AppData\Roaming\Nosibay =>PUP.BubbleDock
C:\Users\Andreas\AppData\Roaming\OpenCandy =>Adware.OpenCandy
C:\Users\Andreas\AppData\Roaming\VOPackage =>Adware.Downware
C:\Users\Andreas\AppData\Local\Binkiland =>PUP.Binkiland
C:\Users\Andreas\AppData\Local\CrashRpt =>SUP.CrashReports
C:\Users\Andreas\AppData\Local\CrossBrowser =>PUP.CrossBrowser
C:\Users\Andreas\AppData\Local\globalUpdate =>PUP.GlobalUpdate
C:\Users\Andreas\AppData\Local\gmsd_fr_004010013 =>Adware.CrossRider
C:\Users\Andreas\AppData\Local\Pro_PC_Cleaner =>USP.PCCleaner
C:\Users\Andreas\AppData\Local\speed browser =>PUP.SpeedBrowser
C:\Users\Andreas\AppData\Local\StormWatch =>PUP.StormWatch
C:\Users\Andreas\AppData\Local\TVWizard =>PUP.TVWizard
C:\Users\Andreas\AppData\Local\Weather_Protector_LLC =>PUP.StormWatch
C:\Users\Andreas\AppData\Local\WebShield =>Adware.WebShield
C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormWatch =>PUP.StormWatch
C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>Adware.Downware
C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader =>PUP.YTDownloader
C:\Windows\System32\drivers\webTinstMK.sys =>PUP.CorsicaTechnologies
C:\Windows\System32\drivers\wsfd_1_10_0_19.sys =>PUP.WordShark
C:\program files (x86)\askpartnernetwork\eclipse\eclipse.exe =>Toolbar.Ask
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdatem =>PUP.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\Service Mgr StrongSignal =>Adware.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\Update Mgr StrongSignal =>Adware.CrossRider
HKLM64\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.MyPCBackup
HKLM64\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.MyPCBackup
HKLM64\SOFTWARE\Microsoft\Tracing\MixVideoPlayer_RASAPI32 =>PUP.MixVideoPlayer
HKLM64\SOFTWARE\Microsoft\Tracing\MixVideoPlayer_RASMANCS =>PUP.MixVideoPlayer
HKLM64\SOFTWARE\Microsoft\Tracing\ProPCCleaner_RASAPI32 =>PUP.ProPCCleaner
HKLM64\SOFTWARE\Microsoft\Tracing\ProPCCleaner_RASMANCS =>PUP.ProPCCleaner
HKLM64\SOFTWARE\Microsoft\Tracing\StormWatch_RASAPI32 =>PUP.StormWatch
HKLM64\SOFTWARE\Microsoft\Tracing\StormWatch_RASMANCS =>PUP.StormWatch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSharkAutoUpdateClient_RASAPI32 =>PUP.WordShark
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSharkAutoUpdateClient_RASMANCS =>PUP.WordShark

