cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.7.24.101 Par Nicolas Coolman (2015/07/24)
~ Démarré par merouche (Administrator) (2015/07/26 00:44:55)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\merouche\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\merouche\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
~ Windows 7, 32-bit (Build 7600)

---\\ Navigateurs Internet (2) - 0s
GCIE: Google Chrome v42.0.2311.152
MSIE: Internet Explorer v8.0.7600.16385

---\\ Informations sur les produits Windows (4) - 25s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK

---\\ Logiciels de protection (1) - 2s
Avast Internet Security v10.2.2218

---\\ Logiciels de protection et autres (Superflus) (1) - 2s
McAfee Security Scan Plus v3.0.285.6

---\\ Surveillance de Logiciels (2) - 2s
Adobe Flash Player 18 NPAPI
Adobe Reader XI

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2516.332 MB (18% free)
~ System Restore: Activé (Enable)
~ System drive C: has 84 GB free of 149 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: MEROUCHE-PC
~ User Name: merouche
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 0s
~ Drive C: has 84 GB free of 149 GB (System)
~ Drive D: has 75 GB free of 149 GB
~ Drive E: has 58 GB free of 176 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (24) - 2s
[MD5.15BC38A7492BEFE831966ADB477CF76F] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2613248]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [96256]
[MD5.0D874F3BC751CC2198AF2E6783FB8B35] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [977920]
[MD5.8EC6A4AB12B8F3759E21F8E3A388F2CF] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [285696]
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [193024]
[MD5.D8714A5FB3141F8226D16861F20C5AC4] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [19968]
[MD5.DDC040FDB01EF1712A6B13E52AFB104C] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [70656]
[MD5.BA6E70AA0E6091BC39DE29477D866A77] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [108544]
[MD5.8E09E52EE2E3CEB199EF3DD99CF9E3FB] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [78336]
[MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [101888]
[MD5.F4A054BE78AF7F410129C4B64B07DC9B] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [123392]
[MD5.DD52A733BF4CA5AF84562A5E2F963B91] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [187904]
[MD5.3795DCD21F740EE799FB7223234215AF] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1210432]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [78848]
[MD5.C5FF95883FFEF704D50C40D21CFB3AB5] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [133120]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [71168]
[MD5.CB39E896A2A83702D1737BFD402B3542] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [74240]
[MD5.58DF9D2481A56EDDE167E51B334D44FD] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [245328]

---\\ Processus lancés (20) - 4s
[MD5.64710E6C92C0D3893EDBDA84FBCD3188] - (.AMD - AMD External Events Service Module.) -- C:\Windows\System32\atiesrxx.exe [212992] [PID.1060]
[MD5.6D3DF793AFF79B47FF6DB51F5C43195A] - (.AMD - AMD External Events Client Module.) -- C:\Windows\System32\atieclxx.exe [626688] [PID.1432]
[MD5.D38DFE3B2B394AF3955A2B4665D4E74D] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [141968] [PID.1440]
[MD5.C1053D4BF464B21C39DF0819DD3BD936] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [924304] [PID.1500]
[MD5.2870CE9BFD6BA66FB0FFC6D11C9E41A7] - (.Arcai.com - Arp Intelligent Protection Service.) -- C:\Program Files\netcut\services\aips.exe [262144] [PID.1560]
[MD5.7016A5D74459577060366F7D1E44F495] - (.FileProperties_CompanyName - FileProperties_FileDescription.) -- C:\Program Files\fun4u\fun4u_notification_service.exe [1417216] [PID.2120] =>PUP.Optional.CrossRider
[MD5.7B3E7A157114E211FB23CDB69C46211C] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [5995152] [PID.2320]
[MD5.A6CE73469591554279DA63BE715DBC93] - (.Andrea Electronics Corporation - Andrea filters APO access service (32-bit).) -- C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe [87968] [PID.2392]
[MD5.C1053D4BF464B21C39DF0819DD3BD936] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [924304] [PID.2400]
[MD5.E12A0003B8EA66E51C1C298537661CAB] - (.XTab system - ProtectSvc.exe.) -- C:\Program Files\MiuiTab\ProtectService.exe [125056] [PID.2708] =>PUP.Optional.MiuiTab
[MD5.9927E906D7997D22E67E476710127070] - (.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe [2117448] [PID.2824]
[MD5.0959284C7BB4425A85B8CEB45B51C92C] - (.SearchProtect - CmdShell.exe.) -- C:\Program Files\MiuiTab\CmdShell.exe [29312] [PID.2836] =>PUP.Optional.MiuiTab
[MD5.953047FD972669AA8433FD939E998BAF] - (.Aztec Media Inc - SmdmF Service.) -- C:\Program Files\Assets Manager\smdmf\SmdmFService.exe [3570704] [PID.3036] =>PUP.Optional.SystemK
[MD5.9B92ED281343A278E3A6AB6C9B21A369] - (.Baidu Inc. - spark.) -- C:\Program Files\baidu\Spark\sparkservice.exe [86840] [PID.3132]
[MD5.65C6AA484AD2287D20541C7735989437] - (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496] [PID.3328]
[MD5.F7593C18BE0493DF2BE3B3245545EB9C] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\AMD\ATI.ACE\Core-Static\MOM.exe [299520] [PID.3356]
[MD5.B1AD855A9EE2BED8F96E5C3285EBA4AB] - (.DriverPack Solution - DRP Su Updater.) -- C:\Users\merouche\AppData\Roaming\DRPSu\DrvUpdater.exe [192856] [PID.3444]
[MD5.06DCDE310630A7E8BAB528168C29C7AF] - (.ATI Technologies Inc. - Catalyst Control Center: Host application.) -- C:\Program Files\AMD\ATI.ACE\Core-Static\CCC.exe [299520] [PID.3540]
[MD5.E78FA80D4D7FD757A53781E17A3B7402] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3487128] [PID.3788]
[MD5.A2774415B5CD0EDFE50257F9A70202BB] - (.XTab system - SupHPNot.exe.) -- C:\Program Files\MiuiTab\HPNotify.exe [673920] [PID.6284] =>PUP.Optional.MiuiTab

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (16) - 3s
P2 - EXT FILE: (...) -- C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\extensions\{e02a28a6-3b1b-4db6-97b9-9df9ceaa4aab}.xpi
P2 - EXT FILE: (...) -- C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\searchplugins\bingp.xml
P2 - EXT FILE: (...) -- C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\searchplugins\default-search.xml
P2 - EXT FILE: (...) -- C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\searchplugins\mystartsearch.xml =>PUP.Optional.StartSearch
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\default-search.xml
P2 - EXT: (.Buca Apps - Radio Canyon.) -- C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\extensions\1853a82e-ce44-4a8c-a6fe-9bcf74a65575@4b6b1c16-5f0a-4ef0-866f-b063e235ef97.com
P2 - EXT: (. - SSalePlus.) -- C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\extensions\ilMD@F.org
P2 - EXT: (.lightningnewtab.com - Istart.) -- C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\extensions\istart_ffnt@gmail.com =>PUP.Optional.LightningNewTab
P2 - EXT: (. - fun4u.) -- C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\extensions\S0YgclYmK@gmail.com
P2 - EXT: (.lipton - Search Enginer.) -- C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\extensions\searchengine@gmail.com
P2 - EXT: (. - Mozilla Firefox Hotfixer.) -- C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\extensions\veggy@veggyAddon.com =>PUP.Optional.VeggyAddon
P2 - EXT: (. - W-Foxxer.) -- C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\extensions\{e1bab803-e6d4-4b10-ba4f-3a477d22209a}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_18_0_0_209.dll
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.2] - (.VideoLAN.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (12) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/ =>PUP.Optional.Qvo6
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/ =>PUP.Optional.Qvo6
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Proxy Management (R5) (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = www.freevideoproxy.com:80
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object de navigateur (BHO) (O2) (4) - 1s
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: 71c6c330e74701318a6f0adb73eaa5ae0060804 - {11111111-1111-1111-1111-110611081104} . (.Radio Canyon - Radio Canyon BHO.) -- C:\Program Files\Radio Canyon\Radio Canyon-bho.dll =>PUP.Optional.RadioCanyon
O2 - BHO: LuckyTab Class - {51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F} . (.Thinknice Co. Limited - SupTab setup package.) -- C:\Program Files\MiuiTab\SupTab.dll =>PUP.Optional.LuckyTab
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Avast Software s.r.o. - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

