cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.7.18.95 Par Nicolas Coolman (2015/07/18)
~ Démarré par aa (Administrator) (2015/07/18 23:08:12)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\aa\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\aa\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
~ Windows 7, 32-bit Service Pack 1 (Build 7601)

---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v43.0.2357.134
MFIE: Mozilla Firefox 37.0.2 (x86 fr) v37.0.2
MSIE: Internet Explorer v8.0.7601.17514

---\\ Informations sur les produits Windows (3) - 1s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection (1) - 1s
Avast Internet Security v10.0.2208

---\\ Surveillance de Logiciels (1) - 1s
Adobe Flash Player 15 Plugin

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3135.928 MB (45% free)
~ System Restore: Activé (Enable)
~ System drive C: has 1 GB free of 22 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: AA-PC
~ User Name: aa
~ Logged in as Administrator

---\\ Enumération des unités disques (9) - 0s
~ Drive C: has 1 GB free of 22 GB (System)
~ Drive D: has 1 GB free of 26 GB
~ Drive E: has 1 GB free of 49 GB
~ Drive F: has 0 GB free of 46 GB
~ Drive G: has 0 GB free of 3 GB
~ Drive H: has 1 GB free of 49 GB
~ Drive I: has 1 GB free of 56 GB
~ Drive J: has 1 GB free of 49 GB
~ Drive L: has GB free of 0 GB

---\\ Recherche particulière de fichiers génériques (24) - 1s
[MD5.40D777B7A95E00593EB1568C68514493] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2616320]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [96256]
[MD5.44214C94911C7CFB1D52CB64D5E8368D] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [980992]
[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [286720]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [193536]
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480]
[MD5.1151FD4FB0216CFED887BFDE29EBD516] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [101888]
[MD5.B272B4C3E085EA860C12F2E4FAF2FFA2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [123904]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [187904]
[MD5.33C3093D09017CFE2E219F2472BFF6EB] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1211264]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [78848]
[MD5.B973FCFC50DC1434E1970A146F7E3885] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [133632]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [71168]
[MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [74752]
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [245632]

---\\ Processus lancés (22) - 2s
[MD5.73AF96CA54768950A041F874A2157561] - (.Arcai.com - Arp Intelligent Protection Service.) -- C:\Program Files\netcut\services\aips.exe [245760] [PID.1408]
[MD5.E3F7EC811923F3F1A77B185F22638E5E] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344] [PID.1656]
[MD5.AEF87CABE75D04705D14AB4811F6C2DF] - (.Windows SysTool - Windows SysTool.) -- C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [487424] [PID.2016] =>PUP.Optional.Fuyu
[MD5.D25195B0A2075862E988B85161DF07FD] - (.AVAST Software - avast! firewall service.) -- C:\Program Files\AVAST Software\Avast\afwServ.exe [104416] [PID.1012]
[MD5.4AD35F0BF43226D3A221D3807E4B9EB9] - (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE [336992] [PID.1540]
[MD5.B8932ED1F25A64DCE8F9A6D196876B40] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7858720] [PID.1600]
[MD5.5EF3427AE503B5C03A48F7C9FF458B69] - (.Copyright (C) 2008 - DCSHOST.) -- C:\ProgramData\DatacardService\HWDeviceService.exe [271712] [PID.1860]
[MD5.CD1E5D4A542093EEA2E8C2BAF389DF6B] - (.XTab system - ProtectSvc.exe.) -- C:\Program Files\XTab\ProtectService.exe [157824] [PID.1508] =>PUP.Optional.MiuiTab
[MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.1800]
[MD5.021136D41752FC28775FDFAC6B2F5EF3] - (.FileProperties_CompanyName - FileProperties_FileDescription.) -- C:\Program Files\Sense\Sense-nova.exe [1256448] [PID.2160] =>PUP.Optional.CrossRider
[MD5.695BE0A3D240FFF4B876D9289110634A] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [5227648] [PID.2276]
[MD5.1FC71A719B45A6A90BAFE2387EA07984] - (.Copyright (C) 2010 - HSDPALauncher MFC Application.) -- C:\Program Files\HSPA USB Modem\HSPALauncher.exe [233472] [PID.2284]
[MD5.BBFCAC1C23B867AE5D7EF96DF40680C5] - (.Realtek - RtlService MFC Application.) -- C:\Program Files\Realtek\RTL8187 Wireless LAN Utility\RtlService.exe [40960] [PID.2304]
[MD5.D1D1103F9E8A6233A9D533074F06362F] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3890768] [PID.2312]
[MD5.66F39EB030F69731FD2731D83D6A3DBD] - (.Realtek Semiconductor Corp. - RtWLan ( For Vista / Win7) Application(Exte.) -- C:\Program Files\Realtek\RTL8187 Wireless LAN Utility\RtWLan.exe [1118208] [PID.2388]
[MD5.BF4392AEE06302966316F8C87AF50346] - (.ShopperPro - ShopperPro Update Service.) -- C:\Program Files\Common Files\ShopperPro\spbiu.exe [1813504] [PID.2396] =>PUP.Optional.ShopperPro
[MD5.432F4E8794A2EA8A64E4C75EA80B790E] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\aa\AppData\Roaming\uTorrent\uTorrent.exe [1694560] [PID.2404]
[MD5.1B1DBE2DCD419EE84FA86776CAC8E00F] - (.Copyright (C) 2013 - ProgLauncher Application.) -- C:\Program Files\ProgDVB\ProgLauncher.exe [381888] [PID.2432]
[MD5.6354FF478451DC33755FFAEA5163EABB] - (.GOOBZO - .) -- C:\Program Files\YouTube Accelerator\YouTubeAcceleratorService.exe [1510248] [PID.2568] =>PUP.Optional.Goobzo
[MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.2592]
[MD5.CB06FE3953AB326180372D3931E83B86] - (...) -- C:\Program Files\MobiConnect\MobiConnect.exe [100352] [PID.2624]
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe [269848] [PID.3068]

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) (12) - 1s
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [eofcbnmajmjmplflapaojjnihcjkigck] Avast SafePrice
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (22) - 1s
M0 - MFSP: prefs.js [aa - gyh20x6l.default] http://www.delta-homes.com/?type=hp&ts=1432908715&z=a7db8587fff8a5442a408c2g6z6c5oft2e5b8m7e2z&from=wpm052932&uid=SAMSUNGXHD322HJ_S17AJ90Z501390 =>PUP.Optional.Qvo6
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\omniboxes.xml =>PUP.Optional.Omniboxes
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT: (.lightningnewtab.com - QuickSearch.) -- C:\Users\aa\AppData\Roaming\Mozilla\Firefox\Profiles\gyh20x6l.default\extensions\quick_searchff@gmail.com =>PUP.Optional.QuickSearch
P2 - EXT: (.lipton - Search Enginer.) -- C:\Users\aa\AppData\Roaming\Mozilla\Firefox\Profiles\gyh20x6l.default\extensions\sweetsearch@gmail.com =>PUP.Optional.SweetSearch
P2 - EXT: (.Goobzo - Youtube Accelerator Helper.) -- C:\Users\aa\AppData\Roaming\Mozilla\Firefox\Profiles\gyh20x6l.default\extensions\{4C59F3E5-BBD0-4344-8DD2-30866FA0B31E} =>PUP.Optional.Goobzo
P2 - EXT: (.Goobzo - Shopper-Pro.) -- C:\Users\aa\AppData\Roaming\Mozilla\Firefox\Profiles\gyh20x6l.default\extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF} =>PUP.Optional.Goobzo
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_15_0_0_189.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf] - (.Foxit Software Company.) -- C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.1] - (.VideoLAN.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.5] - (.VideoLAN.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.2.0] - (.VideoLAN.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (12) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/ =>PUP.Optional.Qvo6
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/ =>PUP.Optional.Qvo6
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/ =>PUP.Optional.Qvo6
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/ =>PUP.Optional.Qvo6
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/ =>PUP.Optional.Qvo6
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/ =>PUP.Optional.Omniboxes
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/ =>PUP.Optional.Qvo6
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/ =>PUP.Optional.Omniboxes
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Proxy Management (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object de navigateur (BHO) (O2) (7) - 0s
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: CrossriderApp0035510 - {11111111-1111-1111-1111-110311551110} . (.iWebar - iWebar BHO.) -- C:\Program Files\iWebar\iWebar-bho.dll =>PUP.Optional.CrossRider
O2 - BHO: CrossriderApp0048292 - {11111111-1111-1111-1111-110411821192} . (.Object Browser - Sense BHO.) -- C:\Program Files\Sense\Sense-bho.dll =>PUP.Optional.CrossRider
O2 - BHO: LuckyTab Class - {51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F} . (.Thinknice Co. Limited - SupTab setup package.) -- C:\Program Files\XTab\SupTab.dll =>PUP.Optional.LuckyTab
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: ShopperProBHO - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} . (.Goobzo Ltd. - ShopperPro Extension.) -- C:\ProgramData\ShopperPro\ShopperPro.dll =>PUP.Optional.ShopperPro
O2 - BHO: YTAHelperBHO - {FCE3FA8B-BA81-467C-81D8-E43C00D1BC71} . (.Goobzo Ltd. - YTAHelper Extension.) -- C:\ProgramData\YTAHelper\YTAHelper.dll =>PUP.Optional.Goobzo

