cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.8.3.109 Par Nicolas Coolman (2015/08/3)
~ Démarré par beny2_000 (Administrator) (2015/08/04 02:45:41)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\beny2_000\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\beny2_000\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
~ Windows 10 Home, 64-bit (Build 10240)

---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v44.0.2403.125
MFIE: Mozilla Firefox 39.0 (x86 fr) v39.0
MSIE: Internet Explorer v11.0.10240.16384

---\\ Informations sur les produits Windows (9) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : 8HVX7
Windows License : OK
~ Windows Remaining Initializations Number : 1001
Windows Automatic Updates : OK (Demand)
Windows Activation Technologies : OK

---\\ Logiciels de protection (1) - 1s
Kaspersky PURE 3.0 v13.0.2.558

---\\ Surveillance de Logiciels (2) - 2s
Adobe Flash Player 18 NPAPI
Adobe Acrobat Reader DC - Français

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8251.156 MB (71% free)
~ System Restore: Activé (Enable)
~ System drive C: has 338 GB free of 455 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: SALEM-PC
~ User Name: beny2_000
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 0s
~ Drive C: has 338 GB free of 455 GB (System)
~ Drive D: has 23 GB free of 25 GB
~ Drive E: has 288 GB free of 449 GB

---\\ Etat du Centre de Sécurité Windows (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (23) - 1s
[MD5.6E756C33B5ECBD96756086A34D9A90DC] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [4532304]
[MD5.5DED2A3F11AE916C8F2724947E736261] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\WINDOWS\System32\rundll32.exe [59392]
[MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\WINDOWS\System32\Wininit.exe [290312]
[MD5.FE32B8423711B4B4378C0BA3C3560ED4] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\WINDOWS\System32\wininet.dll [2741760]
[MD5.26EFEFD877A84EE9FBDE6DEE630892C9] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [578048]
[MD5.ECB1943967424DFB96E03F6A098434EF] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\WINDOWS\System32\sppcomapi.dll [430592]
[MD5.8C795953726C7D2DE72CE4748208C5ED] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [20480]
[MD5.6C12C7E01A4F64E0AA9C88AF66955CC9] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [577888]
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [28512]
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672]
[MD5.CA160E02F35A61C6F5C681FB4669C519] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [174080]
[MD5.25435407D97419627F4B10653433BF2B] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\WINDOWS\System32\drivers\DfsC.sys [138240]
[MD5.C277A49F8A8295840DEBC9240B75A282] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [80896]
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688]
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [143360]
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [415232]
[MD5.F0D791348AD254360CC3C3E501CCB745] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [273408]
[MD5.055DEDDC5479D783286B804C0A775009] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [2116960]
[MD5.38F1AE32339731F6E5A7281AE8042545] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [96768]
[MD5.CA60F6C03611AF1710BC903ED9F566FB] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960]
[MD5.A32AED8C644734B283A7C9D08D76064D] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [176128]
[MD5.28E1E63A1AC65E17B3194238FA2CF3BF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\WINDOWS\System32\drivers\tdx.sys [116576]
[MD5.823A237D871CD652C6BFD47BECB6810A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [378720]

---\\ Processus lancés (10) - 2s
[MD5.B353F1834FCD36D77BE3F74992C147D4] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [634632] [PID.6160]
[MD5.DF99547E3CD8C828202546ED9C4D7D25] - (.Lenovo (Beijing) Limited - Lenovo Energy Management Software 8.0.) -- C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376] [PID.7928]
[MD5.D41309D7717CC5D62C2E0C5EB6B127B3] - (.Lenovo(beijing) Limited - Lenovo Battery Management Software Ver 8.0.) -- C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [191544] [PID.508]
[MD5.DF5079947266963570BE4891553C46A9] - (...) -- C:\Program Files (x86)\baidu\baidu.exe [69632] [PID.1688]
[MD5.DD2764BF044F573EB40EF4ED65A53474] - (.Vimicro - VM331 StiMnt.) -- C:\Program Files (x86)\USB Camera\VM331STI.EXE [561672] [PID.1652]
[MD5.75440878EB196899ADF91DB2B62B899D] - (.Nico Mak Computing - File Association Helper.) -- C:\Program Files\WinZip\FAH\FAHWindow64.exe [186544] [PID.8832]
[MD5.4114DA3BE19C5C591A750D35CC2A520E] - (.WinZip Computing, S.L. - WinZip Preloader.) -- C:\Program Files\WinZip\WzPreloader.exe [126176] [PID.4872]
[MD5.AC988CB914BF53F5CEC5D4151AE1F093] - (.Lenovo - Lenovo Service Bridge.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\LSB.exe [134728] [PID.2492]
[MD5.4E6337DE03F36BCE168110E6B59F6A5B] - (.Conexant Systems Inc. - Conexant Audio Message Service.) -- C:\WINDOWS\system32\CxAudMsg64.exe [206552] [PID.9016]
[MD5.07D58D5F7839ABA76118BC037C2C63BD] - (.Conexant Systems, Inc. - SmartAudio Service Application.) -- C:\Windows\SysWOW64\SASrv.exe [447104] [PID.7212]

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) (29) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://a.thanksearch.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://addongetit.co.il/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://elex-tech.khanwars.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://elex-tech.lesseigneurs.fr/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://unitiation.in/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
G0 - GCSP: Preferences [User Data\Default][HomePage] http://chrome.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://easylist-downloads.adblockplus.org/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://mynamedomain.koko/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.boxore.com/ =>PUP.Optional.Boxore
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ckiahbcmlmkpfiijecbpflfahoimklke] Gom VPN Turbocharge your internet
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [dchlnpcodkpfdpacogkljefecpegganj] __MSG_ExtensionName__
G2 - GCE: Preference [User Data\Default] [engaigpbgdjjmanonjcjkcmomgibneba] Boxore =>PUP.Optional.Boxore
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [hakdifolhalapjijoafobooafbilfakh] __MSG_ExtensionName__
G2 - GCE: Preference [User Data\Default] [hghkgaeecgjhjkannahfamoehjmkjail] __MSG_ExtensionName__
G2 - GCE: Preference [User Data\Default] [idhkmcfanijhphphomamdkaejjadkhgn] BrowserV30.07 =>PUP.Optional.CrossRider
G2 - GCE: Preference [User Data\Default] [jagncdcchgajhfhijbbhecadmaiegcmh] __MSG_ExtensionName__
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [lpoimibckejjdjcfbdnajaicnklhfplh] __MSG_ExtensionName__
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjldcfjmnllhmgjclecdnfampinooman] __MSG_ExtensionName__

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (18) - 3s
M0 - MFSP: prefs.js [beny2_000 - ls7sang2.default] http://www.google.fr/
P2 - EXT FILE: (...) -- C:\Users\beny2_000\AppData\Roaming\Mozilla\Firefox\Profiles\ls7sang2.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT FILE: (...) -- C:\Users\beny2_000\AppData\Roaming\Mozilla\Firefox\Profiles\ls7sang2.default\searchplugins\mystartsearch.xml =>PUP.Optional.StartSearch
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT: (.roc - Default SearchProtected .) -- C:\Users\beny2_000\AppData\Roaming\Mozilla\Firefox\Profiles\ls7sang2.default\extensions\defsearchp@gmail.com
P2 - EXT: (.lightningnewtab.com - deskCut.) -- C:\Users\beny2_000\AppData\Roaming\Mozilla\Firefox\Profiles\ls7sang2.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
P2 - FPN: [HKLM] [@nitropdf.com/NitroPDF] - (.Nitro PDF.) -- C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (20) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer, Proxy Management (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object de navigateur (BHO) (O2) (7) - 1s
O2 - BHO: (no name) [64Bits] - {1F91A9A1-01BA-4c81-863D-3BA0751E1419} (Orphean)
O2 - BHO: ContentBlockerBrowserHelperObject [64Bits] - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} . (.Kaspersky Lab ZAO - Content Blocker Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject [64Bits] - {73455575-E40C-433C-9784-C78DC7761455} . (.Kaspersky Lab ZAO - Virtual Keyboard Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: (no name) [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (Orphean)
O2 - BHO: Safe Money Plugin [64Bits] - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} . (.Kaspersky Lab ZAO - Safe Money Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: (no name) [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} (Orphean)
O2 - BHO: link filter bho [64Bits] - {E33CF602-D945-461A-83F0-819F76A199F8} . (.Kaspersky Lab ZAO - URL Advisor Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\UrlAdvisor\klwtbbho.dll

---\\ Applications lancées au démarrage du sytème (O4) (32) - 2s
O4 - HKLM\..\Run: [ETDCtrl] %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
O4 - HKLM\..\Run: [Energy Management] . (.Lenovo (Beijing) Limited - Lenovo Energy Management Software 8.0.) -- C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
O4 - HKLM\..\Run: [EnergyUtility] . (.Lenovo(beijing) Limited - Lenovo Battery Management Software Ver 8.0.) -- C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [ShadowPlay] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe
O4 - HKLM\..\Run: [SmartAudio] . (.Conexant Systems, Inc. - SmartAudio CPL (32bit).) -- C:\Program Files\CONEXANT\SAII\SACpl.exe
O4 - HKLM\..\Run: [cAudioFilterAgent] . (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
O4 - HKCU\..\Run: [HP Photosmart 6520 series (NET)] . (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP Photosmart 6520 series\Bin\ScanToPCActivationApp.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\beny2_000\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - HKCU\..\Run: [WindApp] C:\Users\beny2_000\AppData\Roaming\Store\WindApp\WindApp.exe (.not file.) =>PUP.Optional.Nosibay
O4 - HKCU\..\Run: [DesktopSearch] C:\ProgramData\DesktopSearch\DesktopSearch.exe (.not file.) =>PUP.Optional.DesktopSearch
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_C6A06F255A7ECC7A08693D2426F07E97] C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (.not file.) =>PUP.Optional.CrossBrowse
O4 - HKCU\..\Run: [apphide] . (...) -- C:\Program Files (x86)\baidu\baidu.exe
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\beny2_000\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe
O4 - HKLM\..\Wow6432Node\Run: [331BigDog] . (.Vimicro - VM331 StiMnt.) -- C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Wow6432Node\Run: [YouCam Tray] . (.CyberLink Corp. - CyberLink YouCam Tray.) -- C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
O4 - HKLM\..\Wow6432Node\Run: [Intel AppUp(SM) center] . (.Intel Corporation - Intel Services Manager.) -- C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\policies\Explorer\Run: [BtvStack] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe
O4 - HKUS\S-1-5-21-3047841956-947423165-4225086616-1002\..\Run: [HP Photosmart 6520 series (NET)] . (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP Photosmart 6520 series\Bin\ScanToPCActivationApp.exe
O4 - HKUS\S-1-5-21-3047841956-947423165-4225086616-1002\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-3047841956-947423165-4225086616-1002\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\beny2_000\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - HKUS\S-1-5-21-3047841956-947423165-4225086616-1002\..\Run: [WindApp] C:\Users\beny2_000\AppData\Roaming\Store\WindApp\WindApp.exe (.not file.) =>PUP.Optional.Nosibay
O4 - HKUS\S-1-5-21-3047841956-947423165-4225086616-1002\..\Run: [DesktopSearch] C:\ProgramData\DesktopSearch\DesktopSearch.exe (.not file.) =>PUP.Optional.DesktopSearch
O4 - HKUS\S-1-5-21-3047841956-947423165-4225086616-1002\..\Run: [GoogleChromeAutoLaunch_C6A06F255A7ECC7A08693D2426F07E97] C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (.not file.) =>PUP.Optional.CrossBrowse
O4 - HKUS\S-1-5-21-3047841956-947423165-4225086616-1002\..\Run: [apphide] . (...) -- C:\Program Files (x86)\baidu\baidu.exe
O4 - HKUS\S-1-5-21-3047841956-947423165-4225086616-1002\..\RunOnce: [Uninstall C:\Users\beny2_000\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe

---\\ Raccourcis Global Startup (O4G) (12) - 2s
O4 - GS\Quicklaunch [Administrateur]: Crossbrowse.lnk . (...) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Administrateur]: crossbrowse.lnk . (...) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Administrateur]: SmartWeb.lnk . (...) C:\Users\beny2_000\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\Quicklaunch [beny2_000]: Crossbrowse.lnk . (...) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [beny2_000]: crossbrowse.lnk . (...) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [beny2_000]: SmartWeb.lnk . (...) C:\Users\beny2_000\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\Quicklaunch [DefaultAccount]: Crossbrowse.lnk . (...) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [DefaultAccount]: crossbrowse.lnk . (...) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [DefaultAccount]: SmartWeb.lnk . (...) C:\Users\beny2_000\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\Quicklaunch [Invité]: Crossbrowse.lnk . (...) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Invité]: crossbrowse.lnk . (...) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Invité]: SmartWeb.lnk . (...) C:\Users\beny2_000\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch

---\\ Modification Domaine/Adresses DNS (O17) (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 52.17.204.69,8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 52.17.204.69,8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) (1) - 0s
O20 - AppInit_DLLs: . (...) - ,C:\WINDOWS\system32\nvinitx.dll (.not file.)

---\\ Liste des services NT non Microsoft et non désactivés (O23) (23) - 5s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Service de gestion du système CryproStorage (CSObjectsSrv) . (.Infowatch - InfoWatch CryptoStorage Protected objects c.) - C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) . (.Conexant Systems Inc. - Conexant Audio Message Service.) - C:\WINDOWS\system32\CxAudMsg64.exe
O23 - Service: Elan Service (ETDService) . (.ELAN Microelectronics Corp. - Elan Service.) - C:\Program Files\Elantech\ETDService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (...) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company - SolutionsFrameworkService.) - C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: NitroPDFDriverCreatorReadSpool8 (NitroDriverReadSpool8) . (.Nitro PDF Software - Nitro PDF Spool Service.) - C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd. - This service enables products that use the.) - C:\Windows\SysWOW64\NLSSRV32.EXE
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.6.) - C:\WINDOWS\system32\nvvsvc.exe
O23 - Service: Alter Clear (qytihogi) . (...) - C:\Program Files (x86)\1A4D670B-1438616714-E211-85E5-208984D9AB18\knsaBCF9.tmp =>PUP.Optional.CrossRider
O23 - Service: Conexant SmartAudio service (SAService) . (...) - C:\Windows\System32\SASrv.exe (.not file.)
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: ZAtheros Bt and Wlan Coex Agent (ZAtheros Bt and Wlan Coex Agent) . (.Atheros - Atheros Coex Service Application.) - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

---\\ Enumère les données de BootExecute (BEX) (O34) (1) - 0s
O34 - HKLM BootExecute: (SBBD.exe /D \Device\HarddiskVolume5\Program Files (x86)\iS3\STOPzilla AntiVirus\Definitions /L) - File not found

---\\ Tâches planifiées en automatique (O39) (34) - 5s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104]
[MD5.9B3355B29942AF67F014EA90CE1EA960] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268976]
[MD5.00000000000000000000000000000000] [APT] [Crossbrowse] (...) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe (.not file.) [0] =>PUP.Optional.CrossBrowse
[MD5.28405F60CCF4023CD253B0EB3640C078] [APT] [HPCustParticipation HP Photosmart 6520 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Photosmart 6520 series\Bin\HPCustPartic.exe [4119656]
[MD5.00000000000000000000000000000000] [APT] [One System Care Monitor] (...) -- C:\Program Files (x86)\OneSystemCare\CleanupConsole.exe (.not file.) [0] =>PUP.Optional.OneSystemCare
[MD5.00000000000000000000000000000000] [APT] [One System Care Run Delay] (...) -- C:\Program Files (x86)\OneSystemCare\OneSystemCare.exe (.not file.) [0] =>PUP.Optional.OneSystemCare
[MD5.00000000000000000000000000000000] [APT] [One System CarePeriod] (...) -- C:\Program Files (x86)\OneSystemCare\OneSystemCare.exe (.not file.) [0] =>PUP.Optional.OneSystemCare
[MD5.00000000000000000000000000000000] [APT] [One System CareStartUp] (...) -- C:\Program Files (x86)\OneSystemCare\OneSystemCare.exe (.not file.) [0] =>PUP.Optional.OneSystemCare
[MD5.00000000000000000000000000000000] [APT] [Selection Tools Update] (...) -- C:\Users\beny2_000\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe (.not file.) [0] =>PUP.Optional.Nosibay
[MD5.00000000000000000000000000000000] [APT] [SmartWeb Upgrade Trigger Task] (...) -- C:\Users\beny2_000\AppData\Local\SmartWeb\SmartWebHelper.exe (.not file.) [0] =>PUP.Optional.SmartWebSearch
[MD5.00000000000000000000000000000000] [APT] [WindApp Update] (...) -- C:\Users\beny2_000\AppData\Roaming\Store\WindApp\WindApp Update.exe (.not file.) [0] =>PUP.Optional.Nosibay
[MD5.00000000000000000000000000000000] [APT] [WordSurfer Auto Updater 1.10.0.19 Core] (...) -- C:\Program Files (x86)\WordSurfer_1.10.0.19\Update\WordSurferAutoUpdateClient.exe (.not file.) [0] =>PUP.Optional.WordSurfer
[MD5.00000000000000000000000000000000] [APT] [WordSurfer Auto Updater 1.10.0.19 Pending Update] (...) -- C:\Program Files (x86)\WordSurfer_1.10.0.19\Update\WordSurferAutoUpdateClient.exe (.not file.) [0] =>PUP.Optional.WordSurfer
[MD5.CBFF244560A8F3319EE02CB3EBE04B02] [APT] [Lenovo\LSC\LSCHardwareScan] (...) -- C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [148840]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Crossbrowse - (...) -- C:\WINDOWS\Tasks\Crossbrowse.job [1082] =>PUP.Optional.CrossBrowse
O39 - APT: One System CarePeriod - (...) -- C:\WINDOWS\Tasks\One System CarePeriod.job [302] =>PUP.Optional.OneSystemCare
O39 - APT: One System CareStartUp - (...) -- C:\WINDOWS\Tasks\One System CareStartUp.job [302] =>PUP.Optional.OneSystemCare
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task [3996]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [4000]
O39 - APT: Crossbrowse - (...) -- C:\WINDOWS\System32\Tasks\Crossbrowse [4202] =>PUP.Optional.CrossBrowse
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\Dolby Selector [2996]
O39 - APT: HPCustParticipation HP Photosmart 6520 series - (.Hewlett-Packard Co..) -- C:\WINDOWS\System32\Tasks\HPCustParticipation HP Photosmart 6520 series [3746]
O39 - APT: One System Care Monitor - (...) -- C:\WINDOWS\System32\Tasks\One System Care Monitor [3370] =>PUP.Optional.OneSystemCare
O39 - APT: One System Care Run Delay - (...) -- C:\WINDOWS\System32\Tasks\One System Care Run Delay [3436] =>PUP.Optional.OneSystemCare
O39 - APT: One System CarePeriod - (...) -- C:\WINDOWS\System32\Tasks\One System CarePeriod [2970] =>PUP.Optional.OneSystemCare
O39 - APT: One System CareStartUp - (...) -- C:\WINDOWS\System32\Tasks\One System CareStartUp [2674] =>PUP.Optional.OneSystemCare
O39 - APT: Selection Tools Update - (...) -- C:\WINDOWS\System32\Tasks\Selection Tools Update [3848] =>PUP.Optional.Nosibay
O39 - APT: SmartWeb Upgrade Trigger Task - (...) -- C:\WINDOWS\System32\Tasks\SmartWeb Upgrade Trigger Task [4144] =>PUP.Optional.SmartWebSearch
O39 - APT: WindApp Update - (...) -- C:\WINDOWS\System32\Tasks\WindApp Update [3798] =>PUP.Optional.Nosibay
O39 - APT: WordSurfer Auto Updater 1.10.0.19 Core - (...) -- C:\WINDOWS\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Core [4284] =>PUP.Optional.WordSurfer
O39 - APT: WordSurfer Auto Updater 1.10.0.19 Pending Update - (...) -- C:\WINDOWS\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Pending Update [4314] =>PUP.Optional.WordSurfer
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\{1225CEB9-8975-463A-96E6-F637FC853005} [3314]
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\{E8E1F1E8-1F8F-4403-9678-316F5F0CB950} [3320]