---\\ Applications lancées au démarrage du sytème (O4) (33) - 3s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe
O4 - HKLM\..\Run: [USB Security] . (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
O4 - HKLM\..\Run: [AvastUI.exe] . (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe
O4 - HKCU\..\Run: [DrvUpdater] . (.DriverPack Solution - DRP Su Updater.) -- C:\Users\merouche\AppData\Roaming\DRPSu\DrvUpdater.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\merouche\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [Alarm Clock Pro.exe] C:\Program Files\Koingo Software, Inc\Alarm Clock Pro\Alarm Clock Pro.exe (.not file.)
O4 - HKCU\..\Run: [AdobeBridge] (Orphean)
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files\Steam\Steam.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_F148662BA14968B93E6D86C287AE8AE2] . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - HKCU\..\Run: [DellSystemDetect] . (.Dell - Dell System Detect.) -- C:\Users\merouche\AppData\Local\Apps\2.0\H60KTREA.9ET\VZX3X2XV.VKP\dell..tion_e30b47f5d4a30e9e_0005.000c_1df9a4898fae00de\DellSystemDetect.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-284228270-2566594743-542274357-1000\..\Run: [DrvUpdater] . (.DriverPack Solution - DRP Su Updater.) -- C:\Users\merouche\AppData\Roaming\DRPSu\DrvUpdater.exe
O4 - HKUS\S-1-5-21-284228270-2566594743-542274357-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-284228270-2566594743-542274357-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-21-284228270-2566594743-542274357-1000\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\merouche\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-284228270-2566594743-542274357-1000\..\Run: [Alarm Clock Pro.exe] C:\Program Files\Koingo Software, Inc\Alarm Clock Pro\Alarm Clock Pro.exe (.not file.)
O4 - HKUS\S-1-5-21-284228270-2566594743-542274357-1000\..\Run: [AdobeBridge] (Orphean)
O4 - HKUS\S-1-5-21-284228270-2566594743-542274357-1000\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files\Steam\Steam.exe
O4 - HKUS\S-1-5-21-284228270-2566594743-542274357-1000\..\Run: [GoogleChromeAutoLaunch_F148662BA14968B93E6D86C287AE8AE2] . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - HKUS\S-1-5-21-284228270-2566594743-542274357-1000\..\Run: [DellSystemDetect] . (.Dell - Dell System Detect.) -- C:\Users\merouche\AppData\Local\Apps\2.0\H60KTREA.9ET\VZX3X2XV.VKP\dell..tion_e30b47f5d4a30e9e_0005.000c_1df9a4898fae00de\DellSystemDetect.exe

---\\ Modification Domaine/Adresses DNS (O17) (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) (1) - 0s
O20 - AppInit_DLLs: . (.Auteurs - .) - C:\Windows\System32\

---\\ Liste des services NT non Microsoft et non désactivés (O23) (16) - 67s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (32-bit).) - C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
O23 - Service: Arp Intelligent Protection Service (AIPS) . (.Arcai.com - Arp Intelligent Protection Service.) - C:\Program Files\netcut\services\aips.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: Avast Antivirus (avast! Antivirus) . (.Avast Software s.r.o. - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) . (.Avast Software s.r.o. - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: F06DEFF2-5B9C-490D-910F-35D3A91196222 (F06DEFF2-5B9C-490D-910F-35D3A91196222) . (.Aztec Media Inc - SmdmFConfiguration.) - C:\Program Files\Assets Manager\smdmf\smdmfmgrc3.cfg =>PUP.Optional.SystemK
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe =>PUP.Optional.GlobalUpdate
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: IHProtect Service (IHProtect Service) . (.XTab system - ProtectSvc.exe.) - C:\Program Files\MiuiTab\ProtectService.exe =>PUP.Optional.AgentODR
O23 - Service: Ma-Config Agent (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
O23 - Service: Reimage Real Time Protector (ReimageRealTimeProtector) . (...) - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe (.not file.) =>PUP.Optional.ReImageRepair
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SmdmF Service (SmdmFService) . (.Aztec Media Inc - SmdmF Service.) - C:\Program Files\Assets Manager\smdmf\SmdmFService.exe =>PUP.Optional.SystemK
O23 - Service: Baidu Spark Service (SparkSvc) . (.Baidu Inc. - spark.) - C:\Program Files\baidu\Spark\sparkservice.exe

---\\ Tâches planifiées en automatique (O39) (39) - 3s
O39 - APT: - (...) -- C:\Windows\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-1.job [3088] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-11.job [4816] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-5.job [2422] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-5_user.job [2422] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-6.job [5158] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-7.job [5158] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: - (...) -- C:\Windows\Tasks\Driver Robot.job [340]
O39 - APT: - (...) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-284228270-2566594743-542274357-1000Core.job [918]
O39 - APT: - (...) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-284228270-2566594743-542274357-1000UA.job [940]
O39 - APT: - (...) -- C:\Windows\Tasks\fun4u_notification_service.job [1278]
O39 - APT: - (...) -- C:\Windows\Tasks\fun4u_updating_service.job [640]
O39 - APT: - (...) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job [934] =>PUP.Optional.GlobalUpdate
O39 - APT: - (...) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job [938] =>PUP.Optional.GlobalUpdate
O39 - APT: - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1056]
O39 - APT: - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1060]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-1 [6118] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\System32\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-11 [7846] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\System32\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-5 [5452] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\System32\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-5_user [5460] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\System32\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-6 [8186] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\System32\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-7 [8188] =>PUP.Optional.CrossRider
O39 - APT: - (...) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3874]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3940]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\Driver Robot [3128]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-284228270-2566594743-542274357-1000Core [3554]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-284228270-2566594743-542274357-1000UA [3922]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\fun4u_notification_service [4312]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\fun4u_updating_service [3676]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore [3682] =>PUP.Optional.GlobalUpdate
O39 - APT: - (...) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA [3936] =>PUP.Optional.GlobalUpdate
O39 - APT: - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3804]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4056]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\nod ta9ra [3348]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\ReimageUpdater [4286] =>PUP.Optional.ReImageRepair
O39 - APT: - (...) -- C:\Windows\System32\Tasks\SparkUpdater [4042]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\{8CEEB1D7-89A0-4A59-902D-49BE7AB275EF} [3128]
O39 - APT: - (...) -- C:\Windows\System32\Tasks\{E03EF14D-EA9A-4936-B558-9DE6F1053EC7} [3112]

