cjoint

Publicité


Publicité

Commentaire : J'ai des logiciel qui s'installe tout seul et meme si je desinsta

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.8.8.113 Par Nicolas Coolman (2015/08/8)
~ Démarré par Audrey (Administrator) (2015/08/08 11:47:14)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Audrey\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Audrey\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 10240)

---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v44.0.2403.130
OPIE: Opera 31.0.1889.99 v31.0.1889.99
MSIE: Internet Explorer v11.0.10240.16384

---\\ Informations sur les produits Windows (4) - 8s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK

---\\ Logiciels de protection (1) - 1s
Kaspersky Internet Security v16.0.0.614

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4053.768 MB (34% free)
~ System Restore: Activé (Enable)
~ System drive C: has 244 GB free of 297 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: AUDREY
~ User Name: Audrey
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 0s
~ Drive C: has 244 GB free of 297 GB (System)
~ Drive D: has 312 GB free of 312 GB
~ Drive F: has 28 GB free of 29 GB

---\\ Etat du Centre de Sécurité Windows (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (23) - 1s
[MD5.C6F56519F6F8A5C1B4144CF863CDE0CA] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [4532304]
[MD5.5DED2A3F11AE916C8F2724947E736261] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\WINDOWS\System32\rundll32.exe [59392]
[MD5.CAAA293DD133160DF13D95CC48FC42B9] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\WINDOWS\System32\Wininit.exe [290304]
[MD5.32A862495B7C356B9895FDD0B9023C5F] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\WINDOWS\System32\wininet.dll [2741248]
[MD5.536B686D86402D254C59B5DE3A575F45] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [578048]
[MD5.8DE3F0DF5BCD3AC6360AB753BD1A63DE] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\WINDOWS\System32\sppcomapi.dll [429056]
[MD5.8C795953726C7D2DE72CE4748208C5ED] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [20480]
[MD5.6C12C7E01A4F64E0AA9C88AF66955CC9] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [577888]
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [28512]
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672]
[MD5.CA160E02F35A61C6F5C681FB4669C519] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [174080]
[MD5.25435407D97419627F4B10653433BF2B] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\WINDOWS\System32\drivers\DfsC.sys [138240]
[MD5.C277A49F8A8295840DEBC9240B75A282] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [80896]
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688]
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [143360]
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [415232]
[MD5.F0D791348AD254360CC3C3E501CCB745] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [273408]
[MD5.5B3D91EB07785D0EDB19449D5C35E30A] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [2117472]
[MD5.38F1AE32339731F6E5A7281AE8042545] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [96768]
[MD5.CA60F6C03611AF1710BC903ED9F566FB] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960]
[MD5.A32AED8C644734B283A7C9D08D76064D] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [176128]
[MD5.28E1E63A1AC65E17B3194238FA2CF3BF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\WINDOWS\System32\drivers\tdx.sys [116576]
[MD5.823A237D871CD652C6BFD47BECB6810A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [378720]

---\\ Processus lancés (41) - 3s
[MD5.579FD11E112542A0D5D43838CCA08309] - (.DTools LIMITED - DTools.) -- C:\ProgramData\DWinManProD\ProtectWindowsManager.exe [708264] [PID.1816]
[MD5.50C3C62FFE6337E6E4F2F01CB07DF63C] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000] [PID.2344]
[MD5.92B986B38CEF9A894A048B0A5E661B6D] - (...) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe [1141472] [PID.2728] =>PUP.Optional.CrossRider
[MD5.CD894343FD910D046818AEB10091E504] - (...) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3\Plugin.exe [1169632] [PID.3448] =>PUP.Optional.CrossRider
[MD5.E9D4DA1C864EBDBD20E0362745618716] - (...) -- C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972\knsa148D.tmpfs [248832] [PID.5824] =>PUP.Optional.CrossRider
[MD5.92AB39C53A390227CA6965BBA512E3F1] - (...) -- C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972\knsq1539.tmpfs [247296] [PID.716] =>PUP.Optional.CrossRider
[MD5.C5323F961012E91A9E4BF4FF377655F3] - (...) -- C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972\jnsy35C7.tmp [209920] [PID.3276] =>PUP.Optional.CrossRider
[MD5.0FD99BAF91AD54ED70E64DE5BBA03559] - (...) -- C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972\hnsp5334.tmp [161792] [PID.6168] =>PUP.Optional.CrossRider
[MD5.B711920E9BA9A0810B99973C07D47B70] - (.OB - SavePass 1.1 exe.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-1-6.exe [1505280] [PID.276] =>PUP.Optional.CrossRider
[MD5.61CA6182C3C9CB7591954B61B41632FA] - (. - file.) -- C:\Users\Audrey\AppData\Local\ServiceWindows\van.exe [38400] [PID.176]
[MD5.3EC41B771F5D79AFABBD0F6985AF4A77] - (.Copyright © 2015 - .) -- C:\Program Files\fchk32\fchk32.exe [379392] [PID.4340]
[MD5.00000000000000000000000000000000] - (...) -- C:\Program Files (x86)\Coupoon\UpdateCheck.exe [0] [PID.7876]
[MD5.680E943D741B2568FAA8309598DFDFEF] - (.TomorrowGames - Install.) -- C:\ProgramData\TomorrowGames\TomorrowGames.exe [794624] [PID.10588] =>PUP.Optional.TomorrowGames
[MD5.680E943D741B2568FAA8309598DFDFEF] - (.TomorrowGames - Install.) -- C:\ProgramData\TomorrowGames\TomorrowGames.exe [794624] [PID.8864] =>PUP.Optional.TomorrowGames
[MD5.6E16BEC9D57AB226C445DAA932C1F060] - (...) -- C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe [112560] [PID.5428] =>PUP.Optional.SearchDonkey
[MD5.0D570512ED928AF230E3F19A48EA079C] - (.ShopperPro - ShopperPro Update Service.) -- C:\Program Files\Common Files\ShopperPro\spbiu.exe [2346416] [PID.12256] =>PUP.Optional.ShopperPro
[MD5.A441E22B0B6D5E34FA6696318389B8B6] - (.OB - SavePass 1.1 exe.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-64.exe [1768448] [PID.2600] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] - (...) -- C:\Program Files (x86)\Coupoon\UpdateCheck.exe [0] [PID.10980]
[MD5.79CA0FF48D7EC1818AB7FEE89DDA9084] - (...) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10\Plugin.exe [1032416] [PID.9904] =>PUP.Optional.CrossRider
[MD5.300DC0A697E6B9D1F8E517AE503092DB] - (.Word Surfer - Word Surfer Client Service.) -- C:\Program Files (x86)\WordSurfer_1.10.0.19\Service\wsasvc.exe [299608] [PID.10444] =>PUP.Optional.WordSurfer
[MD5.CC13369A601A8CC4741E8FC682500354] - (...) -- C:\Program Files\shopperz04082015\Qeeoozeou.exe [174968] [PID.10808] =>PUP.Optional.Shopperz
[MD5.55DBFB1017B883F35A2F15DBA7DDB335] - (...) -- C:\Program Files\shopperz04082015\Dmxkbb.exe [285560] [PID.208] =>PUP.Optional.Shopperz
[MD5.565C25B5225A31260151B974DFE2DB50] - (...) -- C:\Program Files\shopperz04082015\Sfval.exe [433528] [PID.10100] =>PUP.Optional.Shopperz
[MD5.56D5D6D22E3029C768D4F4B193325DB8] - (...) -- C:\Program Files\shopperz04082015\csrcc.exe [1448824] [PID.5964] =>PUP.Optional.Shopperz
[MD5.B7CC57826BB1521672BDAD4C8F50BD69] - (...) -- C:\Program Files\shopperz04082015\Peakoar.EXE [2043744] [PID.5468] =>PUP.Optional.Shopperz
[MD5.B631A9ACCAB529C7AC23FC505AED156A] - (...) -- C:\Program Files\shopperz04082015\KomeUfuwe.exe [171872] [PID.12608] =>PUP.Optional.Shopperz
[MD5.160DB79A135D5F5EB6E5F504ED4C38C9] - (. - Setup/Uninstall.) -- C:\Users\Audrey\AppData\Local\Temp\is-HL6U2.tmp\nsm8D3A.tmp [710104] [PID.13412]
[MD5.2E08A39DE1FBA54F9BF02A4B6453D9F1] - (.XTab system - ProtectSvc.exe.) -- C:\Program Files (x86)\MiuiTab\ProtectService.exe [125112] [PID.1164] =>PUP.Optional.MiuiTab
[MD5.6A129DF750B69B6FA3E6C76EC3DCEE40] - (.SearchProtect - CmdShell.exe.) -- C:\Program Files (x86)\MiuiTab\CmdShell.exe [31928] [PID.14192] =>PUP.Optional.MiuiTab
[MD5.BE2A33454BAC289094F6CC7A78AC1E20] - (.XTab system - SupHPNot.exe.) -- C:\Program Files (x86)\MiuiTab\HPNotify.exe [674488] [PID.9740] =>PUP.Optional.MiuiTab
[MD5.E0573DD55447600CFDD721314B8823C3] - (...) -- C:\Users\Audrey\AppData\Roaming\Outraged Library\Outraged Library.exe [66048] [PID.4544]
[MD5.FEF305252EF1BA52B9866CC0BEF664B0] - (...) -- C:\Program Files\shopperz04082015\Sfval64.exe [464760] [PID.6012] =>PUP.Optional.Shopperz
[MD5.93FD29B262A1941324348A52CCA62AD1] - (...) -- C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe [1070816] [PID.13192] =>PUP.Optional.CrossRider
[MD5.E28B36FA598C18FC94ADE235B8AD8BBB] - (...) -- C:\Users\Audrey\AppData\Local\gmsd_fr_005010054\upgmsd_fr_005010054.exe [3347600] [PID.10220] =>PUP.Optional.CrossRider
[MD5.0534D9216B4E00F7073CDE571685BEE8] - (...) -- C:\Program Files (x86)\gmsd_fr_005010054\gmsd_fr_005010054.exe [3988624] [PID.6048] =>PUP.Optional.CrossRider
[MD5.60F28A30E8AC1C02BF1421C68B096F73] - (...) -- C:\Windows\Temp\3wrc5cbur.exe [1169924] [PID.12260]
[MD5.9A135307B27E63815BA0403E423063C5] - (.Goobzo - Update Helper.) -- C:\Program Files (x86)\YTDownloader\BrowserHelper.exe [471984] [PID.13620] =>PUP.Optional.YTDownloader
[MD5.EBF5CCF130F1506940A644B8E8B2F599] - (.OB - SavePass 1.1 exe.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-10.exe [1469952] [PID.8300] =>PUP.Optional.CrossRider
[MD5.B711920E9BA9A0810B99973C07D47B70] - (.OB - SavePass 1.1 exe.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-14.exe [1505280] [PID.12888] =>PUP.Optional.CrossRider
[MD5.60F28A30E8AC1C02BF1421C68B096F73] - (...) -- C:\Windows\Temp\5j353wdzd.exe [1169924] [PID.4916]
[MD5.9D1406ED88DD30022DC85153D8C5AE1F] - (...) -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5\Plugin.exe [1282272] [PID.9604] =>PUP.Optional.CrossRider