---\\ Logiciels installés (O42) (72) - 14s
O42 - Logiciel: Package de pilotes Windows - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1) - (.Lenovo.) [HKLM][64Bits] -- 71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42
O42 - Logiciel: Package de pilotes Windows - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13. - (.Lenovo.) [HKLM][64Bits] -- 8A223E56FB1ED4F697B54E5BF96F1EB63B512684
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM][64Bits] -- CNXT_AUDIO_HDA
O42 - Logiciel: ELAN Touchpad 11.15.0.14_X64 - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech
O42 - Logiciel: WinRAR 5.21 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Nitro Pro 8 - (.Nitro.) [HKLM][64Bits] -- {34BE77EE-B563-49D7-A8A0-FFD76D29BBD3}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140}
O42 - Logiciel: Lenovo OneKey Recovery - (.CyberLink Corp..) [HKLM][64Bits] -- {46F4D124-20E5-4D12-BE52-EC177A7A4B42}
O42 - Logiciel: Étude pour l'amélioration du produit HP Photosmart 6520 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {6845C429-23DE-4822-B4E4-74A417F88B3C}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {7629623D-F0D0-4AC6-A763-FBE06ED8288C}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008F-0000-1000-0000000FF1CE}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {977D1ABF-4089-4CA7-BA33-CC75808B7ACE}
O42 - Logiciel: Qualcomm Atheros Bluetooth Suite (64) - (.Qualcomm Atheros Communications.) [HKLM][64Bits] -- {A84A4FB1-D703-48DB-89E0-68B6499D2801}
O42 - Logiciel: Logiciel de base du périphérique HP Photosmart 6520 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {B04E95AD-CBEB-443A-989F-9E9F9170907F}
O42 - Logiciel: Dolby Digital Plus Advanced Audio - (.Dolby Laboratories Inc.) [HKLM][64Bits] -- {B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}
O42 - Logiciel: NVIDIA Pilote graphique 353.62 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA GeForce Experience 2.5.12.11 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.15.0428 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: Lenovo Solution Center - (.Lenovo Group Limited.) [HKLM][64Bits] -- {B8908ABE-8AAE-41FD-A367-391CD492981B}
O42 - Logiciel: WinZip 19.5 - (.WinZip Computing, S.L. .) [HKLM][64Bits] -- {CD95F661-A5C4-44F5-A6AA-ECDD91C240E9}
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations
O42 - Logiciel: Lenovo YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: Lenovo OneKey Recovery - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}
O42 - Logiciel: Samsung Kies3 - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}
O42 - Logiciel: Energy Management - (.Lenovo.) [HKLM][64Bits] -- InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}
O42 - Logiciel: Lenovo PowerDVD10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: UserGuide - (.Lenovo.) [HKLM][64Bits] -- InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}
O42 - Logiciel: Kaspersky PURE 3.0 - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{D0702EE9-9DE4-419A-9C6C-4730B1C985BA}
O42 - Logiciel: Intel AppUp(SM) center - (.Intel.) [HKLM][64Bits] -- Intel AppUp(SM) center 33057
O42 - Logiciel: Mozilla Firefox 39.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 39.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: mystartsearch uninstall - (.mystartsearch.) [HKLM][64Bits] -- mystartsearch uninstall =>PUP.Optional.StartSearch
O42 - Logiciel: SmartWeb - (.SoftBrain Technologies Ltd..) [HKLM][64Bits] -- SmartWeb =>PUP.Optional.SmartWebSearch
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPFix_is1
O42 - Logiciel: Lenovo YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: Skype™ 7.7 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Java 8 Update 51 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218051F0}
O42 - Logiciel: Qualcomm Atheros Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Dr - (.Qualcomm Atheros Communications Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {31B9D218-FED2-4C6C-B19F-7294FFC130B0}
O42 - Logiciel: HP FWUpdateEDO2 - (.Hewlett-Packard.) [HKLM][64Bits] -- {415FA9AD-DA10-4ABE-97B6-5051D4795C90}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Samsung Kies3 - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {88547073-C566-4895-9005-EBE98EA3F7C7}
O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-0000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-040C-0000-0000000FF1CE}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2}
O42 - Logiciel: Realtek USB Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: globalupdate Helper - (.globalupdate Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.GlobalUpdate
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215}
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100}
O42 - Logiciel: Lenovo EasyCamera - (.Vimicro.) [HKLM][64Bits] -- {ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}
O42 - Logiciel: Dolby Advanced Audio v2 - (.Dolby Laboratories Inc.) [HKLM][64Bits] -- {B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}
O42 - Logiciel: HP Photosmart 6520 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {BAAC4791-19D1-4FF9-8145-E25113E39E32}
O42 - Logiciel: Kaspersky PURE 3.0 - (.Kaspersky Lab.) [HKLM][64Bits] -- {D0702EE9-9DE4-419A-9C6C-4730B1C985BA}
O42 - Logiciel: Energy Management - (.Lenovo.) [HKLM][64Bits] -- {D0956C11-0F60-43FE-99AD-524E833471BB}
O42 - Logiciel: Lenovo PowerDVD10 - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: Guide de l’utilisateur - (.Lenovo.) [HKLM][64Bits] -- {F07C2CF8-4C53-4EC3-8162-A6221E36EB88}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {FC3C2B77-6800-48C6-A15D-9D1031130C16}
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Lenovo Service Bridge - (.Lenovo.) [HKCU][64Bits] -- cbe8636f7dd0cf1d
O42 - Logiciel: MyFreeCodec - (...) [HKCU][64Bits] -- MyFreeCodec
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys (157) - 15s
HKLM\SOFTWARE\Wow6432Node\1ae4e9d4-6b65-4ed3-a13e-2ca273115d41 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\a7fc14f9-75e1-0199-ab5c-704174a0f05f =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\AIM Toolbar
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Atheros
HKLM\SOFTWARE\Wow6432Node\Boxore =>PUP.Optional.Boxore
HKLM\SOFTWARE\Wow6432Node\BrowserV30.07 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\BrowserV30.07-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\BrowserV30.07-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\Conexant
HKLM\SOFTWARE\Wow6432Node\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\GAMESDESKTOP =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\InfoWatch
HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Lake
HKLM\SOFTWARE\Wow6432Node\Lenovo
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\MaxPower
HKLM\SOFTWARE\Wow6432Node\MovieDea =>PUP.Optional.MovieDea
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Myfree Codec
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\Nalpeiron
HKLM\SOFTWARE\Wow6432Node\Nico Mak Computing
HKLM\SOFTWARE\Wow6432Node\Nitro
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Wow6432Node\Qualcomm Atheros
HKLM\SOFTWARE\Wow6432Node\Qualcomm Atheros Communications Inc.
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\RocketLife
HKLM\SOFTWARE\Wow6432Node\Samsung
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\searchult =>PUP.Optional.Gen
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Software
HKLM\SOFTWARE\Wow6432Node\SpeedBit
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\SuppHelpDir
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.Fuyu
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Vimicro
HKLM\SOFTWARE\Wow6432Node\Visan
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WajIntEnhance =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\ZSMC
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\5CTgBL58l0OLDopGUu
HKCU\SOFTWARE\5EgM7zRD
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AskPartnerNetwork =>Toolbar.Ask
HKCU\SOFTWARE\Atheros
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Boxore =>PUP.Optional.Boxore
HKCU\SOFTWARE\BrowserV30.07-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\BrowserV30.07-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\BugSplat
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Conexant
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\Dolby
HKCU\SOFTWARE\DriverToolkit
HKCU\SOFTWARE\Elantech
HKCU\SOFTWARE\eSupport.com =>PUP.Optional.eSupport
HKCU\SOFTWARE\gamesdesktop =>PUP.Optional.GamesDesktop
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\HomeTab =>PUP.Optional.CertifiedToolbar
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\I8yb7AtH0sqBUH2p8bDth5
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\Kromtech
HKCU\SOFTWARE\Lavalys
HKCU\SOFTWARE\Lenovo
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mine
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Myfree Codec
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nico Mak Computing
HKCU\SOFTWARE\NITRO
HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\One System Care =>PUP.Optional.OneSystemCare
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\RapidMediaConverterApp =>PUP.Optional.RapidMediaConverter
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\SearchProtectWS =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\Store =>PUP.Optional.Gen
HKCU\SOFTWARE\SYNCJM
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\TNT2 =>PUP.Optional.TidyNetwork
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\uEcrz0BnlZsooun
HKCU\SOFTWARE\Visan
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\WinZip Computing
HKCU\SOFTWARE\WTools
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\SmartWeb =>PUP.Optional.SmartWebSearch