---\\ Logiciels installés (O42) (82) - 11s
O42 - Logiciel: Package de pilotes Windows - Advanced Micro Devices, Inc. (amdkmdap) Displa - (.Advanced Micro Devices, Inc..) [HKLM] -- 25B12CDC138BCBC4CB76F6B7B1CCC35C2FD1B02E
O42 - Logiciel: Package de pilotes Windows - Qualcomm Atheros, Inc. (Ak27x86) Net (09/04/2 - (.Qualcomm Atheros, Inc..) [HKLM] -- 2ECF437D11A40B116F7E140B4E1F9ECC003543AF
O42 - Logiciel: Package de pilotes Windows - Atheros Communications Inc. (athr) Net (06/05 - (.Atheros Communications Inc..) [HKLM] -- 65EC89E4C71B7875551CEB7D80DED8D330740559
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI
O42 - Logiciel: Avast Internet Security - (.AVAST Software.) [HKLM] -- Avast
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: French App Name - (.Adobe Systems Incorporated.) [HKLM] -- com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Faster Light - (.Faster Light.) [HKLM] -- Faster Light =>PUP.Optional.Sambreel
O42 - Logiciel: FormatFactory 3.1.1 - (.Free Time.) [HKLM] -- FormatFactory
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM] -- Internet Download Manager
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM] -- McAfee Security Scan
O42 - Logiciel: PC Plus - (.Anvisoft.) [HKLM] -- PC Plus
O42 - Logiciel: PhotoScape - (...) [HKLM] -- PhotoScape
O42 - Logiciel: Pro Evolution Soccer 2015, âåðñèÿ 1.01 - (.=×óâàê=.) [HKLM] -- Pro Evolution Soccer 2015_is1
O42 - Logiciel: Radio Canyon - (.Radio Canyon.) [HKLM] -- Radio Canyon =>PUP.Optional.RadioCanyon
O42 - Logiciel: Raptr - (...) [HKLM] -- Raptr
O42 - Logiciel: SecretFolder version 3.6.0.0 - (.http://ohsoft.net/.) [HKLM] -- SecretFolder_is1
O42 - Logiciel: Settings Manager - (.Aztec Media Inc.) [HKLM] -- Settings Manager =>PUP.Optional.SystemK
O42 - Logiciel: Baidu Browser - (.Baidu Inc..) [HKLM] -- Spark
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM] -- Steam
O42 - Logiciel: Topaz InFocus - (.Topaz Labs.) [HKLM] -- Topaz InFocus
O42 - Logiciel: Topaz Adjust 5 - (.Topaz Labs, LLC.) [HKLM] -- Topaz Adjust 5
O42 - Logiciel: Topaz B&W Effects - (.Topaz Labs, LLC.) [HKLM] -- Topaz BW Effects 2
O42 - Logiciel: Topaz Clarity - (.Topaz Labs, LLC.) [HKLM] -- Topaz Clarity
O42 - Logiciel: Topaz Clean 3 - (.Topaz Labs, LLC.) [HKLM] -- Topaz Clean 3
O42 - Logiciel: Topaz DeJpeg 4 - (.Topaz Labs, LLC.) [HKLM] -- Topaz DeJpeg 4
O42 - Logiciel: Topaz DeNoise 5 - (.Topaz Labs, LLC.) [HKLM] -- Topaz DeNoise 5
O42 - Logiciel: Topaz Detail 2 - (.Topaz Labs.) [HKLM] -- Topaz Detail 2 =>PUP.Optional.Multiplug
O42 - Logiciel: Topaz Detail 3 - (.Topaz Labs, LLC.) [HKLM] -- Topaz Detail 3 =>PUP.Optional.Multiplug
O42 - Logiciel: Topaz Fusion Express 2 - (.Topaz Labs, LLC.) [HKLM] -- Topaz Fusion Express 2
O42 - Logiciel: Topaz InFocus - (.Topaz Labs, LLC.) [HKLM] -- Topaz InFocus
O42 - Logiciel: Topaz Lens Effects - (.Topaz Labs, LLC.) [HKLM] -- Topaz Lens Effects
O42 - Logiciel: Topaz ReMask 2 - (.Topaz Labs.) [HKLM] -- Topaz ReMask 2
O42 - Logiciel: Topaz ReMask 4 - (.Topaz Labs, LLC.) [HKLM] -- Topaz ReMask 4
O42 - Logiciel: Topaz ReStyle - (.Topaz Labs, LLC.) [HKLM] -- Topaz ReStyle
O42 - Logiciel: Topaz Simplify 3 - (.Topaz Labs.) [HKLM] -- Topaz Simplify 3
O42 - Logiciel: Topaz Simplify 4 - (.Topaz Labs, LLC.) [HKLM] -- Topaz Simplify 4
O42 - Logiciel: Topaz Star Effects - (.Topaz Labs, LLC.) [HKLM] -- Topaz Star Effects
O42 - Logiciel: Pro Evolution Soccer 2015 DataPack v4.0 - (...) [HKLM] -- UHJvRXZvbHV0aW9uU29jY2VyMjAxNQ==_is1
O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM] -- USB Disk Security_is1
O42 - Logiciel: VLC media player 2.1.2 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: WinDjView 1.0.3 - (.Andrew Zhezherun.) [HKLM] -- WinDjView
O42 - Logiciel: WinRAR 5.01 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM] -- {11087D24-567D-7D88-69C6-D7A08B5F4C47}
O42 - Logiciel: OpenOffice 4.1.1 - (.Apache Software Foundation.) [HKLM] -- {121727D5-FDF3-4723-BA57-EB383440ED72}
O42 - Logiciel: AppenzelleElite - (.AppenzelleElite.) [HKLM] -- {12DA0E6F-5543-440C-BAA2-28BF01070AFA}{f5653603}
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7}
O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {2188D50C-BA8A-47AD-8477-17B5BE12532D}
O42 - Logiciel: 7-Zip 9.20 - (.Igor Pavlov.) [HKLM] -- {23170F69-40C1-2701-0920-000001000000}
O42 - Logiciel: Skype™ 7.6 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM] -- {3EB745BA-194F-4475-9164-B20BB2172395}
O42 - Logiciel: Topaz Adjust - (.Topaz Labs.) [HKLM] -- {59C2E0E4-0859-4EC1-BCD3-53DBCEFE7AFA}
O42 - Logiciel: Topaz InFocus - (.Topaz Labs.) [HKLM] -- {5BDEA9E0-E55B-45A7-93F7-6B8F68F851E5}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: AMD Wireless Display v3.0 - (.Advanced Micro Devices, Inc..) [HKLM] -- {7B6DB690-4552-9EDC-40F3-4F73B2B98EB1}
O42 - Logiciel: PESMix 2015 Patch V2.0 CAN Edition Save - (.FTP Team.) [HKLM] -- {7D25F2DF-8923-40EB-AA15-B32161A7CF67}
O42 - Logiciel: Topaz Clean 3 - (.Topaz Labs.) [HKLM] -- {85E00941-FDFF-4796-A3B8-3ACC766FFCA5}
O42 - Logiciel: Topaz Simplify 3 - (.Topaz Labs.) [HKLM] -- {8A1EBF29-7CF8-471E-B90B-95FF36AC8248}
O42 - Logiciel: Topaz DeJpeg 4 - (.Topaz Labs.) [HKLM] -- {9E146BA1-26DD-4C3B-9F0F-90F2E3CEC9D2}
O42 - Logiciel: Topaz DeNoise 5 - (.Topaz Labs.) [HKLM] -- {9E82D1DB-3AFB-4D18-A221-081F1B4B4789}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824147215}
O42 - Logiciel: Adobe Reader XI (11.0.12) - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1033-7B44-AB0000000001}
O42 - Logiciel: SSalePlus - (...) [HKLM] -- {B696F285-F54E-2524-58B1-E06A70ABE6BE} =>PUP.Optional.Multiplug
O42 - Logiciel: Topaz ReMask 2 - (.Topaz Labs.) [HKLM] -- {BCFFAF65-50B7-4419-AFCA-A7BA797E2C3D}
O42 - Logiciel: Topaz Vivacity - (.Topaz Labs LLC.) [HKLM] -- {C13A8E73-7E98-4295-BA94-6931701CD1F9}
O42 - Logiciel: Topaz Detail 2 - (.Topaz Labs.) [HKLM] -- {C921D7C4-24D7-4210-AEE9-DFC5DDC78428} =>PUP.Optional.Multiplug
O42 - Logiciel: Oracle VM VirtualBox 4.3.28 - (.Oracle Corporation.) [HKLM] -- {CCDB3D1D-F362-4CC6-8D36-DC74A74DF506}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM] -- {D427123D-6FED-3FF4-8490-49BAD3970C11}
O42 - Logiciel: French App Name - (.Adobe Systems Incorporated.) [HKLM] -- {DE3A9DC5-9A5D-6485-9662-347162C7E4CA}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM] -- {DE7D695C-2EC7-AFDF-F786-6E938DE83175}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: AMD Drag and Drop Transcoding - (.Advanced Micro Devices, Inc..) [HKLM] -- {F314F9AB-A0CF-C3A3-F746-F54ACC31326B}
O42 - Logiciel: Dell System Detect - (.Dell.) [HKCU] -- 73f463568823ebbe
O42 - Logiciel: DriverPack Solution Updater - (.DriverPack Solution.) [HKCU] -- DRPSu Updater

---\\ HKCU & HKLM Software Keys (157) - 11s
HKLM\SOFTWARE\36d7554d-007f-4862-9690-ee8f1d930ea9 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\39561238-9409-489b-83c5-a653558c1707 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\7-Zip
HKLM\SOFTWARE\7515494f-273a-bc7a-2d0c-bdb10b4cf83e =>PUP.Optional.CrossRider
HKLM\SOFTWARE\789f6689-385a-4e15-be37-318587126a52 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\AIM Toolbar
HKLM\SOFTWARE\AMD
HKLM\SOFTWARE\Anvisoft
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\Arcai
HKLM\SOFTWARE\AskPartnerNetwork =>Toolbar.Ask
HKLM\SOFTWARE\ATI
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\AVAST Software
HKLM\SOFTWARE\AviSynth
HKLM\SOFTWARE\Baidu
HKLM\SOFTWARE\Caphyon
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Creative Tech
HKLM\SOFTWARE\cybelsoft
HKLM\SOFTWARE\delta-homesSoftware =>PUP.Optional.DeltaHomes
HKLM\SOFTWARE\DTS
HKLM\SOFTWARE\Faster Light =>PUP.Optional.Sambreel
HKLM\SOFTWARE\FTP Team
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\ManyCam
HKLM\SOFTWARE\mcafeeupdater
HKLM\SOFTWARE\MimarSinan
HKLM\SOFTWARE\Mooii
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Netscape
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\OpenOffice
HKLM\SOFTWARE\Opera Software
HKLM\SOFTWARE\Oracle
HKLM\SOFTWARE\Pandora.TV
HKLM\SOFTWARE\Radio Canyon =>PUP.Optional.RadioCanyon
HKLM\SOFTWARE\Radio Canyon-nv =>PUP.Optional.RadioCanyon
HKLM\SOFTWARE\Raptr
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Reimage =>PUP.Optional.ReImageRepair
HKLM\SOFTWARE\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\SiteSee
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\SpeedBit
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\SuppHelpDir
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\TeamViewer
HKLM\SOFTWARE\Topaz Labs
HKLM\SOFTWARE\Topaz Labs LLC
HKLM\SOFTWARE\Uniblue =>PUP.Optional.Uniblue
HKLM\SOFTWARE\Valve
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\Volatile
HKLM\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKLM\SOFTWARE\Waves Audio
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\zbshareware
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AMD
HKCU\SOFTWARE\Anvisoft
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Arcai.com
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\Baidu
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\BoaSoftware
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Digimarc
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\Driver Robot
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\DRPSu Updater
HKCU\SOFTWARE\DSS
HKCU\SOFTWARE\Facebook
HKCU\SOFTWARE\Faster Light =>PUP.Optional.Sambreel
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\fun4u
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\HDRsoft
HKCU\SOFTWARE\HomeTab =>PUP.Optional.CertifiedToolbar
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Image Content Technology
HKCU\SOFTWARE\InstallCore =>PUP.Optional.InstallCore
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\Koingo Software
HKCU\SOFTWARE\Kromtech
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\ManyCam
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\mixlr
HKCU\SOFTWARE\Mooii
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OpenOffice
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Oracle
HKCU\SOFTWARE\pth264
HKCU\SOFTWARE\Radio Canyon-nv =>PUP.Optional.RadioCanyon
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Reimage =>PUP.Optional.ReImageRepair
HKCU\SOFTWARE\SearchProtectWS =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\TexMod
HKCU\SOFTWARE\TNT2 =>PUP.Optional.TidyNetwork
HKCU\SOFTWARE\Topaz Labs
HKCU\SOFTWARE\TopazLabs
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\UpdateStar
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VideoLAN
HKCU\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\Waves Audio
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Radio Canyon =>PUP.Optional.RadioCanyon