---\\ Applications lancées au démarrage du sytème (O4) (19) - 1s
O4 - HKLM\..\Run: [PWRISOVM.EXE] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe
O4 - HKLM\..\Run: [SPDriver] C:\Program Files\ShopperPro\JSDriver\1.42.0.1762\jsdrv.exe (.not file.) =>PUP.Optional.ShopperPro
O4 - HKLM\..\Run: [HSPALauncher] . (.Copyright (C) 2010 - HSDPALauncher MFC Application.) -- C:\Program Files\HSPA USB Modem\HSPALauncher.exe
O4 - HKCU\..\Run: [EpicScale] (Orphean) =>PUP.Optional.EpicScale
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe
O4 - HKCU\..\Run: [SPDriver] C:\Program Files\ShopperPro\JSDriver\1.42.0.1762\jsdrv.exe (.not file.) =>PUP.Optional.ShopperPro
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\aa\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [ProgLauncher] . (.Copyright (C) 2013 - ProgLauncher Application.) -- C:\Program Files\ProgDVB\ProgLauncher.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-1300797501-2712347202-3004777462-1000\..\Run: [EpicScale] (Orphean) =>PUP.Optional.EpicScale
O4 - HKUS\S-1-5-21-1300797501-2712347202-3004777462-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-21-1300797501-2712347202-3004777462-1000\..\Run: [SPDriver] C:\Program Files\ShopperPro\JSDriver\1.42.0.1762\jsdrv.exe (.not file.) =>PUP.Optional.ShopperPro
O4 - HKUS\S-1-5-21-1300797501-2712347202-3004777462-1000\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\aa\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-1300797501-2712347202-3004777462-1000\..\Run: [ProgLauncher] . (.Copyright (C) 2013 - ProgLauncher Application.) -- C:\Program Files\ProgDVB\ProgLauncher.exe

---\\ Modification Domaine/Adresses DNS (O17) (9) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 209.244.0.3 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 0.0.0.0
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 209.244.0.3 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 0.0.0.0
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 209.244.0.3 8.8.8.8
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 0.0.0.0

---\\ Liste des services NT non Microsoft et non désactivés (O23) (11) - 1s
O23 - Service: Arp Intelligent Protection Service Service (AIPS) . (.Arcai.com - Arp Intelligent Protection Service.) - C:\Program Files\netcut\services\aips.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HWDeviceService.exe (HWDeviceService.exe) . (.Copyright (C) 2008 - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService.exe
O23 - Service: IHProtect Service (IHProtect Service) . (.XTab system - ProtectSvc.exe.) - C:\Program Files\XTab\ProtectService.exe =>PUP.Optional.AgentODR
O23 - Service: Realtek87B (Realtek87B) . (.Realtek - RtlService MFC Application.) - C:\Program Files\Realtek\RTL8187 Wireless LAN Utility\RtlService.exe
O23 - Service: ShopperPro Update (SPBIUpd) . (.ShopperPro - ShopperPro Update Service.) - C:\Program Files\Common Files\ShopperPro\spbiu.exe =>PUP.Optional.ShopperPro
O23 - Service: Update Air Globe (Update Air Globe) . (...) - C:\Program Files\Air Globe\updateAirGlobe.exe (.not file.) =>PUP.Optional.AirGlobe
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) . (.Windows SysTool - Windows SysTool.) - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe =>PUP.Optional.Fuyu
O23 - Service: YouTubeAcceleratorService (YouTubeAcceleratorService) . (.GOOBZO - .) - C:\Program Files\YouTube Accelerator\YouTubeAcceleratorService.exe =>PUP.Optional.Goobzo

---\\ Tâches planifiées en automatique (O39) (150) - 11s
O39 - APT: - (...) -- C:\Windows\Tasks\4bd3ec58-c42f-443e-8edb-0a5b2d035380-5.job [2398] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\Tasks\fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-6.job [2762] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\Tasks\fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-7.job [1562] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1054]
O39 - APT: - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1058]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\4bd3ec58-c42f-443e-8edb-0a5b2d035380-5 [5428] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-6 [5724] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\System32\Tasks\fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-7 [4590] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3802]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4054]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\ShopperPro [4174] =>PUP.Optional.ShopperPro
O39 - APT: - (...) -- C:\Windows\System32\Tasks\ShopperProJSUpd [3544] =>PUP.Optional.ShopperPro
O39 - APT: - (...) -- C:\Windows\System32\Tasks\SPBIW_UpdateTask_Time_3531333830383039352d3437415a556c2a3223346c41 [4216]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\SPDriver [3470]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_10074 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_10254 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_10362 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_10444 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_11020 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_11299 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_11316 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_11926 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_12279 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_12416 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_12997 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_13043 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_13504 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_13540 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_13555 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_13694 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_14840 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_15120 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_15341 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_15534 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_16135 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_16155 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_16330 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_16561 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_16811 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_16972 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_17035 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_17241 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_17244 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_17254 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_17260 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_1747 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_17711 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_17733 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_17934 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_18268 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_18809 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_19225 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_19289 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_19347 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_19418 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_20086 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_20126 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_20457 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_20660 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_20998 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_20999 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_21150 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_21385 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_21505 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_21543 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_21967 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_21996 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_22662 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_2325 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_23447 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_24018 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_24551 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_24734 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_2478 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_25146 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_25420 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_2613 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_26499 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_27096 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_27133 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_27191 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_27405 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_27473 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_27503 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_27521 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_27700 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_2797 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_27995 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_28139 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_28231 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_28315 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_28370 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_28649 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_29325 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_29523 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_29528 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_29530 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_29538 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_29590 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_29802 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_29856 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_30979 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_31260 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_31394 [3138]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_31517 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_31856 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_31999 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_3385 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_3917 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_4040 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_4405 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_4720 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_5081 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_5084 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_5326 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_5831 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_6032 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_6236 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_6316 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_632 [3132]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_6449 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_6459 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_6592 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_6622 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_6995 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_7178 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_7201 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_743 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_7435 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_7552 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_8206 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_8353 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_8795 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_8959 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_8962 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_9292 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_9516 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_9582 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_9869 [3134]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\UNELEVATE_9958 [3136]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\YTAHelper [4530] =>PUP.Optional.Goobzo
O39 - APT: - (...) -- C:\Windows\System32\Tasks\YTAUpdate [3428]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\YTAUpdate_logon [3242]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\{0CB92F42-2B9F-443E-BC3E-EC08A0981DB2} [3092]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\{6308D9A3-418D-4A1F-AC83-0F6DDA277704} [2856]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\{84F08B31-2799-4733-95F7-C790C2E3A60D} [3080]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\{A2B75A87-F749-4F3A-AD3C-A80043719C32} [3078]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\{CB2956C1-1C45-4C37-8D96-A4B0920F1960} [3126]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\{F74C2BD9-4FE0-4437-BE32-CE5560836278} [3100]

