cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.7.15.90 Par Nicolas Coolman (2015/07/15)
~ Démarré par Elora (Administrator) (2015/07/16 22:22:13)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Elora\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Elora\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
~ Windows 8.1, 32-bit (Build 9600)

---\\ Navigateurs Internet (3) - 1s
GCIE: Google Chrome v43.0.2357.134
MFIE: Mozilla Firefox 39.0 (x86 fr) v39.0
MSIE: Internet Explorer v11.0.9600.17905

---\\ Informations sur les produits Windows (8) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : GVHTR
Windows License : OK
~ Windows Remaining Initializations Number : 999
Windows Activation Technologies : OK

---\\ Logiciels d'optimisation (1) - 1s
CCleaner v5.07

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 55 Stepping 8, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 1979536
~ System Restore: Activé (Enable)
~ System drive C: has 4 GB free of 21 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: ELORA-PC
~ User Name: Elora
~ Logged in as Administrator

---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 4 GB free of 21 GB (System)

---\\ Recherche particulière de fichiers génériques (23) - 1s
[MD5.195822ACCDAA2B4815DD01BAFC335595] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2084520]
[MD5.BE1DAE43DFBCA94FB6B4157C1B16923E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [49664]
[MD5.02BC073156B3097E94D63C4D609020DD] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [112640]
[MD5.E2B8238F0A0D1ADBA3AE4A6D6F0EC756] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [1951232]
[MD5.70C57DC69D4A7D92D2CAC90C3AD16E6F] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [459264]
[MD5.BFB9E1202225113991F981D29BFB9029] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [438272]
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [19456]
[MD5.D75FB05E8DBF21FA0EF313C7503243F1] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [461312]
[MD5.72FCAE2CE6DFEAB2AB072435017F3417] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [23392]
[MD5.CE232BB0965C0C0B786C3F976CCBFB7D] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [73728]
[MD5.E2FC132D48EA4E8B04432C33EFB77801] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [124928]
[MD5.55758EBBC45E1628161121D7CFEAD4A1] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400]
[MD5.7E0EDA9EE53E344D1604EB2A7E8DED47] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [69632]
[MD5.5043E69532392A43549E5D41E22638AA] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [82944]
[MD5.FA6C94C754A566EA8A61D658932F32DE] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [126976]
[MD5.49EDA7967848465645E2D809384D0EBA] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\Windows\System32\drivers\MRxSmb.sys [328704]
[MD5.BC242922B0D08F61CF7C87FD08FAFA8B] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [218624]
[MD5.CE53EAE5F11E8546058AF20C39E5F259] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1678656]
[MD5.4F30970F15ADCC382544B31D5D7E368E] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [81408]
[MD5.C51AB62AB41A2E8560D12472B204CC00] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [81920]
[MD5.67E91843B0344411820A012063E876B2] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\Windows\System32\drivers\rdpdr.sys [143872]
[MD5.DB0C184142CF9FA1746F598A16EE92B2] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [87040]
[MD5.31A2AA48C1ECD390E2707E5C21B75DCE] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [264512]

---\\ Processus lancés (26) - 7s
[MD5.564CB886D1A968B9798C1AB03F4EB54F] - (.ASUSTek Computer Inc. - ASLDR Service.) -- C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [115512] [PID.1404]
[MD5.DBC598E47E7A382E60E2A4745D41FEF9] - (.ASUS - GFNEXSrv.) -- C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896] [PID.1468]
[MD5.F15B96D82B8F112FCBA101F178866806] - (.ASUSTek Computer Inc. - AsHidSrv Service.) -- C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe [103224] [PID.1744]
[MD5.591C1205CD75D271A4828869AC54EEEF] - (.ASUS Cloud Corporation - Asus WebStorage Windows Service.) -- C:\Program Files\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe [71680] [PID.1764]
[MD5.CF3E485E3D3D7CCAB27B139D73B63E20] - (...) -- c:\Windows\faw.exe [417792] [PID.1932]
[MD5.80B76174BC3E478891521B9CD4A92E5E] - (...) -- C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C\knso3B55.tmp [329216] [PID.1952] =>PUP.Optional.CrossRider
[MD5.A50CD1BC1CFFEC65E0D176DBEC70682A] - (...) -- c:\Windows\mfaw.exe [408576] [PID.1976]
[MD5.918C6F7D4C240FF4D9FBCB8937BD11C3] - (...) -- C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C\hnso40F1.tmp [165376] [PID.356] =>PUP.Optional.CrossRider
[MD5.2B639342639296899D5488CFFC6914B7] - (...) -- C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C\jnsv2A6A.tmp [199168] [PID.788] =>PUP.Optional.CrossRider
[MD5.47F12AD8FD0151607CE66D8A165C28F7] - (.ASUSTek Computer Inc. - HControl.) -- C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe [303928] [PID.2676]
[MD5.EBCB7B97A720AE9E445CFA7119F5C5B0] - (.ASUSTek Computer INC. - ASUS Patch For Touch Panel.) -- C:\ProgramData\AsTouchPanel\AsPatchTouchPanel.exe [144512] [PID.2732]
[MD5.5B80FC129C1285BE6082747760847CC7] - (...) -- C:\Users\Elora\AppData\Local\gmsd_fr_005010032\upgmsd_fr_005010032.exe [3298960] [PID.3260] =>PUP.Optional.CrossRider
[MD5.230553C24EEE56CA07CF66117A10BFCC] - (.ASUSTek Computer Inc. - ATK Media.) -- C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe [209720] [PID.3332]
[MD5.99B0DD6A5DF7E130C81C7CC05137A861] - (.ASUSTek Computer Inc. - ATKOSD2.) -- C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [406328] [PID.3340]
[MD5.9D727D6EA648AC11665B6B79B70D483E] - (.AsusTek - ASUS Smart Gesture Loader.) -- C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLoader.exe [353080] [PID.3940]
[MD5.08C1E1E6C9204A3513A2766C993D8FE5] - (.AsusTek - ASUS Smart Gesture Center.) -- C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPCenter.exe [295224] [PID.2696]
[MD5.D44D285492E3FD700B6E826F7213D5DF] - (.AsusTek - ASUS Smart Gesture Helper.) -- C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPHelper.exe [174392] [PID.3824]
[MD5.CB4A2476C404E5E88BA557E46A6771AA] - (.Realtek Semiconductor - Gestionnaire audio Realtek.) -- C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe [2912256] [PID.4112]
[MD5.A1B334D4DE0DA06EC5EA9985779B445C] - (.ASUS Cloud Corporation - .) -- C:\Program Files\ASUS\WebStorage\2.1.15.458\AsusWSPanel.exe [5250344] [PID.5964]
[MD5.EA70E63531F8EB73AF544B9A1CB3176A] - (.Copyright 2013 - .) -- C:\Users\Elora\AppData\Local\Temp\nsq77F8.tmp [225046] [PID.5772]
[MD5.153F088DFDB3F940AD9DAEB04A3ACC4D] - (.SoftBrain Technologies Ltd. - SmartWeb helper.) -- C:\Users\Elora\AppData\Local\SmartWeb\SmartWebHelper.exe [270368] [PID.2900] =>PUP.Optional.SmartWebSearch
[MD5.44069C2AC699C8DAD80A96FB1C8DFE57] - (.SoftBrain Technologies Ltd. - SmartWeb Application.) -- C:\Users\Elora\AppData\Local\SmartWeb\SmartWebApp.exe [557088] [PID.4928] =>PUP.Optional.SmartWebSearch
[MD5.B2B87E43A315EA1EB91CE837B1F01546] - (...) -- C:\Users\Elora\AppData\Local\Temp\nsf3366.tmp [123469] [PID.864]
[MD5.7FC85A306E8D76722C4ECD2465895E4E] - (...) -- C:\Users\Elora\AppData\Local\Temp\setup_ra.exe [241728] [PID.5216]
[MD5.176375BEE3A28FB669EE5D8B1AB3D522] - (...) -- C:\Users\Elora\AppData\Local\gmsd_fr_005010033\upgmsd_fr_005010033.exe [3294128] [PID.5316] =>PUP.Optional.CrossRider
[MD5.D277312BB46D0B006129E687F6592485] - (...) -- C:\Program Files\gmsd_fr_005010033\gmsd_fr_005010033.exe [3984528] [PID.2872] =>PUP.Optional.CrossRider