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (243) - 15s
O43 - CFD: 2014/12/16 07:37:27 - [0] D -- C:\Program Files\1f573b1a-311a-45d4-8376-9ce355065ef6 =>PUP.Optional.CrossRider
O43 - CFD: 2015/02/10 20:09:44 - [] D -- C:\Program Files\7-Zip
O43 - CFD: 2015/03/06 15:52:14 - [] D -- C:\Program Files\Adobe
O43 - CFD: 2015/03/06 15:48:20 - [] D -- C:\Program Files\Adobe Media Player
O43 - CFD: 2015/05/15 22:25:30 - [] D -- C:\Program Files\AMD
O43 - CFD: 2015/05/15 22:26:49 - [] D -- C:\Program Files\AMD AVT
O43 - CFD: 2015/05/15 15:01:36 - [] D -- C:\Program Files\Anvisoft
O43 - CFD: 2015/03/15 18:07:29 - [] D -- C:\Program Files\ASIO4ALL v2
O43 - CFD: 2015/02/11 15:00:53 - [] D -- C:\Program Files\Assets Manager =>PUP.Optional.SystemK
O43 - CFD: 2015/03/21 17:39:56 - [] D -- C:\Program Files\AVAST Software
O43 - CFD: 2015/02/03 18:38:53 - [] D -- C:\Program Files\baidu
O43 - CFD: 2015/07/23 19:26:37 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2014/12/04 03:07:05 - [] D -- C:\Program Files\DIFX
O43 - CFD: 2015/02/10 01:14:30 - [] D -- C:\Program Files\Driver Robot
O43 - CFD: 2014/12/04 03:05:07 - [0] D -- C:\Program Files\DriverPack Solution Installer 13
O43 - CFD: 2015/03/13 22:18:36 - [] D -- C:\Program Files\DSPRobotics
O43 - CFD: 2009/12/14 18:13:52 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 2014/12/04 16:46:53 - [] D -- C:\Program Files\Faster Light =>PUP.Optional.FasterLight
O43 - CFD: 2014/12/04 15:55:41 - [0] SHD -- C:\Program Files\Fichiers communs
O43 - CFD: 2014/12/04 16:43:00 - [] D -- C:\Program Files\FreeTime
O43 - CFD: 2015/04/02 19:23:08 - [] D -- C:\Program Files\fun4u
O43 - CFD: 2014/12/04 03:18:12 - [] D -- C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/05/19 04:13:56 - [] D -- C:\Program Files\Google
O43 - CFD: 2015/03/13 22:19:23 - [] D -- C:\Program Files\Image-Line
O43 - CFD: 2014/12/04 16:07:05 - [] D -- C:\Program Files\Intel
O43 - CFD: 2015/01/16 15:03:02 - [] D -- C:\Program Files\Internet Download Manager
O43 - CFD: 2009/12/14 18:13:52 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2014/12/04 17:32:04 - [] D -- C:\Program Files\ma-config.com
O43 - CFD: 2015/07/16 21:06:58 - [] D -- C:\Program Files\McAfee Security Scan
O43 - CFD: 2015/06/10 12:57:02 - [0] D -- C:\Program Files\Mega Shop =>PUP.Optional.MegaShop
O43 - CFD: 2015/06/30 06:37:41 - [] D -- C:\Program Files\Messenger for Desktop
O43 - CFD: 2009/07/14 08:50:24 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 2014/12/04 15:00:11 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2014/12/04 15:00:10 - [] D -- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 2014/12/04 14:58:29 - [] D -- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 2014/12/04 15:00:24 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 2014/12/04 14:59:56 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2015/06/18 08:09:23 - [] D -- C:\Program Files\MiuiTab =>PUP.Optional.MiuiTab
O43 - CFD: 2015/05/13 10:19:22 - [] D -- C:\Program Files\Movie Maker 2.6
O43 - CFD: 2015/04/17 20:42:03 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2014/12/04 15:00:14 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2015/02/10 20:09:03 - [] D -- C:\Program Files\MSECache
O43 - CFD: 2015/03/15 09:35:24 - [] D -- C:\Program Files\netcut
O43 - CFD: 2015/05/16 19:37:41 - [] D -- C:\Program Files\OpenOffice 4
O43 - CFD: 2015/02/10 20:10:39 - [] D -- C:\Program Files\Opera
O43 - CFD: 2015/07/06 22:13:09 - [] D -- C:\Program Files\Oracle
O43 - CFD: 2014/12/07 00:49:32 - [] D -- C:\Program Files\PANDORA.TV
O43 - CFD: 2015/05/19 00:12:51 - [] D -- C:\Program Files\PhotoScape
O43 - CFD: 2015/06/25 14:27:12 - [] D -- C:\Program Files\Pro Evolution Soccer 2015
O43 - CFD: 2014/12/31 22:47:07 - [] D -- C:\Program Files\Radio Canyon =>PUP.Optional.RadioCanyon
O43 - CFD: 2015/05/15 22:26:55 - [] D -- C:\Program Files\Raptr
O43 - CFD: 2014/12/04 16:04:28 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2009/07/14 05:52:30 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2015/05/15 12:20:24 - [] D -- C:\Program Files\Reimage =>PUP.Optional.ReImageRepair
O43 - CFD: 2015/06/26 11:23:09 - [] D -- C:\Program Files\SecretFolder
O43 - CFD: 2014/12/04 03:06:02 - [] D -- C:\Program Files\Settings Manager =>PUP.Optional.SettingsManager
O43 - CFD: 2015/07/05 02:33:40 - [] RD -- C:\Program Files\Skype
O43 - CFD: 2015/04/04 23:29:32 - [] D -- C:\Program Files\SSalePlus =>PUP.Optional.Multiplug
O43 - CFD: 2015/07/25 23:36:29 - [] D -- C:\Program Files\Steam
O43 - CFD: 2015/04/10 19:43:27 - [] D -- C:\Program Files\Topaz Labs
O43 - CFD: 2015/04/04 23:29:32 - [0] D -- C:\Program Files\TrimAppend
O43 - CFD: 2009/07/14 05:53:23 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2014/12/04 18:05:22 - [] D -- C:\Program Files\USB Disk Security
O43 - CFD: 2015/02/10 20:10:21 - [] D -- C:\Program Files\uTorrent
O43 - CFD: 2014/12/04 18:03:07 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 2015/02/10 20:10:07 - [] D -- C:\Program Files\WinDjView
O43 - CFD: 2009/12/14 18:13:51 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2009/12/14 18:13:52 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 2009/12/14 18:13:52 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2009/12/14 18:13:52 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2014/12/04 15:55:41 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2009/12/14 18:13:52 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 2009/07/14 05:52:32 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2009/12/14 18:13:52 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 2014/12/04 18:05:53 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 2015/02/10 20:09:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2014/12/04 15:52:28 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/12/04 15:52:37 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/03/15 18:07:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
O43 - CFD: 2015/05/15 22:26:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
O43 - CFD: 2015/05/15 15:01:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvisoft
O43 - CFD: 2015/03/15 18:07:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\arcai.com
O43 - CFD: 2015/03/21 18:04:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 2015/02/03 18:38:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu Browser
O43 - CFD: 2014/12/04 22:07:40 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/05/19 04:14:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/01/16 15:02:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2014/12/04 17:32:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ma-config.com
O43 - CFD: 2009/07/14 05:42:30 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/16 21:07:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
O43 - CFD: 2014/12/04 15:01:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2015/05/16 19:40:23 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
O43 - CFD: 2015/07/06 22:14:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
O43 - CFD: 2015/02/22 15:38:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PESMix 2015 Patch V2.0 CAN Edition Save
O43 - CFD: 2015/05/19 00:12:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
O43 - CFD: 2015/06/25 14:27:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2015
O43 - CFD: 2015/06/26 11:23:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SecretFolder
O43 - CFD: 2014/12/19 13:12:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/07/16 21:06:59 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/05/16 22:39:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2009/07/14 08:48:45 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/04/10 19:43:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Topaz Labs
O43 - CFD: 2014/12/04 18:05:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security
O43 - CFD: 2014/12/04 18:03:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/02/10 20:10:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDjView
O43 - CFD: 2014/12/04 18:05:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/04/04 22:58:53 - [] D -- C:\ProgramData\13112153066417625354
O43 - CFD: 2015/03/06 15:52:19 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2015/05/15 22:26:51 - [] D -- C:\ProgramData\AMD
O43 - CFD: 2009/07/14 05:53:55 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/05/15 22:32:12 - [] D -- C:\ProgramData\ATI
O43 - CFD: 2015/03/21 15:53:49 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2015/02/11 16:08:28 - [] D -- C:\ProgramData\Baidu
O43 - CFD: 2014/12/04 15:55:41 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2014/12/04 19:37:22 - [] D -- C:\ProgramData\Dell
O43 - CFD: 2009/07/14 05:53:55 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 05:53:55 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2014/12/04 15:55:41 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2009/07/14 05:53:55 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2014/12/04 18:19:36 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 2015/04/04 23:06:38 - [] D -- C:\ProgramData\IHProtectUpDate =>PUP.Optional.AgentODR
O43 - CFD: 2015/04/04 22:58:34 - [] D -- C:\ProgramData\ipjfidfmhihodilpbmkinkppniebcfgl
O43 - CFD: 2014/12/05 16:08:46 - [] D -- C:\ProgramData\KONAMI
O43 - CFD: 2014/12/04 17:32:02 - [] D -- C:\ProgramData\ma-config.com
O43 - CFD: 2015/01/03 17:39:50 - [] D -- C:\ProgramData\ManyCam
O43 - CFD: 2015/07/14 21:06:40 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/07/14 21:06:43 - [] D -- C:\ProgramData\McAfee Security Scan
O43 - CFD: 2014/12/04 15:55:41 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/07/25 11:11:10 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2014/12/04 15:01:23 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2014/12/04 15:55:41 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2014/12/04 17:55:17 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/03/06 15:52:23 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 2015/05/15 12:13:48 - [] D -- C:\ProgramData\Reimage Express =>PUP.Optional.ReImageRepair