---\\ Logiciels installés (O42) (69) - 13s
O42 - Logiciel: AC3Filter 2.5b - (.Alexander Vigovsky.) [HKLM] -- AC3Filter_is1
O42 - Logiciel: Adobe Flash Player 11 ActiveX & Plugin 32-bit - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 15 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Avast Internet Security - (.AVAST Software.) [HKLM] -- Avast
O42 - Logiciel: CyberLink H.264/AVC video decoder - (.CyberLink Corp..) [HKLM] -- cyberlnH
O42 - Logiciel: DVB Dream Takki & ahmad Edition version 2.7.1 - (.Ahmad Albaheth,Takki.) [HKLM] -- DVB Dream2.7.1 Takki & ahmad Edition_is1
O42 - Logiciel: DVB Dream ALPHA TEAM 2015 version 2.6a - (.Ahmad Albaheth,Takki.) [HKLM] -- DVB Dream_is1
O42 - Logiciel: DVBViewer Pro - (.Takki & Ahmad.) [HKLM] -- DVBViewer Pro_is1
O42 - Logiciel: DVBViewer TE2 - (.CM&V.) [HKLM] -- DVBViewer TE2_is1
O42 - Logiciel: EBSpro - (.Cjcr-Software.) [HKLM] -- EBSpro
O42 - Logiciel: EBSpro By ALPHA TEAM version 12.4.0.2 - (.Ahmad Albaheth,Takki.) [HKLM] -- EBSpro_is1
O42 - Logiciel: Elecard AVC HD Editor - (.Elecard.) [HKLM] -- Elecard AVC HD Editor 1.0.100705
O42 - Logiciel: Elecard AVC HD Player - (.Elecard.) [HKLM] -- Elecard AVC HD Player 5.8.121004
O42 - Logiciel: Elecard AVC PlugIn for ProgDVB - (.Elecard.) [HKLM] -- Elecard AVC PlugIn for ProgDVB 3.1.140904
O42 - Logiciel: Elecard AVC PlugIn for WMP - (.Elecard.) [HKLM] -- Elecard AVC PlugIn for WMP 3.2.140904
O42 - Logiciel: Elecard MPEG Player - (.Elecard.) [HKLM] -- Elecard MPEG Player 6.0.141009
O42 - Logiciel: Elecard MPEG-2 PlugIn for WMP - (.Elecard.) [HKLM] -- Elecard MPEG-2 PlugIn for WMP 5.2.140904
O42 - Logiciel: Foxit Reader - (.Foxit Software Company.) [HKLM] -- Foxit Reader
O42 - Logiciel: Foxit Reader - (.Foxit Corporation.) [HKLM] -- Foxit Reader_is1
O42 - Logiciel: GOM Player - (.Gretech Crop..) [HKLM] -- GOM Player
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: HD Pack 2.4 - (...) [HKLM] -- HD Pack
O42 - Logiciel: HSPA USB Modem - (.Nom de votre société.) [HKLM] -- InstallShield_{06ADE2A0-E46A-4A84-A211-64CF50520185}
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM] -- Internet Download Manager
O42 - Logiciel: iWebar - (.iWebar.) [HKLM] -- iWebar =>PUP.Optional.CrossRider
O42 - Logiciel: LAV Filters 0.64 - (.Hendrik Leppkes.) [HKLM] -- lavfilters_is1
O42 - Logiciel: MobiConnect - (.Huawei Technologies Co.,Ltd.) [HKLM] -- MobiConnect
O42 - Logiciel: Mozilla Firefox 37.0.2 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 37.0.2 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: MPEG2 Decoders - (...) [HKLM] -- MPEG2_Decoders
O42 - Logiciel: NetCut 2.1.1 - (.arcai.com.) [HKLM] -- NetCut_is1
O42 - Logiciel: No-IP DUC - (.Vitalwerks Internet Solutions LLC.) [HKLM] -- NoIPDUC
O42 - Logiciel: omniboxes uninstall - (.omniboxes.) [HKLM] -- omniboxes uninstall =>PUP.Optional.Omniboxes
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM] -- PowerISO
O42 - Logiciel: ProgDVB - (.Prog.) [HKLM] -- ProgDVB
O42 - Logiciel: ProgDVB Elecard edition - (.Elecard.) [HKLM] -- ProgDVB Elecard edition 1.0.61117
O42 - Logiciel: Sense - (.Object Browser.) [HKLM] -- Sense
O42 - Logiciel: SPlayer - (...) [HKLM] -- SPlayer
O42 - Logiciel: Teleport Pro - (.Tennyson Maxwell Information Systems, Inc..) [HKLM] -- Teleport Pro
O42 - Logiciel: TNT Lock computer 1.0 beta - (.TNT Software.) [HKLM] -- TNT Lock computer_is1
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: WinPcap 4.1.2 - (.CACE Technologies.) [HKLM] -- WinPcapInst
O42 - Logiciel: WinRAR archiver - (...) [HKLM] -- WinRAR archiver
O42 - Logiciel: WinSCP 4.3.9 - (.Martin Prikryl.) [HKLM] -- winscp3_is1
O42 - Logiciel: ALT DVB V 2.2 B 4115 R1 By Ahmad - (.www.dvbsapplicationrepack.blogspot.com.) [HKLM] -- {0535DFAB-F241-4E17-ADDF-7BC8ABA75EE1}_is1
O42 - Logiciel: HSPA USB Modem - (.Nom de votre société.) [HKLM] -- {06ADE2A0-E46A-4A84-A211-64CF50520185}
O42 - Logiciel: TV 3L PC version 1.3.2.0 - (.Smart PC Soft, Ltd..) [HKLM] -- {0BBD0F9C-12E5-456A-A6FC-372324F3D082}_is1
O42 - Logiciel: REALTEK Wireless LAN Driver and Utility - (.REALTEK Semiconductor Corp..) [HKLM] -- {0DF70CB6-553A-4C57-8E6D-87635EECFB78}
O42 - Logiciel: Skype™ 7.1 - (.Skype Technologies S.A..) [HKLM] -- {1845470B-EB14-4ABC-835B-E36C693DC07D}
O42 - Logiciel: Media Player Classic - Home Cinema v1.5.1.2903 - (.MPC-HC Team.) [HKLM] -- {2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1
O42 - Logiciel: DVB Dream version 2.6 Ahmad & Takki - (.www.dvbsapplicationrepack.blogspot.com.) [HKLM] -- {48299011-DF53-41B4-A46F-E84FFE75AD45}_is1
O42 - Logiciel: Hex Workshop v5 - (.BreakPoint Software.) [HKLM] -- {4E6258E0-F48C-48D9-BB36-007D6C78EC82}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: MainConcept DTV Decoder Pro - (.MainConcept GmbH.) [HKLM] -- {793FCE60-DE5E-4977-A942-A7B69A45B17D}
O42 - Logiciel: SimpleTV 0.4.7 r2 - (.SergeyVS.) [HKLM] -- {7EEB77C3-FDDC-4BC6-9ABA-F4E22B12AC63}_is1
O42 - Logiciel: DVB Dream version 2.5 Ahmad & Takki R1 - (.www.dvbsapplicationrepack.blogspot.com.) [HKLM] -- {8579ED9E-1F6F-4B75-8752-A13C38BB146B}_is1
O42 - Logiciel: ImageShack Uploader 2.2.0 - (.ImageShack Corp..) [HKLM] -- {8BCD7AE7-F713-4D50-BAB9-7839B9386870}
O42 - Logiciel: Shark007 Advanced Codecs - (.Shark007.) [HKLM] -- {8C0CAA7A-3272-4991-A808-2C7559DE3409}
O42 - Logiciel: NEF Codec - (.Nikon.) [HKLM] -- {A89768CF-CD21-44FD-A723-16D5A8557415}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Inpaint - (.Teorex.) [HKLM] -- {B6BCCB80-B3FC-4E97-8513-A7BEE73A5C5A}
O42 - Logiciel: Star(dvb) Codecs V3.0.0 - (.Stardvb, Inc..) [HKLM] -- {CA1B9ABE-0C40-43E0-8965-0DA206D56EBD}_is1
O42 - Logiciel: TechniSat DVB-PC TV Star - (.TechniSat.) [HKLM] -- {D032A7F0-8B5C-4603-8B46-235025D5F9C1}
O42 - Logiciel: PL-2303 Vista Driver Installer - (.Prolific.) [HKLM] -- {EEC010D0-1252-4E1D-BAD9-F1B8F414535C}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Win7 MAC Address Changer version 2.0 - (.Zokali.) [HKLM] -- {F9A76116-6D56-4CEA-830E-E95C168DC95B}_is1
O42 - Logiciel: ALTDVB STAR EDITION II - (...) [HKCU] -- ALTDVB STAR EDITION II
O42 - Logiciel: PhotoFiltre Studio X - (...) [HKCU] -- PhotoFiltre Studio X
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU] -- uTorrent

---\\ HKCU & HKLM Software Keys (155) - 13s
HKLM\SOFTWARE\158910C5-62DF-45DD-8857-864B0723EE51 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Arcai
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\AVAST Software
HKLM\SOFTWARE\BitCtrl Systems GmbH
HKLM\SOFTWARE\C691FE54-B73D-4459-B2BC-0E05EFAA5BB5 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CM&V
HKLM\SOFTWARE\CoreCodec
HKLM\SOFTWARE\CyberLink
HKLM\SOFTWARE\Debug
HKLM\SOFTWARE\delta-homesSoftware =>PUP.Optional.DeltaHomes
HKLM\SOFTWARE\Dolby
HKLM\SOFTWARE\DTS
HKLM\SOFTWARE\DVB Support
HKLM\SOFTWARE\DVBDream
HKLM\SOFTWARE\Elecard
HKLM\SOFTWARE\ErrorLists-crcodedownloader =>PUP.Optional.CrossRider
HKLM\SOFTWARE\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Foxit Software
HKLM\SOFTWARE\Gabest
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\GNU
HKLM\SOFTWARE\Goobzo =>PUP.Optional.Goobzo
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\GRETECH
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\hdcode
HKLM\SOFTWARE\HSPA
HKLM\SOFTWARE\Huawei technologies
HKLM\SOFTWARE\Icaros
HKLM\SOFTWARE\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\iWebar =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Knowles
HKLM\SOFTWARE\LAV
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Martin Prikryl
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\MPEG2_Decoders
HKLM\SOFTWARE\Netscape
HKLM\SOFTWARE\Nikon
HKLM\SOFTWARE\NVIDIA Corporation
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\omniboxesSoftware =>PUP.Optional.Omniboxes
HKLM\SOFTWARE\Opera Software
HKLM\SOFTWARE\PowerISO
HKLM\SOFTWARE\Prolific
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\REALTEK Semiconductor Corp.
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\RegistryReviver =>PUP.Optional.RegistryReviver
HKLM\SOFTWARE\RtWLan
HKLM\SOFTWARE\S3R521
HKLM\SOFTWARE\Sense
HKLM\SOFTWARE\ShopperPro =>PUP.Optional.ShopperPro
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\SonicFocus
HKLM\SOFTWARE\SPlayer
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\Stardvb
HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\TDS
HKLM\SOFTWARE\TechniSat
HKLM\SOFTWARE\Tennyson Maxwell
HKLM\SOFTWARE\TNT Lock computer
HKLM\SOFTWARE\V9
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\Volatile
HKLM\SOFTWARE\Waves Audio
HKLM\SOFTWARE\WinPcap
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\winzipersvc
HKCU\SOFTWARE\%CompanyFullName%
HKCU\SOFTWARE\AC3filter
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Arcai.com
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\BitCtrl Systems GmbH
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\BreakPoint
HKCU\SOFTWARE\BreakPoint License Manager
HKCU\SOFTWARE\CoreAAC
HKCU\SOFTWARE\CoreVorbis
HKCU\SOFTWARE\CreateMini
HKCU\SOFTWARE\CYBERLINK
HKCU\SOFTWARE\Cygnus Solutions
HKCU\SOFTWARE\Cygwin
HKCU\SOFTWARE\DivX
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\DScaler5
HKCU\SOFTWARE\Elecard
HKCU\SOFTWARE\EpicScale =>PUP.Optional.EpicScale
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GGSoft
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Goobzo =>PUP.Optional.Goobzo
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GRETECH
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Icaros
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\ImageShack
HKCU\SOFTWARE\ImageShack Corp.
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\Lake
HKCU\SOFTWARE\LAV
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\madFlac
HKCU\SOFTWARE\MainConcept
HKCU\SOFTWARE\Martin Prikryl
HKCU\SOFTWARE\MiniGet
HKCU\SOFTWARE\Moonlight
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-BE
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\mugses
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NJIT
HKCU\SOFTWARE\OB
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\PhotoFiltre Studio X
HKCU\SOFTWARE\PowerISO
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\ShopperPro =>PUP.Optional.ShopperPro
HKCU\SOFTWARE\SimonTatham
HKCU\SOFTWARE\SimpleTV by SergeyVS#3
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SPlayer
HKCU\SOFTWARE\Tennyson Maxwell
HKCU\SOFTWARE\Teorex
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\Vitalwerks
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Adobe
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\iWebar =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Sense