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) (2) - 0s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://mynamedomain.koko/
G2 - GCE: Preference [User Data\Default] [innoehnefnhjogaadolaeoihbndgghhg] Product Deals =>PUP.Optional.Sambreel

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (10) - 1s
M0 - MFSP: prefs.js [Elora - bqxaei0r.default] http://www.oursurfing.com/?type=hppp&ts=1437037786&z=ccd7cf08615f533e21574fcgfzbc4mce8cem6mfqez&from=buzz&uid=3219913727_198264_749E63CF =>PUP.Optional.OurSurfing
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (12) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer, Proxy Management (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object de navigateur (BHO) (O2) (1) - 1s
O2 - BHO: (no name) - {51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F} (Orphean)

---\\ Applications lancées au démarrage du sytème (O4) (20) - 0s
O4 - HKLM\..\Run: [ASUSPRP] . (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files\ASUS\APRP\aprp.exe
O4 - HKLM\..\Run: [WebStorage] . (...) -- C:\Program Files\ASUS\WebStorage\2.1.15.458\ASUSWSLoader.exe
O4 - HKLM\..\Run: [DptfPolicyLpmServiceHelper] C:\Windows\system32\DptfPolicyLpmServiceHelper.exe (.not file.)
O4 - HKLM\..\Run: [RtkNGUI] . (.Realtek Semiconductor - Gestionnaire audio Realtek.) -- C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe
O4 - HKLM\..\Run: [SpaceSoundPro] C:\Program Files\SpaceSoundPro\SpaceSoundPro.exe (.not file.)
O4 - HKLM\..\Run: [gmsd_fr_005010031] (Orphean) =>PUP.Optional.CrossRider
O4 - HKLM\..\Run: [gmsd_fr_009010031] (Orphean) =>PUP.Optional.CrossRider
O4 - HKLM\..\Run: [SmartWeb] . (.SoftBrain Technologies Ltd. - SmartWeb helper.) -- C:\Users\Elora\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - HKLM\..\Run: [gmsd_fr_005010032] C:\Program Files\gmsd_fr_005010032\gmsd_fr_005010032.exe (.not file.) =>PUP.Optional.CrossRider
O4 - HKLM\..\Run: [gmsd_fr_005010033] . (...) -- C:\Program Files\gmsd_fr_005010033\gmsd_fr_005010033.exe =>PUP.Optional.CrossRider
O4 - HKLM\..\RunOnce: [upgmsd_fr_005010032.exe] . (...) -- C:\Users\Elora\AppData\Local\gmsd_fr_005010032\upgmsd_fr_005010032.exe =>PUP.Optional.CrossRider
O4 - HKLM\..\RunOnce: [upgmsd_fr_005010033.exe] C:\Users\Elora\AppData\Local\gmsd_fr_005010032\upgmsd_fr_005010033.exe (.not file.) =>PUP.Optional.CrossRider
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_CCF072BF881F48BD68B3BEE4F65E7E93] . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_0F95B55C0E49BC217549CF944C828CC0] C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (.not file.) =>PUP.Optional.CrossBrowse
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe
O4 - HKUS\S-1-5-21-2187367939-1630647826-220657524-1002\..\Run: [GoogleChromeAutoLaunch_CCF072BF881F48BD68B3BEE4F65E7E93] . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - HKUS\S-1-5-21-2187367939-1630647826-220657524-1002\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-2187367939-1630647826-220657524-1002\..\Run: [GoogleChromeAutoLaunch_0F95B55C0E49BC217549CF944C828CC0] C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (.not file.) =>PUP.Optional.CrossBrowse
O4 - HKUS\S-1-5-21-2187367939-1630647826-220657524-1002\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe

---\\ Raccourcis Global Startup (O4G) (3) - 4s
O4 - GS\Startup [Administrateur]: SmartWeb.lnk . (.SoftBrain Technologies Ltd. - SmartWeb helper.) C:\Users\Elora\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\Startup [Elora]: SmartWeb.lnk . (.SoftBrain Technologies Ltd. - SmartWeb helper.) C:\Users\Elora\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\Startup [Invité]: SmartWeb.lnk . (.SoftBrain Technologies Ltd. - SmartWeb helper.) C:\Users\Elora\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch

---\\ Modification Domaine/Adresses DNS (O17) (10) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 52.17.204.69,8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 40.54.1.17
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = wds-17.com
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 52.17.204.69,8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 40.54.1.17
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = wds-17.com
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = lan

---\\ Liste des services NT non Microsoft et non désactivés (O23) (16) - 1s
O23 - Service: ASUS HID Access Service (AsHidService) . (.ASUSTek Computer Inc. - AsHidSrv Service.) - C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe
O23 - Service: ASLDR Service (ASLDRService) . (.ASUSTek Computer Inc. - ASLDR Service.) - C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
O23 - Service: (Asus WebStorage Windows Service) . (.ASUS Cloud Corporation - Asus WebStorage Windows Service.) - C:\Program Files\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS - GFNEXSrv.) - C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @oem26.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Managem (BcmBtRSupport) . (.Broadcom Corporation. - Bluetooth Radio Management Support.) - C:\Windows\System32\BtwRSupportService.exe
O23 - Service: @oem17.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAM (DptfParticipantProcessorService) . (.Intel Corporation - Intel DPTF Processor Service.) - C:\Windows\System32\DptfParticipantProcessorService.exe
O23 - Service: @oem17.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME (DptfPolicyCriticalService) . (.Intel Corporation - Intel DPTF Critical Service.) - C:\Windows\System32\DptfPolicyCriticalService.exe
O23 - Service: @oem17.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Int (DptfPolicyLpmService) . (.Intel Corporation - Intel DPTF LPM Service.) - C:\Windows\System32\DptfPolicyLpmService.exe
O23 - Service: faw (faw) . (...) - c:\Windows\faw.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (...) - C:\Program Files\Google\Update\GoogleUpdate.exe (.not file.)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe
O23 - Service: Forename Crash (kyjerexu) . (...) - C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C\knso3B55.tmp =>PUP.Optional.CrossRider
O23 - Service: mfaw (mfaw) . (...) - c:\Windows\mfaw.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Encyclopaedia Enter (vicoqudu) . (...) - C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C\hnso40F1.tmp =>PUP.Optional.CrossRider
O23 - Service: Typewriter High Resolution (zejytose) . (...) - C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C\jnsv2A6A.tmp =>PUP.Optional.CrossRider