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (221) - 12s
O43 - CFD: 2015/08/03 20:36:47 - [] D -- C:\Program Files (x86)\1A4D670B-1438616714-E211-85E5-208984D9AB18 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/03 18:13:31 - [] D -- C:\Program Files (x86)\3ec599db-b8cc-4081-a24c-d17af2e82169 =>PUP.Optional.CrossRider
O43 - CFD: 2015/05/26 18:31:10 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/08/04 02:10:18 - [] D -- C:\Program Files (x86)\baidu
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\Program Files (x86)\Bluetooth Suite
O43 - CFD: 2015/08/03 18:13:09 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2013/06/07 02:12:45 - [] D -- C:\Program Files (x86)\Cyberlink
O43 - CFD: 2013/06/07 01:58:32 - [] D -- C:\Program Files (x86)\Dolby Advanced Audio v2
O43 - CFD: 2015/06/28 21:57:56 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/05/29 21:53:13 - [] D -- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 2015/05/29 22:03:02 - [] D -- C:\Program Files (x86)\HP
O43 - CFD: 2015/05/29 22:03:29 - [] D -- C:\Program Files (x86)\HP Photo Creations
O43 - CFD: 2015/06/24 02:01:43 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2013/06/07 02:18:16 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/07/31 01:58:22 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/07/27 00:24:34 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2015/07/31 01:15:00 - [] D -- C:\Program Files (x86)\Kaspersky Lab
O43 - CFD: 2015/06/01 18:07:11 - [] D -- C:\Program Files (x86)\Lenovo
O43 - CFD: 2015/07/29 22:05:02 - [] D -- C:\Program Files (x86)\Microsoft ASP.NET
O43 - CFD: 2013/06/07 02:07:15 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/05/31 01:38:48 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2015/05/26 17:31:07 - [] D -- C:\Program Files (x86)\Microsoft SkyDrive
O43 - CFD: 2015/07/31 01:15:02 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/08/03 16:50:03 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/08/03 17:49:38 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2015/07/31 01:41:05 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/06/24 06:13:02 - [] D -- C:\Program Files (x86)\MyFree Codec
O43 - CFD: 2013/06/07 02:08:23 - [] D -- C:\Program Files (x86)\Nitro
O43 - CFD: 2015/07/31 01:15:03 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2015/08/03 17:45:36 - [0] D -- C:\Program Files (x86)\Opera
O43 - CFD: 2013/06/07 01:59:16 - [] D -- C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 2013/06/07 01:50:20 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2015/07/31 01:41:05 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/06/24 02:00:54 - [] D -- C:\Program Files (x86)\Samsung
O43 - CFD: 2015/06/29 17:25:04 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2015/08/03 17:46:02 - [] D -- C:\Program Files (x86)\Software =>PUP.Optional.Boxore
O43 - CFD: 2015/07/31 01:08:26 - [] D -- C:\Program Files (x86)\USB Camera
O43 - CFD: 2015/05/26 18:22:47 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2013/06/07 01:51:23 - [] D -- C:\Program Files (x86)\Vimicro
O43 - CFD: 2015/07/31 01:53:40 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/07/31 01:15:03 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/07/31 01:53:40 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2015/07/10 13:04:22 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/07/31 01:53:40 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2015/07/10 13:04:22 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015/07/10 13:04:22 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 2015/08/03 21:01:48 - [] D -- C:\Program Files (x86)\ZHPFix
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/07/10 18:28:37 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/08/04 02:31:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2015/07/31 01:20:19 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel AppUp(SM) center
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/07/31 01:15:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2015/07/31 01:20:19 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneKey Recovery
O43 - CFD: 2015/07/31 01:15:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/07/31 01:20:19 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/07/10 18:28:36 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
O43 - CFD: 2015/08/03 20:45:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
O43 - CFD: 2015/08/03 18:05:34 - [] D -- C:\ProgramData\14647959763494824237
O43 - CFD: 2015/08/03 18:58:25 - [] D -- C:\ProgramData\19a87fa1ec024bbcbb41931263354405
O43 - CFD: 2015/08/03 17:59:16 - [] D -- C:\ProgramData\6WinManPro6
O43 - CFD: 2015/08/03 17:40:14 - [] D -- C:\ProgramData\7WinManPro7
O43 - CFD: 2015/05/27 10:14:25 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/05/26 17:17:09 - [] D -- C:\ProgramData\Atheros
O43 - CFD: 2015/06/22 15:26:12 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 2015/05/26 17:09:08 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2015/08/04 02:10:56 - [] D -- C:\ProgramData\BWinManProB
O43 - CFD: 2015/07/10 13:04:22 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 2015/08/02 22:22:12 - [] D -- C:\ProgramData\Conexant
O43 - CFD: 2015/07/03 03:28:26 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2013/06/07 02:19:30 - [] D -- C:\ProgramData\Downloaded Installations
O43 - CFD: 2015/05/26 17:16:08 - [] D -- C:\ProgramData\eBay
O43 - CFD: 2015/05/29 22:03:04 - [] D -- C:\ProgramData\HP
O43 - CFD: 2015/05/29 22:03:29 - [] D -- C:\ProgramData\HP Photo Creations
O43 - CFD: 2015/08/03 18:01:43 - [] D -- C:\ProgramData\ilepipapaoacijpmgbhcoinjkbjkiicm
O43 - CFD: 2013/06/07 02:18:49 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2015/07/31 00:24:55 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 2015/05/26 17:09:08 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/07/31 01:15:09 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/07/31 01:47:07 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 2015/05/26 17:30:59 - [] D -- C:\ProgramData\Microsoft SkyDrive
O43 - CFD: 2015/05/26 17:09:08 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/05/26 17:42:03 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2013/06/07 02:08:23 - [] D -- C:\ProgramData\Nitro
O43 - CFD: 2015/07/31 01:06:13 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2015/07/31 01:15:09 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2013/06/07 02:19:21 - [] D -- C:\ProgramData\OneKey Recovery
O43 - CFD: 2015/07/27 00:24:43 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2015/07/31 01:15:09 - [] D -- C:\ProgramData\PRICache
O43 - CFD: 2013/06/07 01:59:08 - [] D -- C:\ProgramData\Qualcomm Atheros
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/08/04 00:49:28 - [] D -- C:\ProgramData\RogueKiller
O43 - CFD: 2015/06/24 02:03:11 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 2015/08/03 17:54:32 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2015/07/10 13:04:22 - [0] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2015/08/04 01:31:39 - [] D -- C:\ProgramData\STOPzilla!
O43 - CFD: 2015/05/26 17:50:55 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2013/06/07 02:19:07 - [] D -- C:\ProgramData\Temp
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/07/10 14:22:45 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 2015/07/10 14:22:45 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 2015/05/29 14:51:00 - [] D -- C:\ProgramData\Visan
O43 - CFD: 2015/06/17 01:30:44 - [] D -- C:\ProgramData\WinZip
O43 - CFD: 2015/08/03 18:58:34 - [] D -- C:\ProgramData\yWinManProy
O43 - CFD: 2015/05/26 18:31:11 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2015/07/24 21:46:38 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2013/06/07 01:54:30 - [] D -- C:\Program Files (x86)\Common Files\Atheros
O43 - CFD: 2015/05/26 17:30:39 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2015/06/24 16:35:05 - [] D -- C:\Program Files (x86)\Common Files\InfoWatch
O43 - CFD: 2015/07/31 01:06:28 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 2013/06/07 01:52:04 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 2015/07/27 00:23:23 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2015/07/31 01:14:57 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2013/06/07 02:08:23 - [] D -- C:\Program Files (x86)\Common Files\Nitro
O43 - CFD: 2013/06/07 01:50:29 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 2013/06/07 01:55:17 - [] D -- C:\Program Files (x86)\Common Files\QCA_Bluetooth
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/05/31 01:44:54 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2015/07/10 18:23:55 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/05/29 14:36:48 - [] D -- C:\Users\beny2_000\AppData\Roaming\Adobe
O43 - CFD: 2015/08/03 18:04:18 - [] SHD -- C:\Users\beny2_000\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
O43 - CFD: 2015/05/26 17:16:54 - [] D -- C:\Users\beny2_000\AppData\Roaming\Atheros
O43 - CFD: 2015/07/03 03:28:18 - [] D -- C:\Users\beny2_000\AppData\Roaming\CyberLink
O43 - CFD: 2015/06/19 20:02:10 - [] D -- C:\Users\beny2_000\AppData\Roaming\HpUpdate
O43 - CFD: 2015/05/27 17:11:14 - [] D -- C:\Users\beny2_000\AppData\Roaming\Identities
O43 - CFD: 2015/05/26 17:17:58 - [] D -- C:\Users\beny2_000\AppData\Roaming\Intel Corporation
O43 - CFD: 2015/05/26 21:45:26 - [] D -- C:\Users\beny2_000\AppData\Roaming\java
O43 - CFD: 2015/05/26 17:17:02 - [] D -- C:\Users\beny2_000\AppData\Roaming\Lenovo
O43 - CFD: 2015/05/27 10:12:31 - [] D -- C:\Users\beny2_000\AppData\Roaming\LSC
O43 - CFD: 2013/06/07 02:10:05 - [] D -- C:\Users\beny2_000\AppData\Roaming\Macromedia
O43 - CFD: 2015/08/03 18:26:24 - [] SD -- C:\Users\beny2_000\AppData\Roaming\Microsoft