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (235) - 11s
O43 - CFD: 2015/02/14 12:27:44 - [] D -- C:\Program Files\AC3Filter
O43 - CFD: 2015/02/14 01:20:01 - [] D -- C:\Program Files\Agilent
O43 - CFD: 2015/04/09 19:11:57 - [0] D -- C:\Program Files\Air Globe
O43 - CFD: 2015/02/26 17:00:19 - [0] D -- C:\Program Files\All Gbox
O43 - CFD: 2015/02/14 12:27:44 - [] D -- C:\Program Files\ALT-DVB STAR
O43 - CFD: 2015/02/14 12:27:44 - [] D -- C:\Program Files\ALT-DVB STAR11
O43 - CFD: 2015/02/26 17:08:58 - [] D -- C:\Program Files\AVAST Software
O43 - CFD: 2014/10/05 12:49:28 - [] D -- C:\Program Files\BreakPoint Software
O43 - CFD: 2014/11/03 11:49:02 - [] D -- C:\Program Files\ColorSoft
O43 - CFD: 2015/03/05 15:37:55 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2015/04/24 10:07:21 - [] D -- C:\Program Files\DVBViewer
O43 - CFD: 2015/02/27 09:01:45 - [] D -- C:\Program Files\DVBViewer TE2
O43 - CFD: 2015/04/24 19:58:35 - [] D -- C:\Program Files\DVBViewer1
O43 - CFD: 2011/01/15 00:45:23 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 2014/11/21 12:04:55 - [] D -- C:\Program Files\Elecard
O43 - CFD: 2014/08/16 22:01:50 - [0] SHD -- C:\Program Files\Fichiers communs
O43 - CFD: 2014/08/23 14:10:08 - [] D -- C:\Program Files\Foxit Software
O43 - CFD: 2014/08/23 16:01:59 - [] D -- C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2014/08/16 23:11:11 - [] D -- C:\Program Files\Google
O43 - CFD: 2014/11/27 20:27:09 - [] D -- C:\Program Files\GRETECH
O43 - CFD: 2015/01/24 19:27:07 - [0] D -- C:\Program Files\GUM397E.tmp
O43 - CFD: 2015/02/14 12:27:44 - [] D -- C:\Program Files\GUMD36D.tmp
O43 - CFD: 2015/04/30 20:34:46 - [] D -- C:\Program Files\HSPA USB Modem
O43 - CFD: 2015/07/05 02:09:23 - [] D -- C:\Program Files\ImageShack Uploader
O43 - CFD: 2015/04/30 20:34:47 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2015/03/06 11:56:11 - [] D -- C:\Program Files\Internet Download Manager
O43 - CFD: 2011/01/15 00:45:23 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2015/07/15 21:36:26 - [] D -- C:\Program Files\iWebar =>PUP.Optional.CrossRider
O43 - CFD: 2015/04/24 11:02:32 - [] D -- C:\Program Files\LAV Filters
O43 - CFD: 2014/08/16 22:12:35 - [] D -- C:\Program Files\MainConcept
O43 - CFD: 2015/06/14 14:38:23 - [] D -- C:\Program Files\Media Player Classic - Home Cinema
O43 - CFD: 2015/04/24 11:03:35 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 2015/01/07 18:48:22 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2015/02/21 12:53:28 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2015/04/05 21:36:07 - [] D -- C:\Program Files\MiniGet
O43 - CFD: 2015/02/14 12:27:44 - [] D -- C:\Program Files\MobiConnect
O43 - CFD: 2015/07/15 15:58:42 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2015/05/23 22:15:46 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2015/02/14 12:27:44 - [] D -- C:\Program Files\MPEG2_Decoders
O43 - CFD: 2009/07/14 05:52:30 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2015/07/15 21:36:42 - [] D -- C:\Program Files\netcut
O43 - CFD: 2015/01/16 15:55:22 - [] D -- C:\Program Files\NetCutDefender
O43 - CFD: 2014/08/23 14:04:58 - [] D -- C:\Program Files\Nikon
O43 - CFD: 2015/07/15 21:37:32 - [] D -- C:\Program Files\No-IP
O43 - CFD: 2015/02/20 16:27:14 - [] D -- C:\Program Files\Notepad++ 5.9 RC
O43 - CFD: 2015/01/16 15:55:52 - [] D -- C:\Program Files\Opera
O43 - CFD: 2015/04/16 21:18:49 - [] D -- C:\Program Files\PhotoFiltre Studio X
O43 - CFD: 2015/02/14 12:27:44 - [] D -- C:\Program Files\PowerISO
O43 - CFD: 2015/02/26 14:32:02 - [] D -- C:\Program Files\ProgDVB
O43 - CFD: 2014/10/10 11:25:29 - [] D -- C:\Program Files\Prolific
O43 - CFD: 2014/10/17 22:01:50 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2009/07/14 05:52:30 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2015/03/05 16:45:42 - [] D -- C:\Program Files\ReviverSoft
O43 - CFD: 2015/07/15 21:36:48 - [] D -- C:\Program Files\Sense
O43 - CFD: 2014/08/23 13:33:46 - [] D -- C:\Program Files\Shark007
O43 - CFD: 2015/03/20 00:22:55 - [] RD -- C:\Program Files\Skype
O43 - CFD: 2014/08/21 16:00:54 - [] D -- C:\Program Files\Stardvb
O43 - CFD: 2015/02/27 09:01:53 - [] D -- C:\Program Files\TechniSat DVB
O43 - CFD: 2015/01/01 14:04:24 - [] D -- C:\Program Files\Teorex
O43 - CFD: 2015/02/26 20:32:03 - [] D -- C:\Program Files\TNT Lock computer
O43 - CFD: 2009/07/14 05:53:23 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2015/02/14 12:27:45 - [] D -- C:\Program Files\uTorrent
O43 - CFD: 2014/08/16 22:47:12 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 2011/01/15 00:45:22 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2011/01/15 00:45:23 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 2011/01/15 00:45:23 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2011/01/15 00:45:23 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2014/08/16 22:01:50 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2011/01/15 00:45:22 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 2011/01/15 00:45:23 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2011/01/15 00:45:23 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 2015/07/15 21:37:00 - [] D -- C:\Program Files\WinPcap
O43 - CFD: 2015/02/20 16:38:11 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 2015/07/15 21:37:00 - [] D -- C:\Program Files\WinSCP
O43 - CFD: 2015/05/30 19:17:59 - [0] D -- C:\Program Files\WinZipper
O43 - CFD: 2015/05/29 15:13:41 - [] D -- C:\Program Files\XTab
O43 - CFD: 2015/04/24 11:13:25 - [] D -- C:\Program Files\YouTube Accelerator
O43 - CFD: 2014/08/23 15:10:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter
O43 - CFD: 2011/01/15 00:06:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2011/01/15 00:06:12 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/10/17 23:04:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALT DVB V 2.2 B 4115 R1 By Ahmad
O43 - CFD: 2015/01/16 16:10:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\arcai.com
O43 - CFD: 2015/02/26 17:13:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 2015/06/13 22:38:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVB Dream
O43 - CFD: 2014/08/17 00:16:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVB Dream 2.6 star7editon U1
O43 - CFD: 2015/02/20 14:31:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVB Dream version 2.5 Ahmad & Takki R1
O43 - CFD: 2014/08/23 13:24:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVB Support
O43 - CFD: 2015/04/24 10:57:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer
O43 - CFD: 2015/02/27 09:01:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer TE2
O43 - CFD: 2015/02/26 23:53:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EBSpro
O43 - CFD: 2014/11/21 12:04:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elecard
O43 - CFD: 2015/02/14 20:18:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
O43 - CFD: 2011/01/15 00:06:10 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2014/11/27 20:27:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player
O43 - CFD: 2014/08/16 23:11:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/04/30 20:34:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HSPA USB Modem
O43 - CFD: 2015/07/05 02:09:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImageShack Uploader
O43 - CFD: 2014/08/16 23:59:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2015/04/24 11:02:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
O43 - CFD: 2009/07/14 05:42:30 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/06/14 14:38:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Player Classic - Home Cinema
O43 - CFD: 2015/03/12 20:49:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2014/08/16 22:52:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MobiConnect
O43 - CFD: 2015/04/16 21:18:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
O43 - CFD: 2014/08/16 22:03:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
O43 - CFD: 2014/08/17 00:44:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProgDVB
O43 - CFD: 2014/10/17 22:02:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REALTEK RTL8187 Wireless LAN Utility
O43 - CFD: 2014/08/23 13:33:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shark007 Codecs
O43 - CFD: 2014/10/18 23:47:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimpleTV
O43 - CFD: 2015/03/05 15:37:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2014/08/30 07:35:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SPlayer
O43 - CFD: 2014/08/21 16:00:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardvb
O43 - CFD: 2015/02/27 09:01:48 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2009/07/14 10:00:32 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/02/27 09:01:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechniSat DVB
O43 - CFD: 2015/04/04 13:03:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Technitium MAC Address Changer v6
O43 - CFD: 2014/11/03 12:12:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Teleport Pro
O43 - CFD: 2015/02/26 20:32:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TNT Lock computer 1.0 beta
O43 - CFD: 2015/02/14 12:35:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TV 3L PC
O43 - CFD: 2015/03/06 09:32:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/04/04 13:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Win7 MAC Address Changer
O43 - CFD: 2015/01/16 15:49:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
O43 - CFD: 2015/02/14 12:27:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2014/08/22 00:30:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP
O43 - CFD: 2014/08/23 13:53:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator
O43 - CFD: 2014/08/23 13:34:11 - [] D -- C:\ProgramData\Advanced