---\\ Tâches planifiées en automatique (O39) (29) - 4s
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP1] (...) -- C:\Program Files\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.Optional.AnyProtect
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP2] (...) -- C:\Program Files\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.Optional.AnyProtect
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP3] (...) -- C:\Program Files\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.Optional.AnyProtect
[MD5.761986319F4F6EDB33B3F046D254C781] [APT] [ASUS Live Update1] (.ASUSTeK Computer Inc..) -- C:\Program Files\ASUS\ASUS Live Update\LiveUpdate.exe [2998552]
[MD5.761986319F4F6EDB33B3F046D254C781] [APT] [ASUS Live Update2] (.ASUSTeK Computer Inc..) -- C:\Program Files\ASUS\ASUS Live Update\LiveUpdate.exe [2998552]
[MD5.EBCB7B97A720AE9E445CFA7119F5C5B0] [APT] [ASUS Patch for Touch Panel] (.ASUSTek Computer INC..) -- C:\ProgramData\AsTouchPanel\AsPatchTouchPanel.exe [144512]
[MD5.11411785384650EBF3A59D9DF64FFD53] [APT] [ASUS Smart Gesture Launcher] (.AsusTek.) -- C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLauncher.exe [17208]
[MD5.08B018EF53C79AF2DAC005B494B9AF53] [APT] [ATK Package 36D18D69AFC3] (.ASUSTek Computer Inc..) -- C:\Program Files\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [109880]
[MD5.00000000000000000000000000000000] [APT] [Bidaily Synchronize Task[8da6]] (.ASUSTek Computer Inc..) -- c:\programdata\{9e6d3c1a-0c74-337e-9e6d-d3c1a0c7f068}\hqghumeaylnlf.exe (.not file.) [0] =>PUP.Optional.BidailySync
[MD5.6313BA5D7F348576758CE789AF7E548A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6405912]
[MD5.00000000000000000000000000000000] [APT] [EKYUY1] (.Piriform Ltd.) -- C:\ProgramData\FlashBeat\FlashBeat.exe (.not file.) [0] =>PUP.Optional.FlashBeat
[MD5.00000000000000000000000000000000] [APT] [FlavorFavors] (.Piriform Ltd.) -- c:\programdata\{b7a8cb68-facd-aeff-b7a8-8cb68fac2da3}\nsr255b.tmp.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [OATJLBTGIFTYNKIG] (.Piriform Ltd.) -- C:\ProgramData\Service1104\Service1104.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Superclean] (.Piriform Ltd.) -- c:\programdata\{556be87a-8e40-f86d-556b-be87a8e4a1ea}\hqghumeaylnlf.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [TBLSDNBUUITVQPRD] (.Piriform Ltd.) -- C:\ProgramData\Service1291\Service1291.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [tet3008] (.Piriform Ltd.) -- C:\PROGRA~1\FASTSE~1\tet3008.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [UBRGKJD1] (.Piriform Ltd.) -- C:\ProgramData\TomorrowGames\TomorrowGames.exe (.not file.) [0] =>PUP.Optional.TomorrowGames
[MD5.74B0D9D4A185A8F13383BD71688D7280] [APT] [Ugumasreblih] (.Copyright © 2015.) -- C:\ProgramData\Ugumasreblih\1.0.4.1\vsocsoax.exe [157696]
[MD5.EFF8FFF2D81A26919EC1D1FCEEDEDAAD] [APT] [Update Checker] (...) -- C:\Program Files\ASUS\ASUS Live Update\UpdateChecker.exe [12288]
O39 - APT: ASUS Live Update1 - (.ASUSTeK Computer Inc..) -- C:\Windows\System32\Tasks\ASUS Live Update1 [3462]
O39 - APT: ASUS Live Update2 - (.ASUSTeK Computer Inc..) -- C:\Windows\System32\Tasks\ASUS Live Update2 [3452]
O39 - APT: ASUS Patch for Touch Panel - (.ASUSTek Computer INC..) -- C:\Windows\System32\Tasks\ASUS Patch for Touch Panel [3254]
O39 - APT: ASUS Smart Gesture Launcher - (.AsusTek.) -- C:\Windows\System32\Tasks\ASUS Smart Gesture Launcher [3526]
O39 - APT: ATK Package 36D18D69AFC3 - (.ASUSTek Computer Inc..) -- C:\Windows\System32\Tasks\ATK Package 36D18D69AFC3 [3550]
O39 - APT: Ugumasreblih - (.Copyright © 2015.) -- C:\Windows\System32\Tasks\Ugumasreblih [3444]
O39 - APT: Update Checker - (..) -- C:\Windows\System32\Tasks\Update Checker [3370]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\{4DB87EBB-04A2-4C75-B19D-6CBFCD6E8831} [3146]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\{84E41B77-DF10-41AD-82AB-7A824DFC0408} [3154]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\{BF3CC80A-B0C5-47FD-BE42-D3F89A2CFF25} [3164]

---\\ Logiciels installés (O42) (25) - 9s
O42 - Logiciel: Windows Driver Package - ASUS (AsusHID) Mouse (03/17/2014 3.0.0.27) - (.ASUS.) [HKLM] -- A2E56402A9DA7D645E15F917A8AD8C50FDC80753
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Friendly Error - (...) [HKLM] -- FriendlyError
O42 - Logiciel: GamesDesktop 001.005010032 - (.GAMESDESKTOP.) [HKLM] -- gmsd_fr_005010032_is1 =>PUP.Optional.GamesDesktop
O42 - Logiciel: GamesDesktop 001.005010033 - (.GAMESDESKTOP.) [HKLM] -- gmsd_fr_005010033_is1 =>PUP.Optional.GamesDesktop
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Mozilla Firefox 39.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 39.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: PhotoScape - (...) [HKLM] -- PhotoScape
O42 - Logiciel: SmartWeb - (.SoftBrain Technologies Ltd..) [HKLM] -- SmartWeb =>PUP.Optional.SmartWebSearch
O42 - Logiciel: TomorrowGames - (...) [HKLM] -- TomorrowGames
O42 - Logiciel: WebStorage - (.ASUS Cloud Corporation.) [HKLM] -- WebStorage
O42 - Logiciel: ASUS Screen Saver - (.ASUS.) [HKLM] -- {0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}
O42 - Logiciel: Skype™ 7.6 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: ASUS Smart Gesture - (.ASUS.) [HKLM] -- {4D3286A6-F6AB-498A-82A4-E4F040529F3D}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Realtek I2S Audio - (.Realtek Semiconductor Corp..) [HKLM] -- {89A448AA-3301-46AA-AFC3-34F2D7C670E8}
O42 - Logiciel: WinFlash - (.ASUS.) [HKLM] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D}
O42 - Logiciel: calibre - (.Kovid Goyal.) [HKLM] -- {8FC4CEFE-8F15-4E22-986F-87EAF0C69A00}
O42 - Logiciel: ATK Package - (.ASUS.) [HKLM] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
O42 - Logiciel: AxCrypt 1.7.3156.0 - (.Axantum Software AB.) [HKLM] -- {DB066768-5A50-4C44-815B-4E8A6A39335E}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM] -- {FA540E67-095C-4A1B-97BA-4D547DEC9AF4}
O42 - Logiciel: PhotoFiltre - (...) [HKCU] -- PhotoFiltre
O42 - Logiciel: PhotoFiltre 7 - (...) [HKCU] -- PhotoFiltre 7