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) (12) - 1s
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [akaelkiagnbfcccfnmbimdbplecgbikh] SavePass 1.1 =>PUP.Optional.CrossRider
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [eahebamiopdhefndnmappcihfajigkka] __MSG_ExtensionName__
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [klpmobilbpcccgegofocnlfmallakegc] Awesome Widget ANTP
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (2) - 0s
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate

---\\ Opera, Démarrage,Recherche,Plugins (B0,B1,B2) (1) - 0s
B2 - EXT: [SavePass 1.1] C:\Users\Audrey\AppData\Roaming\Opera Software\Opera Stable\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (19) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer, Proxy Management (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object de navigateur (BHO) (O2) (1) - 0s
O2 - BHO: SAveuLots [64Bits] - {F79A5D96-7FB0-43B8-8077-9F43309175E8} . (...) -- C:\Program Files (x86)\SAveuLots\tznbxFw9pJkyjR.x64.dll =>PUP.Optional.Multiplug

---\\ Applications lancées au démarrage du sytème (O4) (33) - 2s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [RtHDVBg_Dolby] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [ShadowPlay] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe
O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SpaceSoundPro] C:\Program Files\SpaceSoundPro\SpaceSoundPro.exe (.not file.) =>PUP.Optional.SpaceSoundPro
O4 - HKLM\..\Run: [gpuminer] . (...) -- C:\Users\Audrey\AppData\Roaming\cpuminer\sgminer\sgminer.cmd
O4 - HKLM\..\Run: [shopperz04082015] . (...) -- C:\Program Files\shopperz04082015\Sfval.exe =>PUP.Optional.Shopperz
O4 - HKLM\..\Run: [shopperz0408201564] . (...) -- C:\Program Files\shopperz04082015\Sfval64.exe =>PUP.Optional.Shopperz
O4 - HKLM\..\RunOnce: [InstallSmbDrv] . (.Microsoft Corporation - Programme d'installation du package de pilo.) -- C:\Program Files\Synaptics\SynTP\dpinst.exe
O4 - HKCU\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Audrey\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - HKCU\..\Run: [DAEMON Tools Ultra Agent] . (.Disc Soft Ltd - DAEMON Tools Ultra Agent.) -- C:\Program Files\DAEMON Tools Ultra\DTAgent.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_0535606BABB335D423C77F186C314BED] . (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - HKCU\..\Run: [YTDownloader] . (.YTDownloader - YTDownloader.) -- C:\Program Files (x86)\YTDownloader\YTDownloader.exe =>PUP.Optional.YTDownloader
O4 - HKCU\..\Run: [SPDriver] . (.Copyright (C) 2014 - JsDriver.) -- C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2263\jsdrv.exe =>PUP.Optional.ShopperPro
O4 - HKLM\..\Wow6432Node\Run: [IObit Malware Fighter] . (.IObit - IObit Malware Fighter.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
O4 - HKLM\..\Wow6432Node\Run: [YTDownloader] . (.YTDownloader - YTDownloader.) -- C:\Program Files (x86)\YTDownloader\YTDownloader.exe =>PUP.Optional.YTDownloader
O4 - HKLM\..\Wow6432Node\Run: [SPDriver] . (.Copyright (C) 2014 - JsDriver.) -- C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2263\jsdrv.exe =>PUP.Optional.ShopperPro
O4 - HKLM\..\Wow6432Node\Run: [gmsd_fr_005010054] . (...) -- C:\Program Files (x86)\gmsd_fr_005010054\gmsd_fr_005010054.exe =>PUP.Optional.CrossRider
O4 - HKLM\..\Wow6432Node\Run: [SmartWeb] . (.SoftBrain Technologies Ltd. - SmartWeb helper.) -- C:\Users\Audrey\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - HKLM\..\Wow6432Node\RunOnce: [SpaceSondPro_v53.1342] C:\Program Files (x86)\SpaceSondPro_v53.1342\SpaceSondPro_Service.exe (.not file.) =>PUP.Optional.SpaceSoundPro
O4 - HKLM\..\Wow6432Node\RunOnce: [cmdrun] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\WINDOWS\System32\cmd.exe
O4 - HKLM\..\Wow6432Node\RunOnce: [upgmsd_fr_005010054.exe] . (...) -- C:\Users\Audrey\AppData\Local\gmsd_fr_005010054\upgmsd_fr_005010054.exe =>PUP.Optional.CrossRider
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe
O4 - HKUS\S-1-5-21-3174532430-2052399175-95765496-1001\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
O4 - HKUS\S-1-5-21-3174532430-2052399175-95765496-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Audrey\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - HKUS\S-1-5-21-3174532430-2052399175-95765496-1001\..\Run: [DAEMON Tools Ultra Agent] . (.Disc Soft Ltd - DAEMON Tools Ultra Agent.) -- C:\Program Files\DAEMON Tools Ultra\DTAgent.exe
O4 - HKUS\S-1-5-21-3174532430-2052399175-95765496-1001\..\Run: [GoogleChromeAutoLaunch_0535606BABB335D423C77F186C314BED] . (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - HKUS\S-1-5-21-3174532430-2052399175-95765496-1001\..\Run: [YTDownloader] . (.YTDownloader - YTDownloader.) -- C:\Program Files (x86)\YTDownloader\YTDownloader.exe =>PUP.Optional.YTDownloader
O4 - HKUS\S-1-5-21-3174532430-2052399175-95765496-1001\..\Run: [SPDriver] . (.Copyright (C) 2014 - JsDriver.) -- C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2263\jsdrv.exe =>PUP.Optional.ShopperPro

---\\ Raccourcis Global Startup (O4G) (20) - 3s
O4 - GS\Desktop [Administrateur]: AnyProtect.lnk . (.AnyProtect.com - AnyProtect.) C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect
O4 - GS\Quicklaunch [Administrateur]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Quicklaunch [Administrateur]: PC-Mechanic.lnk . (...) C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe =>PUP.Optional.Uniblue
O4 - GS\Startup [Administrateur]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Administrateur]: SmartWeb.lnk . (.SoftBrain Technologies Ltd. - SmartWeb helper.) C:\Users\Audrey\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\Desktop [Audrey]: AnyProtect.lnk . (.AnyProtect.com - AnyProtect.) C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect
O4 - GS\Quicklaunch [Audrey]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Quicklaunch [Audrey]: PC-Mechanic.lnk . (...) C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe =>PUP.Optional.Uniblue
O4 - GS\Startup [Audrey]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Audrey]: SmartWeb.lnk . (.SoftBrain Technologies Ltd. - SmartWeb helper.) C:\Users\Audrey\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\Desktop [DefaultAccount]: AnyProtect.lnk . (.AnyProtect.com - AnyProtect.) C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect
O4 - GS\Quicklaunch [DefaultAccount]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Quicklaunch [DefaultAccount]: PC-Mechanic.lnk . (...) C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe =>PUP.Optional.Uniblue
O4 - GS\Startup [DefaultAccount]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [DefaultAccount]: SmartWeb.lnk . (.SoftBrain Technologies Ltd. - SmartWeb helper.) C:\Users\Audrey\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\Desktop [Invité]: AnyProtect.lnk . (.AnyProtect.com - AnyProtect.) C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect
O4 - GS\Quicklaunch [Invité]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Quicklaunch [Invité]: PC-Mechanic.lnk . (...) C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe =>PUP.Optional.Uniblue
O4 - GS\Startup [Invité]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Invité]: SmartWeb.lnk . (.SoftBrain Technologies Ltd. - SmartWeb helper.) C:\Users\Audrey\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch

---\\ Winsock hijacker (Layered Service Provider) (O10) (15) - 1s
O10 - WLSP:\Catalog_Entries\000000000001\Winsock LSP File . (...) -- C:\Windows\System32\acengine.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000002\Winsock LSP File . (...) -- C:\Windows\System32\acengine.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000003\Winsock LSP File . (...) -- C:\Windows\System32\acengine.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000004\Winsock LSP File . (...) -- C:\Windows\System32\acengine.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000016\Winsock LSP File . (...) -- C:\Windows\System32\acengine.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000001\Winsock LSP File . (.Abengine.) -- C:\WINDOWS\system32\acengine64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000002\Winsock LSP File . (.Abengine.) -- C:\WINDOWS\system32\acengine64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000003\Winsock LSP File . (.Abengine.) -- C:\WINDOWS\system32\acengine64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000004\Winsock LSP File . (.Abengine.) -- C:\WINDOWS\system32\acengine64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000005\Winsock LSP File . (...) -- C:\WINDOWS\system32\Peakoar64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000006\Winsock LSP File . (...) -- C:\WINDOWS\system32\Peakoar64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000007\Winsock LSP File . (...) -- C:\WINDOWS\system32\Peakoar64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000008\Winsock LSP File . (...) -- C:\WINDOWS\system32\Peakoar64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000020\Winsock LSP File . (...) -- C:\WINDOWS\system32\Peakoar64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000021\Winsock LSP File . (.Abengine.) -- C:\WINDOWS\system32\acengine64.dll =>Hijacker.Winsock

---\\ Modification Domaine/Adresses DNS (O17) (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 52.18.92.32,8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 52.18.92.32,8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Liste des services NT non Microsoft et non désactivés (O23) (31) - 2s
O23 - Service: a34dfee7-ea86-4e1d-88fb-46171610240f (a34dfee7-ea86-4e1d-88fb-46171610240f) . (...) - C:\Program Files\shopperz04082015\Dmxkbb.exe =>PUP.Optional.Shopperz
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit - Advanced SystemCare Service.) - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
O23 - Service: Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
O23 - Service: (BrsHelper) . (...) - C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe =>PUP.Optional.YTDownloader
O23 - Service: Wire Professional Version (comyninu) . (...) - C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972\hnsp5334.tmp =>PUP.Optional.CrossRider
O23 - Service: csrcc (csrcc) . (...) - C:\Program Files\shopperz04082015\csrcc.exe =>PUP.Optional.Shopperz
O23 - Service: Service Windows Defender 1.90.8 (ExSMime) . (. - file.) - C:\Users\Audrey\AppData\Local\ServiceWindows\van.exe
O23 - Service: Check Service (fchk32) . (.Copyright © 2015 - .) - C:\Program Files\fchk32\fchk32.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
O23 - Service: LAN Back Up (gogomuky) . (...) - C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972\knsq1539.tmpfs =>PUP.Optional.CrossRider
O23 - Service: Service Google Update (gupdate) (gupdate) . (...) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.)
O23 - Service: Key In Bold Italic (hyverumu) . (...) - C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972\jnsy35C7.tmp =>PUP.Optional.CrossRider
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IHProtect Service (IHProtect Service) . (.XTab system - ProtectSvc.exe.) - C:\Program Files (x86)\MiuiTab\ProtectService.exe =>PUP.Optional.AgentODR
O23 - Service: IMF Service (IMFservice) . (.IObit - IObit Malware Fighter Service.) - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Check Ergonomic (mubupery) . (...) - C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972\knsa148D.tmpfs =>PUP.Optional.CrossRider
O23 - Service: MyrwewNebg (MyrwewNebg) . (...) - C:\Program Files\shopperz04082015\KomeUfuwe.exe =>PUP.Optional.Shopperz
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.6.) - C:\WINDOWS\system32\nvvsvc.exe
O23 - Service: Outraged Library (Outraged Library) . (...) - C:\Users\Audrey\AppData\Roaming\Outraged Library\Outraged Library.exe
O23 - Service: Service Mgr GreatFind (Service Mgr GreatFind) . (...) - C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe =>PUP.Optional.GreatFind
O23 - Service: shopperz04082015 Updater (shopperz04082015 Updater) . (...) - C:\Program Files\shopperz04082015\Qeeoozeou.exe =>PUP.Optional.Shopperz
O23 - Service: ShopperPro Update (SPBIUpd) . (.ShopperPro - ShopperPro Update Service.) - C:\Program Files\Common Files\ShopperPro\spbiu.exe =>PUP.Optional.ShopperPro
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TomorrowGames (TomorrowGames) . (.TomorrowGames - Install.) - C:\ProgramData\TomorrowGames\TomorrowGames.exe =>PUP.Optional.TomorrowGames
O23 - Service: Update Mgr GreatFind (Update Mgr GreatFind) . (...) - C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe =>PUP.Optional.GreatFind
O23 - Service: Word Surfer 1.10.0.19 Client Service (wsasvc_1.10.0.19) . (.Word Surfer - Word Surfer Client Service.) - C:\Program Files (x86)\WordSurfer_1.10.0.19\Service\wsasvc.exe =>PUP.Optional.WordSurfer