O43 - CFD: 2015/05/15 12:21:25 - [] D -- C:\ProgramData\Reimage Protector =>PUP.Optional.ReImageRepair
O43 - CFD: 2015/07/05 02:33:54 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2015/07/26 00:10:46 - [] D -- C:\ProgramData\smdmf =>PUP.Optional.SystemK
O43 - CFD: 2009/07/14 05:53:55 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2015/02/22 18:21:07 - [] D -- C:\ProgramData\Steam
O43 - CFD: 2015/01/03 17:39:46 - [0] D -- C:\ProgramData\Temp
O43 - CFD: 2009/07/14 05:53:55 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/02/09 21:03:31 - [] D -- C:\ProgramData\Uniblue =>PUP.Optional.Uniblue
O43 - CFD: 2015/04/10 17:17:35 - [] HDC -- C:\ProgramData\{13795121-80CF-4D45-9175-8FD79D18EF7E}
O43 - CFD: 2015/04/10 17:16:59 - [] HDC -- C:\ProgramData\{529BBEB3-0369-420C-BD9C-37553D289203}
O43 - CFD: 2015/04/10 17:17:20 - [] HDC -- C:\ProgramData\{682FE305-7958-4875-9B95-34673E7151AD}
O43 - CFD: 2015/04/10 17:18:06 - [] HDC -- C:\ProgramData\{6C47B826-5902-49BB-BF6B-68F5716FD827}
O43 - CFD: 2015/04/10 18:02:42 - [] HDC -- C:\ProgramData\{7E8842F4-ECF1-457B-9B22-AA8299B810D9}
O43 - CFD: 2015/04/10 17:17:48 - [] HDC -- C:\ProgramData\{83F263BF-0076-4C4C-93DC-A3EA0CEB7184}
O43 - CFD: 2015/04/10 17:16:14 - [] HDC -- C:\ProgramData\{AB404F93-CDCE-40D9-8D4E-8606C84D368C}
O43 - CFD: 2015/04/10 17:16:40 - [] HDC -- C:\ProgramData\{E6AF2639-F710-4F5B-8830-95A396FB523F}
O43 - CFD: 2015/04/05 07:53:52 - [] D -- C:\ProgramData\{fb0a382c-186f-d6b6-fb0a-a382c186e0b0}
O43 - CFD: 2015/03/06 20:02:28 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 2015/03/06 15:45:10 - [] D -- C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 2014/12/04 18:41:13 - [] D -- C:\Program Files\Common Files\Atheros
O43 - CFD: 2014/12/04 03:17:01 - [] D -- C:\Program Files\Common Files\ATI Technologies
O43 - CFD: 2014/12/04 15:00:09 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 2014/12/04 15:00:22 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2009/07/14 03:37:05 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 2014/12/19 13:12:22 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 2009/07/14 03:37:05 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 2015/07/25 02:09:00 - [] D -- C:\Program Files\Common Files\Steam
O43 - CFD: 2014/12/04 14:58:13 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 2015/04/10 19:42:29 - [] D -- C:\Program Files\Common Files\Topaz Labs
O43 - CFD: 2015/05/13 10:23:10 - [] D -- C:\Program Files\Common Files\Windows Live
O43 - CFD: 2015/07/13 07:48:33 - [] D -- C:\Users\merouche\AppData\Roaming\Adobe
O43 - CFD: 2015/04/06 21:31:25 - [] D -- C:\Users\merouche\AppData\Roaming\Adobe Mini Bridge CS5
O43 - CFD: 2015/05/16 00:45:56 - [] D -- C:\Users\merouche\AppData\Roaming\AMD
O43 - CFD: 2015/05/15 22:32:12 - [] D -- C:\Users\merouche\AppData\Roaming\ATI
O43 - CFD: 2015/03/21 18:05:44 - [] D -- C:\Users\merouche\AppData\Roaming\AVAST Software
O43 - CFD: 2015/02/03 18:39:57 - [] D -- C:\Users\merouche\AppData\Roaming\Baidu
O43 - CFD: 2015/07/25 11:17:58 - [] D -- C:\Users\merouche\AppData\Roaming\DMCache
O43 - CFD: 2015/03/21 18:12:58 - [] D -- C:\Users\merouche\AppData\Roaming\Dropbox
O43 - CFD: 2014/12/04 03:05:07 - [] D -- C:\Users\merouche\AppData\Roaming\DRPSu
O43 - CFD: 2015/03/01 00:37:21 - [] D -- C:\Users\merouche\AppData\Roaming\FastStone
O43 - CFD: 2014/12/04 03:06:03 - [] D -- C:\Users\merouche\AppData\Roaming\FirefoxToolbar
O43 - CFD: 2015/03/13 22:18:37 - [] D -- C:\Users\merouche\AppData\Roaming\FlowStone
O43 - CFD: 2015/02/20 22:20:22 - [] D -- C:\Users\merouche\AppData\Roaming\FTP Team
O43 - CFD: 2015/02/20 21:15:09 - [] D -- C:\Users\merouche\AppData\Roaming\HDRsoft
O43 - CFD: 2014/12/04 15:56:25 - [] D -- C:\Users\merouche\AppData\Roaming\Identities
O43 - CFD: 2015/06/13 20:32:20 - [] D -- C:\Users\merouche\AppData\Roaming\IDM
O43 - CFD: 2014/12/04 03:16:39 - [] D -- C:\Users\merouche\AppData\Roaming\IHlpr =>PUP.Optional.IHlpr
O43 - CFD: 2015/03/13 22:19:26 - [] D -- C:\Users\merouche\AppData\Roaming\Image-Line
O43 - CFD: 2014/12/04 17:29:58 - [] D -- C:\Users\merouche\AppData\Roaming\Macromedia
O43 - CFD: 2015/01/03 17:45:07 - [] D -- C:\Users\merouche\AppData\Roaming\ManyCam
O43 - CFD: 2009/07/14 08:48:45 - [0] D -- C:\Users\merouche\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/04/09 05:57:26 - [] SD -- C:\Users\merouche\AppData\Roaming\Microsoft
O43 - CFD: 2014/12/04 17:55:43 - [] D -- C:\Users\merouche\AppData\Roaming\Mozilla
O43 - CFD: 2014/12/04 16:39:49 - [] D -- C:\Users\merouche\AppData\Roaming\MPC-HC
O43 - CFD: 2015/04/01 18:59:40 - [] D -- C:\Users\merouche\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
O43 - CFD: 2015/03/25 12:41:31 - [] D -- C:\Users\merouche\AppData\Roaming\OpenOffice
O43 - CFD: 2014/12/04 03:14:28 - [0] D -- C:\Users\merouche\AppData\Roaming\Opera Software
O43 - CFD: 2015/01/02 21:16:48 - [] D -- C:\Users\merouche\AppData\Roaming\PhotoScape
O43 - CFD: 2015/04/01 19:00:33 - [] D -- C:\Users\merouche\AppData\Roaming\PowerISO
O43 - CFD: 2015/05/15 22:26:55 - [] D -- C:\Users\merouche\AppData\Roaming\Raptr
O43 - CFD: 2015/03/15 18:07:34 - [] D -- C:\Users\merouche\AppData\Roaming\SecretFolder
O43 - CFD: 2015/07/25 23:36:48 - [] D -- C:\Users\merouche\AppData\Roaming\Skype
O43 - CFD: 2015/04/06 21:31:25 - [] D -- C:\Users\merouche\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 2014/12/22 15:42:05 - [] D -- C:\Users\merouche\AppData\Roaming\TeamViewer
O43 - CFD: 2015/02/12 07:36:30 - [] D -- C:\Users\merouche\AppData\Roaming\uTorrent
O43 - CFD: 2015/07/15 07:36:49 - [] D -- C:\Users\merouche\AppData\Roaming\vlc
O43 - CFD: 2014/12/04 03:58:11 - [0] D -- C:\Users\merouche\AppData\Roaming\WebTest
O43 - CFD: 2014/12/04 21:02:11 - [] D -- C:\Users\merouche\AppData\Roaming\WinRAR
O43 - CFD: 2014/12/04 18:05:24 - [] D -- C:\Users\merouche\AppData\Roaming\Zbshareware Lab
O43 - CFD: 2015/07/26 00:46:55 - [] D -- C:\Users\merouche\AppData\Roaming\ZHP
O43 - CFD: 2015/07/14 21:01:14 - [] D -- C:\Users\merouche\AppData\Local\Adobe
O43 - CFD: 2014/12/04 15:56:10 - [0] SHD -- C:\Users\merouche\AppData\Local\Application Data
O43 - CFD: 2014/12/04 17:40:16 - [] D -- C:\Users\merouche\AppData\Local\Apps
O43 - CFD: 2015/05/15 22:32:12 - [] D -- C:\Users\merouche\AppData\Local\ATI
O43 - CFD: 2015/07/25 02:08:15 - [] D -- C:\Users\merouche\AppData\Local\CEF
O43 - CFD: 2015/02/10 18:12:17 - [0] D -- C:\Users\merouche\AppData\Local\Deployment
O43 - CFD: 2015/07/17 17:42:22 - [] D -- C:\Users\merouche\AppData\Local\Diagnostics
O43 - CFD: 2015/04/29 02:09:35 - [0] D -- C:\Users\merouche\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/03/07 23:44:52 - [] D -- C:\Users\merouche\AppData\Local\Facebook
O43 - CFD: 2014/12/04 03:18:12 - [] D -- C:\Users\merouche\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/05/15 10:59:36 - [] D -- C:\Users\merouche\AppData\Local\Google
O43 - CFD: 2014/12/04 15:56:10 - [0] SHD -- C:\Users\merouche\AppData\Local\Historique
O43 - CFD: 2014/12/04 19:00:16 - [] D -- C:\Users\merouche\AppData\Local\Macromedia
O43 - CFD: 2015/07/19 13:16:02 - [] D -- C:\Users\merouche\AppData\Local\Messenger
O43 - CFD: 2015/07/21 07:08:21 - [] D -- C:\Users\merouche\AppData\Local\Microsoft
O43 - CFD: 2015/04/09 11:10:33 - [] D -- C:\Users\merouche\AppData\Local\Microsoft Games
O43 - CFD: 2015/01/04 09:29:14 - [] D -- C:\Users\merouche\AppData\Local\Microsoft Help
O43 - CFD: 2015/03/29 21:58:10 - [] D -- C:\Users\merouche\AppData\Local\mixlr
O43 - CFD: 2014/12/04 17:55:43 - [] D -- C:\Users\merouche\AppData\Local\Mozilla
O43 - CFD: 2014/12/04 03:14:28 - [0] D -- C:\Users\merouche\AppData\Local\Opera Software
O43 - CFD: 2015/04/10 17:13:09 - [0] D -- C:\Users\merouche\AppData\Local\PackageAware =>PUP.Optional.BearShare
O43 - CFD: 2014/12/04 18:05:13 - [] D -- C:\Users\merouche\AppData\Local\Programs
O43 - CFD: 2014/12/04 15:23:30 - [] D -- C:\Users\merouche\AppData\Local\Skype
O43 - CFD: 2015/03/19 03:22:20 - [] D -- C:\Users\merouche\AppData\Local\Steam
O43 - CFD: 2015/07/26 00:47:15 - [] D -- C:\Users\merouche\AppData\Local\Temp
O43 - CFD: 2014/12/04 15:56:10 - [0] SHD -- C:\Users\merouche\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/04/10 19:44:36 - [] D -- C:\Users\merouche\AppData\Local\Topaz Labs
O43 - CFD: 2015/02/22 15:56:36 - [] D -- C:\Users\merouche\AppData\Local\VirtualStore
O43 - CFD: 2015/05/13 11:04:51 - [0] D -- C:\Users\merouche\AppData\Local\WMTools Downloaded Files
O43 - CFD: 2009/07/14 05:42:04 - [] RD -- C:\Users\merouche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/12/04 15:56:38 - [] RD -- C:\Users\merouche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/12/04 17:41:29 - [] D -- C:\Users\merouche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 2014/12/04 16:43:29 - [] D -- C:\Users\merouche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 2015/01/16 15:02:06 - [] D -- C:\Users\merouche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2009/07/14 05:37:42 - [] RD -- C:\Users\merouche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/05/10 21:26:01 - [] D -- C:\Users\merouche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2015
O43 - CFD: 2015/05/10 10:14:41 - [] RD -- C:\Users\merouche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/04/10 19:43:30 - [] D -- C:\Users\merouche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Topaz Labs
O43 - CFD: 2014/12/04 18:05:53 - [] D -- C:\Users\merouche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Derniers fichiers créés dans Windows Prefetcher (O45) (1) - 8s
O45 - LFCP:[MD5.6F31B627F9FC4CA3AFA0DBE1AB6039A5] 2015/07/25 21:18:01 A -- C:\Windows\Prefetch\RADIO CANYON-CODEDOWNLOADER.E-0CDEF027.pf =>PUP.Optional.RadioCanyon