---\\ HKCU & HKLM Software Keys (107) - 9s
HKLM\SOFTWARE\AdwCleaner
HKLM\SOFTWARE\Agere
HKLM\SOFTWARE\AIM Toolbar
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc.
HKLM\SOFTWARE\AskPartnerNetwork =>Toolbar.Ask
HKLM\SOFTWARE\AsLdr
HKLM\SOFTWARE\ASUS
HKLM\SOFTWARE\Axantum
HKLM\SOFTWARE\calibre
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Disc Soft
HKLM\SOFTWARE\ECAREME
HKLM\SOFTWARE\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\GAMESDESKTOP =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\GEAR Software
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\LSI
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Mooii
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Piriform
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Realtek Semiconductor Corp.
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\searchult =>PUP.Optional
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\Software
HKLM\SOFTWARE\SpeedBit
HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\supWindowsMangerProtect =>PUP.Optional.Fuyu
HKLM\SOFTWARE\Synaptics
HKLM\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKLM\SOFTWARE\WombatUpdater
HKLM\SOFTWARE\WordShark_1.10.0.20 =>PUP.Optional.WordShark
HKLM\SOFTWARE\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKCU\SOFTWARE\5yX4usXUWlFsUc8cMeY
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\AskPartnerNetwork =>Toolbar.Ask
HKCU\SOFTWARE\ASUS
HKCU\SOFTWARE\Axantum
HKCU\SOFTWARE\BrowserV15.07-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\calibre
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Cinema_Plus-1.2V15.07-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DT42lmw2NxfUJssJ2HzZCaX1ILi
HKCU\SOFTWARE\ECAREME
HKCU\SOFTWARE\gamesdesktop =>PUP.Optional.GamesDesktop
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\HomeTab =>PUP.Optional.CertifiedToolbar
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JJy8EFLt2qfQQ9PEQF
HKCU\SOFTWARE\Kromtech
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mine
HKCU\SOFTWARE\Mooii
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\n1a6xjdTJtCo2SkykIDWdW8WHg
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\PhotoFiltre
HKCU\SOFTWARE\PhotoFiltre 7
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Plus_HD_1.2V15.07-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\qUDnFx31iZNWoINrI4I
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\SearchProtectWS =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\SwOnuhQVfeXqSCd5crjhEmLDaG
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\TNT2 =>PUP.Optional.TidyNetwork
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\SmartWeb =>PUP.Optional.SmartWebSearch

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (139) - 9s
O43 - CFD: 2015/07/16 13:08:29 - [] D -- C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C =>PUP.Optional.CrossRider
O43 - CFD: 2015/07/15 16:22:31 - [] D -- C:\Program Files\0002C9FD-1436966648-282A-FFFF-382C4A7DFD3C =>PUP.Optional.CrossRider
O43 - CFD: 2015/07/15 16:12:33 - [] D -- C:\Program Files\0002C9FD-1436969553-282A-FFFF-382C4A7DFD3C =>PUP.Optional.CrossRider
O43 - CFD: 2015/05/13 20:19:49 - [] D -- C:\Program Files\ASUS
O43 - CFD: 2015/03/07 16:43:19 - [] D -- C:\Program Files\Axantum
O43 - CFD: 2015/05/02 23:23:16 - [] D -- C:\Program Files\Calibre2
O43 - CFD: 2015/07/16 20:52:55 - [] D -- C:\Program Files\CCleaner
O43 - CFD: 2015/07/15 20:12:07 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2014/10/12 00:28:42 - [] D -- C:\Program Files\DIFX
O43 - CFD: 2015/07/16 22:18:57 - [] D -- C:\Program Files\FriendlyError
O43 - CFD: 2015/07/16 21:39:17 - [0] D -- C:\Program Files\gmsd_fr_005010032 =>PUP.Optional.CrossRider
O43 - CFD: 2015/07/16 22:19:51 - [] D -- C:\Program Files\gmsd_fr_005010033 =>PUP.Optional.CrossRider
O43 - CFD: 2015/03/07 16:44:58 - [] D -- C:\Program Files\Google
O43 - CFD: 2014/10/12 00:21:58 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2015/02/04 23:18:36 - [] D -- C:\Program Files\Intel
O43 - CFD: 2015/07/15 15:49:57 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2015/01/02 14:44:00 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2015/01/02 14:43:57 - [] D -- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 2015/01/02 14:44:14 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 2015/01/02 14:43:36 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2015/07/11 11:04:02 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2015/07/11 11:04:02 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2014/05/13 03:30:04 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2015/01/17 16:02:06 - [] D -- C:\Program Files\PhotoScape
O43 - CFD: 2014/10/12 00:21:58 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2014/05/13 03:30:04 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2015/07/13 12:17:03 - [] RD -- C:\Program Files\Skype
O43 - CFD: 2013/08/22 09:24:44 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2015/01/12 15:02:39 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2015/05/13 23:34:28 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 2015/01/09 23:38:59 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2015/01/09 23:38:58 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2014/03/18 10:00:54 - [] D -- C:\Program Files\Windows Multimedia Platform
O43 - CFD: 2013/08/22 10:17:26 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2015/01/09 23:38:58 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 2014/03/18 10:00:54 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2013/08/22 10:17:26 - [] SHD -- C:\Program Files\Windows Sidebar
O43 - CFD: 2015/07/15 21:57:01 - [] HD -- C:\Program Files\WindowsApps
O43 - CFD: 2013/08/22 10:17:26 - [] D -- C:\Program Files\WindowsPowerShell
O43 - CFD: 2013/08/22 10:17:27 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2014/03/18 09:29:21 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/03/18 10:00:58 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/05/13 20:20:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 2015/03/07 17:04:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Axantum AxCrypt
O43 - CFD: 2015/05/02 23:23:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
O43 - CFD: 2015/07/15 20:09:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/07/16 22:19:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>PUP.Optional.GamesDesktop
O43 - CFD: 2015/03/07 16:45:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2013/08/22 10:17:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/01/02 14:44:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2015/01/17 16:55:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 2015/03/14 12:40:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Sans calques
O43 - CFD: 2015/01/17 16:01:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