---\\ Tâches planifiées en automatique (O39) (101) - 11s
[MD5.B711920E9BA9A0810B99973C07D47B70] [APT] [2baf08be-a43a-44ab-950f-a58cdf6142a1-1-6] (.OB.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-1-6.exe [1505280] =>PUP.Optional.CrossRider
[MD5.87FF014DAA45480FEA9170AD2881ED57] [APT] [2baf08be-a43a-44ab-950f-a58cdf6142a1-1-7] (.OB.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-1-7.exe [1011712] =>PUP.Optional.CrossRider
[MD5.EBF5CCF130F1506940A644B8E8B2F599] [APT] [2baf08be-a43a-44ab-950f-a58cdf6142a1-10_user] (.OB.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-10.exe [1469952] =>PUP.Optional.CrossRider
[MD5.CF00127E40E3A46F1A9013E4054E1E63] [APT] [2baf08be-a43a-44ab-950f-a58cdf6142a1-11] (.OB.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-11.exe [1304064] =>PUP.Optional.CrossRider
[MD5.87FF014DAA45480FEA9170AD2881ED57] [APT] [2baf08be-a43a-44ab-950f-a58cdf6142a1-13] (.OB.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-13.exe [1011712] =>PUP.Optional.CrossRider
[MD5.B711920E9BA9A0810B99973C07D47B70] [APT] [2baf08be-a43a-44ab-950f-a58cdf6142a1-14] (.OB.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-14.exe [1505280] =>PUP.Optional.CrossRider
[MD5.CF00127E40E3A46F1A9013E4054E1E63] [APT] [2baf08be-a43a-44ab-950f-a58cdf6142a1-3] (.OB.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-3.exe [1304064] =>PUP.Optional.CrossRider
[MD5.032E4C2515BE11F2A2BCFE5FC905C4DA] [APT] [2baf08be-a43a-44ab-950f-a58cdf6142a1-5] (.OB.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-5.exe [1056256] =>PUP.Optional.CrossRider
[MD5.032E4C2515BE11F2A2BCFE5FC905C4DA] [APT] [2baf08be-a43a-44ab-950f-a58cdf6142a1-5_user] (.OB.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-5.exe [1056256] =>PUP.Optional.CrossRider
[MD5.F31EFB8E632993FE06C5D1FD4B93A9E1] [APT] [2baf08be-a43a-44ab-950f-a58cdf6142a1-6] (.OB.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-6.exe [1298944] =>PUP.Optional.CrossRider
[MD5.87FF014DAA45480FEA9170AD2881ED57] [APT] [2baf08be-a43a-44ab-950f-a58cdf6142a1-7] (.OB.) -- C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-7.exe [1011712] =>PUP.Optional.CrossRider
[MD5.47396390A97EA4CFACB104DBE93F0B49] [APT] [AmiUpdXp] (...) -- C:\Users\Audrey\AppData\Local\20806\Updater.exe [641024] =>PUP.Optional.SoftwareUpdater
[MD5.2691439FAC40F46C937BB684A3AE2E0F] [APT] [APSnotifierPP1] (.AnyProtect.com.) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [6434816] =>PUP.Optional.AnyProtect
[MD5.2691439FAC40F46C937BB684A3AE2E0F] [APT] [APSnotifierPP2] (.AnyProtect.com.) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [6434816] =>PUP.Optional.AnyProtect
[MD5.2691439FAC40F46C937BB684A3AE2E0F] [APT] [APSnotifierPP3] (.AnyProtect.com.) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [6434816] =>PUP.Optional.AnyProtect
[MD5.6009C7F55A71FA7F23692B92214A4CF8] [APT] [ASC8_PerformanceMonitor] (.IObit.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe [1774880]
[MD5.E2405E793004B179C99D05331635CAF1] [APT] [ASC8_SkipUac_Audrey] (.IObit.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe [5425440]
[MD5.00000000000000000000000000000000] [APT] [CDPSvc32] (...) -- C:\WINDOWS\system32\config\systemprofile\AppData\Local\STUZDMR\cdpsvc32.exe [38400]
[MD5.B57D60CD390792DC0650178631380918] [APT] [Crossbrowse] (...) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe [1967696] =>PUP.Optional.CrossBrowse
[MD5.3C14AAE26EA06BADAC98520773772CEB] [APT] [globalUpdateUpdateTaskMachineCore] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608] =>PUP.Optional.GlobalUpdate
[MD5.3C14AAE26EA06BADAC98520773772CEB] [APT] [globalUpdateUpdateTaskMachineUA] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608] =>PUP.Optional.GlobalUpdate
[MD5.1FDD254246AD23FAE6193031597E1750] [APT] [Glopbbiq] (...) -- C:\Program Files\shopperz04082015\Qhgvel.bat [75] =>PUP.Optional.Shopperz
[MD5.EBA6F7BACA68530E064683A7870380AE] [APT] [JobExpress] (...) -- c:\programdata\{2835caa9-2345-fc49-2835-5caa92342aa4}\nsh3fab.tmp.exe [326144]
[MD5.3A1D89B89C9D62951957F0839578DD9B] [APT] [LFkmE2Q4hGKI] (.Copyright 2001.) -- C:\Users\Audrey\AppData\Roaming\LFkmE2Q4hGKI.exe [1579520] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [PC-Mechanic Maintenance] (...) -- C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe (.not file.) [0] =>PUP.Optional.Uniblue
[MD5.00000000000000000000000000000000] [APT] [PC-Mechanic Startup] (...) -- C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe (.not file.) [0] =>PUP.Optional.Uniblue
[MD5.00000000000000000000000000000000] [APT] [PC-Mechanic Subscription] (...) -- C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe (.not file.) [0] =>PUP.Optional.Uniblue
[MD5.8AF80FE3D1CE5CAE5D3C4BCB35FB3F19] [APT] [ShopperPro] (.Goobzo LTD.) -- C:\Program Files (x86)\ShopperPro\ShopperPro.exe [1111984] =>PUP.Optional.ShopperPro
[MD5.BF89DB485F50207EAAF09A628F6EE165] [APT] [ShopperProJSUpd] (.Goobzo.) -- C:\Program Files (x86)\ShopperPro\Updater.exe [762800] =>PUP.Optional.ShopperPro
[MD5.153F088DFDB3F940AD9DAEB04A3ACC4D] [APT] [SmartWeb Upgrade Trigger Task] (.SoftBrain Technologies Ltd..) -- C:\Users\Audrey\AppData\Local\SmartWeb\SmartWebHelper.exe [270368] =>PUP.Optional.SmartWebSearch
[MD5.AD69F562E09451A9B5E1CB3B9606B528] [APT] [SPDriver] (.Copyright (C) 2014.) -- C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2263\jsdrv.exe [3225088] =>PUP.Optional.ShopperPro
[MD5.0A6B46C7DF4CC23C106E7494321AE5F3] [APT] [Uninstaller_SkipUac_Audrey] (.IObit.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [8032544]
[MD5.85FCB2EBD224E405C181DAD61E6BB184] [APT] [WordSurfer Auto Updater 1.10.0.19 Core] (.Word Surfer.) -- C:\Program Files (x86)\WordSurfer_1.10.0.19\Update\WordSurferAutoUpdateClient.exe [63576] =>PUP.Optional.WordSurfer
[MD5.85FCB2EBD224E405C181DAD61E6BB184] [APT] [WordSurfer Auto Updater 1.10.0.19 Pending Update] (.Word Surfer.) -- C:\Program Files (x86)\WordSurfer_1.10.0.19\Update\WordSurferAutoUpdateClient.exe [63576] =>PUP.Optional.WordSurfer
[MD5.286E35EA75319EAAD6FEDD28F8EB1E7A] [APT] [YTDownloader] (.YTDownloader.) -- C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1988528] =>PUP.Optional.YTDownloader
[MD5.E8F9E9C2E184DE4D32A9D8A825A58BC3] [APT] [YTDownloaderUpd] (.Goobzo.) -- C:\Program Files (x86)\YTDownloader\Updater.exe [751024] =>PUP.Optional.YTDownloader
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-1-6 - (.OB.) -- C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-1-6.job [3136] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-1-7 - (.OB.) -- C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-1-7.job [3136] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-10_user - (.OB.) -- C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-10_user.job [2110] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-11 - (.OB.) -- C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-11.job [5182] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-13 - (.OB.) -- C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-13.job [3470] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-14 - (.OB.) -- C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-14.job [3134] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-3 - (.OB.) -- C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-3.job [4156] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-5 - (.OB.) -- C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-5.job [2444] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-5_user - (.OB.) -- C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-5_user.job [2444] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-6 - (.OB.) -- C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-6.job [5516] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-7 - (.OB.) -- C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-7.job [5516] =>PUP.Optional.CrossRider
O39 - APT: AmiUpdXp - (...) -- C:\WINDOWS\Tasks\AmiUpdXp.job [364] =>PUP.Optional.SoftwareUpdater
O39 - APT: APSnotifierPP1 - (.AnyProtect.com.) -- C:\WINDOWS\Tasks\APSnotifierPP1.job [378] =>PUP.Optional.AnyProtect
O39 - APT: APSnotifierPP2 - (.AnyProtect.com.) -- C:\WINDOWS\Tasks\APSnotifierPP2.job [376] =>PUP.Optional.AnyProtect
O39 - APT: APSnotifierPP3 - (.AnyProtect.com.) -- C:\WINDOWS\Tasks\APSnotifierPP3.job [376] =>PUP.Optional.AnyProtect
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\Bidaily Synchronize Task[973b].job [368] =>PUP.Optional.BidailySync
O39 - APT: Crossbrowse - (...) -- C:\WINDOWS\Tasks\Crossbrowse.job [1072] =>PUP.Optional.CrossBrowse
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job [896] =>PUP.Optional.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job [900] =>PUP.Optional.GlobalUpdate
O39 - APT: JobExpress - (...) -- C:\WINDOWS\Tasks\JobExpress.job [352]
O39 - APT: LFkmE2Q4hGKI - (.Copyright 2001.) -- C:\WINDOWS\Tasks\LFkmE2Q4hGKI.job [1014] =>PUP.Optional.CrossRider
O39 - APT: PC-Mechanic Maintenance - (...) -- C:\WINDOWS\Tasks\PC-Mechanic Maintenance.job [294] =>PUP.Optional.Uniblue
O39 - APT: PC-Mechanic Startup - (...) -- C:\WINDOWS\Tasks\PC-Mechanic Startup.job [288] =>PUP.Optional.Uniblue
O39 - APT: PC-Mechanic Subscription - (...) -- C:\WINDOWS\Tasks\PC-Mechanic Subscription.job [294] =>PUP.Optional.Uniblue
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-1-6 - (.OB.) -- C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-1-6 [6256] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-1-7 - (.OB.) -- C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-1-7 [6256] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-10_user - (.OB.) -- C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-10_user [5294] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-11 - (.OB.) -- C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-11 [8300] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-13 - (.OB.) -- C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-13 [6644] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-14 - (.OB.) -- C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-14 [6308] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-3 - (.OB.) -- C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-3 [7272] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-5 - (.OB.) -- C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-5 [5560] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-5_user - (.OB.) -- C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-5_user [5626] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-6 - (.OB.) -- C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-6 [8632] =>PUP.Optional.CrossRider
O39 - APT: 2baf08be-a43a-44ab-950f-a58cdf6142a1-7 - (.OB.) -- C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-7 [8632] =>PUP.Optional.CrossRider
O39 - APT: AmiUpdXp - (...) -- C:\WINDOWS\System32\Tasks\AmiUpdXp [3428] =>PUP.Optional.SoftwareUpdater
O39 - APT: APSnotifierPP1 - (.AnyProtect.com.) -- C:\WINDOWS\System32\Tasks\APSnotifierPP1 [2894] =>PUP.Optional.AnyProtect
O39 - APT: APSnotifierPP2 - (.AnyProtect.com.) -- C:\WINDOWS\System32\Tasks\APSnotifierPP2 [2892] =>PUP.Optional.AnyProtect
O39 - APT: APSnotifierPP3 - (.AnyProtect.com.) -- C:\WINDOWS\System32\Tasks\APSnotifierPP3 [2892] =>PUP.Optional.AnyProtect
O39 - APT: ASC8_PerformanceMonitor - (.IObit.) -- C:\WINDOWS\System32\Tasks\ASC8_PerformanceMonitor [3334] =>.IObit
O39 - APT: ASC8_SkipUac_Audrey - (.IObit.) -- C:\WINDOWS\System32\Tasks\ASC8_SkipUac_Audrey [3434] =>.IObit
O39 - APT: CDPSvc32 - (...) -- C:\WINDOWS\System32\Tasks\CDPSvc32 [3316]
O39 - APT: Crossbrowse - (...) -- C:\WINDOWS\System32\Tasks\Crossbrowse [4190] =>PUP.Optional.CrossBrowse
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineCore [3738] =>PUP.Optional.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineUA [3970] =>PUP.Optional.GlobalUpdate
O39 - APT: Glopbbiq - (...) -- C:\WINDOWS\System32\Tasks\Glopbbiq [3706] =>PUP.Optional.Shopperz
O39 - APT: JobExpress - (...) -- C:\WINDOWS\System32\Tasks\JobExpress [3316]
O39 - APT: LFkmE2Q4hGKI - (.Copyright 2001.) -- C:\WINDOWS\System32\Tasks\LFkmE2Q4hGKI [4140] =>PUP.Optional.CrossRider
O39 - APT: PC-Mechanic Maintenance - (...) -- C:\WINDOWS\System32\Tasks\PC-Mechanic Maintenance [3340] =>PUP.Optional.Uniblue
O39 - APT: PC-Mechanic Startup - (...) -- C:\WINDOWS\System32\Tasks\PC-Mechanic Startup [2634] =>PUP.Optional.Uniblue
O39 - APT: PC-Mechanic Subscription - (...) -- C:\WINDOWS\System32\Tasks\PC-Mechanic Subscription [2710] =>PUP.Optional.Uniblue
O39 - APT: ShopperPro - (.Goobzo LTD.) -- C:\WINDOWS\System32\Tasks\ShopperPro [4610] =>PUP.Optional.ShopperPro
O39 - APT: ShopperProJSUpd - (.Goobzo.) -- C:\WINDOWS\System32\Tasks\ShopperProJSUpd [3674] =>PUP.Optional.ShopperPro
O39 - APT: SmartWeb Upgrade Trigger Task - (.SoftBrain Technologies Ltd..) -- C:\WINDOWS\System32\Tasks\SmartWeb Upgrade Trigger Task [4128] =>PUP.Optional.SmartWebSearch
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\SMupdate1 [3816]
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\SPBIW_UpdateTask_Time_3331333631383834352d785b233457414a45415a506c [4402]
O39 - APT: SPDriver - (.Copyright (C) 2014.) -- C:\WINDOWS\System32\Tasks\SPDriver [3586] =>PUP.Optional.ShopperPro
O39 - APT: Uninstaller_SkipUac_Audrey - (.IObit.) -- C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Audrey [3462] =>.IObit
O39 - APT: WordSurfer Auto Updater 1.10.0.19 Core - (.Word Surfer.) -- C:\WINDOWS\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Core [4284] =>PUP.Optional.WordSurfer
O39 - APT: WordSurfer Auto Updater 1.10.0.19 Pending Update - (.Word Surfer.) -- C:\WINDOWS\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Pending Update [4314] =>PUP.Optional.WordSurfer
O39 - APT: YTDownloader - (.YTDownloader.) -- C:\WINDOWS\System32\Tasks\YTDownloader [3682] =>PUP.Optional.YTDownloader
O39 - APT: YTDownloaderUpd - (.Goobzo.) -- C:\WINDOWS\System32\Tasks\YTDownloaderUpd [4010] =>PUP.Optional.YTDownloader
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\{1D220E17-7CDC-478C-8A9D-A921898517AD} [3238]
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\{826EA661-6556-4A0A-8649-866C0C9B1292} [3316]
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\{C01231AE-A95B-4C46-BBB3-59DE4F9E2A8D} [3252]