O43 - CFD: 2009/07/14 05:53:55 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/08/21 16:00:55 - [] D -- C:\ProgramData\ArcSoft
O43 - CFD: 2015/02/26 17:08:58 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2014/08/16 22:01:50 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2015/02/27 00:34:16 - [] D -- C:\ProgramData\CMUV
O43 - CFD: 2015/02/20 16:38:12 - [] D -- C:\ProgramData\DatacardService
O43 - CFD: 2009/07/14 05:53:55 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 05:53:55 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/03/06 09:15:07 - [] D -- C:\ProgramData\EpicScale =>PUP.Optional.EpicScale
O43 - CFD: 2014/08/16 22:01:50 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2009/07/14 05:53:55 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2014/08/16 23:59:27 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 2015/05/29 15:13:37 - [] D -- C:\ProgramData\IHProtectUpDate =>PUP.Optional.AgentODR
O43 - CFD: 2014/08/16 22:01:50 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/03/13 14:17:37 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2014/08/16 22:52:26 - [] D -- C:\ProgramData\MobiConnect
O43 - CFD: 2014/08/16 22:01:50 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2014/08/16 23:10:29 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/07/04 01:01:16 - [] D -- C:\ProgramData\ProgDVB
O43 - CFD: 2015/03/19 23:00:28 - [] D -- C:\ProgramData\ShopperPro =>PUP.Optional.ShopperPro
O43 - CFD: 2015/03/05 15:38:01 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2009/07/14 05:53:55 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2014/08/16 22:12:44 - [] D -- C:\ProgramData\Technisat
O43 - CFD: 2015/07/18 22:55:36 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 2009/07/14 05:53:55 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/05/29 15:11:37 - [] D -- C:\ProgramData\WindowsMangerProtect =>PUP.Optional.Fuyu
O43 - CFD: 2014/08/23 13:54:05 - [] D -- C:\ProgramData\YTAHelper =>PUP.Optional.Goobzo
O43 - CFD: 2014/08/21 16:00:55 - [] D -- C:\Program Files\Common Files\ArcSoft
O43 - CFD: 2015/01/07 18:48:21 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 2015/04/24 10:57:46 - [] D -- C:\Program Files\Common Files\DVBViewer Shared
O43 - CFD: 2015/02/14 12:27:44 - [] D -- C:\Program Files\Common Files\Elecard
O43 - CFD: 2014/08/16 22:10:45 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 2015/01/07 18:48:25 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2014/08/23 14:04:58 - [] D -- C:\Program Files\Common Files\Nikon
O43 - CFD: 2009/07/14 03:37:05 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 2015/04/23 22:33:35 - [] D -- C:\Program Files\Common Files\ShopperPro =>PUP.Optional.ShopperPro
O43 - CFD: 2015/03/05 15:37:55 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 2009/07/14 03:37:05 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 2009/07/14 09:39:39 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 2014/08/22 18:04:07 - [] D -- C:\Users\aa\AppData\Roaming\AC3Filter
O43 - CFD: 2014/08/16 22:10:29 - [] D -- C:\Users\aa\AppData\Roaming\Adobe
O43 - CFD: 2014/08/23 13:34:11 - [] D -- C:\Users\aa\AppData\Roaming\Advanced
O43 - CFD: 2015/02/26 17:13:57 - [] D -- C:\Users\aa\AppData\Roaming\AVAST Software
O43 - CFD: 2015/07/18 17:23:20 - [] D -- C:\Users\aa\AppData\Roaming\DMCache
O43 - CFD: 2015/02/27 14:33:09 - [] D -- C:\Users\aa\AppData\Roaming\EBSpro
O43 - CFD: 2015/02/14 20:18:52 - [] D -- C:\Users\aa\AppData\Roaming\Foxit
O43 - CFD: 2014/10/18 09:18:48 - [] D -- C:\Users\aa\AppData\Roaming\Foxit Software
O43 - CFD: 2014/11/27 20:27:46 - [] D -- C:\Users\aa\AppData\Roaming\GRETECH
O43 - CFD: 2015/04/16 21:18:56 - [] D -- C:\Users\aa\AppData\Roaming\Identities
O43 - CFD: 2015/03/06 09:17:25 - [] D -- C:\Users\aa\AppData\Roaming\IDM
O43 - CFD: 2014/09/04 21:14:13 - [] D -- C:\Users\aa\AppData\Roaming\Macromedia
O43 - CFD: 2009/07/14 10:00:32 - [0] D -- C:\Users\aa\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/06/14 14:38:41 - [] D -- C:\Users\aa\AppData\Roaming\Media Player Classic
O43 - CFD: 2015/03/18 15:37:42 - [] SD -- C:\Users\aa\AppData\Roaming\Microsoft
O43 - CFD: 2015/04/04 13:01:08 - [] D -- C:\Users\aa\AppData\Roaming\MiniGet
O43 - CFD: 2015/02/26 17:35:59 - [] D -- C:\Users\aa\AppData\Roaming\Mozilla
O43 - CFD: 2015/04/05 21:37:26 - [] D -- C:\Users\aa\AppData\Roaming\omniboxes =>PUP.Optional.Omniboxes
O43 - CFD: 2015/03/05 16:44:22 - [] D -- C:\Users\aa\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
O43 - CFD: 2015/01/16 15:55:52 - [0] D -- C:\Users\aa\AppData\Roaming\Opera
O43 - CFD: 2015/04/16 21:24:12 - [] D -- C:\Users\aa\AppData\Roaming\PhotoFiltre Studio X
O43 - CFD: 2014/08/16 22:04:19 - [] D -- C:\Users\aa\AppData\Roaming\PowerISO
O43 - CFD: 2015/02/20 14:25:31 - [] HD -- C:\Users\aa\AppData\Roaming\security
O43 - CFD: 2014/10/18 23:52:52 - [] D -- C:\Users\aa\AppData\Roaming\SimpleTV V03
O43 - CFD: 2015/07/18 16:42:47 - [] D -- C:\Users\aa\AppData\Roaming\Skype
O43 - CFD: 2015/02/20 16:08:17 - [] D -- C:\Users\aa\AppData\Roaming\SPlayer
O43 - CFD: 2015/01/23 17:28:34 - [] D -- C:\Users\aa\AppData\Roaming\Thinstall
O43 - CFD: 2015/07/18 23:05:42 - [] D -- C:\Users\aa\AppData\Roaming\uTorrent
O43 - CFD: 2015/07/18 23:07:52 - [] D -- C:\Users\aa\AppData\Roaming\vlc
O43 - CFD: 2014/08/16 22:03:22 - [] D -- C:\Users\aa\AppData\Roaming\WinRAR
O43 - CFD: 2015/05/29 15:15:42 - [0] D -- C:\Users\aa\AppData\Roaming\WinZipper
O43 - CFD: 2015/07/18 23:08:27 - [] D -- C:\Users\aa\AppData\Roaming\ZHP
O43 - CFD: 2014/09/04 21:15:41 - [0] D -- C:\Users\aa\AppData\Local\Adobe
O43 - CFD: 2014/08/16 22:01:54 - [0] SHD -- C:\Users\aa\AppData\Local\Application Data
O43 - CFD: 2014/08/21 16:00:55 - [] D -- C:\Users\aa\AppData\Local\ArcSoft
O43 - CFD: 2014/08/23 13:34:56 - [] D -- C:\Users\aa\AppData\Local\CrashRpt =>.Legitimate.CrashReports
O43 - CFD: 2015/07/10 02:59:38 - [] D -- C:\Users\aa\AppData\Local\Diagnostics
O43 - CFD: 2014/08/23 16:01:56 - [] D -- C:\Users\aa\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2014/08/16 23:11:21 - [] D -- C:\Users\aa\AppData\Local\Google
O43 - CFD: 2014/08/16 22:01:54 - [0] SHD -- C:\Users\aa\AppData\Local\Historique
O43 - CFD: 2014/08/23 13:38:33 - [] D -- C:\Users\aa\AppData\Local\Installer =>PUP.Optional.InstallPedia
O43 - CFD: 2014/10/18 08:34:47 - [] D -- C:\Users\aa\AppData\Local\Macromedia
O43 - CFD: 2015/05/02 15:58:54 - [] D -- C:\Users\aa\AppData\Local\Microsoft
O43 - CFD: 2014/12/08 13:09:54 - [] D -- C:\Users\aa\AppData\Local\Microsoft Games
O43 - CFD: 2014/08/18 14:25:00 - [] D -- C:\Users\aa\AppData\Local\Mozilla
O43 - CFD: 2015/01/16 15:55:52 - [0] D -- C:\Users\aa\AppData\Local\Opera
O43 - CFD: 2014/08/16 22:16:01 - [] D -- C:\Users\aa\AppData\Local\Programs
O43 - CFD: 2014/12/13 17:41:50 - [] D -- C:\Users\aa\AppData\Local\Skype
O43 - CFD: 2015/02/14 12:27:42 - [0] D -- C:\Users\aa\AppData\Local\Smart_PC_Soft
O43 - CFD: 2015/07/18 23:08:34 - [] D -- C:\Users\aa\AppData\Local\Temp
O43 - CFD: 2014/08/16 22:01:54 - [0] SHD -- C:\Users\aa\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/01/23 17:28:34 - [] D -- C:\Users\aa\AppData\Local\Thinstall
O43 - CFD: 2014/10/05 12:50:28 - [] D -- C:\Users\aa\AppData\Local\VirtualStore
O43 - CFD: 2014/10/19 12:19:17 - [] D -- C:\Users\aa\AppData\Local\Vitalwerks
O43 - CFD: 2009/07/14 05:42:04 - [] RD -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/08/16 22:02:13 - [] RD -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/04/10 22:31:22 - [] D -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
O43 - CFD: 2014/08/23 13:24:01 - [] D -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVB Support
O43 - CFD: 2015/02/26 19:26:52 - [] D -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2014/10/05 12:49:29 - [] D -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hex Workshop v5
O43 - CFD: 2014/08/16 23:59:19 - [] D -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2014/08/16 22:12:35 - [] D -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MainConcept
O43 - CFD: 2009/07/14 05:37:42 - [] RD -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/11/16 21:11:02 - [0] D -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MPEG2 Decoders
O43 - CFD: 2014/10/19 12:19:10 - [] D -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No-IP DUC
O43 - CFD: 2015/04/16 21:18:49 - [0] D -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
O43 - CFD: 2014/08/16 22:02:13 - [] RD -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/11/03 12:12:57 - [0] D -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Teleport Pro
O43 - CFD: 2015/01/01 14:04:24 - [] D -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Teorex
O43 - CFD: 2015/02/14 12:27:45 - [] D -- C:\Users\aa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Enumération des clés de registre StartupReg (SMSR) (O53) (8) - 0s
O53 - SMSR:HKLM\...\startupreg\GoobzoYouTubeAccelerator [Key] . (...) -- C:\Program Files\YouTube Accelerator\YouTubeAccelerator.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\IDMan [Key] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe
O53 - SMSR:HKLM\...\startupreg\ProgLauncher [Key] . (.Copyright (C) 2013 - ProgLauncher Application.) -- C:\Program Files\ProgDVB\ProgLauncher.exe
O53 - SMSR:HKLM\...\startupreg\Runonce [Key] . (...) -- C:\Windows\System32\runouce.exe
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O53 - SMSR:HKLM\...\startupreg\SPDriver [Key] . (...) -- C:\Program Files\ShopperPro\JSDriver\1.38.1.1682\jsdrv.exe (.not file.) =>PUP.Optional.ShopperPro
O53 - SMSR:HKLM\...\startupreg\uTorrent [Key] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\aa\AppData\Roaming\uTorrent\uTorrent.exe
O53 - SMSR:HKLM\...\startupreg\{BEB49906-5BB7-A678-92E1-0AE6316D227E} [Key] . (...) -- C:\Users\aa\AppData\Roaming\security\security.exe (.not file.)