O43 - CFD: 2015/05/01 16:20:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2013/08/22 10:17:27 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2014/03/18 10:00:58 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2014/03/18 09:29:21 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/07/15 15:50:36 - [] D -- C:\ProgramData\abc
O43 - CFD: 2015/02/04 23:15:22 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2015/02/04 21:30:17 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2013/08/22 09:23:42 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/10/12 00:39:20 - [] D -- C:\ProgramData\AsTouchPanel
O43 - CFD: 2014/05/12 19:43:40 - [] D -- C:\ProgramData\ASUS WebStorage
O43 - CFD: 2014/05/12 19:43:08 - [] D -- C:\ProgramData\ASUSLogos
O43 - CFD: 2015/02/04 23:17:26 - [] D -- C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
O43 - CFD: 2015/01/02 14:38:29 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2013/08/22 09:23:42 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2013/08/22 09:23:42 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/07/15 16:19:03 - [] HD -- C:\ProgramData\faw
O43 - CFD: 2015/02/04 23:18:32 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2015/04/29 09:17:30 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/01/02 14:44:49 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2014/12/25 13:07:15 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2014/10/12 00:14:28 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/07/16 21:37:13 - [0] D -- C:\ProgramData\Service1104
O43 - CFD: 2015/07/16 21:37:13 - [0] D -- C:\ProgramData\Service1291
O43 - CFD: 2015/07/13 12:17:05 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2013/08/22 09:23:42 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2013/08/22 09:23:42 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/07/16 21:37:16 - [0] D -- C:\ProgramData\TomorrowGames =>PUP.Optional.TomorrowGames
O43 - CFD: 2015/07/15 15:29:23 - [] D -- C:\ProgramData\Ugumasreblih
O43 - CFD: 2014/05/12 19:43:40 - [] D -- C:\ProgramData\WebStorage
O43 - CFD: 2015/02/04 23:17:26 - [0] D -- C:\Program Files\Common Files\Apple
O43 - CFD: 2014/12/25 12:56:56 - [] D -- C:\Program Files\Common Files\AWS
O43 - CFD: 2015/01/02 14:43:56 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 2014/10/12 00:21:57 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 2014/10/12 00:19:41 - [] D -- C:\Program Files\Common Files\Intel
O43 - CFD: 2015/01/04 16:15:37 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2013/08/22 10:17:35 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 2015/05/01 16:20:37 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 2015/01/09 23:38:58 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 2014/12/25 13:59:21 - [] D -- C:\Users\Elora\AppData\Roaming\Adobe
O43 - CFD: 2015/02/04 21:43:09 - [] D -- C:\Users\Elora\AppData\Roaming\Apple Computer
O43 - CFD: 2014/12/25 14:05:06 - [] D -- C:\Users\Elora\AppData\Roaming\awsRun
O43 - CFD: 2015/03/04 22:45:36 - [] D -- C:\Users\Elora\AppData\Roaming\calibre
O43 - CFD: 2015/07/15 20:10:11 - [] D -- C:\Users\Elora\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2015/07/15 15:57:49 - [] D -- C:\Users\Elora\AppData\Roaming\Identities
O43 - CFD: 2014/12/25 14:05:27 - [] D -- C:\Users\Elora\AppData\Roaming\Macromedia
O43 - CFD: 2015/07/15 16:02:52 - [] SD -- C:\Users\Elora\AppData\Roaming\Microsoft
O43 - CFD: 2014/12/25 15:29:40 - [] D -- C:\Users\Elora\AppData\Roaming\Mozilla
O43 - CFD: 2015/03/14 13:01:01 - [] D -- C:\Users\Elora\AppData\Roaming\PhotoFiltre
O43 - CFD: 2015/01/17 17:01:41 - [] D -- C:\Users\Elora\AppData\Roaming\PhotoFiltre 7
O43 - CFD: 2015/07/15 20:10:11 - [0] D -- C:\Users\Elora\AppData\Roaming\PhotoScape
O43 - CFD: 2015/07/16 22:18:04 - [] D -- C:\Users\Elora\AppData\Roaming\Skype
O43 - CFD: 2014/12/25 14:04:56 - [] D -- C:\Users\Elora\AppData\Roaming\WebStorage
O43 - CFD: 2015/07/16 22:22:24 - [] D -- C:\Users\Elora\AppData\Roaming\ZHP
O43 - CFD: 2014/12/27 18:48:28 - [0] D -- C:\Users\Elora\AppData\Local\Adobe
O43 - CFD: 2015/02/04 21:29:48 - [] D -- C:\Users\Elora\AppData\Local\Apple
O43 - CFD: 2015/02/04 21:31:38 - [] D -- C:\Users\Elora\AppData\Local\Apple Computer
O43 - CFD: 2014/12/25 13:56:43 - [0] SHD -- C:\Users\Elora\AppData\Local\Application Data
O43 - CFD: 2015/02/21 22:53:52 - [0] D -- C:\Users\Elora\AppData\Local\calibre-cache
O43 - CFD: 2015/01/20 18:22:59 - [] D -- C:\Users\Elora\AppData\Local\dcf92782-1427-421b-aae7-c11b11faad29
O43 - CFD: 2015/07/04 12:20:04 - [0] D -- C:\Users\Elora\AppData\Local\Diagnostics
O43 - CFD: 2015/01/11 15:38:49 - [] SHD -- C:\Users\Elora\AppData\Local\EmieBrowserModeList
O43 - CFD: 2014/12/25 14:05:24 - [] SHD -- C:\Users\Elora\AppData\Local\EmieSiteList
O43 - CFD: 2014/12/25 14:05:24 - [] SHD -- C:\Users\Elora\AppData\Local\EmieUserList
O43 - CFD: 2015/07/16 22:19:53 - [] D -- C:\Users\Elora\AppData\Local\gmsd_fr_005010032 =>PUP.Optional.CrossRider
O43 - CFD: 2015/07/16 22:19:54 - [] D -- C:\Users\Elora\AppData\Local\gmsd_fr_005010033 =>PUP.Optional.CrossRider
O43 - CFD: 2015/03/07 16:45:22 - [] D -- C:\Users\Elora\AppData\Local\Google
O43 - CFD: 2014/12/25 13:56:43 - [0] SHD -- C:\Users\Elora\AppData\Local\Historique
O43 - CFD: 2014/12/27 18:59:48 - [] D -- C:\Users\Elora\AppData\Local\Macromedia
O43 - CFD: 2015/07/15 15:57:48 - [] D -- C:\Users\Elora\AppData\Local\Microsoft
O43 - CFD: 2015/01/28 23:31:57 - [] D -- C:\Users\Elora\AppData\Local\Microsoft Help
O43 - CFD: 2014/12/25 15:29:41 - [] D -- C:\Users\Elora\AppData\Local\Mozilla
O43 - CFD: 2015/05/01 16:18:05 - [] D -- C:\Users\Elora\AppData\Local\Packages
O43 - CFD: 2014/12/27 00:14:20 - [] D -- C:\Users\Elora\AppData\Local\Programs
O43 - CFD: 2015/05/01 16:20:45 - [] D -- C:\Users\Elora\AppData\Local\Skype
O43 - CFD: 2015/07/16 22:18:21 - [] D -- C:\Users\Elora\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
O43 - CFD: 2015/07/16 22:22:38 - [] D -- C:\Users\Elora\AppData\Local\Temp
O43 - CFD: 2014/12/25 13:56:43 - [0] SHD -- C:\Users\Elora\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/02/12 23:54:29 - [] D -- C:\Users\Elora\AppData\Local\VirtualStore
O43 - CFD: 2014/03/18 10:00:58 - [] RD -- C:\Users\Elora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2013/08/22 10:17:27 - [] RD -- C:\Users\Elora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/16 21:42:13 - [] RD -- C:\Users\Elora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2013/08/22 10:17:27 - [] D -- C:\Users\Elora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/01/17 16:55:20 - [0] D -- C:\Users\Elora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 2015/03/14 12:40:47 - [0] D -- C:\Users\Elora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Sans calques
O43 - CFD: 2015/07/16 22:18:21 - [] RD -- C:\Users\Elora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/05/13 04:33:32 - [] RD -- C:\Users\Elora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