---\\ Logiciels installés (O42) (55) - 10s
O42 - Logiciel: DAEMON Tools Ultra - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Ultra
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: WinRAR 5.21 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: shopperz04082015 2.0.0.475 - (.shopperz.) [HKLM][64Bits] -- {0a0e29f6-0ab0-44e1-a98e-bd050ee692ec}_is1 =>PUP.Optional.Shopperz
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {27DEA29A-222C-45F8-B70D-0A7B303FC71B}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {3F3C0D7A-FA11-41D5-A3DB-A1F2944577BD}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140}
O42 - Logiciel: Microsoft Access MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Excel MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Publisher MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Outlook MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Word MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft InfoPath MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft DCF MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft OneNote MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Groove MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Lync MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-040C-1000-0000000FF1CE}
O42 - Logiciel: NVIDIA Pilote 3D Vision 353.62 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote graphique 353.62 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA GeForce Experience 2.5.12.11 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 352.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.15.0428 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.34.3 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: Advanced SystemCare 8 - (.IObit.) [HKLM][64Bits] -- Advanced SystemCare 8_is1
O42 - Logiciel: AnyProtect - (.CMI Limited.) [HKLM][64Bits] -- AnyProtect =>PUP.Optional.AnyProtect
O42 - Logiciel: Crossbrowse - (.The Crossbrowse Authors.) [HKLM][64Bits] -- Crossbrowse =>PUP.Optional.CrossBrowse
O42 - Logiciel: Driver Booster 2.4 - (.IObit.) [HKLM][64Bits] -- Driver Booster_is1
O42 - Logiciel: FastSearch - (.FastSearch.) [HKLM][64Bits] -- FastSearch =>PUP.Optional.FastSearch
O42 - Logiciel: Friendly Error - (...) [HKLM][64Bits] -- FriendlyError
O42 - Logiciel: GamesDesktop 001.005010054 - (.GAMESDESKTOP.) [HKLM][64Bits] -- gmsd_fr_005010054_is1 =>PUP.Optional.GamesDesktop
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}
O42 - Logiciel: IObit Malware Fighter 3 - (.IObit.) [HKLM][64Bits] -- IObit Malware Fighter_is1
O42 - Logiciel: Surfing Protection - (.IObit.) [HKLM][64Bits] -- IObit Surfing Protection_is1
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM][64Bits] -- IObitUninstall
O42 - Logiciel: mystartsearch uninstall - (.mystartsearch.) [HKLM][64Bits] -- mystartsearch uninstall =>PUP.Optional.StartSearch
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: Opera Stable 31.0.1889.99 - (.Opera Software.) [HKLM][64Bits] -- Opera 31.0.1889.99
O42 - Logiciel: SavePass 1.1 - (.OB.) [HKLM][64Bits] -- SavePass 1.1 =>PUP.Optional.CrossRider
O42 - Logiciel: Shopper-Pro - (...) [HKLM][64Bits] -- ShopperPro =>PUP.Optional.ShopperPro
O42 - Logiciel: Smart Defrag 4 - (.IObit.) [HKLM][64Bits] -- Smart Defrag 4_is1
O42 - Logiciel: SmartWeb - (.SoftBrain Technologies Ltd..) [HKLM][64Bits] -- SmartWeb =>PUP.Optional.SmartWebSearch
O42 - Logiciel: TomorrowGames - (...) [HKLM][64Bits] -- TomorrowGames =>PUP.Optional.TomorrowGames
O42 - Logiciel: WordSurfer 1.10.0.19 - (.WordSurfer.) [HKLM][64Bits] -- WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
O42 - Logiciel: YTDownloader - (.YTDownloader.) [HKLM][64Bits] -- YTDownloader =>PUP.Optional.YTDownloader
O42 - Logiciel: Support PL 1.1 - (.riceLes.) [HKLM][64Bits] -- {12DA0E6F-5543-440C-BAA2-28BF01070AFA}{bce312cc}
O42 - Logiciel: SAveuLots - (."".) [HKLM][64Bits] -- {35E13884-BAC3-5F4A-799B-05F882E0BD9F} =>PUP.Optional.Multiplug
O42 - Logiciel: youtubeadblocker - (...) [HKLM][64Bits] -- {4820778D-AB0D-6D18-C316-52A6A0E1D507} =>PUP.Optional.Multiplug
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: PriicceLess - (...) [HKLM][64Bits] -- {75F9BF4A-AF67-A478-A37B-31D73186D3F3} =>PUP.Optional.Multiplug
O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM][64Bits] -- {77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}
O42 - Logiciel: Software Version Updater - (...) [HKLM][64Bits] -- {99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
O42 - Logiciel: Custom Background - (...) [HKLM][64Bits] -- {AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

---\\ HKCU & HKLM Software Keys (118) - 10s
HKLM\SOFTWARE\Wow6432Node\18c9aef7-10b0-c1a7-2533-6c94598984ad =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\47286f2c-2cb3-43fd-ac5d-a895ce78a582 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\AIM Toolbar
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\b5475afc-efe4-4c9a-8928-2aaa4648f085 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Boxore =>PUP.Optional.Boxore
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\coupoon =>PUP.Optional.Multiplug
HKLM\SOFTWARE\Wow6432Node\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\downchecker =>PUP.Optional.DownChecker
HKLM\SOFTWARE\Wow6432Node\FastSearch =>PUP.Optional.FastSearch
HKLM\SOFTWARE\Wow6432Node\GAMESDESKTOP =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\GreatFind =>PUP.Optional.GreatFind
HKLM\SOFTWARE\Wow6432Node\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\IObit
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\MaxPower
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\PowerPivot
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\SavePass 1.1 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SavePass 1.1-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SavePass 1.1-nv-edge =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SavePass 1.1-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\searchult =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\ShopperPro =>PUP.Optional.ShopperPro
HKLM\SOFTWARE\Wow6432Node\shopperz04082015 =>PUP.Optional.Shopperz
HKLM\SOFTWARE\Wow6432Node\Software
HKLM\SOFTWARE\Wow6432Node\SpaceSondPro =>PUP.Optional.SpaceSoundPro
HKLM\SOFTWARE\Wow6432Node\SpeedBit
HKLM\SOFTWARE\Wow6432Node\SRS Labs
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.Fuyu
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\Uniblue =>PUP.Optional.Uniblue
HKLM\SOFTWARE\Wow6432Node\WajIntEnhance =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\YTDownloader =>PUP.Optional.YTDownloader
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AskPartnerNetwork =>Toolbar.Ask
HKCU\SOFTWARE\Boxore =>PUP.Optional.Boxore
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Cinem Plus 2.4cV31.07-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\DailyPcClean =>PUP.Optional.DailyPCClean
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\HomeTab =>PUP.Optional.CertifiedToolbar
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\Kromtech
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mine
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\OB
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\SavePass 1.1 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv-edge =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SearchProtectWS =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\StormAlertsApp =>PUP.Optional.StormAlert
HKCU\SOFTWARE\TNT2 =>PUP.Optional.TidyNetwork
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\YTDownloader =>PUP.Optional.YTDownloader
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\SmartWeb =>PUP.Optional.SmartWebSearch
HKCU\SOFTWARE\AppDataLow\Software\_CrossriderRegNamePlaceHolder_ =>PUP.Optional.CrossRider