---\\ Récapitulatif des détections trouvées sur votre station (63) - 0s
http://www.nicolascoolman.fr/pup-searchdonkey / =>PUP.SearchDonkey
http://www.nicolascoolman.fr/blog =>PUP.StormWatch
http://www.nicolascoolman.fr/pup-wordshark/ =>PUP.WordShark
http://www.nicolascoolman.fr/blog =>Adware.WebShield
http://www.nicolascoolman.fr/blog =>PUP.Nosibay
http://www.nicolascoolman.fr/pup-ytdownloader/ =>PUP.YTDownloader
http://www.nicolascoolman.fr/pup-mypcbackup/ =>PUP.MyPCBackup
http://www.nicolascoolman.fr/blog =>PUP.WindowPromo
http://www.nicolascoolman.fr/pup-crossrider/ =>Adware.CrossRider
http://www.nicolascoolman.fr/blog =>PUP.Binkiland
http://www.nicolascoolman.fr/pup-certifiedtoolbar/ =>PUP.CertifiedToolbar
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.GlobalUpdate
http://www.nicolascoolman.fr/blog =>PUP.Deeal
http://www.nicolascoolman.fr/pup-shopperpro/ =>PUP.ShopperPro
http://www.nicolascoolman.fr/blog =>PUP.BubbleSound
http://www.nicolascoolman.fr/blog =>PUP.SpeedBrowser
http://www.nicolascoolman.fr/toolbar-ask/ =>Toolbar.Ask
http://www.nicolascoolman.fr/blog =>PUP.StrongSignal
http://www.nicolascoolman.fr/pup-objectbrowser/ =>PUP.ObjectBrowser
http://www.nicolascoolman.fr/blog =>PUP.ProPCCleaner
http://www.nicolascoolman.fr/blog =>PUP.RocketTab
http://www.nicolascoolman.fr/blog =>Adware.Sambreel
http://www.nicolascoolman.fr/blog =>PUP.SuperOptimizer
http://www.nicolascoolman.fr/blog =>PUP.FlashBeat
http://www.nicolascoolman.fr/blog =>Adware.GamesDesktop
http://www.nicolascoolman.fr/blog =>PUP.SystemNotifier
http://www.nicolascoolman.fr/adware-downware/ =>Adware.Downware
http://www.nicolascoolman.fr/pup-mutiplug/ =>Adware.Multiplug
http://www.nicolascoolman.fr/blog =>Adware.Graftor
http://www.nicolascoolman.fr/blog =>PUP.BuzzDock
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Conduit
http://www.nicolascoolman.fr/blog =>Adware.EZSoftwareUpdater
http://www.nicolascoolman.fr/adware-imbooster/ =>Adware.IMBooster
http://www.nicolascoolman.fr/blog =>PUP.BrowserExtensions
http://www.nicolascoolman.fr/pup-startsearch/ =>PUP.StartSearch
http://www.nicolascoolman.fr/blog =>PUP.DoctorPC
http://www.nicolascoolman.fr/pup-searchprotect/ =>PUP.SearchProtect
http://www.nicolascoolman.fr/spyware-agenceexclusive/ =>PUP.AgenceExclusive
http://www.nicolascoolman.fr/blog =>PUP.UniblueSystem
http://www.nicolascoolman.fr/pup-wajam/ =>PUP.Wajam
http://www.nicolascoolman.fr/adware-installcore/ =>Adware.InstallCore
http://www.nicolascoolman.fr/adware-spointer/ =>Adware.SPointer
http://www.nicolascoolman.fr/pup-optimizerpro/ =>PUP.OptimizerPro
http://www.nicolascoolman.fr/blog =>PUP.SimplyTech
http://www.nicolascoolman.fr/blog =>PUP.Softonic
http://www.nicolascoolman.fr/blog =>PUP.Optional
http://www.nicolascoolman.fr/adware-tidynetwork/ =>Adware.TidyNetwork
http://www.nicolascoolman.fr/blog =>PUP.DynConIE
http://www.nicolascoolman.fr/blog =>PUP.CloudScout
http://www.nicolascoolman.fr/blog =>PUP.PepperZip
http://www.nicolascoolman.fr/blog =>PUP.EpicScale
http://www.nicolascoolman.fr/pup-bubbledock/ =>PUP.BubbleDock
http://www.nicolascoolman.fr/adware-opencandy/ =>Adware.OpenCandy
http://www.nicolascoolman.fr/blog =>SUP.CrashReports
http://www.nicolascoolman.fr/blog =>PUP.CrossBrowser
http://www.nicolascoolman.fr/usp-pccleaner/ =>USP.PCCleaner
http://www.nicolascoolman.fr/pup-tvwizard/ =>PUP.TVWizard
http://www.nicolascoolman.fr/blog =>PUP.CorsicaTechnologies
http://www.nicolascoolman.fr/blog =>PUP.Monetization
http://www.nicolascoolman.fr/hijacker-searchfindwide/ =>Hijacker.SearchFindWide
http://www.nicolascoolman.fr/blog =>Hijacker.SearchSimple
http://www.nicolascoolman.fr/blog =>PUP.CoolSearches
http://www.nicolascoolman.fr/blog =>PUP.MixVideoPlayer

~ End of the scan, 94067 items in 116 seconds (1608)(0)()

Publicité


Signaler le contenu de ce document

Publicité