---\\ Liste des pilotes du système (SDL) (O58) (94) - 12s
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976]
O58 - SDL:2009/07/14 02:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552]
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512]
O58 - SDL:2013/09/04 11:52:44 A . (.Qualcomm Atheros, Inc. - Killer Wireless-N 1100-N/1200-N Series LAN.) -- C:\Windows\System32\drivers\Ak27x86.sys [3268816]
O58 - SDL:2009/07/14 02:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400]
O58 - SDL:2014/11/21 03:41:34 A . (.Advanced Micro Devices - AMD ACP Binaries.) -- C:\Windows\System32\drivers\amdacpksd.sys [265416]
O58 - SDL:2014/10/28 00:46:10 A . (.Advanced Micro Devices, Inc. - AMD PCI Root Bus Lower Filter.) -- C:\Windows\System32\drivers\amdkmpfd.sys [40136]
O58 - SDL:2009/07/14 02:26:15 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [79952]
O58 - SDL:2009/07/14 02:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312]
O58 - SDL:2009/07/14 02:26:15 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [23616]
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368]
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608]
O58 - SDL:2015/06/24 20:54:45 A . (...) -- C:\Windows\System32\drivers\aswHwid.sys [24144]
O58 - SDL:2015/06/24 20:54:21 A . (.Avast Software s.r.o. - avast! Keyboard Filter Driver.) -- C:\Windows\System32\drivers\aswKbd.sys [26096]
O58 - SDL:2015/06/24 20:54:45 A . (.Avast Software s.r.o. - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [74976]
O58 - SDL:2015/06/24 20:53:52 A . (.Avast Software s.r.o. - avast! Filtering NDIS driver.) -- C:\Windows\System32\drivers\aswNdisFlt.sys [271248]
O58 - SDL:2015/06/24 20:54:45 A . (.Avast Software s.r.o. - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [81728]
O58 - SDL:2015/06/24 20:54:45 A . (...) -- C:\Windows\System32\drivers\aswRvrt.sys [49904]
O58 - SDL:2015/06/24 20:54:22 A . (.Avast Software s.r.o. - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [787760]
O58 - SDL:2015/06/27 00:56:07 A . (.Avast Software s.r.o. - avast! self protection module.) -- C:\Windows\System32\drivers\aswsp.sys [428120]
O58 - SDL:2015/06/24 20:54:46 A . (.Avast Software s.r.o. - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [106912]
O58 - SDL:2015/06/24 20:54:46 A . (...) -- C:\Windows\System32\drivers\aswVmm.sys [209048]
O58 - SDL:2014/06/06 08:25:58 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\drivers\athr.sys [3265536]
O58 - SDL:2014/11/21 03:38:32 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [16955392]
O58 - SDL:2014/11/21 03:08:48 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\drivers\atikmpag.sys [472576]
O58 - SDL:2009/07/13 23:02:49 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gi.) -- C:\Windows\System32\drivers\b57nd60x.sys [229888]
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568]
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248]
O58 - SDL:2009/07/14 01:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128]
O58 - SDL:2009/07/13 23:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336]
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904]
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080]
O58 - SDL:2009/07/14 02:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952]
O58 - SDL:2009/07/14 02:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720]
O58 - SDL:2009/07/13 23:02:49 A . (.Intel Corporation - Pilote NDIS 5.1 de la carte Intel(R) PRO/10.) -- C:\Windows\System32\drivers\e100b325.sys [159232]
O58 - SDL:2009/07/14 02:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712]
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160]
O58 - SDL:2009/07/13 23:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624]
O58 - SDL:2012/07/13 03:56:32 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECI.sys [55104]
O58 - SDL:2015/06/02 17:45:44 A . (...) -- C:\Windows\System32\drivers\hfFilter.sys [28600]
O58 - SDL:2009/07/14 02:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152]
O58 - SDL:2012/05/30 12:30:50 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x86.) -- C:\Windows\System32\drivers\iaStor.sys [471360]
O58 - SDL:2009/07/14 02:20:36 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332352]
O58 - SDL:2013/06/27 10:57:42 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [104928]
O58 - SDL:2012/10/10 02:32:20 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys [3745792]
O58 - SDL:2009/07/14 02:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040]
O58 - SDL:2012/06/19 15:39:09 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [289792]
O58 - SDL:2012/10/16 05:53:20 A . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\drivers\iusb3hcs.sys [16440]
O58 - SDL:2015/02/09 21:14:01 A . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\iusb3hub.sys [351288]
O58 - SDL:2015/02/09 21:13:38 A . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\drivers\iusb3xhc.sys [796216]
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95824]
O58 - SDL:2009/07/14 02:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89168]
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864]
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848]
O58 - SDL:2013/01/31 10:50:58 A . (.ManyCam LLC - ManyCam Virtual Microphone.) -- C:\Windows\System32\drivers\mcaudrv.sys [22656]
O58 - SDL:2012/10/11 04:08:10 A . (.ManyCam LLC - ManyCam Virtual Webcam.) -- C:\Windows\System32\drivers\mcvidrv.sys [34432]
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800]
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584]
O58 - SDL:2009/07/14 02:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624]
O58 - SDL:2009/07/14 02:20:44 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117312]
O58 - SDL:2009/07/14 02:20:44 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [142416]
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488]
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064]
O58 - SDL:2012/10/06 11:26:44 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.20 32-bit Dr.) -- C:\Windows\System32\drivers\Rt86win7.sys [582800]
O58 - SDL:2012/11/06 18:09:26 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [3343824]
O58 - SDL:2011/09/08 16:40:24 A . (.Realtek - Realtek 8136/8168/8169 NDIS6 32-bit Driver.) -- C:\Windows\System32\drivers\Rtlh86.sys [363112]
O58 - SDL:2011/11/15 18:24:18 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\drivers\RtsUVStor.sys [232040]
O58 - SDL:2009/07/13 21:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480]
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016]
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888]
O58 - SDL:2009/07/14 02:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072]
O58 - SDL:2015/05/13 17:31:26 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\System32\drivers\VBoxDrv.sys [749664]
O58 - SDL:2015/05/13 17:29:54 A . (.Oracle Corporation - VirtualBox Host-Only Network Adapter Driver.) -- C:\Windows\System32\drivers\VBoxNetAdp.sys [115672]
O58 - SDL:2015/05/13 17:29:54 A . (.Oracle Corporation - VirtualBox Bridged Networking Driver.) -- C:\Windows\System32\drivers\VBoxNetFlt.sys [127008]
O58 - SDL:2015/05/13 17:29:54 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\System32\drivers\VBoxUSBMon.sys [104896]
O58 - SDL:2009/07/14 02:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976]
O58 - SDL:2009/07/14 02:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904]
O58 - SDL:2014/12/05 03:13:44 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{e02a28a6-3b1b-4db6-97b9-9df9ceaa4aab}Gw.sys [43160] =>PUP.Optional.LinkiDoo
O58 - SDL:2009/07/13 22:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:2009/07/13 22:40:44 A . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:2009/07/13 22:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2009/07/13 22:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:2009/07/13 22:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2009/07/13 22:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2009/07/13 22:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2009/07/13 22:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2009/07/13 22:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:2009/07/13 22:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:2009/07/13 22:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:2009/07/13 22:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:2009/07/13 22:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (13) - 85s
O61 - LFC: 2015/07/25 07:20:44 A . (..) -- C:\Users\merouche\Documents\KONAMI\Pro Evolution Soccer 2015\save\LG 01.bin [14076840]
O61 - LFC: 2015/07/25 07:20:46 A . (..) -- C:\Users\merouche\Documents\KONAMI\Pro Evolution Soccer 2015\save\SYSTEM.bin [136577]
O61 - LFC: 2015/07/25 22:47:26 A . (.AVAST Software.) -- C:\Users\merouche\Desktop\avastclear.exe [5961024]
O61 - LFC: 2015/07/25 23:10:39 A . (.Tonec Inc..) -- C:\Users\merouche\AppData\Roaming\IDM\idmmzcc5\components9\idmmzcc.dll [24384]
O61 - LFC: 2015/07/25 23:10:39 A . (.Tonec Inc..) -- C:\Users\merouche\AppData\Roaming\IDM\idmmzcc5\components9\idmmzcc64.dll [28480]
O61 - LFC: 2015/07/25 23:10:39 A . (.Tonec Inc..) -- C:\Users\merouche\AppData\Roaming\IDM\idmmzcc5\components2\idmcchandler2.dll [293912]
O61 - LFC: 2015/07/25 23:10:39 A . (.Tonec Inc..) -- C:\Users\merouche\AppData\Roaming\IDM\idmmzcc5\components2\idmcchandler2_64.dll [415768]
O61 - LFC: 2015/07/25 23:10:39 A . (.Tonec Inc..) -- C:\Users\merouche\AppData\Roaming\IDM\idmmzcc5\components2\idmmzcc.dll [34216]
O61 - LFC: 2015/07/25 23:10:39 A . (.Tonec Inc..) -- C:\Users\merouche\AppData\Roaming\IDM\idmmzcc5\components2\idmmzcc64.dll [28512]
O61 - LFC: 2015/07/25 23:10:39 A . (.Tonec Inc..) -- C:\Users\merouche\AppData\Roaming\IDM\idmmzcc5\components\idmmzcc.dll [34216]
O61 - LFC: 2015/07/25 01:26:14 A . (..) -- C:\Users\merouche\AppData\Roaming\AMD\GLCache\5b29effe650b9c07_19.bin [3810925]
O61 - LFC: 2015/07/25 23:12:25 A . (..) -- C:\Users\merouche\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2015/07/25 23:10:34 A . (..) -- C:\Users\merouche\AppData\Local\ATI\ACE\Manifest.Bin [30042]