---\\ Liste des pilotes du système (SDL) (O58) (59) - 5s
O58 - SDL:2013/08/22 07:33:26 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [86368]
O58 - SDL:2013/08/22 07:33:25 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [773472]
O58 - SDL:2013/06/18 14:35:24 A . (.LSI Corp - SoftModem Device Driver.) -- C:\Windows\System32\drivers\AGRSM.sys [1035776]
O58 - SDL:2013/08/22 07:33:25 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [72544]
O58 - SDL:2013/08/22 07:33:26 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [215392]
O58 - SDL:2013/08/22 07:33:24 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22880]
O58 - SDL:2013/08/22 07:33:26 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [101728]
O58 - SDL:2013/10/08 03:47:18 A . (.ASUS - HID driver for ASUS Wireless Radio Control.) -- C:\Windows\System32\drivers\AsHIDSwitch.sys [17720]
O58 - SDL:2014/04/08 19:08:54 A . (.ASUS Corporation - Asus TP Filter Driver (x86).) -- C:\Windows\System32\drivers\AsusHID.sys [68888]
O58 - SDL:2013/07/18 17:53:33 A . (.ASIX Electronics Corp. - ASIX AX88772/AX88772A/AX88772B/AX88772C Net.) -- C:\Windows\System32\drivers\ax88772.sys [97896]
O58 - SDL:2014/04/07 11:51:54 A . (.Broadcom Corp - Broadcom SDIO WiFi Driver wireless driver.) -- C:\Windows\System32\drivers\bcmdhd63.sys [305368]
O58 - SDL:2014/04/07 11:51:50 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [16088]
O58 - SDL:2014/10/12 00:24:41 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\Windows\System32\drivers\btwampfl.sys [144600]
O58 - SDL:2014/10/12 00:24:41 A . (.Broadcom Corporation. - Bluetooth Serial Bus Driver.) -- C:\Windows\System32\drivers\BtwSerialBus.sys [130776]
O58 - SDL:2013/12/02 13:42:42 A . (.Intel Corporation - Intel(R) Imaging Signal Processor 2400.) -- C:\Windows\System32\drivers\camera.sys [345088]
O58 - SDL:2013/09/06 14:25:18 A . (.Capella Microsystems, Inc. - Capella Micro Sensor Filter Driver.) -- C:\Windows\System32\drivers\CPLMACPI.sys [16488]
O58 - SDL:2014/03/18 18:04:40 A . (.Intel Corporation - Intel Dynamic Platform & Thermal Framework.) -- C:\Windows\System32\drivers\DptfDevDisplay.sys [28112]
O58 - SDL:2014/03/18 18:04:40 A . (.Intel Corporation - Intel Dynamic Platform & Thermal Framework.) -- C:\Windows\System32\drivers\DptfDevGen.sys [36304]
O58 - SDL:2014/03/18 18:04:40 A . (.Intel Corporation - Intel Dynamic Platform & Thermal Framework.) -- C:\Windows\System32\drivers\DptfDevPower.sys [25552]
O58 - SDL:2014/03/18 18:04:40 A . (.Intel Corporation - Intel Dynamic Platform & Thermal Framework.) -- C:\Windows\System32\drivers\DptfDevProc.sys [80848]
O58 - SDL:2014/03/18 18:04:40 A . (.Intel Corporation - Intel Dynamic Platform & Thermal Framework.) -- C:\Windows\System32\drivers\DptfManager.sys [181712]
O58 - SDL:2013/06/18 14:21:30 A . (.Intel Corporation - Intel(R) Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\System32\drivers\e1i6332.sys [379904]
O58 - SDL:2013/08/22 07:33:29 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [56672]
O58 - SDL:2013/07/23 23:18:30 A . (.Intel Corporation - Intel(R) Atom(TM) Processor GPIO Controller.) -- C:\Windows\System32\drivers\iaiogpio.sys [22016]
O58 - SDL:2014/03/18 18:04:40 A . (.Intel Corporation - GPIO Controller Driver E.) -- C:\Windows\System32\drivers\iaiogpioe.sys [23552]
O58 - SDL:2014/03/18 18:04:40 A . (.Intel Corporation - GPIOVirtual Controller Driver.) -- C:\Windows\System32\drivers\iaiogpiovirtual.sys [16896]
O58 - SDL:2013/07/23 23:18:30 A . (.Intel Corporation - Intel(R) Atom(TM) Processor I2C Controller.) -- C:\Windows\System32\drivers\iaioi2c.sys [61936]
O58 - SDL:2014/03/18 18:04:40 A . (.Intel Corporation - I2C Controller Driver E.) -- C:\Windows\System32\drivers\iaioi2ce.sys [58368]
O58 - SDL:2014/03/18 18:04:40 A . (.Intel Corporation - UART Controller Driver.) -- C:\Windows\System32\drivers\iaiouart.sys [87552]
O58 - SDL:2013/12/16 04:13:40 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x86.) -- C:\Windows\System32\drivers\iaStorA.sys [489832]
O58 - SDL:2013/08/10 02:39:44 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\Windows\System32\drivers\iaStorAV.sys [524784]
O58 - SDL:2013/08/22 07:33:29 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [333664]
O58 - SDL:2014/06/10 05:48:54 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys [2990592]
O58 - SDL:2014/05/07 00:39:17 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\intelaud.sys [32152]
O58 - SDL:2014/04/03 10:07:52 A . (.Intel(R) Corporation - Intel(R) SST Audio Driver.) -- C:\Windows\System32\drivers\isstrtc.sys [259584]
O58 - SDL:2014/05/07 00:39:17 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\iwdbus.sys [23448]
O58 - SDL:2013/08/22 07:33:29 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [94048]
O58 - SDL:2013/08/22 07:33:30 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [79712]
O58 - SDL:2013/08/22 07:33:30 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3.sys [68960]
O58 - SDL:2013/08/22 07:33:29 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [69472]
O58 - SDL:2014/03/18 18:04:40 A . (.Intel Corporation - MBI driver.) -- C:\Windows\System32\drivers\MBI.sys [21456]
O58 - SDL:2013/08/22 07:33:30 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [51552]
O58 - SDL:2013/08/22 07:33:29 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [464736]
O58 - SDL:2013/12/02 13:42:42 A . (.Intel Corporation - Camera Sensor MT9M114.) -- C:\Windows\System32\drivers\mt9m114.sys [38912]
O58 - SDL:2013/08/22 07:33:32 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [58208]
O58 - SDL:2013/06/18 14:22:48 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\Netwsn00.sys [10372096]
O58 - SDL:2013/08/22 07:33:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [120160]
O58 - SDL:2013/08/22 07:33:33 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [141664]
O58 - SDL:2014/03/18 18:04:40 A . (.Intel Corporation - BayTrail PMIC driver.) -- C:\Windows\System32\drivers\PMIC.sys [48128]
O58 - SDL:2014/03/14 07:07:12 A . (.Realtek Semiconductor Corp. - Realtek I2S Audio Codec Device Driver.) -- C:\Windows\System32\drivers\rtii2sac.sys [169176]
O58 - SDL:2013/08/22 10:16:47 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480]
O58 - SDL:2013/08/22 07:32:56 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [41312]
O58 - SDL:2013/08/22 07:32:57 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [79200]
O58 - SDL:2013/08/22 07:32:57 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [26976]
O58 - SDL:2014/03/18 18:04:38 A . (.Intel Corporation - Intel(R) Trusted Execution Engine Interface.) -- C:\Windows\System32\drivers\TXEI.sys [75792]
O58 - SDL:2014/08/15 23:35:00 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl.sys [45056]
O58 - SDL:2013/08/22 07:33:00 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [18272]
O58 - SDL:2013/08/22 07:33:01 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\System32\drivers\vsmraid.sys [148832]
O58 - SDL:2013/08/22 07:33:01 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [276832]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (29) - 70s
O61 - LFC: 2015/07/16 22:18:22 A . (.SoftBrain Technologies Ltd..) -- C:\Users\Elora\AppData\Local\SmartWeb\__u.exe [172673] =>PUP.Optional.SmartWebSearch
O61 - LFC: 2015/07/16 11:47:46 A . (.Newtonsoft.) -- C:\Users\Elora\AppData\Local\Packages\Facebook.Facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0_32\NativeImages\Newtonsoft.Json\6046097c9c4550ab5ff4899d6a61a86c\Newtonsoft.Json.ni.dll [1943040]
O61 - LFC: 2015/07/16 11:47:02 A . (.Copyright © 2013.) -- C:\Users\Elora\AppData\Local\Packages\Facebook.Facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0_32\NativeImages\Facebook.Ba70e54e13#\91b3db4d718a5ffdd988be78d680d0d3\Facebook.BackgroundTasks.ni.dll [93696]
O61 - LFC: 2015/07/16 11:47:05 A . (.Copyright © 2013.) -- C:\Users\Elora\AppData\Local\Packages\Facebook.Facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0_32\NativeImages\Facebook-Win8-Base\8cf354085d09f9b9b07ae3295d8a18ca\Facebook-Win8-Base.ni.dll [809984]
O61 - LFC: 2015/07/16 11:47:15 A . (.Copyright © 2013.) -- C:\Users\Elora\AppData\Local\Packages\Facebook.Facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0_32\NativeImages\Facebook-Services\465373c01a47e24d8c33de02fb2da1c2\Facebook-Services.ni.dll [4377088]
O61 - LFC: 2015/07/16 11:47:17 A . (.Copyright © 2013.) -- C:\Users\Elora\AppData\Local\Packages\Facebook.Facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0_32\NativeImages\Facebook-Models\b01b19650739362989b561b39768a632\Facebook-Models.ni.dll [846848]
O61 - LFC: 2015/07/16 11:47:07 A . (.Copyright © 2013.) -- C:\Users\Elora\AppData\Local\Packages\Facebook.Facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0_32\NativeImages\Facebook-Base\475af88587edff7a8ce6f1234d578831\Facebook-Base.ni.dll [448000]
O61 - LFC: 2015/07/16 11:47:35 A . (.Copyright © 2013.) -- C:\Users\Elora\AppData\Local\Packages\Facebook.Facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0_32\NativeImages\Facebook\af5083861c9ad000d410a3dda785d867\Facebook.ni.exe [8316928]
O61 - LFC: 2015/07/16 11:47:39 A . (.Tim Heuer.) -- C:\Users\Elora\AppData\Local\Packages\Facebook.Facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0_32\NativeImages\Callisto\a6042657ba4d2c5bd9bcf66e0eba8c57\Callisto.ni.dll [598016]
O61 - LFC: 2015/07/16 11:47:42 A . (..) -- C:\Users\Elora\AppData\Local\Packages\Facebook.Facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0_32\NativeImages\Bing.Maps\131b54c9faf645b7f302b2b172090eb7\Bing.Maps.ni.dll [968192]
O61 - LFC: 2015/07/16 11:47:19 A . (.Autofac Project - http://autofac.org.) -- C:\Users\Elora\AppData\Local\Packages\Facebook.Facebook_8xx8rvfyw5nnt\AC\Microsoft\CLR_v4.0_32\NativeImages\Autofac\dbbf6d11fe928acf3908ece3253d4029\Autofac.ni.dll [742400]
O61 - LFC: 2015/07/16 22:17:47 A . (..) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\T6N0L0OB\SearchUpdater[1].exe [97243]
O61 - LFC: 2015/07/16 22:22:11 A . (..) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\T6N0L0OB\VuuPC_VO2_8907[1].exe [229112] =>PUP.Optional.VuuPC
O61 - LFC: 2015/07/16 22:18:24 A . (..) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\T6N0L0OB\wswr[1].exe [67299]
O61 - LFC: 2015/07/16 22:17:41 A . (..) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\HBEHYRYS\5HpgJcKfJ[1].exe [205140]
O61 - LFC: 2015/07/16 22:20:06 A . (..) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\HBEHYRYS\FinalInstaller_dotnet4[1].exe [3001344]
O61 - LFC: 2015/07/16 22:18:30 A . (..) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\HBEHYRYS\FriendlyError_s3[1].exe [263680]
O61 - LFC: 2015/07/16 22:22:00 A . (..) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\HBEHYRYS\policyname[1].exe [57110]
O61 - LFC: 2015/07/16 22:18:28 A . (..) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\HBEHYRYS\setup[1].exe [123469]
O61 - LFC: 2015/07/16 22:20:02 A . (..) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\HBEHYRYS\setup_362[1].exe [254464]
O61 - LFC: 2015/07/16 22:19:02 A . (..) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\GXNHWHRU\setup_gmsd_fr[1].exe [5779696]
O61 - LFC: 2015/07/16 22:17:55 A . (.SoftBrain Technologies Ltd..) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\GXNHWHRU\SmartWebInstaller[1].exe [759544] =>PUP.Optional.SmartWebSearch
O61 - LFC: 2015/07/16 22:22:43 A . (.CMI Limited.) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\BJGJW388\AnyProtectSetup[1].exe [613255] =>PUP.Optional.AnyProtect
O61 - LFC: 2015/07/16 22:17:40 A . (..) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\BJGJW388\cmmdWriter[1].exe [41444]
O61 - LFC: 2015/07/16 22:17:51 A . (.Copyright 2013.) -- C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\BJGJW388\Validate[1].exe [61981]
O61 - LFC: 2015/07/16 22:17:43 A . (..) -- C:\Users\Elora\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2015/07/13 10:14:22 A . (..) -- C:\Users\Elora\AppData\Local\Google\Chrome\User Data\PepperFlash\18.0.0.209\pepflashplayer.dll [16307888]
O61 - LFC: 2015/07/16 16:27:50 A . (..) -- C:\Users\Elora\AppData\Local\gmsd_fr_005010033\upgmsd_fr_005010033.exe [3294128] =>PUP.Optional.CrossRider
O61 - LFC: 2015/07/15 17:17:19 A . (..) -- C:\Users\Elora\AppData\Local\gmsd_fr_005010032\upgmsd_fr_005010032.exe [3298960] =>PUP.Optional.CrossRider