---\\ Liste des pilotes du système (SDL) (O58) (94) - 8s
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976]
O58 - SDL:2009/07/14 02:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552]
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512]
O58 - SDL:2009/07/14 02:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400]
O58 - SDL:2010/11/20 04:29:14 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [80256]
O58 - SDL:2009/07/14 02:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312]
O58 - SDL:2010/11/20 04:29:16 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22400]
O58 - SDL:2010/12/19 18:47:16 A . (.Windows (R) 2000 DDK provider - NDIS User mode I/O Driver.) -- C:\Windows\System32\drivers\AntiArpNdisProt.sys [21120]
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368]
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608]
O58 - SDL:2015/02/26 17:09:27 A . (...) -- C:\Windows\System32\drivers\aswHwid.sys [24184]
O58 - SDL:2015/02/26 17:09:23 A . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\Windows\System32\drivers\aswKbd.sys [26136]
O58 - SDL:2015/02/26 17:11:21 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswmonflt.sys [73480]
O58 - SDL:2015/02/26 17:09:20 A . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\Windows\System32\drivers\aswNdisFlt.sys [271288]
O58 - SDL:2015/02/26 17:09:27 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [81768]
O58 - SDL:2015/02/26 17:09:27 A . (...) -- C:\Windows\System32\drivers\aswRvrt.sys [49944]
O58 - SDL:2015/02/26 17:11:14 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswsnx.sys [787800]
O58 - SDL:2015/02/26 17:10:45 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswsp.sys [423784]
O58 - SDL:2015/02/26 17:09:28 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [91496]
O58 - SDL:2015/02/26 17:09:28 A . (...) -- C:\Windows\System32\drivers\aswVmm.sys [206248]
O58 - SDL:2009/07/13 23:02:49 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gi.) -- C:\Windows\System32\drivers\b57nd60x.sys [229888]
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568]
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248]
O58 - SDL:2009/07/14 01:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128]
O58 - SDL:2009/07/13 23:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336]
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904]
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080]
O58 - SDL:2009/07/14 02:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952]
O58 - SDL:2008/08/29 17:54:40 A . (.Mobile Connector - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\cmusbser.sys [103552]
O58 - SDL:2009/07/14 02:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720]
O58 - SDL:2009/07/13 23:02:50 A . (.Intel Corporation - Pilote désérialisé NDIS 6 de la carte Intel.) -- C:\Windows\System32\drivers\E1G60I32.sys [118784]
O58 - SDL:2009/07/14 02:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712]
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160]
O58 - SDL:2010/10/08 09:55:06 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\Windows\System32\drivers\ewdcsc.sys [25856]
O58 - SDL:2013/03/04 09:20:27 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ewusbmdm.sys [199168]
O58 - SDL:2013/03/21 02:55:42 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\ewusbwwan.sys [380416]
O58 - SDL:2010/09/26 11:09:22 A . (.Huawei Technologies Co., Ltd. - ew_hwupgrade Driver.) -- C:\Windows\System32\drivers\ew_hwupgrade.sys [19200]
O58 - SDL:2013/01/25 02:16:33 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ew_hwusbdev.sys [95232]
O58 - SDL:2013/03/04 09:31:10 A . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\Windows\System32\drivers\ew_jubusenum.sys [77824]
O58 - SDL:2013/03/04 09:31:10 A . (.Huawei Technologies Co., Ltd. - ew_jucdcacm Driver.) -- C:\Windows\System32\drivers\ew_jucdcacm.sys [101248]
O58 - SDL:2013/03/04 09:31:10 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\drivers\ew_jucdcecm.sys [70528]
O58 - SDL:2013/03/04 09:31:10 A . (.Huawei Technologies Co., Ltd. - ew_juextctrl Driver.) -- C:\Windows\System32\drivers\ew_juextctrl.sys [27776]
O58 - SDL:2013/04/10 09:45:19 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\drivers\ew_juwwanecm.sys [207872]
O58 - SDL:2012/12/22 02:46:02 A . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\Windows\System32\drivers\ew_usbenumfilter.sys [11904]
O58 - SDL:2009/07/13 23:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624]
O58 - SDL:2009/07/14 02:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152]
O58 - SDL:2010/11/20 04:29:56 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332160]
O58 - SDL:2015/03/03 02:02:12 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [117800]
O58 - SDL:2009/06/10 22:19:30 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys [4756480]
O58 - SDL:2009/07/14 02:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040]
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95824]
O58 - SDL:2009/07/14 02:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89168]
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864]
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848]
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800]
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584]
O58 - SDL:2010/08/06 00:42:34 A . (.DiBcom SA - DiBcom AVSTREAM BDA driver.) -- C:\Windows\System32\drivers\mod7700.sys [861696]
O58 - SDL:2009/07/14 02:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624]
O58 - SDL:2010/06/25 18:07:14 A . (.CACE Technologies, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) -- C:\Windows\System32\drivers\npf.sys [35088]
O58 - SDL:2010/11/20 04:30:08 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117120]
O58 - SDL:2010/11/20 04:30:08 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [143744]
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488]
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064]
O58 - SDL:2009/07/13 23:02:52 A . (.Realtek Corporation - Realtek 8101E/8168/8169 NDIS 6.20 32-bit Dr.) -- C:\Windows\System32\drivers\Rt86win7.sys [139776]
O58 - SDL:2009/10/21 19:26:08 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [2782560]
O58 - SDL:2010/01/08 20:20:22 A . (.Realtek Semiconductor Corporation - Realtek RTL8187 NDIS Driver.) -- C:\Windows\System32\drivers\rtl8187.sys [375808]
O58 - SDL:2012/08/24 08:57:00 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [113104]
O58 - SDL:2009/07/13 21:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480]
O58 - SDL:2007/07/31 18:45:50 A . (.Prolific Technology Inc. - USB-to-Serial Cable Driver.) -- C:\Windows\System32\drivers\ser2pl.sys [76800]
O58 - SDL:2009/07/14 00:45:33 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\serial.sys [83456]
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016]
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888]
O58 - SDL:2011/04/13 13:51:52 A . (.TechniSat Digital, S.A. - TechniSat SkyStar 2 eXpress HD BDA Driver.) -- C:\Windows\System32\drivers\SkyNetNXPBDA.sys [1742424]
O58 - SDL:2011/04/13 13:51:54 A . (.TechniSat Digital, S.A. - NDIS 5.0 driver.) -- C:\Windows\System32\drivers\SkyNetVirtualNetwork.sys [159320]
O58 - SDL:2009/07/14 02:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072]
O58 - SDL:2009/07/14 02:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976]
O58 - SDL:2009/07/14 02:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904]
O58 - SDL:2015/04/04 04:32:44 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{90280f97-bcf9-4f01-b773-3eeda0515e95}Gw.sys [43144] =>PUP.Optional.LinkiDoo
O58 - SDL:2009/07/13 22:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:2009/07/13 22:40:44 A . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:2009/07/13 22:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2009/07/13 22:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:2009/07/13 22:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2009/07/13 22:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2009/07/13 22:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2009/07/13 22:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2009/07/13 22:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:2009/07/13 22:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:2009/07/13 22:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:2009/07/13 22:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:2009/07/13 22:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (2) - 5s
O61 - LFC: 2015/07/18 22:56:48 A . (..) -- C:\Users\aa\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2015/07/13 10:14:22 A . (..) -- C:\Users\aa\AppData\Local\Google\Chrome\User Data\PepperFlash\18.0.0.209\pepflashplayer.dll [16307888]