---\\ Contenu des dossiers Programmes (O43) (182) - 11s
O43 - CFD: 2015/08/08 10:20:52 - [] D -- C:\Program Files (x86)\71b21129-fb08-4b5a-9dae-6313e01e87e4 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/08 10:44:40 - [] D -- C:\Program Files (x86)\AnyProtectEx =>PUP.Optional.AnyProtect
O43 - CFD: 2015/08/08 11:41:04 - [] D -- C:\Program Files (x86)\Awesome Widget ANTP
O43 - CFD: 2015/08/08 10:34:47 - [] D -- C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/08 10:32:20 - [] D -- C:\Program Files (x86)\Boxore =>PUP.Optional.Boxore
O43 - CFD: 2015/08/08 08:44:40 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/08/08 10:43:49 - [] D -- C:\Program Files (x86)\Coupoon =>PUP.Optional.Multiplug
O43 - CFD: 2015/08/08 10:31:20 - [] D -- C:\Program Files (x86)\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2015/08/08 10:57:29 - [] D -- C:\Program Files (x86)\Custom Background
O43 - CFD: 2015/08/08 10:52:56 - [] D -- C:\Program Files (x86)\FastSearch =>PUP.Optional.FastSearch
O43 - CFD: 2015/08/08 10:54:08 - [] D -- C:\Program Files (x86)\FriendlyError
O43 - CFD: 2015/08/08 10:41:50 - [] D -- C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/08/08 10:54:45 - [] D -- C:\Program Files (x86)\gmsd_fr_005010054 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/07 17:54:48 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/08/07 19:29:03 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/07/10 18:23:55 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/08/08 07:51:51 - [] D -- C:\Program Files (x86)\IObit
O43 - CFD: 2015/08/08 09:03:58 - [] D -- C:\Program Files (x86)\Kaspersky Lab
O43 - CFD: 2015/08/08 09:33:32 - [] D -- C:\Program Files (x86)\KMSPico 10.0.6 =>PUA.KMSpico
O43 - CFD: 2015/08/08 09:14:01 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 2015/08/08 09:13:32 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/08/08 09:19:22 - [] D -- C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 2015/08/08 09:19:21 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/08/08 10:53:02 - [] D -- C:\Program Files (x86)\MiuiTab =>PUP.Optional.MiuiTab
O43 - CFD: 2015/08/08 09:18:48 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/08/07 18:54:13 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2015/08/08 09:56:00 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 2015/08/07 20:12:24 - [] D -- C:\Program Files (x86)\Pine Tree =>PUP.Optional.PineTree
O43 - CFD: 2015/08/08 10:47:13 - [0] D -- C:\Program Files (x86)\predm =>PUP.Optional.Downware
O43 - CFD: 2015/08/08 11:40:23 - [] D -- C:\Program Files (x86)\PriicceLess =>PUP.Optional.Multiplug
O43 - CFD: 2015/08/07 19:29:04 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2015/08/08 10:59:55 - [] D -- C:\Program Files (x86)\RelaySys
O43 - CFD: 2015/08/08 11:40:08 - [] D -- C:\Program Files (x86)\SaavELots =>PUP.Optional.Multiplug
O43 - CFD: 2015/08/08 11:40:24 - [] D -- C:\Program Files (x86)\SauVeLotS =>PUP.Optional.Multiplug
O43 - CFD: 2015/08/08 10:21:37 - [] D -- C:\Program Files (x86)\SavePass 1.1 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/08 11:41:20 - [] D -- C:\Program Files (x86)\SAveuLots =>PUP.Optional.Multiplug
O43 - CFD: 2015/08/08 10:32:25 - [] D -- C:\Program Files (x86)\ShopperPro =>PUP.Optional.ShopperPro
O43 - CFD: 2015/08/08 11:37:21 - [] D -- C:\Program Files (x86)\Software =>PUP.Optional.Boxore
O43 - CFD: 2015/08/07 19:30:21 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2015/08/08 08:53:37 - [0] D -- C:\Program Files (x86)\Uniblue =>PUP.Optional.Uniblue
O43 - CFD: 2015/07/10 18:23:55 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/08/08 07:51:51 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/07/10 18:23:55 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2015/07/10 13:04:22 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/07/10 18:23:55 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2015/07/10 13:04:22 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015/07/10 13:04:22 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 2015/08/08 10:51:42 - [] D -- C:\Program Files (x86)\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
O43 - CFD: 2015/08/08 11:40:24 - [] D -- C:\Program Files (x86)\youtubeadblocker =>PUP.Optional.YouTubeAdBlock
O43 - CFD: 2015/08/08 10:32:10 - [] D -- C:\Program Files (x86)\YTDownloader =>PUP.Optional.YTDownloader
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/07/10 18:29:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/10 18:29:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/08/08 07:51:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
O43 - CFD: 2015/08/08 10:31:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2015/08/08 08:43:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Ultra
O43 - CFD: 2015/08/08 07:51:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
O43 - CFD: 2015/08/08 10:54:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>PUP.Optional.GamesDesktop
O43 - CFD: 2015/08/08 07:51:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/08/08 07:51:54 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 2015/08/08 07:51:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
O43 - CFD: 2015/08/08 07:51:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
O43 - CFD: 2015/08/08 09:04:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
O43 - CFD: 2015/08/08 07:51:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ma-config.com
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/08/08 09:20:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 2015/08/08 08:58:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2015/08/08 07:51:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/07/10 18:29:06 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/08/08 08:44:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue =>PUP.Optional.Uniblue
O43 - CFD: 2015/08/08 07:51:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/08/08 10:31:34 - [] D -- C:\ProgramData\19a87fa1ec024bbcbb41931263354405
O43 - CFD: 2015/08/08 11:41:20 - [] D -- C:\ProgramData\7242530728482400286
O43 - CFD: 2015/08/08 10:36:05 - [] D -- C:\ProgramData\abc =>PUP.Optional.BundleInstaller
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/08/08 10:52:21 - [0] D -- C:\ProgramData\aWinManProa
O43 - CFD: 2015/08/07 19:40:45 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2015/07/10 13:04:22 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 2015/08/08 08:45:44 - [] D -- C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc
O43 - CFD: 2015/08/08 08:42:46 - [] D -- C:\ProgramData\DAEMON Tools Ultra
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/08/07 17:55:02 - [] D -- C:\ProgramData\DWinManProD
O43 - CFD: 2015/08/08 10:39:15 - [] D -- C:\ProgramData\EroBisis
O43 - CFD: 2015/08/07 17:54:14 - [] D -- C:\ProgramData\IHProtectUpDate =>PUP.Optional.AgentODR
O43 - CFD: 2015/08/07 19:47:54 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2015/08/08 08:48:40 - [] D -- C:\ProgramData\IObit
O43 - CFD: 2015/08/08 11:30:12 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 2015/08/07 17:58:25 - [] D -- C:\ProgramData\ma-config.com
O43 - CFD: 2015/08/07 19:40:46 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/08/08 09:13:23 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/08/08 09:22:34 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2015/08/08 08:33:05 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 2015/08/07 19:40:46 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/08/08 09:38:25 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2015/08/08 08:59:59 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/08/08 10:32:58 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/08/08 08:48:50 - [] D -- C:\ProgramData\ProductData
O43 - CFD: 2015/08/08 10:31:04 - [] D -- C:\ProgramData\pWinManProp
O43 - CFD: 2015/08/08 09:19:05 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/08/08 10:31:58 - [] D -- C:\ProgramData\Service1104
O43 - CFD: 2015/08/08 10:32:44 - [] D -- C:\ProgramData\ShopperPro =>PUP.Optional.ShopperPro
O43 - CFD: 2015/07/10 13:04:22 - [0] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/08/08 10:59:55 - [] D -- C:\ProgramData\TomorrowGames =>PUP.Optional.TomorrowGames
O43 - CFD: 2015/07/10 14:22:45 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 2015/07/10 14:22:45 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 2015/08/08 10:53:16 - [] D -- C:\ProgramData\{2835caa9-2345-fc49-2835-5caa92342aa4}
O43 - CFD: 2015/08/08 10:22:29 - [] D -- C:\ProgramData\{884f0ef4-930c-3ced-884f-f0ef49303bd2}
O43 - CFD: 2015/08/07 19:36:00 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
O43 - CFD: 2015/08/08 09:39:48 - [] D -- C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc
O43 - CFD: 2015/08/07 19:49:48 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 2015/08/07 19:35:51 - [] D -- C:\Program Files (x86)\Common Files\IObit
O43 - CFD: 2015/08/08 09:18:37 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/07/10 18:23:55 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/08/07 17:46:55 - [] D -- C:\Users\Audrey\AppData\Roaming\Adobe
O43 - CFD: 2015/08/08 10:35:14 - [] SHD -- C:\Users\Audrey\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
O43 - CFD: 2015/08/07 19:36:05 - [] D -- C:\Users\Audrey\AppData\Roaming\Apple Computer
O43 - CFD: 2015/08/08 10:43:46 - [] D -- C:\Users\Audrey\AppData\Roaming\cpuminer
O43 - CFD: 2015/08/08 09:12:49 - [] D -- C:\Users\Audrey\AppData\Roaming\DAEMON Tools Ultra
O43 - CFD: 2015/08/07 19:48:16 - [] D -- C:\Users\Audrey\AppData\Roaming\Intel Corporation
O43 - CFD: 2015/08/08 07:51:31 - [] D -- C:\Users\Audrey\AppData\Roaming\IObit
O43 - CFD: 2015/08/07 17:53:36 - [] D -- C:\Users\Audrey\AppData\Roaming\Macromedia
O43 - CFD: 2015/08/08 09:28:48 - [] SD -- C:\Users\Audrey\AppData\Roaming\Microsoft
O43 - CFD: 2015/08/08 10:51:42 - [] D -- C:\Users\Audrey\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
O43 - CFD: 2015/08/08 10:33:29 - [] D -- C:\Users\Audrey\AppData\Roaming\NVIDIA
O43 - CFD: 2015/08/08 10:16:21 - [] D -- C:\Users\Audrey\AppData\Roaming\Opera Software
O43 - CFD: 2015/08/08 10:53:21 - [] D -- C:\Users\Audrey\AppData\Roaming\Outraged Library
O43 - CFD: 2015/08/07 19:37:10 - [] D -- C:\Users\Audrey\AppData\Roaming\ProductData
O43 - CFD: 2015/08/08 08:43:00 - [] D -- C:\Users\Audrey\AppData\Roaming\RPEng
O43 - CFD: 2015/08/08 08:44:15 - [] D -- C:\Users\Audrey\AppData\Roaming\Uniblue =>PUP.Optional.Uniblue
O43 - CFD: 2015/08/07 19:44:59 - [] D -- C:\Users\Audrey\AppData\Roaming\WinRAR
O43 - CFD: 2015/08/08 11:47:38 - [] D -- C:\Users\Audrey\AppData\Roaming\ZHP
O43 - CFD: 2015/08/08 10:53:21 - [] D -- C:\Users\Audrey\AppData\Local\20806
O43 - CFD: 2015/08/08 07:50:36 - [0] SHD -- C:\Users\Audrey\AppData\Local\Application Data
O43 - CFD: 2015/08/08 10:26:03 - [] D -- C:\Users\Audrey\AppData\Local\B515B377-1439029253-8449-8293-60EB691F8972
O43 - CFD: 2015/08/08 10:32:27 - [] D -- C:\Users\Audrey\AppData\Local\Boxore =>PUP.Optional.Boxore
O43 - CFD: 2015/08/08 10:35:16 - [] D -- C:\Users\Audrey\AppData\Local\BrowserHelper =>PUP.Optional.BrowserHelper
O43 - CFD: 2015/08/08 09:53:23 - [] D -- C:\Users\Audrey\AppData\Local\Comms
O43 - CFD: 2015/08/08 10:31:15 - [] D -- C:\Users\Audrey\AppData\Local\CrashRpt =>.Legitimate.CrashReports
O43 - CFD: 2015/08/08 10:31:42 - [] D -- C:\Users\Audrey\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2015/08/08 08:44:02 - [] D -- C:\Users\Audrey\AppData\Local\Disc_Soft_Ltd
O43 - CFD: 2015/08/08 10:16:43 - [] D -- C:\Users\Audrey\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/08/08 10:57:54 - [] D -- C:\Users\Audrey\AppData\Local\gmsd_fr_005010054 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/07 17:55:01 - [] D -- C:\Users\Audrey\AppData\Local\Google
O43 - CFD: 2015/08/08 07:50:36 - [0] SHD -- C:\Users\Audrey\AppData\Local\Historique
O43 - CFD: 2015/08/08 10:31:17 - [] D -- C:\Users\Audrey\AppData\Local\Installer =>PUP.Optional.InstallPedia
O43 - CFD: 2015/08/08 09:28:18 - [] D -- C:\Users\Audrey\AppData\Local\Microsoft
O43 - CFD: 2015/08/08 09:13:32 - [0] D -- C:\Users\Audrey\AppData\Local\Microsoft Help
O43 - CFD: 2015/08/08 08:38:31 - [] D -- C:\Users\Audrey\AppData\Local\MicrosoftEdge
O43 - CFD: 2015/08/08 08:34:14 - [0] D -- C:\Users\Audrey\AppData\Local\NetworkTiles
O43 - CFD: 2015/08/07 19:17:53 - [] D -- C:\Users\Audrey\AppData\Local\NVIDIA
O43 - CFD: 2015/08/07 19:29:19 - [] D -- C:\Users\Audrey\AppData\Local\NVIDIA Corporation
O43 - CFD: 2015/08/08 10:16:22 - [] D -- C:\Users\Audrey\AppData\Local\Opera Software
O43 - CFD: 2015/08/08 08:50:57 - [] D -- C:\Users\Audrey\AppData\Local\Packages
O43 - CFD: 2015/08/08 10:32:08 - [0] D -- C:\Users\Audrey\AppData\Local\PeerDistRepub
O43 - CFD: 2015/08/07 17:53:08 - [] D -- C:\Users\Audrey\AppData\Local\Programs
O43 - CFD: 2015/08/08 08:31:33 - [] D -- C:\Users\Audrey\AppData\Local\Publishers
O43 - CFD: 2015/08/08 10:22:08 - [] D -- C:\Users\Audrey\AppData\Local\ServiceWindows
O43 - CFD: 2015/08/08 10:51:31 - [] D -- C:\Users\Audrey\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
O43 - CFD: 2015/08/08 10:31:07 - [] D -- C:\Users\Audrey\AppData\Local\Software =>PUP.Optional.Boxore
O43 - CFD: 2015/08/08 10:49:09 - [0] D -- C:\Users\Audrey\AppData\Local\StormAlerts =>PUP.Optional.StormAlert
O43 - CFD: 2015/08/08 11:47:10 - [] D -- C:\Users\Audrey\AppData\Local\Temp
O43 - CFD: 2015/08/08 07:50:36 - [0] SHD -- C:\Users\Audrey\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/08/08 08:29:42 - [] D -- C:\Users\Audrey\AppData\Local\TileDataLayer
O43 - CFD: 2015/08/07 17:46:54 - [0] D -- C:\Users\Audrey\AppData\Local\VirtualStore
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\Users\Audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/08/08 08:29:42 - [] RD -- C:\Users\Audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/08/08 08:29:49 - [] RD -- C:\Users\Audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/08/08 10:44:40 - [] D -- C:\Users\Audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.Optional.AnyProtect
O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Users\Audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/08/08 10:51:30 - [] RD -- C:\Users\Audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\Users\Audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/07/10 13:04:45 - [] RSD -- C:\Users\Audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 2015/08/08 07:51:32 - [] D -- C:\Users\Audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/08/08 10:32:10 - [] D -- C:\Users\Audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader =>PUP.Optional.YTDownloader