O43 - CFD: 2015/05/26 17:42:11 - [] D -- C:\Users\beny2_000\AppData\Roaming\Mozilla
O43 - CFD: 2015/08/04 02:08:52 - [] D -- C:\Users\beny2_000\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
O43 - CFD: 2015/06/24 15:16:27 - [] D -- C:\Users\beny2_000\AppData\Roaming\Nitro
O43 - CFD: 2015/08/04 02:34:16 - [] D -- C:\Users\beny2_000\AppData\Roaming\Nitro PDF
O43 - CFD: 2015/08/03 18:09:32 - [0] D -- C:\Users\beny2_000\AppData\Roaming\Nosibay =>PUP.Optional.BubbleDock
O43 - CFD: 2015/06/01 17:59:59 - [] D -- C:\Users\beny2_000\AppData\Roaming\One System Care =>PUP.Optional.OneSystemCare
O43 - CFD: 2015/08/03 20:39:00 - [] D -- C:\Users\beny2_000\AppData\Roaming\oursurfing =>PUP.Optional.OurSurfing
O43 - CFD: 2015/06/24 02:02:01 - [] D -- C:\Users\beny2_000\AppData\Roaming\Samsung
O43 - CFD: 2015/08/04 01:27:33 - [] D -- C:\Users\beny2_000\AppData\Roaming\Skype
O43 - CFD: 2015/08/03 17:36:39 - [] D -- C:\Users\beny2_000\AppData\Roaming\Store =>PUP.Optional.Nosibay
O43 - CFD: 2015/08/03 20:47:35 - [] D -- C:\Users\beny2_000\AppData\Roaming\uTorrent
O43 - CFD: 2015/07/29 15:26:29 - [] D -- C:\Users\beny2_000\AppData\Roaming\vlc
O43 - CFD: 2015/06/17 01:09:27 - [] D -- C:\Users\beny2_000\AppData\Roaming\WinRAR
O43 - CFD: 2015/08/03 17:36:57 - [] D -- C:\Users\beny2_000\AppData\Roaming\WTools
O43 - CFD: 2015/08/04 02:45:50 - [] D -- C:\Users\beny2_000\AppData\Roaming\ZHP
O43 - CFD: 2015/08/03 17:55:06 - [] D -- C:\Users\beny2_000\AppData\Local\1A4D670B-1438623977-E211-85E5-208984D9AB18
O43 - CFD: 2015/05/29 14:35:53 - [] D -- C:\Users\beny2_000\AppData\Local\Adobe
O43 - CFD: 2015/07/31 01:13:02 - [0] SHD -- C:\Users\beny2_000\AppData\Local\Application Data
O43 - CFD: 2015/08/01 13:00:17 - [] D -- C:\Users\beny2_000\AppData\Local\Apps
O43 - CFD: 2015/05/26 17:17:09 - [] D -- C:\Users\beny2_000\AppData\Local\BMExplorer
O43 - CFD: 2015/08/01 11:41:19 - [] D -- C:\Users\beny2_000\AppData\Local\Comms
O43 - CFD: 2015/08/04 02:08:55 - [] D -- C:\Users\beny2_000\AppData\Local\CrashDumps
O43 - CFD: 2015/08/04 02:10:09 - [] D -- C:\Users\beny2_000\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2015/07/03 03:28:08 - [] D -- C:\Users\beny2_000\AppData\Local\CyberLink
O43 - CFD: 2015/08/01 13:00:59 - [0] D -- C:\Users\beny2_000\AppData\Local\Deployment
O43 - CFD: 2015/07/04 04:03:51 - [0] D -- C:\Users\beny2_000\AppData\Local\Diagnostics
O43 - CFD: 2015/08/02 22:17:51 - [] D -- C:\Users\beny2_000\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/06/28 21:31:28 - [0] SHD -- C:\Users\beny2_000\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/06/28 21:31:28 - [0] SHD -- C:\Users\beny2_000\AppData\Local\EmieSiteList
O43 - CFD: 2015/06/28 21:31:28 - [0] SHD -- C:\Users\beny2_000\AppData\Local\EmieUserList
O43 - CFD: 2015/08/04 02:11:43 - [] D -- C:\Users\beny2_000\AppData\Local\gmsd_fr_005010048 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/04 02:11:44 - [] D -- C:\Users\beny2_000\AppData\Local\gmsd_fr_005010050 =>PUP.Optional.CrossRider
O43 - CFD: 2015/06/28 21:58:13 - [] D -- C:\Users\beny2_000\AppData\Local\Google
O43 - CFD: 2015/06/01 11:06:03 - [] D -- C:\Users\beny2_000\AppData\Local\GWX
O43 - CFD: 2015/07/31 01:13:02 - [0] SHD -- C:\Users\beny2_000\AppData\Local\Historique
O43 - CFD: 2015/05/29 14:49:54 - [] D -- C:\Users\beny2_000\AppData\Local\HP
O43 - CFD: 2015/05/31 17:13:53 - [] D -- C:\Users\beny2_000\AppData\Local\Kaspersky Lab
O43 - CFD: 2015/05/26 17:23:22 - [] D -- C:\Users\beny2_000\AppData\Local\LSC
O43 - CFD: 2015/05/26 18:35:03 - [] D -- C:\Users\beny2_000\AppData\Local\Macromedia
O43 - CFD: 2015/08/01 11:20:32 - [] D -- C:\Users\beny2_000\AppData\Local\Microsoft
O43 - CFD: 2015/08/01 11:30:30 - [] D -- C:\Users\beny2_000\AppData\Local\MicrosoftEdge
O43 - CFD: 2015/05/26 17:42:12 - [] D -- C:\Users\beny2_000\AppData\Local\Mozilla
O43 - CFD: 2015/07/31 11:58:23 - [0] D -- C:\Users\beny2_000\AppData\Local\NetworkTiles
O43 - CFD: 2015/07/29 17:30:15 - [] D -- C:\Users\beny2_000\AppData\Local\NVIDIA
O43 - CFD: 2015/07/29 17:30:06 - [] D -- C:\Users\beny2_000\AppData\Local\NVIDIA Corporation
O43 - CFD: 2015/08/02 20:33:03 - [] D -- C:\Users\beny2_000\AppData\Local\Packages
O43 - CFD: 2015/05/27 17:15:14 - [0] D -- C:\Users\beny2_000\AppData\Local\PackageStaging
O43 - CFD: 2015/06/01 15:14:35 - [] D -- C:\Users\beny2_000\AppData\Local\Programs
O43 - CFD: 2015/07/31 01:45:32 - [] D -- C:\Users\beny2_000\AppData\Local\Publishers
O43 - CFD: 2015/08/03 17:48:56 - [] D -- C:\Users\beny2_000\AppData\Local\RapidMediaConverter =>PUP.Optional.RapidMediaConverter
O43 - CFD: 2015/05/31 01:45:07 - [] D -- C:\Users\beny2_000\AppData\Local\Skype
O43 - CFD: 2015/08/02 22:10:20 - [] D -- C:\Users\beny2_000\AppData\Local\speech
O43 - CFD: 2015/08/04 02:45:22 - [] D -- C:\Users\beny2_000\AppData\Local\Temp
O43 - CFD: 2015/07/31 01:13:02 - [0] SHD -- C:\Users\beny2_000\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/07/31 01:41:40 - [] D -- C:\Users\beny2_000\AppData\Local\TileDataLayer
O43 - CFD: 2015/08/02 22:18:03 - [] D -- C:\Users\beny2_000\AppData\Local\VirtualStore
O43 - CFD: 2015/08/03 18:03:40 - [] D -- C:\Users\beny2_000\AppData\Local\Windesk_Winsearch =>PUP.Optional.WindeskWinsearch
O43 - CFD: 2015/08/02 22:59:41 - [] D -- C:\Users\beny2_000\AppData\Local\WinZip
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/07/31 01:41:32 - [] RD -- C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/08/03 20:35:13 - [] RD -- C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/08/03 20:37:35 - [] D -- C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.Optional.AnyProtect
O43 - CFD: 2015/08/01 13:00:32 - [] D -- C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/08/03 18:03:20 - [] D -- C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MovieDea =>PUP.Optional.MovieDea
O43 - CFD: 2015/08/03 17:48:55 - [] D -- C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rapid Media Converter =>PUP.Optional.RapidMediaConverter
O43 - CFD: 2015/08/04 02:10:14 - [] RD -- C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/07/31 01:14:02 - [] RD -- C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/07/10 13:04:45 - [] RSD -- C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 2015/07/31 01:20:19 - [] D -- C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Derniers fichiers créés dans Windows Prefetcher (O45) (23) - 21s
O45 - LFCP:[MD5.119F2A1CE6ED53DC23ADB86042F4544D] 2015/08/03 19:27:10 A -- C:\WINDOWS\Prefetch\ANYPROTECT.EXE-7064871B.pf =>PUP.Optional.AnyProtect
O45 - LFCP:[MD5.E4683F9585E4EDBBE08FCF1155E3EE90] 2015/08/03 17:51:33 A -- C:\WINDOWS\Prefetch\ASPACKAGE.EXE-192C300F.pf =>PUP.Optional.ASPackage
O45 - LFCP:[MD5.ECD5FFF413197D8F470BA50FDB8F82EE] 2015/08/03 17:45:17 A -- C:\WINDOWS\Prefetch\BOXORE.EXE-A21182E0.pf =>PUP.Optional.Boxore
O45 - LFCP:[MD5.0E5D37BD5C4FA19970E92CE4B17DA33F] 2015/08/03 18:07:36 A -- C:\WINDOWS\Prefetch\BUBBLE DOCK UNINSTALL.EXE-1F0F01C0.pf =>PUP.Optional.BubbleDock
O45 - LFCP:[MD5.6713549A26A80E8CA4611EC6FD91A47E] 2015/08/03 18:07:46 A -- C:\WINDOWS\Prefetch\BUBBLE DOCK UNINSTALL.EXE-F0D5159C.pf =>PUP.Optional.BubbleDock
O45 - LFCP:[MD5.FB6156040350A15F4D24AF43D490BCBE] 2015/08/03 17:53:25 A -- C:\WINDOWS\Prefetch\BUBBLE DOCK.EXE-E8292CBE.pf =>PUP.Optional.BubbleDock
O45 - LFCP:[MD5.9CDD87220C0EA093C49D3C3FE7F0CC64] 2015/08/04 02:20:44 A -- C:\WINDOWS\Prefetch\CROSSBROWSE.EXE-3A672F00.pf =>PUP.Optional.CrossBrowse
O45 - LFCP:[MD5.2C177C1132F68F65600BB4CCAB2B040E] 2015/08/04 02:11:54 A -- C:\WINDOWS\Prefetch\GMSD_FR_005010050.EXE-F2C12550.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.56E0459C82B04EF92310554A0E12AAB6] 2015/08/04 00:00:55 A -- C:\WINDOWS\Prefetch\MOVIEDEA.EXE-A437378C.pf =>PUP.Optional.MovieDea
O45 - LFCP:[MD5.BF4A41F4D8F487AD8AF4FD7B43FB49DF] 2015/08/03 17:46:58 A -- C:\WINDOWS\Prefetch\PACKAGE_PCROSSBROWSER_INSTALL-7473ED77.pf =>PUP.Optional.CrossBrowser
O45 - LFCP:[MD5.5C5AE9EF5AE83A4108449C3D8159B168] 2015/08/03 18:11:31 A -- C:\WINDOWS\Prefetch\PREDM.TMP-47E4043D.pf =>PUP.Optional.Downware
O45 - LFCP:[MD5.4FB7A55F3842298D39E1F36061D3F6FD] 2015/08/03 18:02:40 A -- C:\WINDOWS\Prefetch\PREDM.TMP-D53359B3.pf =>PUP.Optional.Downware
O45 - LFCP:[MD5.965E6F66E951963C3BB05DC9C392CB67] 2015/08/03 18:13:09 A -- C:\WINDOWS\Prefetch\PREDM.TMP-D5BD7AFC.pf =>PUP.Optional.Downware
O45 - LFCP:[MD5.A77A37FD03AA2E2DCBCF8B4C6A6AF0DF] 2015/08/04 02:09:31 A -- C:\WINDOWS\Prefetch\SMARTWEBAPP.EXE-88E1A7CC.pf =>PUP.Optional.SmartWebSearch
O45 - LFCP:[MD5.1DBA8ED206CE4DD3E51A675E28A3E9A2] 2015/08/04 02:09:29 A -- C:\WINDOWS\Prefetch\SMARTWEBHELPER.EXE-D2933B07.pf =>PUP.Optional.SmartWebSearch
O45 - LFCP:[MD5.140B811499CF7119BAF61D3DBAACBC8B] 2015/08/03 18:36:58 A -- C:\WINDOWS\Prefetch\SPYHUNTER-INSTALLER.EXE-0651D42F.pf =>.Enigma Software
O45 - LFCP:[MD5.D28E8868D573977C4962B5B874BFED94] 2015/08/04 00:15:25 A -- C:\WINDOWS\Prefetch\SPYHUNTER4.EXE-1B0A567E.pf =>.Enigma Software
O45 - LFCP:[MD5.58F7D92781CFF9C162C586E81EDADE8C] 2015/08/04 00:11:29 A -- C:\WINDOWS\Prefetch\SPYHUNTER_4-18-9_FR_181252.EX-656DC45B.pf =>.Enigma Software
O45 - LFCP:[MD5.C2C790F4876D9B0EB269B2F5ED1072B2] 2015/08/03 19:02:50 A -- C:\WINDOWS\Prefetch\UPGMSD_FR_005010048.EXE-EE9FF70C.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.06DB2C34D89580D5AA85ECFDF931B560] 2015/08/04 02:11:53 A -- C:\WINDOWS\Prefetch\UPGMSD_FR_005010050.EXE-BB379716.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.2E71A6A0626CBB3542990A8A833A6D81] 2015/08/03 17:54:25 A -- C:\WINDOWS\Prefetch\UPMBOT_FR_014010050.EXE-1B016BBC.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.5512A69C43CFAB15A0C230819A209F1F] 2015/08/04 00:51:22 A -- C:\WINDOWS\Prefetch\WORDSURFERAUTOUPDATECLIENT.EX-BA7B1E11.pf =>PUP.Optional.WordSurfer
O45 - LFCP:[MD5.AC950689286A0F58F4ADFB2BFCC7BD30] 2015/08/04 02:09:56 A -- C:\WINDOWS\Prefetch\WPM_V20.0.0.2294.EXE-4B5572AA.pf =>PUP.Optional.WpManager