---\\ Associations Shell Spawning (O67) (1) - 0s
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe

---\\ Menu de démarrage Internet (SMI) (O68) (12) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Spark\Spark.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.ex http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Spark\spark.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Spark\spark.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Spark\spark.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (25) - 11s
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("browser.search.defaultenginename", "mystartsearch"); =>PUP.Optional.StartSearch
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("browser.search.order.1", "default-search.net"); =>PUP.Optional.SearchNet
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("browser.search.searchengine.alias", "mystartsearch"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("browser.search.searchengine.iconURL", "http://www.mystartsearch.com/favicon.ico"); =>PUP.Optional.StartSearch
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("browser.search.searchengine.name", "mystartsearch"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("browser.search.searchengine.ptid", "wpc"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("browser.search.searchengine.uid", "ST500LT012-1DG142_S3P2PK57XXXXS3P2PK57"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("browser.search.searchengine.url", "http://www.mystartsearch.com/web/?type=ds&ts=1428184965&from=wpc&uid=ST500LT012-1DG1[...] =>PUP.Optional.StartSearch
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("browser.search.selectedEngine", "mystartsearch"); =>PUP.Optional.StartSearch
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("extensions.Faster Light.asul", "1428696519989"); =>PUP.Optional.FasterLight
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("extensions.Faster Light.aul", "1429221271808"); =>PUP.Optional.FasterLight
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("extensions.Faster Light.irl", true); =>PUP.Optional.FasterLight
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("extensions.Faster Light.is", "isgiwhDZ"); =>PUP.Optional.FasterLight
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("extensions.Faster Light.ug", "343D5848-72B0-4CD7-8814-FC4CB22DB199"); =>PUP.Optional.FasterLight
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("extensions.a1853a82ece444a8ca6fe9bcf74a655754b6b1c165f0a4ef0866fb063e235ef97com60804.60804.name", "Radio Canyon"); =>PUP.Optional.RadioCanyon
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("extensions.crossrider.bic", "14ae9e9facba4cbaf75d582642a7111f"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [merouche - 2f2br5dz.default] user_pref("keyword.URL", "http://www.default-search.net/search?sid=503&aid=100&itype=a&ver=15511&tm=551&src=ds&p="); =>PUP.Optional.SearchNet
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} [DefaultScope] - (e) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (delta-homes) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} - (default-search.net) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} - (Google) - http://do-search.com/ =>PUP.Optional.DoSearches

---\\ Enumère les services démarrés par Svchost (SSS) (O83) (33) - 2s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168448]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [591360]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [667136]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [473088]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [285184]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [241664]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [543232]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [1933848]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [589312]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [497152]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [46592]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [162816]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [743424]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [99328]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102400]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [149504]

---\\ Liste des exceptions du parefeu (FirewallRules) (O87) (14) - 2s
O87 - FAEL: "{297A1389-2F38-4008-9263-4E05F458ABF6}" [In-None-P6-TRUE] .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
O87 - FAEL: "{290B0954-9F15-4441-ADEB-F1B794871165}" [In-None-P17-TRUE] .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
O87 - FAEL: "TCP Query User{317D9433-471D-47F3-AF46-A967A1C80210}C:\program files\pro evolution soccer 2015\pes2015.exe" [In-None-P6-TRUE] .(.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2015.) -- C:\program files\pro evolution soccer 2015\pes2015.exe
O87 - FAEL: "UDP Query User{29B36443-FE6C-4A26-A1E1-608BC8A8FE8E}C:\program files\pro evolution soccer 2015\pes2015.exe" [In-None-P17-TRUE] .(.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2015.) -- C:\program files\pro evolution soccer 2015\pes2015.exe
O87 - FAEL: "{426522E1-2EF6-4EA3-8310-5866F8A73628}" [In-None-P6-TRUE] .(.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Spark\Spark.exe
O87 - FAEL: "{B1C77E51-CBF1-49AC-9C9E-AE134CFF15E4}" [In-None-P17-TRUE] .(.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Spark\Spark.exe
O87 - FAEL: "{D104FDCF-A211-4100-B8EB-E56918567321}" [In-None-P6-TRUE] .(...) -- C:\Program Files\baidu\Spark\bdtray.exe
O87 - FAEL: "{298AF4A1-BBFE-44DD-AA5E-96DDDE1459E7}" [In-None-P17-TRUE] .(...) -- C:\Program Files\baidu\Spark\bdtray.exe
O87 - FAEL: "{76BD8796-9911-49A4-81C0-DC00EE77E495}" [In-None-P6-TRUE] .(.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files\Steam\Steam.exe
O87 - FAEL: "{EC0C26D0-3ED4-4CA5-99C4-60DF6E232FBA}" [In-None-P17-TRUE] .(.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files\Steam\Steam.exe
O87 - FAEL: "{A6646BFF-84B2-4B2E-A734-862D2FD1D14F}" [In-None-P6-TRUE] .(.Valve Corporation - Steam Client WebHelper.) -- C:\Program Files\Steam\bin\steamwebhelper.exe
O87 - FAEL: "{334519E9-C8A0-4009-97A4-8B6684DC1169}" [In-None-P17-TRUE] .(.Valve Corporation - Steam Client WebHelper.) -- C:\Program Files\Steam\bin\steamwebhelper.exe
O87 - FAEL: "{77DACDEE-0AFC-4AC5-8CA8-71637857790C}" [In-None-P6-TRUE] .(.AVAST Software - avast! NG front end.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
O87 - FAEL: "{566885CE-D1E3-4905-8EDF-992E5E9EEEDF}" [In-None-P17-TRUE] .(.AVAST Software - avast! NG front end.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe

---\\ Enumère les codes produits des logiciels (PUC) (O90) (1) - 2s
O90 - PUC: "4C7D129C7D420124EA9EFD5CDD7C4882" . (.Topaz Detail 2.) =>PUP.Optional.Multiplug

---\\ Recherche de clés de registre Tracing (O100) (8) - 5s
HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASAPI32 =>PUP.Optional.DriverScanner
HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASMANCS =>PUP.Optional.DriverScanner
HKLM\SOFTWARE\Microsoft\Tracing\FasterLight_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Microsoft\Tracing\FasterLight_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Microsoft\Tracing\FasterLight_Setup_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Microsoft\Tracing\FasterLight_Setup_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Microsoft\Tracing\LinkeyStubRevert_p2v0_RASAPI32 =>PUP.Optional.LinkeySearch
HKLM\SOFTWARE\Microsoft\Tracing\LinkeyStubRevert_p2v0_RASMANCS =>PUP.Optional.LinkeySearch