---\\ Derniers fichiers créés dans Windows Prefetcher (O45) (35) - 45s
O45 - LFCP:[MD5.DB6476E17AA9CB40AEF89016C883B8B4] 2015/08/08 10:53:06 A -- C:\WINDOWS\Prefetch\ACENGINE.EXE-B18BC157.pf =>PUP.Optional.Abengine
O45 - LFCP:[MD5.8313F08EA8F28158BA74FBF9452C4EF2] 2015/08/08 11:33:59 A -- C:\WINDOWS\Prefetch\ANYPROTECT.EXE-1996592C.pf =>PUP.Optional.AnyProtect
O45 - LFCP:[MD5.909660802680DC3510A118EDF55F8BDE] 2015/08/08 10:41:21 A -- C:\WINDOWS\Prefetch\BOXORE.EXE-872755D1.pf =>PUP.Optional.Boxore
O45 - LFCP:[MD5.5A9089DB5384A784AF063CC921FA5D8E] 2015/08/08 10:45:20 A -- C:\WINDOWS\Prefetch\CROSSBROWSE.EXE-CEDEC251.pf =>PUP.Optional.CrossBrowse
O45 - LFCP:[MD5.5F045AC4936A728375BB6847113ECB78] 2015/08/08 10:31:35 A -- C:\WINDOWS\Prefetch\DCYTDOWNLOADER.EXE-BA9229F7.pf =>PUP.Optional.YTDownloader
O45 - LFCP:[MD5.8F8C323706576FAD1E033FA1CC6DAAC9] 2015/08/08 10:52:48 A -- C:\WINDOWS\Prefetch\FASTSEARCH_4435.EXE-58CFCB50.pf =>PUP.Optional.FastSearch
O45 - LFCP:[MD5.77E24AB670F0720CD8D5C97E45378AAA] 2015/08/08 10:25:02 A -- C:\WINDOWS\Prefetch\GLOBALUPDATE.EXE-35F6B904.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.178560060E28906718F705D5304704AA] 2015/08/08 10:16:53 A -- C:\WINDOWS\Prefetch\GLOBALUPDATE.EXE-67BF3740.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.2B50B2F8311EA6760C574EE0AC2DABE6] 2015/08/08 10:20:30 A -- C:\WINDOWS\Prefetch\GLOBALUPDATE.EXE-73804BB3.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.7BA63E76EE123FDEF70F41205662585E] 2015/08/08 10:25:00 A -- C:\WINDOWS\Prefetch\GLOBALUPDATECRASHHANDLER.EXE-68CB7B8C.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.DE55EC69B34C455DBE9C389AC3A444BD] 2015/08/08 10:54:56 A -- C:\WINDOWS\Prefetch\GMSD_FR_005010054.EXE-8B8B92E9.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.E2F3D66E6A9EE78CFABEAB44A19C3B77] 2015/08/08 10:31:31 A -- C:\WINDOWS\Prefetch\INS_IWEBAR.EXE-C5577FC6.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.A45F16BE2D02F3FF09BBDF24DA8BE6F3] 2015/08/08 10:31:46 A -- C:\WINDOWS\Prefetch\INS_SHOPPERPRO.EXE-035D9FA6.pf =>PUP.Optional.ShopperPro
O45 - LFCP:[MD5.293BE3ECB0977B5AEBA6DCB64392325C] 2015/08/08 09:33:24 A -- C:\WINDOWS\Prefetch\KMSPICO 10.0.8.EXE-0CAB0926.pf =>PUA.KMSpico
O45 - LFCP:[MD5.D43E6DDB2D31662FF7A2A3C9CE49F35A] 2015/08/08 10:17:15 A -- C:\WINDOWS\Prefetch\KMSPICO 10.0.8.EXE-5B0C7A38.pf =>PUA.KMSpico
O45 - LFCP:[MD5.E97715C0A10DA924BF1877688EDE35A1] 2015/08/08 10:17:16 A -- C:\WINDOWS\Prefetch\KMSPICO.EXE-D7607F14.pf =>PUA.KMSpico
O45 - LFCP:[MD5.9668615BB2920745B0A05559773AF349] 2015/08/08 10:32:21 A -- C:\WINDOWS\Prefetch\KMSPICO10.0.9__8173_IL94690.E-12CC569F.pf =>PUA.KMSpico
O45 - LFCP:[MD5.07BEC2A1349F0EBE06E869A7A09E365D] 2015/08/08 08:44:33 A -- C:\WINDOWS\Prefetch\PC-MECHANIC.EXE-C4EBFA11.pf =>PUP.Optional.Uniblue
O45 - LFCP:[MD5.EE71575D37F27224BB1136A9E9342989] 2015/08/08 10:52:48 A -- C:\WINDOWS\Prefetch\PEAKOAR.EXE-F96B68E0.pf =>PUP.Optional.Shopperz
O45 - LFCP:[MD5.27EDB20EDEFA48984E7072D4D56C4574] 2015/08/08 10:47:11 A -- C:\WINDOWS\Prefetch\PREDM.EXE-B6DC1AC9.pf =>PUP.Optional.Downware
O45 - LFCP:[MD5.FC2AA6DF72220C02D69DA2BFCD1DEAFB] 2015/08/08 10:47:11 A -- C:\WINDOWS\Prefetch\PREDM.TMP-65C83E35.pf =>PUP.Optional.Downware
O45 - LFCP:[MD5.B0DB4240657CDCBA4FA57E4E233B9350] 2015/08/08 10:32:34 A -- C:\WINDOWS\Prefetch\SHOPPERPRO.EXE-D629434D.pf =>PUP.Optional.ShopperPro
O45 - LFCP:[MD5.AE66175FEDC3CC1B97F8F1F96ABE1AF3] 2015/08/08 10:51:53 A -- C:\WINDOWS\Prefetch\SMARTWEBAPP.EXE-4AA18E54.pf =>PUP.Optional.SmartWebSearch
O45 - LFCP:[MD5.D895F0966BC4007D190C4A733045E4A2] 2015/08/08 10:51:45 A -- C:\WINDOWS\Prefetch\SMARTWEBHELPER.EXE-07DE3BCF.pf =>PUP.Optional.SmartWebSearch
O45 - LFCP:[MD5.A2EA1E01B0B2CBB2788EEC9DC98CA7DD] 2015/08/08 10:31:09 A -- C:\WINDOWS\Prefetch\SPACESONDPRO_SERVICE.EXE-45F6D934.pf =>PUP.Optional.SpaceSoundPro
O45 - LFCP:[MD5.CA04A9629D907B955FF8EA4689A509E2] 2015/08/08 10:31:54 A -- C:\WINDOWS\Prefetch\STORMALERTS.EXE-CFC1877D.pf =>PUP.Optional.StormAlert
O45 - LFCP:[MD5.8A2B9B62E92D699D3537055E3DFC5F6E] 2015/08/08 10:31:44 A -- C:\WINDOWS\Prefetch\STORMALERTS2_1.EXE-EDDD5F9B.pf =>PUP.Optional.StormAlert
O45 - LFCP:[MD5.58F4B343399AE3E36AF333188A59BE6E] 2015/08/08 10:31:48 A -- C:\WINDOWS\Prefetch\STORMALERTSAPP.EXE-2F2178BA.pf =>PUP.Optional.StormAlert
O45 - LFCP:[MD5.34DC182E0C81686B0727202678F50D6C] 2015/08/08 10:49:00 A -- C:\WINDOWS\Prefetch\STORMALERTSAPPUNINSTALL.EXE-F128A36C.pf =>PUP.Optional.StormAlert
O45 - LFCP:[MD5.DAA21680F6CB802BDC13DED9F89492E1] 2015/08/08 10:31:39 A -- C:\WINDOWS\Prefetch\STORMALERTSSETUP.EXE-6348716E.pf =>PUP.Optional.StormAlert
O45 - LFCP:[MD5.978382B416C5918B7C8EA8F109FAD379] 2015/08/08 10:32:03 A -- C:\WINDOWS\Prefetch\TOMORROWGAMES.EXE-D7530645.pf =>PUP.Optional.TomorrowGames
O45 - LFCP:[MD5.96E472468274B5CA436B35168B16E5AC] 2015/08/08 10:57:54 A -- C:\WINDOWS\Prefetch\UPGMSD_FR_005010054.EXE-58CAF406.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.80BBDC2F3B97D1564B5641D4CF89287D] 2015/08/08 10:51:47 A -- C:\WINDOWS\Prefetch\WORDSURFERAUTOUPDATECLIENT.EX-4E78B08A.pf =>PUP.Optional.WordSurfer
O45 - LFCP:[MD5.950962077F920B4E1393A70092B1F4AC] 2015/08/08 10:52:21 A -- C:\WINDOWS\Prefetch\WPM_V20.0.0.2294.EXE-31429B20.pf =>PUP.Optional.WpManager
O45 - LFCP:[MD5.8B461FC7FA0262EB8679E3CB384EE41E] 2015/08/08 10:31:05 A -- C:\WINDOWS\Prefetch\WPM_V20.0.0.2294.EXE-D482EB63.pf =>PUP.Optional.WpManager