---\\ Liste des pilotes du système (SDL) (O58) (62) - 4s
O58 - SDL:2015/07/10 12:59:38 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360]
O58 - SDL:2013/06/07 02:19:35 A . (.Lenovo Corporation - ACPI Virtual Power Controller Driver.) -- C:\WINDOWS\System32\drivers\AcpiVpc.sys [33560]
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456]
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296]
O58 - SDL:2015/07/10 12:59:38 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424]
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976]
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936]
O58 - SDL:2013/02/20 19:50:32 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\drivers\athw8x.sys [3765760]
O58 - SDL:2015/07/10 12:59:38 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624]
O58 - SDL:2015/08/03 18:01:27 A . (.Copyright (c) 2012 - .) -- C:\WINDOWS\System32\drivers\bsdriver.sys [34712]
O58 - SDL:2013/01/24 23:46:20 A . (.Qualcomm Atheros - Qualcomm Atheros BUS driver.) -- C:\WINDOWS\System32\drivers\btath_bus.sys [34384]
O58 - SDL:2015/03/09 09:48:34 A . (.Qualcomm Atheros - Qualcomm Atheros BtFilter Driver.) -- C:\WINDOWS\System32\drivers\btfilter.sys [599240]
O58 - SDL:2015/07/10 12:59:38 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296]
O58 - SDL:2013/03/22 10:14:14 A . (.Conexant Systems Inc. - 64-bit High Definition Audio Function Drive.) -- C:\WINDOWS\System32\drivers\CHDRT64.sys [1682016]
O58 - SDL:2013/09/25 12:51:12 A . (.Infowatch - Cryptographic Algorithm Lib Driver..) -- C:\WINDOWS\System32\drivers\CSCrySec.sys [98504]
O58 - SDL:2013/09/25 12:51:12 A . (.Infowatch - Virtual Volume Container Driver (wnet).) -- C:\WINDOWS\System32\drivers\CSVirtualDiskDrv.sys [67784]
O58 - SDL:2015/07/31 01:46:01 A . (.ELAN Microelectronics Corp. - ETD Kernel Center.) -- C:\WINDOWS\System32\drivers\ETD.sys [428216]
O58 - SDL:2015/07/10 12:59:38 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896]
O58 - SDL:2012/11/06 07:30:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\HECIx64.sys [62784]
O58 - SDL:2015/07/10 12:59:38 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352]
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128]
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [122608]
O58 - SDL:2013/01/31 15:20:10 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [652784]
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120]
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000]
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800]
O58 - SDL:2015/07/11 00:50:28 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [3789240]
O58 - SDL:2013/01/23 04:22:52 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [342528]
O58 - SDL:2015/06/26 22:46:16 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\intelaud.sys [50232]
O58 - SDL:2015/06/26 22:46:16 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\iwdbus.sys [39480]
O58 - SDL:2013/11/11 23:44:32 A . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) -- C:\WINDOWS\System32\drivers\klim6.sys [28504]
O58 - SDL:2015/07/10 12:59:39 A . (.Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabi.) -- C:\WINDOWS\System32\drivers\L1C63x64.sys [129224]
O58 - SDL:2013/06/07 02:19:34 A . (.Lenovo. - HD Disk Driver.) -- C:\WINDOWS\System32\drivers\LhdX64.sys [39008]
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108896]
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800]
O58 - SDL:2015/07/10 12:59:38 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168]
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784]
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744]
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840]
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376]
O58 - SDL:2015/07/10 12:59:39 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840]
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128]
O58 - SDL:2015/07/23 04:02:12 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\WINDOWS\System32\drivers\nvlddmkm.sys [11142984]
O58 - SDL:2015/07/23 04:02:12 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\WINDOWS\System32\drivers\nvpciflt.sys [31376]
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368]
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240]
O58 - SDL:2015/06/17 11:10:27 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\WINDOWS\System32\drivers\nvvad64v.sys [46768]
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208]
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720]
O58 - SDL:2015/05/14 12:10:30 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\WINDOWS\System32\drivers\RtsUer.sys [402960]
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896]
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760]
O58 - SDL:2015/07/10 12:59:39 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072]
O58 - SDL:2015/08/04 00:31:47 A . (...) -- C:\WINDOWS\System32\drivers\TrueSight.sys [35064]
O58 - SDL:2015/07/10 12:59:48 A . (...) -- C:\WINDOWS\System32\drivers\Udecx.sys [44032]
O58 - SDL:2015/06/12 15:04:00 A . (.Vimicro Corporation - VM0331 Digital Camera Driver.) -- C:\WINDOWS\System32\drivers\vm331avs.sys [802312]
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752]
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504]
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976]
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232]
O58 - SDL:2012/06/13 17:10:32 A . (."CyberLink - Cyberlink Virtual Disk Driver.) -- C:\WINDOWS\System32\drivers\wsvd.sys [102376]
O58 - SDL:2013/02/20 19:50:32 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\athw8x.sys [3765760]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (88) - 106s
O61 - LFC: 2015/08/04 02:24:43 A . (.Lenovo Group Limited.) -- C:\Users\beny2_000\Downloads\audio114w8.exe [86486496]
O61 - LFC: 2015/08/02 23:16:38 A . (.Copyright © 2015 eSupport.com, Inc • All Rights Reser.) -- C:\Users\beny2_000\Downloads\driveragent-setup-794.exe [1225680]
O61 - LFC: 2015/08/02 23:23:03 A . (.Megaify Software.) -- C:\Users\beny2_000\Downloads\DriverToolkitInstaller.exe [2449376] =>PUP.Optional.Megaify
O61 - LFC: 2015/08/02 22:53:19 A . (.Lavalys, Inc..) -- C:\Users\beny2_000\Downloads\everest-ultimate.exe [10255080]
O61 - LFC: 2015/08/03 16:47:23 A . (..) -- C:\Users\beny2_000\Downloads\Firefox Setup Stub 39.0 (1).exe [242904]
O61 - LFC: 2015/08/02 21:04:39 A . (..) -- C:\Users\beny2_000\Downloads\Firefox Setup Stub 39.0.exe [242904]
O61 - LFC: 2015/08/02 23:02:37 A . (..) -- C:\Users\beny2_000\Downloads\MaConfig_Win.exe [268128]
O61 - LFC: 2015/08/04 00:31:42 A . (..) -- C:\Users\beny2_000\Downloads\RogueKiller.exe [18718280]
O61 - LFC: 2015/08/02 23:05:36 A . (.PortableApps.com.) -- C:\Users\beny2_000\Downloads\SIWPortable_2011-2011.10.29.0.10.29.paf.exe [2548777]
O61 - LFC: 2015/08/03 18:36:51 A . (.Enigma Software Group USA, LLC..) -- C:\Users\beny2_000\Downloads\SpyHunter-Installer.exe [3109248].Enigma Software
O61 - LFC: 2015/08/03 18:37:35 A . (.iS3, Inc..) -- C:\Users\beny2_000\Downloads\STOPzillaPRO_Downloader.exe [2042328]
O61 - LFC: 2015/08/02 21:11:49 A . (..) -- C:\Users\beny2_000\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\17e4f7b2-21d7d39a-n\avcodec-51.dll [1941504]
O61 - LFC: 2015/08/02 21:11:49 A . (..) -- C:\Users\beny2_000\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\17e4f7b2-21d7d39a-n\avformat-52.dll [107520]
O61 - LFC: 2015/08/02 21:11:49 A . (..) -- C:\Users\beny2_000\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\17e4f7b2-21d7d39a-n\avutil-49.dll [62464]
O61 - LFC: 2015/08/02 21:11:49 A . (..) -- C:\Users\beny2_000\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\17e4f7b2-21d7d39a-n\ivjni.dll [527360]
O61 - LFC: 2015/08/02 21:11:49 A . (..) -- C:\Users\beny2_000\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\17e4f7b2-21d7d39a-n\libmp3lame-0.dll [288361]
O61 - LFC: 2015/08/02 22:59:41 A . (..) -- C:\Users\beny2_000\AppData\Local\WinZip\rr.bin [215472]
O61 - LFC: 2015/08/01 23:58:49 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Data.bin [3285916]
O61 - LFC: 2015/08/04 01:44:05 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Header.bin [14632]
O61 - LFC: 2015/08/04 01:29:27 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\Contacts_01.040c.digest.bin [15940]
O61 - LFC: 2015/08/04 02:20:03 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\PointsOfInterest2_01.040c.digest.bin [56]
O61 - LFC: 2015/08/04 02:35:03 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\PointsOfInterest2_02.040c.digest.bin [56]
O61 - LFC: 2015/08/04 02:35:02 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\PointsOfInterest_01.040c.digest.bin [56]
O61 - LFC: 2015/08/04 02:20:02 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\PointsOfInterest_02.040c.digest.bin [56]
O61 - LFC: 2015/08/04 02:36:07 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192]
O61 - LFC: 2015/08/04 02:26:50 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\VaStartMenu_01.040c.digest.bin [16196]
O61 - LFC: 2015/08/04 02:31:20 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\VaStartMenu_02.040c.digest.bin [16316]
O61 - LFC: 2015/08/04 02:38:02 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\cache\proactive\proactive-cache.bin [147928]
O61 - LFC: 2015/08/04 02:38:59 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\UrlBlock\urlblock_635742410824536320.bin [84493]
O61 - LFC: 2015/08/01 13:00:07 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\FY7Y934V\LSBsetup[1].exe [0]
O61 - LFC: 2015/08/01 15:30:11 A . (..) -- C:\Users\beny2_000\AppData\Local\Packages\king.com.CandyCrushSaga_kgqvnymyfvs32\LocalCache\Cache\ServiceLayer\ff_sl_messages.bin [2260]
O61 - LFC: 2015/08/03 10:00:04 A . (..) -- C:\Users\beny2_000\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [5133709]
O61 - LFC: 2015/08/03 20:35:07 A . (..) -- C:\Users\beny2_000\AppData\Local\NVIDIA\NvBackend\Packages\00007bb7\DAO.19826035.exe [5931992]
O61 - LFC: 2015/08/03 20:32:51 A . (..) -- C:\Users\beny2_000\AppData\Local\NVIDIA\NvBackend\Packages\00007bb5\CoProc update.19825278.exe [515672]
O61 - LFC: 2015/08/04 02:12:59 A . (..) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\WJYCGWBN\BiTool[1].dll [59904]
O61 - LFC: 2015/08/04 02:07:08 A . (..) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\WJYCGWBN\cmmdWriter[1].exe [41440]
O61 - LFC: 2015/08/04 02:10:15 A . (..) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\WJYCGWBN\FriendlyError_s3[1].exe [177664]
O61 - LFC: 2015/08/04 02:10:08 A . (.Oleg N. Scherbakov.) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\WJYCGWBN\ppsyx[1].exe [462499]
O61 - LFC: 2015/08/03 17:49:08 A . (.Applon.) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\WJYCGWBN\Rapid_Media_Converter_Clean[1].exe [565248]
O61 - LFC: 2015/08/04 02:07:40 A . (..) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\WJYCGWBN\setup[1].exe [1967696]
O61 - LFC: 2015/08/04 02:10:23 A . (..) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\S2PDXGWJ\3115[1].exe [426517]
O61 - LFC: 2015/08/04 02:09:22 A . (..) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\S2PDXGWJ\fdf809e7420bc26691f9efeb51b17a73[1].exe [56170]
O61 - LFC: 2015/08/04 02:07:19 A . (..) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\S2PDXGWJ\SearchUpdater[1].exe [121216]
O61 - LFC: 2015/08/04 02:11:14 A . (..) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\S2PDXGWJ\setup_gmsd_fr[1].exe [4743744]
O61 - LFC: 2015/08/04 02:07:13 A . (..) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\PI7L78KR\n3VC4[1].exe [205140]
O61 - LFC: 2015/08/04 02:07:52 A . (.SoftBrain Technologies Ltd..) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\PI7L78KR\SmartWebInstaller[1].exe [759544] =>PUP.Optional.SmartWebSearch
O61 - LFC: 2015/08/04 02:07:06 A . (.Copyright 2013.) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\PI7L78KR\Validate[1].exe [61981]
O61 - LFC: 2015/08/04 02:07:25 A . (.HTabp.com.) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\91S9EGY4\cmi_mystartsearch[1].exe [670176] =>PUP.Optional.StartSearch
O61 - LFC: 2015/08/04 02:12:51 A . (..) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\91S9EGY4\smt[1].exe [211114]
O61 - LFC: 2015/07/31 01:46:23 A . (..) -- C:\Users\beny2_000\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [435156]
O61 - LFC: 2015/08/01 11:27:31 A . (..) -- C:\Users\beny2_000\AppData\Local\Microsoft\GameDVR\KnownGameList.bin [38396]
O61 - LFC: 2015/08/04 02:20:14 A . (..) -- C:\Users\beny2_000\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2015/08/03 17:57:04 A . (..) -- C:\Users\beny2_000\AppData\Local\gmsd_fr_005010050\upgmsd_fr_005010050.exe [3298448] =>PUP.Optional.CrossRider
O61 - LFC: 2015/08/01 13:00:25 A . (..) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb.exe_91a10ba61c75c82d_0001.0004_none_37b41b213b7bd031\CreateWTSTask.exe [89160]
O61 - LFC: 2015/08/01 13:00:25 A . (..) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\CreateWTSTask.exe [89160]
O61 - LFC: 2015/08/01 13:00:29 N . (.China.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\DownloadManager.dll [100936]
O61 - LFC: 2015/08/01 13:00:33 A . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\LSB.exe [134728]
O61 - LFC: 2015/08/01 13:00:31 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\Uninstaller.exe [71752]
O61 - LFC: 2015/08/01 13:00:28 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\uk\LSB.resources.dll [4096]
O61 - LFC: 2015/08/01 13:00:29 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\uk\Uninstaller.resources.dll [9216]
O61 - LFC: 2015/08/01 13:00:28 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\tr\LSB.resources.dll [4096]
O61 - LFC: 2015/08/01 13:00:28 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\tr\Uninstaller.resources.dll [9216]
O61 - LFC: 2015/08/01 13:00:31 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\ru\LSB.resources.dll [4096]
O61 - LFC: 2015/08/01 13:00:27 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\ru\Uninstaller.resources.dll [9216]
O61 - LFC: 2015/08/01 13:00:29 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\pt-BR\LSB.resources.dll [4096]
O61 - LFC: 2015/08/01 13:00:28 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\pt-BR\Uninstaller.resources.dll [9216]
O61 - LFC: 2015/08/01 13:00:28 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\pl\LSB.resources.dll [4096]
O61 - LFC: 2015/08/01 13:00:28 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\pl\Uninstaller.resources.dll [8704]
O61 - LFC: 2015/08/01 13:00:30 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\ko\LSB.resources.dll [4096]
O61 - LFC: 2015/08/01 13:00:26 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\ko\Uninstaller.resources.dll [8704]
O61 - LFC: 2015/08/01 13:00:29 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\ja\LSB.resources.dll [4608]
O61 - LFC: 2015/08/01 13:00:29 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\ja\Uninstaller.resources.dll [8704]
O61 - LFC: 2015/08/01 13:00:29 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\it\LSB.resources.dll [4096]
O61 - LFC: 2015/08/01 13:00:31 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\it\Uninstaller.resources.dll [8704]
O61 - LFC: 2015/08/01 13:00:28 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\id\LSB.resources.dll [4096]
O61 - LFC: 2015/08/01 13:00:28 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\id\Uninstaller.resources.dll [9728]
O61 - LFC: 2015/08/01 13:00:31 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\he\LSB.resources.dll [4096]
O61 - LFC: 2015/08/01 13:00:26 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\he\Uninstaller.resources.dll [10240]
O61 - LFC: 2015/08/01 13:00:28 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\fr\LSB.resources.dll [4096]
O61 - LFC: 2015/08/01 13:00:29 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\fr\Uninstaller.resources.dll [8704]
O61 - LFC: 2015/08/01 13:00:28 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\es\LSB.resources.dll [4096]
O61 - LFC: 2015/08/01 13:00:28 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\es\Uninstaller.resources.dll [8704]
O61 - LFC: 2015/08/01 13:00:31 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\de\LSB.resources.dll [4096]
O61 - LFC: 2015/08/01 13:00:26 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\de\Uninstaller.resources.dll [11264]
O61 - LFC: 2015/08/01 13:00:29 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\ar\LSB.resources.dll [4096]
O61 - LFC: 2015/08/01 13:00:31 N . (.Lenovo.) -- C:\Users\beny2_000\AppData\Local\Apps\2.0\9B1TZXXD.WXZ\QD18GXM2.RK2\lsb...tion_91a10ba61c75c82d_0001.0004_53146ffb7155a994\ar\Uninstaller.resources.dll [10240]
O61 - LFC: 2015/08/03 17:46:36 A . (..) -- C:\Users\beny2_000\AppData\Local\1A4D670B-1438623977-E211-85E5-208984D9AB18\rnslFB2C.exe [436224]
O61 - LFC: 2015/08/03 17:47:19 A . (..) -- C:\Users\beny2_000\AppData\Local\1A4D670B-1438623977-E211-85E5-208984D9AB18\Uninstall.exe [51000]