---\\ Associations Shell Spawning (O67) (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

---\\ Menu de démarrage Internet (SMI) (O68) (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (15) - 14s
O69 - SBI: prefs.js [Elora - bqxaei0r.default] user_pref("browser.search.defaultenginename", "oursurfing"); =>PUP.Optional.OurSurfing
O69 - SBI: prefs.js [Elora - bqxaei0r.default] user_pref("browser.search.searchengine.alias", "oursurfing"); =>PUP.Optional.OurSurfing
O69 - SBI: prefs.js [Elora - bqxaei0r.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Elora - bqxaei0r.default] user_pref("browser.search.searchengine.iconURL", "http://www.oursurfing.com/web/favicon.ico"); =>PUP.Optional.OurSurfing
O69 - SBI: prefs.js [Elora - bqxaei0r.default] user_pref("browser.search.searchengine.name", "oursurfing"); =>PUP.Optional.OurSurfing
O69 - SBI: prefs.js [Elora - bqxaei0r.default] user_pref("browser.search.searchengine.ptid", "buzz"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Elora - bqxaei0r.default] user_pref("browser.search.searchengine.uid", "3219913727_198264_749E63CF"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Elora - bqxaei0r.default] user_pref("browser.search.searchengine.url", "http://www.oursurfing.com/web/?type=dspp&ts=1437037786&z=ccd7cf08615f533e21574fcgfzb[...] =>PUP.Optional.OurSurfing
O69 - SBI: prefs.js [Elora - bqxaei0r.default] user_pref("browser.search.selectedEngine", "oursurfing"); =>PUP.Optional.OurSurfing
O69 - SBI: prefs.js [Elora - bqxaei0r.default] user_pref("browser.startup.homepage", "http://www.oursurfing.com/?type=hppp&ts=1437037786&z=ccd7cf08615f533e21574fcgfzbc4mce8cem6m[...] =>PUP.Optional.OurSurfing
O69 - SBI: prefs.js [Elora - bqxaei0r.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [Elora - bqxaei0r.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} - (e) - http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} - (Google) - http://www.oursurfing.com/ =>PUP.Optional.OurSurfing

---\\ Enumère les services démarrés par Svchost (SSS) (O83) (34) - 2s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [160768]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [128512]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [128512]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [244736]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1161216]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [731648]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [808448]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [23040]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [89600]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [116224]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [91136]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [976384]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [174592]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [73728]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [105984]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [187904]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [280576]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [59392]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [75776]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1203200]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [357376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [299008]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [165376]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [141312]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [93696]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [457216]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [177664]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [54784]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [380928]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [248320]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3062784]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [801792]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [564736]