---\\ Associations Shell Spawning (O67) (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe

---\\ Menu de démarrage Internet (SMI) (O68) (16) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe http://www.delta-homes.com/ =>PUP.Optional.DeltaHomes
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.ex http://www.omniboxes.com/ =>PUP.Optional.Omniboxes
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Opera\Opera.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\Opera\Opera.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\Opera\Opera.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\Opera\Opera.exe (.not file.)

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (18) - 4s
O69 - SBI: prefs.js [aa - gyh20x6l.default] user_pref("browser.search.defaultenginename", "delta-homes"); =>PUP.Optional.Qvo6
O69 - SBI: prefs.js [aa - gyh20x6l.default] user_pref("browser.search.searchengine.alias", "delta-homes"); =>PUP.Optional.Qvo6
O69 - SBI: prefs.js [aa - gyh20x6l.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [aa - gyh20x6l.default] user_pref("browser.search.searchengine.iconURL", "http://search.delta-homes.com/favicon.ico"); =>PUP.Optional.Qvo6
O69 - SBI: prefs.js [aa - gyh20x6l.default] user_pref("browser.search.searchengine.name", "delta-homes"); =>PUP.Optional.Qvo6
O69 - SBI: prefs.js [aa - gyh20x6l.default] user_pref("browser.search.searchengine.ptid", "wpm052932"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [aa - gyh20x6l.default] user_pref("browser.search.searchengine.uid", "SAMSUNGXHD322HJ_S17AJ90Z501390"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [aa - gyh20x6l.default] user_pref("browser.search.searchengine.url", "http://search.delta-homes.com/web/?type=ds&ts=1432908715&z=a7db8587fff8a5442a408c2g6[...] =>PUP.Optional.Qvo6
O69 - SBI: prefs.js [aa - gyh20x6l.default] user_pref("browser.search.selectedEngine", "delta-homes"); =>PUP.Optional.Qvo6
O69 - SBI: prefs.js [aa - gyh20x6l.default] user_pref("browser.startup.homepage", "http://www.delta-homes.com/?type=hp&ts=1432908715&z=a7db8587fff8a5442a408c2g6z6c5oft2e5b8m7[...] =>PUP.Optional.Qvo6
O69 - SBI: prefs.js [aa - gyh20x6l.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [aa - gyh20x6l.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [aa - gyh20x6l.default] user_pref("extensions.xpiState", "{\"app-profile\":{\"quick_searchff@gmail.com\":{\"d\":\"C:\\\\Users\\\\aa\\\\AppData\\\\Roaming\[...] =>PUP.Optional.QuickSearch
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} [DefaultScope] - (e) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (delta-homes) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {6C0550E4-0D33-4A88-81CE-7149F23BA5AA} - (Google) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} - (Google) - http://do-search.com/ =>PUP.Optional.DoSearches

---\\ Enumère les services démarrés par Svchost (SSS) (O83) (33) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [593408]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [674304]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [473600]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [286208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [242176]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [521216]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [1914368]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [585728]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [499712]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [47104]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164352]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [750592]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [113664]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102400]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [149504]

---\\ Liste des exceptions du parefeu (FirewallRules) (O87) (20) - 3s
O87 - FAEL: "TCP Query User{CC976926-B27B-4BF4-BC80-674ECE5B7EEF}F:\nouveau dossier (4)\nouveau dossier (17)\twin2cs_windows_coolsky man\al-majd\twin2cs-v1.4-win32-nativo\twin2cs.exe" [In-None-P6-TRUE] .(...) -- F:\nouveau dossier (4)\nouveau dossier (17)\twin2cs_windows_coolsky man\al-majd\twin2cs-v1.4-win32-nativo\twin2cs.exe
O87 - FAEL: "UDP Query User{D4F86361-777A-4657-8D00-8ECCF40BE85E}F:\nouveau dossier (4)\nouveau dossier (17)\twin2cs_windows_coolsky man\al-majd\twin2cs-v1.4-win32-nativo\twin2cs.exe" [In-None-P17-TRUE] .(...) -- F:\nouveau dossier (4)\nouveau dossier (17)\twin2cs_windows_coolsky man\al-majd\twin2cs-v1.4-win32-nativo\twin2cs.exe
O87 - FAEL: "TCP Query User{2BE9092C-40FF-4E93-AD2A-7E4E61419BA8}F:\nouveau dossier (4)\nouveau dossier (17)\twin2cs_windows_coolsky man\al-majd\twin2cs-v1.3.6-win32-nativo\twin2cs.exe" [In-None-P6-TRUE] .(...) -- F:\nouveau dossier (4)\nouveau dossier (17)\twin2cs_windows_coolsky man\al-majd\twin2cs-v1.3.6-win32-nativo\twin2cs.exe
O87 - FAEL: "UDP Query User{3FFB94EB-DEB6-477F-B642-107D98FC59F8}F:\nouveau dossier (4)\nouveau dossier (17)\twin2cs_windows_coolsky man\al-majd\twin2cs-v1.3.6-win32-nativo\twin2cs.exe" [In-None-P17-TRUE] .(...) -- F:\nouveau dossier (4)\nouveau dossier (17)\twin2cs_windows_coolsky man\al-majd\twin2cs-v1.3.6-win32-nativo\twin2cs.exe
O87 - FAEL: "TCP Query User{DBDE3EA2-064D-4A8E-A506-27948D135A8D}C:\program files\videolan\vlc\vlc.exe" [In-None-P6-TRUE] .(.VideoLAN - VLC media player.) -- C:\program files\videolan\vlc\vlc.exe
O87 - FAEL: "UDP Query User{56FF9919-5525-4D0E-B274-C41CA8302232}C:\program files\videolan\vlc\vlc.exe" [In-None-P17-TRUE] .(.VideoLAN - VLC media player.) -- C:\program files\videolan\vlc\vlc.exe
O87 - FAEL: "TCP Query User{79A6B10D-C7C8-4E4E-9AE6-97F299B7EC9F}F:\nouveau dossier (11)\oscam\oscam.exe" [In-None-P6-TRUE] .(...) -- F:\nouveau dossier (11)\oscam\oscam.exe
O87 - FAEL: "UDP Query User{8C023B28-4CE1-49F1-8980-31ABFF4862E0}F:\nouveau dossier (11)\oscam\oscam.exe" [In-None-P17-TRUE] .(...) -- F:\nouveau dossier (11)\oscam\oscam.exe
O87 - FAEL: "{B98CB60D-DD96-49B0-AD71-3E6D3D8C5EEB}" [In-None-P6-TRUE] .(.Realtek Semiconductor Corp. - RtWLan ( For Vista / Win7) Application(Exte.) -- C:\Program Files\Realtek\RTL8187 Wireless LAN Utility\RtWLan.exe
O87 - FAEL: "{D98A4C9F-B599-45CC-AC0B-28CF553A6586}" [In-None-P17-TRUE] .(.Realtek Semiconductor Corp. - RtWLan ( For Vista / Win7) Application(Exte.) -- C:\Program Files\Realtek\RTL8187 Wireless LAN Utility\RtWLan.exe
O87 - FAEL: "TCP Query User{30305929-FB93-4B43-82D8-16A04DBD895E}C:\program files\utorrent\utorrent.exe" [In-None-P6-TRUE] .(.BitTorrent, Inc. - µTorrent.) -- C:\program files\utorrent\utorrent.exe
O87 - FAEL: "UDP Query User{DA3029DD-7E36-4A26-808A-FF59D26F6F4B}C:\program files\utorrent\utorrent.exe" [In-None-P17-TRUE] .(.BitTorrent, Inc. - µTorrent.) -- C:\program files\utorrent\utorrent.exe
O87 - FAEL: "{207896FE-38A8-4E3B-ABCD-56770E62A424}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\aa\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{51133AA6-2B7D-4854-ADA6-8942515CD674}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\aa\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{8EE26466-C91E-4773-BA20-E6ED7AFC9D17}" [In-None-P6-TRUE] .(.CM&V Hackbart - DVBViewer Pro.) -- C:\Program Files\DVBViewer1\dvbviewer.exe
O87 - FAEL: "{AB777FDC-80AF-444F-B8A7-9DBD398C9C1F}" [In-None-P17-TRUE] .(.CM&V Hackbart - DVBViewer Pro.) -- C:\Program Files\DVBViewer1\dvbviewer.exe
O87 - FAEL: "TCP Query User{DC9EC887-26FB-490B-8DFE-C51711E9BD38}C:\program files\media player classic - home cinema\mpc-hc.exe" [In-None-P6-TRUE] .(.MPC-HC Team - Media Player Classic - Home Cinema.) -- C:\program files\media player classic - home cinema\mpc-hc.exe
O87 - FAEL: "UDP Query User{601A8E18-9203-4A0F-80D8-0322D99A0CE1}C:\program files\media player classic - home cinema\mpc-hc.exe" [In-None-P17-TRUE] .(.MPC-HC Team - Media Player Classic - Home Cinema.) -- C:\program files\media player classic - home cinema\mpc-hc.exe
O87 - FAEL: "{CBD9259E-67F7-4A27-B0AD-BF64FF0209B7}" [In-None-P6-TRUE] .(.AVAST Software - avast! NG front end.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
O87 - FAEL: "{F044E3A1-6FC3-4789-B17E-D117B2123022}" [In-None-P17-TRUE] .(.AVAST Software - avast! NG front end.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) (14) - 26s
SR - Auto [2011/06/22 09:53:36] [ 245760] Arp Intelligent Protection Service Service (AIPS) . (.Arcai.com.) - C:\Program Files\netcut\services\aips.exe
SR - Auto [2015/02/26 17:09:25] [ 50344] avast! Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - Auto [2015/02/26 17:09:20] [ 104416] avast! Firewall (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SS - Demand [2015/02/26 17:09:21] [ 3192344] AvastVBox COM Service (AvastVBoxSvc) . (.Avast Software.) - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
SS - Auto [2015/02/20 14:21:15] [ 116648] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - Demand [2015/02/20 14:21:15] [ 116648] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SR - Auto [2011/03/14 16:27:28] [ 271712] HWDeviceService.exe (HWDeviceService.exe) . (.Copyright (C) 2008.) - C:\ProgramData\DatacardService\HWDeviceService.exe
SR - Auto [2015/05/29 02:42:32] [ 157824] IHProtect Service (IHProtect Service) . (.XTab system.) - C:\Program Files\XTab\ProtectService.exe
SS - Disabled [2015/02/26 16:47:53] [ 656976] MobiConnect. OUC (MobiConnect. RunOuc) . (...) - C:\Program Files\MobiConnect\UpdateDog\ouc.exe
SS - Demand [2015/05/23 12:47:33] [ 148080] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - Auto [2009/12/07 13:49:24] [ 40960] Realtek87B (Realtek87B) . (.Realtek.) - C:\Program Files\Realtek\RTL8187 Wireless LAN Utility\RtlService.exe
SR - Auto [2015/04/22 22:09:00] [ 1813504] ShopperPro Update (SPBIUpd) . (.ShopperPro.) - C:\Program Files\Common Files\ShopperPro\spbiu.exe
SR - Auto [2015/05/29 08:04:32] [ 487424] WindowsMangerProtect Service (WindowsMangerProtect) . (.Windows SysTool.) - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe
SR - Auto [2014/08/23 13:53:54] [ 1510248] YouTubeAcceleratorService (YouTubeAcceleratorService) . (.GOOBZO.) - C:\Program Files\YouTube Accelerator\YouTubeAcceleratorService.exe