---\\ Associations Shell Spawning (O67) (1) - 0s
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe

---\\ Menu de démarrage Internet (SMI) (O68) (16) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.ex http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (.not file.) =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (.not file.) =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (.not file.) =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (19) - 11s
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("browser.search.defaultenginename", "mystartsearch"); =>PUP.Optional.StartSearch
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("browser.search.searchengine.alias", "mystartsearch"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("browser.search.searchengine.iconURL", "http://www.mystartsearch.com/favicon.ico"); =>PUP.Optional.StartSearch
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("browser.search.searchengine.name", "mystartsearch"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("browser.search.searchengine.ptid", "cmi"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("browser.search.searchengine.uid", "ST1000LM024XHN-M101MBB_S2SMJ9ED517602"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("browser.search.searchengine.url", "http://www.mystartsearch.com/web/?type=ds&ts=1438646883&z=7e9a3731c19b51159bfb652g5z[...] =>PUP.Optional.StartSearch
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("browser.search.selectedEngine", "mystartsearch"); =>PUP.Optional.StartSearch
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("extensions.enabledAddons", "deskCutv2%40gmail.com:0.0.10,defsearchp%40gmail.com:1.0.0.1039,anti_banner%40kaspersky.com:[...] =>PUP.Optional.DeskCut
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("extensions.xpiState", "{\"app-profile\":{\"defsearchp@gmail.com\":{\"d\":\"C:\\\\Users\\\\beny2_000\\\\AppData\\\\Roami[...] =>PUP.Optional.PriceFountain
O69 - SBI: prefs.js [beny2_000 - ls7sang2.default] user_pref("{d8139727-0c0e-430a-a25b-d1fa4e9d4a75}.ScriptData_product_name", "shopperz02082015"); =>PUP.Optional.Shopperz
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} [DefaultScope] - (e) - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (mystartsearch) - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} - (Google) - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O69 - SBI: SearchScopes [HKCU] {F2A212F6-5928-4EBB-8905-47720D6DFD5F} - () - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch

---\\ Enumère les services démarrés par Svchost (SSS) (O83) (41) - 2s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [192000]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [192000]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\system32\srvsvc.dll [283136]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1335296]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [954368]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [954880]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31232]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [93696]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151040]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [106496]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [1008640]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [226304]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll [133120]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [324608]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [371200]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [95744]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [2093056]
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [196096]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [167424]
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\WINDOWS\System32\NetSetupSvc.dll [186368]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [106496]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [679936]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [497152]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [72192]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [452608]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [311808]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\system32\wuaueng.dll [2235904]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [1168896]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [593920]
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [63488]
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1149440]
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1019392]
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll [343040]
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [717312]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [27136]
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776]
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [918016]
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [988672]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [359936]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [237568]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\system32\themeservice.dll [58368]

---\\ Liste des exceptions du parefeu (FirewallRules) (O87) (7) - 10s
O87 - FAEL: "{C0AE3A27-99E2-444C-BF54-8ED948D86D23}" [In-None-P17-TRUE] .(...) -- C:\Users\beny2_000\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)
O87 - FAEL: "{3040613B-1F1F-46FD-83CB-8B2CE24C1990}" [In-None-P6-TRUE] .(...) -- C:\Users\beny2_000\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)
O87 - FAEL: "{07F54B17-7572-4BD4-A4F2-8FACAD21A43C}" [In-None-P6-FALSE] .(...) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (.not file.)
O87 - FAEL: "{442A9067-7974-4390-A9B5-EB542DB7DBBA}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (.not file.)
O87 - FAEL: "{BA4F4472-B896-49A3-9AF9-51542162DEE3}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe (.not file.)
O87 - FAEL: "{199ABBDA-3074-4A0F-A706-81C6FFC928A3}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe (.not file.)
O87 - FAEL: "{35DAEE29-4A86-4747-B0D1-24F4637A3811}" [In-None-P17-TRUE] .(...) -- C:\Users\beny2_000\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (.not file.)

---\\ Enumère les codes produits des logiciels (PUC) (O90) (1) - 1s
O90 - PUC: "93BAD29AC2E44034A96BCB446EB8552E" . (.globalupdate Helper.) =>PUP.Optional.GlobalUpdate

---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) (1) - 2s
[MD5.] [WIS][2015/08/03 18:13:02] (.globalupdate - Windows Installer XML Toolset (3.9.1208.0).) -- C:\WINDOWS\Installer\15c1d8.msi [32768] =>PUP.Optional.GlobalUpdate

---\\ Recherche de clés de registre Tracing (O100) (2) - 1s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSurferAutoUpdateClient_RASAPI32 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSurferAutoUpdateClient_RASMANCS =>PUP.Optional.WordSurfer