---\\ Scan Additionnel (O88) (111) - 0s
C:\Program Files\fun4u\fun4u_notification_service.exe =>PUP.Optional.CrossRider
C:\Program Files\MiuiTab\ProtectService.exe =>PUP.Optional.MiuiTab
C:\Program Files\MiuiTab\CmdShell.exe =>PUP.Optional.MiuiTab
C:\Program Files\Assets Manager\smdmf\SmdmFService.exe =>PUP.Optional.SystemK
C:\Program Files\MiuiTab\HPNotify.exe =>PUP.Optional.MiuiTab
C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\searchplugins\mystartsearch.xml =>PUP.Optional.StartSearch
C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\extensions\istart_ffnt@gmail.com =>PUP.Optional.LightningNewTab
C:\Users\merouche\AppData\Roaming\Mozilla\Firefox\Profiles\2f2br5dz.default\extensions\veggy@veggyAddon.com =>PUP.Optional.VeggyAddon
C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate
C:\Program Files\Radio Canyon\Radio Canyon-bho.dll =>PUP.Optional.RadioCanyon
C:\Program Files\MiuiTab\SupTab.dll =>PUP.Optional.LuckyTab
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F} =>PUP.Optional.LuckyTab
HKLM\SYSTEM\CurrentControlSet\Services\F06DEFF2-5B9C-490D-910F-35D3A91196222 =>PUP.Optional.SystemK
C:\Program Files\Assets Manager\smdmf\smdmfmgrc3.cfg =>PUP.Optional.SystemK
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\globalUpdate\Update\GoogleUpdate.exe =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\IHProtect Service =>PUP.Optional.AgentODR
C:\Program Files\MiuiTab\ProtectService.exe =>PUP.Optional.AgentODR
HKLM\SYSTEM\CurrentControlSet\Services\ReimageRealTimeProtector =>PUP.Optional.ReImageRepair
HKLM\SYSTEM\CurrentControlSet\Services\SmdmFService =>PUP.Optional.SystemK
C:\Windows\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-1.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-11.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-5.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-5_user.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-6.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-7.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job =>PUP.Optional.GlobalUpdate
C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job =>PUP.Optional.GlobalUpdate
C:\Windows\System32\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-1 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-11 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-5 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-5_user =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-6 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\5e10e201-2f50-4d2e-9d23-6e5026ae19a9-7 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore =>PUP.Optional.GlobalUpdate
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA =>PUP.Optional.GlobalUpdate
C:\Windows\System32\Tasks\ReimageUpdater =>PUP.Optional.ReImageRepair
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Faster Light =>PUP.Optional.Sambreel
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Radio Canyon =>PUP.Optional.RadioCanyon
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager =>PUP.Optional.SystemK
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Topaz Detail 2 =>PUP.Optional.Multiplug
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Topaz Detail 3 =>PUP.Optional.Multiplug
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B696F285-F54E-2524-58B1-E06A70ABE6BE} =>PUP.Optional.Multiplug
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C921D7C4-24D7-4210-AEE9-DFC5DDC78428} =>PUP.Optional.Multiplug
HKLM\SOFTWARE\AskPartnerNetwork =>Toolbar.Ask
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\delta-homesSoftware =>PUP.Optional.DeltaHomes
HKLM\SOFTWARE\Faster Light =>PUP.Optional.Sambreel
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Radio Canyon =>PUP.Optional.RadioCanyon
HKLM\SOFTWARE\Radio Canyon-nv =>PUP.Optional.RadioCanyon
HKLM\SOFTWARE\Reimage =>PUP.Optional.ReImageRepair
HKLM\SOFTWARE\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager
HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Uniblue =>PUP.Optional.Uniblue
HKLM\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\Faster Light =>PUP.Optional.Sambreel
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\HomeTab =>PUP.Optional.CertifiedToolbar
HKCU\SOFTWARE\InstallCore =>PUP.Optional.InstallCore
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Radio Canyon-nv =>PUP.Optional.RadioCanyon
HKCU\SOFTWARE\Reimage =>PUP.Optional.ReImageRepair
HKCU\SOFTWARE\SearchProtectWS =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\TNT2 =>PUP.Optional.TidyNetwork
HKCU\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Radio Canyon =>PUP.Optional.RadioCanyon =>PUP.Optional.RadioCanyon
C:\Program Files\1f573b1a-311a-45d4-8376-9ce355065ef6 =>PUP.Optional.CrossRider
C:\Program Files\Assets Manager =>PUP.Optional.SystemK
C:\Program Files\Faster Light =>PUP.Optional.FasterLight
C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\Mega Shop =>PUP.Optional.MegaShop
C:\Program Files\MiuiTab =>PUP.Optional.MiuiTab
C:\Program Files\Radio Canyon =>PUP.Optional.RadioCanyon
C:\Program Files\Reimage =>PUP.Optional.ReImageRepair
C:\Program Files\Settings Manager =>PUP.Optional.SettingsManager
C:\Program Files\SSalePlus =>PUP.Optional.Multiplug
C:\ProgramData\IHProtectUpDate =>PUP.Optional.AgentODR
C:\ProgramData\Reimage Express =>PUP.Optional.ReImageRepair
C:\ProgramData\Reimage Protector =>PUP.Optional.ReImageRepair
C:\ProgramData\smdmf =>PUP.Optional.SystemK
C:\ProgramData\Uniblue =>PUP.Optional.Uniblue
C:\Users\merouche\AppData\Roaming\IHlpr =>PUP.Optional.IHlpr
C:\Users\merouche\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
C:\Users\merouche\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Users\merouche\AppData\Local\PackageAware =>PUP.Optional.BearShare
C:\Windows\Prefetch\RADIO CANYON-CODEDOWNLOADER.E-0CDEF027.pf =>PUP.Optional.RadioCanyon
C:\Windows\System32\drivers\{e02a28a6-3b1b-4db6-97b9-9df9ceaa4aab}Gw.sys =>PUP.Optional.LinkiDoo
HKLM\Software\Classes\Installer\Products\4C7D129C7D420124EA9EFD5CDD7C4882 =>PUP.Optional.Multiplug
HKLM\Software\Classes\Installer\Features\4C7D129C7D420124EA9EFD5CDD7C4882 =>PUP.Optional.Multiplug
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdatem =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASAPI32 =>PUP.Optional.DriverScanner
HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASMANCS =>PUP.Optional.DriverScanner
HKLM\SOFTWARE\Microsoft\Tracing\FasterLight_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Microsoft\Tracing\FasterLight_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Microsoft\Tracing\FasterLight_Setup_RASAPI32 =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Microsoft\Tracing\FasterLight_Setup_RASMANCS =>PUP.Optional.Sambreel
HKLM\SOFTWARE\Microsoft\Tracing\LinkeyStubRevert_p2v0_RASAPI32 =>PUP.Optional.LinkeySearch
HKLM\SOFTWARE\Microsoft\Tracing\LinkeyStubRevert_p2v0_RASMANCS =>PUP.Optional.LinkeySearch

---\\ Récapitulatif des éléments trouvées sur votre station (41) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/blog =>PUP.Optional.MiuiTab
http://www.nicolascoolman.fr/pup-systemk/ =>PUP.Optional.SystemK
http://www.nicolascoolman.fr/pup-startsearch/ =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.LightningNewTab
http://www.nicolascoolman.fr/blog =>PUP.Optional.VeggyAddon
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/hijacker-qvo6/ =>PUP.Optional.Qvo6
http://www.nicolascoolman.fr/blog =>PUP.Optional.RadioCanyon
http://www.nicolascoolman.fr/blog =>PUP.Optional.LuckyTab
http://www.nicolascoolman.fr/blog =>PUP.Optional.AgentODR
http://www.nicolascoolman.fr/rogue-reimagerepair/ =>PUP.Optional.ReImageRepair
http://www.nicolascoolman.fr/blog =>PUP.Optional.Sambreel
http://www.nicolascoolman.fr/pup-mutiplug/ =>PUP.Optional.Multiplug
http://www.nicolascoolman.fr/toolbar-ask/ =>Toolbar.Ask
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/blog =>PUP.Optional.DeltaHomes
http://www.nicolascoolman.fr/adware-imbooster/ =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/blog =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/pup-searchprotect/ =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/blog =>PUP.Optional.SettingsManager
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/blog =>PUP.Optional.Uniblue
http://www.nicolascoolman.fr/pup-wajam/ =>PUP.Optional.Wajam
http://www.nicolascoolman.fr/pup-certifiedtoolbar/ =>PUP.Optional.CertifiedToolbar
http://www.nicolascoolman.fr/adware-installcore/ =>PUP.Optional.InstallCore
http://www.nicolascoolman.fr/pup-linkeysearch/ =>PUP.Optional.LinkeySearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.SimplyTech
http://www.nicolascoolman.fr/blog =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/adware-tidynetwork/ =>PUP.Optional.TidyNetwork
http://www.nicolascoolman.fr/blog =>PUP.Optional.FasterLight
http://www.nicolascoolman.fr/blog =>PUP.Optional.MegaShop
http://www.nicolascoolman.fr/blog =>PUP.Optional.IHlpr
http://www.nicolascoolman.fr/adware-opencandy/ =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/pup-bearshare/ =>PUP.Optional.BearShare
http://www.nicolascoolman.fr/pup-linkidoo/ =>PUP.Optional.LinkiDoo
http://www.nicolascoolman.fr/hijacker-searchnet/ =>PUP.Optional.SearchNet
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart
http://www.nicolascoolman.fr/pup-dosearches/ =>PUP.Optional.DoSearches
http://www.nicolascoolman.fr/blog =>PUP.Optional.DriverScanner

~ End of the scan, 23355 items in 331 seconds (1082)(0)()

Publicité


Signaler le contenu de ce document

Publicité