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) (16) - 23s
SR - Auto [2013/09/09 11:05:10] [ 103224] ASUS HID Access Service (AsHidService) . (.ASUSTek Computer Inc..) - C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe
SR - Auto [2014/03/26 16:24:44] [ 115512] ASLDR Service (ASLDRService) . (.ASUSTek Computer Inc..) - C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
SR - Auto [2014/02/25 06:00:18] [ 71680] (Asus WebStorage Windows Service) . (.ASUS Cloud Corporation.) - C:\Program Files\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe
SR - Auto [2011/11/21 15:19:50] [ 96896] ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
SS - Auto [2014/10/12 00:24:41] [ 1677016] @oem26.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Driver Managem (BcmBtRSupport) . (.Broadcom Corporation..) - C:\Windows\System32\BtwRSupportService.exe
SR - Auto [2014/03/18 18:04:40] [ 83408] @oem17.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAM (DptfParticipantProcessorService) . (.Intel Corporation.) - C:\Windows\System32\DptfParticipantProcessorService.exe
SR - Auto [2014/03/18 18:04:40] [ 97232] @oem17.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME (DptfPolicyCriticalService) . (.Intel Corporation.) - C:\Windows\System32\DptfPolicyCriticalService.exe
SR - Auto [2014/03/18 18:04:40] [ 90576] @oem17.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Int (DptfPolicyLpmService) . (.Intel Corporation.) - C:\Windows\System32\DptfPolicyLpmService.exe
SR - Auto [2015/07/15 15:18:18] [ 417792] faw (faw) . (...) - c:\Windows\faw.exe
SR - Auto [2014/06/10 05:56:20] [ 277320] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe
SR - Auto [2015/07/16 12:32:00] [ 329216] Forename Crash (kyjerexu) . (...) - C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C\knso3B55.tmp
SR - Auto [2015/07/15 15:18:19] [ 408576] mfaw (mfaw) . (...) - c:\Windows\mfaw.exe
SS - Demand [2015/07/09 19:56:43] [ 148136] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SS - Auto [2015/06/03 16:42:38] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SR - Auto [2015/07/15 15:22:44] [ 165376] Encyclopaedia Enter (vicoqudu) . (...) - C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C\hnso40F1.tmp
SR - Auto [2015/07/15 15:22:38] [ 199168] Typewriter High Resolution (zejytose) . (...) - C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C\jnsv2A6A.tmp

---\\ Scan Additionnel (O88) (63) - 0s
C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C\knso3B55.tmp =>PUP.Optional.CrossRider
C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C\hnso40F1.tmp =>PUP.Optional.CrossRider
C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C\jnsv2A6A.tmp =>PUP.Optional.CrossRider
C:\Users\Elora\AppData\Local\gmsd_fr_005010032\upgmsd_fr_005010032.exe =>PUP.Optional.CrossRider
C:\Users\Elora\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
C:\Users\Elora\AppData\Local\SmartWeb\SmartWebApp.exe =>PUP.Optional.SmartWebSearch
C:\Users\Elora\AppData\Local\gmsd_fr_005010033\upgmsd_fr_005010033.exe =>PUP.Optional.CrossRider
C:\Program Files\gmsd_fr_005010033\gmsd_fr_005010033.exe =>PUP.Optional.CrossRider
C:\Users\Elora\AppData\Local\Google\Chrome\User Data\Default\Extensions\innoehnefnhjogaadolaeoihbndgghhg
HKLM\SYSTEM\CurrentControlSet\Services\kyjerexu =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\vicoqudu =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\zejytose =>PUP.Optional.CrossRider
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_fr_005010032_is1 =>PUP.Optional.GamesDesktop
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_fr_005010033_is1 =>PUP.Optional.GamesDesktop
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SmartWeb =>PUP.Optional.SmartWebSearch
HKLM\SOFTWARE\AskPartnerNetwork =>Toolbar.Ask
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\GAMESDESKTOP =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\searchult =>PUP.Optional
HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\supWindowsMangerProtect =>PUP.Optional.Fuyu
HKLM\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKLM\SOFTWARE\WordShark_1.10.0.20 =>PUP.Optional.WordShark
HKLM\SOFTWARE\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AskPartnerNetwork =>Toolbar.Ask
HKCU\SOFTWARE\BrowserV15.07-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Cinema_Plus-1.2V15.07-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\gamesdesktop =>PUP.Optional.GamesDesktop
HKCU\SOFTWARE\HomeTab =>PUP.Optional.CertifiedToolbar
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Plus_HD_1.2V15.07-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SearchProtectWS =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\TNT2 =>PUP.Optional.TidyNetwork
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\AppDataLow\Software\SmartWeb =>PUP.Optional.SmartWebSearch =>PUP.Optional.SmartWebSearch
C:\Program Files\0002C9FD-1436966521-282A-FFFF-382C4A7DFD3C =>PUP.Optional.CrossRider
C:\Program Files\0002C9FD-1436966648-282A-FFFF-382C4A7DFD3C =>PUP.Optional.CrossRider
C:\Program Files\0002C9FD-1436969553-282A-FFFF-382C4A7DFD3C =>PUP.Optional.CrossRider
C:\Program Files\gmsd_fr_005010032 =>PUP.Optional.CrossRider
C:\Program Files\gmsd_fr_005010033 =>PUP.Optional.CrossRider
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>PUP.Optional.GamesDesktop
C:\ProgramData\TomorrowGames =>PUP.Optional.TomorrowGames
C:\Users\Elora\AppData\Local\gmsd_fr_005010032 =>PUP.Optional.CrossRider
C:\Users\Elora\AppData\Local\gmsd_fr_005010033 =>PUP.Optional.CrossRider
C:\Users\Elora\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
C:\Users\Elora\AppData\Local\SmartWeb\__u.exe =>PUP.Optional.SmartWebSearch
C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\T6N0L0OB\VuuPC_VO2_8907[1].exe =>PUP.Optional.VuuPC
C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\GXNHWHRU\SmartWebInstaller[1].exe =>PUP.Optional.SmartWebSearch
C:\Users\Elora\AppData\Local\Microsoft\Windows\INetCache\IE\BJGJW388\AnyProtectSetup[1].exe =>PUP.Optional.AnyProtect

---\\ Récapitulatif des éléments trouvées sur votre station (31) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/pup-smartwebsearch/ =>PUP.Optional.SmartWebSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.Sambreel
http://www.nicolascoolman.fr/blog =>PUP.Optional.OurSurfing
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowse
http://www.nicolascoolman.fr/pup-anyprotect/ =>PUP.Optional.AnyProtect
http://www.nicolascoolman.fr/blog =>PUP.Optional.BidailySync
http://www.nicolascoolman.fr/blog =>PUP.Optional.FlashBeat
http://www.nicolascoolman.fr/blog =>PUP.Optional.TomorrowGames
http://www.nicolascoolman.fr/blog =>PUP.Optional.GamesDesktop
http://www.nicolascoolman.fr/toolbar-ask/ =>Toolbar.Ask
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/blog =>PUP.Optional.SweetSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.AgentODR
http://www.nicolascoolman.fr/adware-imbooster/ =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/pup-searchprotect/ =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/blog =>PUP.Optional
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/trojan-fuyu/ =>PUP.Optional.Fuyu
http://www.nicolascoolman.fr/spyware-agenceexclusive/ =>PUP.Optional.AgenceExclusive
http://www.nicolascoolman.fr/pup-wajam/ =>PUP.Optional.Wajam
http://www.nicolascoolman.fr/pup-wordshark/ =>PUP.Optional.WordShark
http://www.nicolascoolman.fr/blog =>PUP.Optional.WordSurfer
http://www.nicolascoolman.fr/pup-certifiedtoolbar/ =>PUP.Optional.CertifiedToolbar
http://www.nicolascoolman.fr/pup-linkeysearch/ =>PUP.Optional.LinkeySearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.SimplyTech
http://www.nicolascoolman.fr/adware-tidynetwork/ =>PUP.Optional.TidyNetwork
http://www.nicolascoolman.fr/blog =>PUP.Optional.MaxComputerCleaner
http://www.nicolascoolman.fr/pup-vuupc/ =>PUP.Optional.VuuPC
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart

~ End of the scan, 30831 items in 157 seconds (753)(0)()

Publicité


Signaler le contenu de ce document

Publicité