---\\ Scan Additionnel (O88) (128) - 0s
C:\Users\beny2_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\engaigpbgdjjmanonjcjkcmomgibneba
C:\Users\beny2_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhkmcfanijhphphomamdkaejjadkhgn
C:\Users\beny2_000\AppData\Roaming\Mozilla\Firefox\Profiles\ls7sang2.default\searchplugins\mystartsearch.xml =>PUP.Optional.StartSearch
C:\Users\beny2_000\AppData\Roaming\Mozilla\Firefox\Profiles\ls7sang2.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab
HKLM\SYSTEM\CurrentControlSet\Services\qytihogi =>PUP.Optional.CrossRider
C:\Program Files (x86)\1A4D670B-1438616714-E211-85E5-208984D9AB18\knsaBCF9.tmp =>PUP.Optional.CrossRider
C:\WINDOWS\Tasks\Crossbrowse.job =>PUP.Optional.CrossBrowse
C:\WINDOWS\Tasks\One System CarePeriod.job =>PUP.Optional.OneSystemCare
C:\WINDOWS\Tasks\One System CareStartUp.job =>PUP.Optional.OneSystemCare
C:\WINDOWS\System32\Tasks\Crossbrowse =>PUP.Optional.CrossBrowse
C:\WINDOWS\System32\Tasks\One System Care Monitor =>PUP.Optional.OneSystemCare
C:\WINDOWS\System32\Tasks\One System Care Run Delay =>PUP.Optional.OneSystemCare
C:\WINDOWS\System32\Tasks\One System CarePeriod =>PUP.Optional.OneSystemCare
C:\WINDOWS\System32\Tasks\One System CareStartUp =>PUP.Optional.OneSystemCare
C:\WINDOWS\System32\Tasks\Selection Tools Update =>PUP.Optional.Nosibay
C:\WINDOWS\System32\Tasks\SmartWeb Upgrade Trigger Task =>PUP.Optional.SmartWebSearch
C:\WINDOWS\System32\Tasks\WindApp Update =>PUP.Optional.Nosibay
C:\WINDOWS\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Core =>PUP.Optional.WordSurfer
C:\WINDOWS\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Pending Update =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\mystartsearch uninstall =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SmartWeb =>PUP.Optional.SmartWebSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Boxore =>PUP.Optional.Boxore
HKLM\SOFTWARE\Wow6432Node\BrowserV30.07 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\BrowserV30.07-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\BrowserV30.07-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\GAMESDESKTOP =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Wow6432Node\MovieDea =>PUP.Optional.MovieDea
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\searchult =>PUP.Optional.Gen
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.Fuyu
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\WajIntEnhance =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AskPartnerNetwork =>Toolbar.Ask
HKCU\SOFTWARE\Boxore =>PUP.Optional.Boxore
HKCU\SOFTWARE\BrowserV30.07-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\BrowserV30.07-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\eSupport.com =>PUP.Optional.eSupport
HKCU\SOFTWARE\gamesdesktop =>PUP.Optional.GamesDesktop
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\HomeTab =>PUP.Optional.CertifiedToolbar
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
HKCU\SOFTWARE\One System Care =>PUP.Optional.OneSystemCare
HKCU\SOFTWARE\RapidMediaConverterApp =>PUP.Optional.RapidMediaConverter
HKCU\SOFTWARE\SearchProtectWS =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\Store =>PUP.Optional.Gen
HKCU\SOFTWARE\TNT2 =>PUP.Optional.TidyNetwork
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\SmartWeb =>PUP.Optional.SmartWebSearch =>PUP.Optional.SmartWebSearch
C:\Program Files (x86)\1A4D670B-1438616714-E211-85E5-208984D9AB18 =>PUP.Optional.CrossRider
C:\Program Files (x86)\3ec599db-b8cc-4081-a24c-d17af2e82169 =>PUP.Optional.CrossRider
C:\Program Files (x86)\Software =>PUP.Optional.Boxore
C:\Users\beny2_000\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
C:\Users\beny2_000\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
C:\Users\beny2_000\AppData\Roaming\Nosibay =>PUP.Optional.BubbleDock
C:\Users\beny2_000\AppData\Roaming\One System Care =>PUP.Optional.OneSystemCare
C:\Users\beny2_000\AppData\Roaming\oursurfing =>PUP.Optional.OurSurfing
C:\Users\beny2_000\AppData\Roaming\Store =>PUP.Optional.Nosibay
C:\Users\beny2_000\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Users\beny2_000\AppData\Local\gmsd_fr_005010048 =>PUP.Optional.CrossRider
C:\Users\beny2_000\AppData\Local\gmsd_fr_005010050 =>PUP.Optional.CrossRider
C:\Users\beny2_000\AppData\Local\RapidMediaConverter =>PUP.Optional.RapidMediaConverter
C:\Users\beny2_000\AppData\Local\Windesk_Winsearch =>PUP.Optional.WindeskWinsearch
C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.Optional.AnyProtect
C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MovieDea =>PUP.Optional.MovieDea
C:\Users\beny2_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rapid Media Converter =>PUP.Optional.RapidMediaConverter
C:\WINDOWS\Prefetch\ANYPROTECT.EXE-7064871B.pf =>PUP.Optional.AnyProtect
C:\WINDOWS\Prefetch\ASPACKAGE.EXE-192C300F.pf =>PUP.Optional.ASPackage
C:\WINDOWS\Prefetch\BOXORE.EXE-A21182E0.pf =>PUP.Optional.Boxore
C:\WINDOWS\Prefetch\BUBBLE DOCK UNINSTALL.EXE-1F0F01C0.pf =>PUP.Optional.BubbleDock
C:\WINDOWS\Prefetch\BUBBLE DOCK UNINSTALL.EXE-F0D5159C.pf =>PUP.Optional.BubbleDock
C:\WINDOWS\Prefetch\BUBBLE DOCK.EXE-E8292CBE.pf =>PUP.Optional.BubbleDock
C:\WINDOWS\Prefetch\CROSSBROWSE.EXE-3A672F00.pf =>PUP.Optional.CrossBrowse
C:\WINDOWS\Prefetch\GMSD_FR_005010050.EXE-F2C12550.pf =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\MOVIEDEA.EXE-A437378C.pf =>PUP.Optional.MovieDea
C:\WINDOWS\Prefetch\PACKAGE_PCROSSBROWSER_INSTALL-7473ED77.pf =>PUP.Optional.CrossBrowser
C:\WINDOWS\Prefetch\PREDM.TMP-47E4043D.pf =>PUP.Optional.Downware
C:\WINDOWS\Prefetch\PREDM.TMP-D53359B3.pf =>PUP.Optional.Downware
C:\WINDOWS\Prefetch\PREDM.TMP-D5BD7AFC.pf =>PUP.Optional.Downware
C:\WINDOWS\Prefetch\SMARTWEBAPP.EXE-88E1A7CC.pf =>PUP.Optional.SmartWebSearch
C:\WINDOWS\Prefetch\SMARTWEBHELPER.EXE-D2933B07.pf =>PUP.Optional.SmartWebSearch
C:\WINDOWS\Prefetch\SPYHUNTER-INSTALLER.EXE-0651D42F.pf =>.Enigma Software
C:\WINDOWS\Prefetch\SPYHUNTER4.EXE-1B0A567E.pf =>.Enigma Software
C:\WINDOWS\Prefetch\SPYHUNTER_4-18-9_FR_181252.EX-656DC45B.pf =>.Enigma Software
C:\WINDOWS\Prefetch\UPGMSD_FR_005010048.EXE-EE9FF70C.pf =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\UPGMSD_FR_005010050.EXE-BB379716.pf =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\UPMBOT_FR_014010050.EXE-1B016BBC.pf =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\WORDSURFERAUTOUPDATECLIENT.EX-BA7B1E11.pf =>PUP.Optional.WordSurfer
C:\WINDOWS\Prefetch\WPM_V20.0.0.2294.EXE-4B5572AA.pf =>PUP.Optional.WpManager
C:\Users\beny2_000\Downloads\DriverToolkitInstaller.exe =>PUP.Optional.Megaify
C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\PI7L78KR\SmartWebInstaller[1].exe =>PUP.Optional.SmartWebSearch
C:\Users\beny2_000\AppData\Local\Microsoft\Windows\INetCache\IE\91S9EGY4\cmi_mystartsearch[1].exe =>PUP.Optional.StartSearch
C:\Users\beny2_000\AppData\Local\gmsd_fr_005010050\upgmsd_fr_005010050.exe =>PUP.Optional.CrossRider
HKLM\Software\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E =>PUP.Optional.GlobalUpdate
HKLM\Software\Classes\Installer\Features\93BAD29AC2E44034A96BCB446EB8552E =>PUP.Optional.GlobalUpdate
C:\WINDOWS\Installer\15c1d8.msi =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSurferAutoUpdateClient_RASAPI32 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSurferAutoUpdateClient_RASMANCS =>PUP.Optional.WordSurfer

---\\ Récapitulatif des éléments trouvées sur votre station (46) - 0s
http://www.nicolascoolman.fr/pup-startsearch/ =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/adware-boxore/ =>PUP.Optional.Boxore
http://www.nicolascoolman.fr/blog =>PUP.Optional.OurSurfing
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/blog =>PUP.Optional.LightningNewTab
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/blog =>PUP.Optional.Nosibay
http://www.nicolascoolman.fr/blog =>PUP.Optional.DesktopSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowse
http://www.nicolascoolman.fr/pup-smartwebsearch/ =>PUP.Optional.SmartWebSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.OneSystemCare
http://www.nicolascoolman.fr/blog =>PUP.Optional.WordSurfer
http://www.nicolascoolman.fr/toolbar-ask/ =>Toolbar.Ask
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/blog =>PUP.Optional.SweetSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.GamesDesktop
http://www.nicolascoolman.fr/blog =>PUP.Optional.AgentODR
http://www.nicolascoolman.fr/adware-imbooster/ =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/blog =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/blog =>PUP.Optional.MovieDea
http://www.nicolascoolman.fr/pup-searchprotect/ =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/blog =>PUP.Optional.Gen
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/trojan-fuyu/ =>PUP.Optional.Fuyu
http://www.nicolascoolman.fr/spyware-agenceexclusive/ =>PUP.Optional.AgenceExclusive
http://www.nicolascoolman.fr/pup-wajam/ =>PUP.Optional.Wajam
http://www.nicolascoolman.fr/pup-anyprotect/ =>PUP.Optional.AnyProtect
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowser
http://www.nicolascoolman.fr/blog =>PUP.Optional.eSupport
http://www.nicolascoolman.fr/pup-certifiedtoolbar/ =>PUP.Optional.CertifiedToolbar
http://www.nicolascoolman.fr/pup-linkeysearch/ =>PUP.Optional.LinkeySearch
http://www.nicolascoolman.fr/adware-spointer/ =>PUP.Optional.SPointer
http://www.nicolascoolman.fr/blog =>PUP.Optional.RapidMediaConverter
http://www.nicolascoolman.fr/blog =>PUP.Optional.SimplyTech
http://www.nicolascoolman.fr/adware-tidynetwork/ =>PUP.Optional.TidyNetwork
http://www.nicolascoolman.fr/pup-bubbledock/ =>PUP.Optional.BubbleDock
http://www.nicolascoolman.fr/blog =>PUP.Optional.WindeskWinsearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.ASPackage
http://www.nicolascoolman.fr/adware-downware/ =>PUP.Optional.Downware
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/blog =>PUP.Optional.Megaify
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/blog =>PUP.Optional.DeskCut
http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart
http://www.nicolascoolman.fr/blog =>PUP.Optional.PriceFountain
http://www.nicolascoolman.fr/blog =>PUP.Optional.Shopperz

~ End of the scan, 21377 items in 284 seconds (1180)(0)()

Publicité


Signaler le contenu de ce document

Publicité