---\\ Recherche de clés de registre Tracing (O100) (12) - 4s
HKLM\SOFTWARE\Microsoft\Tracing\EpicScale_RASAPI32 =>PUP.Optional.EpicScale
HKLM\SOFTWARE\Microsoft\Tracing\EpicScale_RASMANCS =>PUP.Optional.EpicScale
HKLM\SOFTWARE\Microsoft\Tracing\iwebar-bg_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iwebar-bg_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iWebar-codedownloader_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iWebar-codedownloader_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iWebar-novainstaller_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iWebar-novainstaller_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iWebar-nova_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iWebar-nova_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\PodoWebSetup_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Microsoft\Tracing\PodoWebSetup_RASMANCS =>PUP.Optional.Sambreel

---\\ Scan Additionnel (O88) (85) - 0s
C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe =>PUP.Optional.Fuyu
C:\Program Files\XTab\ProtectService.exe =>PUP.Optional.MiuiTab
C:\Program Files\Sense\Sense-nova.exe =>PUP.Optional.CrossRider
C:\Program Files\Common Files\ShopperPro\spbiu.exe =>PUP.Optional.ShopperPro
C:\Program Files\YouTube Accelerator\YouTubeAcceleratorService.exe =>PUP.Optional.Goobzo
C:\Program Files\Mozilla Firefox\browser\searchplugins\omniboxes.xml =>PUP.Optional.Omniboxes
C:\Users\aa\AppData\Roaming\Mozilla\Firefox\Profiles\gyh20x6l.default\extensions\quick_searchff@gmail.com =>PUP.Optional.QuickSearch
C:\Users\aa\AppData\Roaming\Mozilla\Firefox\Profiles\gyh20x6l.default\extensions\sweetsearch@gmail.com =>PUP.Optional.SweetSearch
C:\Users\aa\AppData\Roaming\Mozilla\Firefox\Profiles\gyh20x6l.default\extensions\{4C59F3E5-BBD0-4344-8DD2-30866FA0B31E} =>PUP.Optional.Goobzo
C:\Users\aa\AppData\Roaming\Mozilla\Firefox\Profiles\gyh20x6l.default\extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF} =>PUP.Optional.Goobzo
C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate
C:\Program Files\iWebar\iWebar-bho.dll =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551110} =>PUP.Optional.CrossRider
C:\Program Files\Sense\Sense-bho.dll =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821192} =>PUP.Optional.CrossRider
C:\Program Files\XTab\SupTab.dll =>PUP.Optional.LuckyTab
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F} =>PUP.Optional.LuckyTab
C:\ProgramData\ShopperPro\ShopperPro.dll =>PUP.Optional.ShopperPro
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} =>PUP.Optional.ShopperPro
C:\ProgramData\YTAHelper\YTAHelper.dll =>PUP.Optional.Goobzo
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71} =>PUP.Optional.Goobzo
HKLM\SYSTEM\CurrentControlSet\Services\IHProtect Service =>PUP.Optional.AgentODR
C:\Program Files\XTab\ProtectService.exe =>PUP.Optional.AgentODR
HKLM\SYSTEM\CurrentControlSet\Services\SPBIUpd =>PUP.Optional.ShopperPro
HKLM\SYSTEM\CurrentControlSet\Services\Update Air Globe =>PUP.Optional.AirGlobe
HKLM\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect =>PUP.Optional.Fuyu
HKLM\SYSTEM\CurrentControlSet\Services\YouTubeAcceleratorService =>PUP.Optional.Goobzo
C:\Windows\Tasks\4bd3ec58-c42f-443e-8edb-0a5b2d035380-5.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-6.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-7.job =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\4bd3ec58-c42f-443e-8edb-0a5b2d035380-5 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-6 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\fbe97edd-eb2f-44c5-b8f7-f44c01ece1de-7 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\ShopperPro =>PUP.Optional.ShopperPro
C:\Windows\System32\Tasks\ShopperProJSUpd =>PUP.Optional.ShopperPro
C:\Windows\System32\Tasks\YTAHelper =>PUP.Optional.Goobzo
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iWebar =>PUP.Optional.CrossRider
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\omniboxes uninstall =>PUP.Optional.Omniboxes
HKLM\SOFTWARE\delta-homesSoftware =>PUP.Optional.DeltaHomes
HKLM\SOFTWARE\ErrorLists-crcodedownloader =>PUP.Optional.CrossRider
HKLM\SOFTWARE\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Goobzo =>PUP.Optional.Goobzo
HKLM\SOFTWARE\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\iWebar =>PUP.Optional.CrossRider
HKLM\SOFTWARE\omniboxesSoftware =>PUP.Optional.Omniboxes
HKLM\SOFTWARE\RegistryReviver =>PUP.Optional.RegistryReviver
HKLM\SOFTWARE\ShopperPro =>PUP.Optional.ShopperPro
HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKCU\SOFTWARE\EpicScale =>PUP.Optional.EpicScale
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Goobzo =>PUP.Optional.Goobzo
HKCU\SOFTWARE\ShopperPro =>PUP.Optional.ShopperPro
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\iWebar =>PUP.Optional.CrossRider =>PUP.Optional.CrossRider
C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\iWebar =>PUP.Optional.CrossRider
C:\ProgramData\EpicScale =>PUP.Optional.EpicScale
C:\ProgramData\IHProtectUpDate =>PUP.Optional.AgentODR
C:\ProgramData\ShopperPro =>PUP.Optional.ShopperPro
C:\ProgramData\WindowsMangerProtect =>PUP.Optional.Fuyu
C:\ProgramData\YTAHelper =>PUP.Optional.Goobzo
C:\Program Files\Common Files\ShopperPro =>PUP.Optional.ShopperPro
C:\Users\aa\AppData\Roaming\omniboxes =>PUP.Optional.Omniboxes
C:\Users\aa\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
C:\Users\aa\AppData\Local\CrashRpt =>.Legitimate.CrashReports
C:\Users\aa\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Users\aa\AppData\Local\Installer =>PUP.Optional.InstallPedia
C:\Windows\System32\drivers\{90280f97-bcf9-4f01-b773-3eeda0515e95}Gw.sys =>PUP.Optional.LinkiDoo
HKLM\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\Open\command [Bad: C:\Program Files\Mozilla Firefox\firefox.exe http://www.delta-homes.com/] =>PUP.Optional.DeltaHomes
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\Open\command [Bad: C:\Program Files\Internet Explorer\iexplore.ex http://www.omniboxes.com/] =>PUP.Optional.Omniboxes
HKLM\SOFTWARE\Microsoft\Tracing\EpicScale_RASAPI32 =>PUP.Optional.EpicScale
HKLM\SOFTWARE\Microsoft\Tracing\EpicScale_RASMANCS =>PUP.Optional.EpicScale
HKLM\SOFTWARE\Microsoft\Tracing\iwebar-bg_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iwebar-bg_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iWebar-codedownloader_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iWebar-codedownloader_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iWebar-novainstaller_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iWebar-novainstaller_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iWebar-nova_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\iWebar-nova_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\PodoWebSetup_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Microsoft\Tracing\PodoWebSetup_RASMANCS =>PUP.Optional.Sambreel

---\\ Récapitulatif des éléments trouvées sur votre station (26) - 0s
http://www.nicolascoolman.fr/trojan-fuyu/ =>PUP.Optional.Fuyu
http://www.nicolascoolman.fr/blog =>PUP.Optional.MiuiTab
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/pup-shopperpro/ =>PUP.Optional.ShopperPro
http://www.nicolascoolman.fr/pup-goobzo/ =>PUP.Optional.Goobzo
http://www.nicolascoolman.fr/hijacker-qvo6/ =>PUP.Optional.Qvo6
http://www.nicolascoolman.fr/blog =>PUP.Optional.Omniboxes
http://www.nicolascoolman.fr/blog =>PUP.Optional.QuickSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.SweetSearch
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/blog =>PUP.Optional.LuckyTab
http://www.nicolascoolman.fr/blog =>PUP.Optional.EpicScale
http://www.nicolascoolman.fr/blog =>PUP.Optional.AgentODR
http://www.nicolascoolman.fr/blog =>PUP.Optional.AirGlobe
http://www.nicolascoolman.fr/blog =>PUP.Optional.DeltaHomes
http://www.nicolascoolman.fr/blog =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/blog =>PUP.Optional.RegistryReviver
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/adware-opencandy/ =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/blog =>.Legitimate.CrashReports
http://www.nicolascoolman.fr/adware-installpedia/ =>PUP.Optional.InstallPedia
http://www.nicolascoolman.fr/pup-linkidoo/ =>PUP.Optional.LinkiDoo
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart
http://www.nicolascoolman.fr/pup-dosearches/ =>PUP.Optional.DoSearches
http://www.nicolascoolman.fr/blog =>PUP.Optional.Sambreel

~ End of the scan, 18424 items in 112 seconds (1153)(0)()

Publicité


Signaler le contenu de ce document

Publicité