---\\ Liste des pilotes du système (SDL) (O58) (73) - 10s
O58 - SDL:2015/07/10 12:59:38 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360]
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456]
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296]
O58 - SDL:2015/07/10 12:59:38 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424]
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976]
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936]
O58 - SDL:2015/07/10 12:59:36 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\drivers\athwnx.sys [4207104]
O58 - SDL:2015/07/10 12:59:38 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624]
O58 - SDL:2015/08/08 10:55:15 A . (.Copyright (c) 2012 - .) -- C:\WINDOWS\System32\drivers\bsdriver.sys [34712] =>PUP.Optional.Shopperz
O58 - SDL:2015/07/10 12:59:38 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296]
O58 - SDL:2015/06/18 12:08:44 A . (.Cherimoya Ltd - Cherimoya Ltd.) -- C:\WINDOWS\System32\drivers\cherimoya.sys [61336] =>PUP.Optional.Shopper
O58 - SDL:2015/07/06 00:10:20 A . (.Kaspersky Lab ZAO - Cryptographic Module Driver x64 (Weak).) -- C:\WINDOWS\System32\drivers\cm_km.sys [389816]
O58 - SDL:2015/08/08 08:43:03 A . (.Disc Soft Ltd - DAEMON Tools Ultra Virtual SCSI Bus Driver.) -- C:\WINDOWS\System32\drivers\dtultrascsibus.sys [30264]
O58 - SDL:2015/08/08 08:43:14 A . (.Disc Soft Ltd - DAEMON Tools Ultra Virtual USB Bus Driver.) -- C:\WINDOWS\System32\drivers\dtultrausbbus.sys [47160]
O58 - SDL:2015/07/10 12:59:38 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896]
O58 - SDL:2009/09/17 19:54:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\HECIx64.sys [56344]
O58 - SDL:2015/07/10 12:59:38 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352]
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128]
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [122608]
O58 - SDL:2013/11/21 08:31:28 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [632168]
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120]
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000]
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800]
O58 - SDL:2015/06/22 20:40:04 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\kl1.sys [478392]
O58 - SDL:2015/06/06 08:48:24 A . (.Kaspersky Lab ZAO - Backup Disk Filter [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klbackupdisk.sys [53432]
O58 - SDL:2015/06/27 01:30:00 A . (.Kaspersky Lab ZAO - Backup File Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klbackupflt.sys [70512]
O58 - SDL:2015/06/06 08:51:00 A . (.Kaspersky Lab ZAO - Virtual Disk [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kldisk.sys [68280]
O58 - SDL:2015/06/24 01:28:32 A . (.Kaspersky Lab - Klelam Mini-Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klelam.sys [30328]
O58 - SDL:2015/06/30 01:05:50 A . (.Kaspersky Lab ZAO - Filter Core [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klflt.sys [171192]
O58 - SDL:2015/07/04 02:18:54 A . (.AO Kaspersky Lab - klhk [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klhk.sys [227000]
O58 - SDL:2015/06/30 01:05:50 A . (.Kaspersky Lab ZAO - Core System Interceptors [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klif.sys [937656]
O58 - SDL:2015/06/11 19:35:38 A . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver [.) -- C:\WINDOWS\System32\drivers\klim6.sys [39608]
O58 - SDL:2015/06/06 08:31:42 A . (.Kaspersky Lab ZAO - Keyboard Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klkbdflt.sys [41656]
O58 - SDL:2015/06/07 01:52:56 A . (.Kaspersky Lab ZAO - Mouse Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klmouflt.sys [41656]
O58 - SDL:2015/06/08 19:43:54 A . (.Kaspersky Lab ZAO - Format Recognizer [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klpd.sys [30392]
O58 - SDL:2015/06/26 23:58:36 A . (.Kaspersky Lab ZAO - Network filtering component [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klwfp.sys [78008]
O58 - SDL:2015/06/16 21:56:32 A . (.Kaspersky Lab ZAO - WFP Network Connection Filter Driver [fre_w.) -- C:\WINDOWS\System32\drivers\klwtp.sys [102584]
O58 - SDL:2015/06/23 18:30:50 A . (.Kaspersky Lab ZAO - Network Processor [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kneps.sys [187056]
O58 - SDL:2015/08/07 19:49:49 A . (.Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabi.) -- C:\WINDOWS\System32\drivers\L1C63x64.sys [130248]
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108896]
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800]
O58 - SDL:2015/07/10 12:59:38 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168]
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784]
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744]
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840]
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376]
O58 - SDL:2015/07/10 12:59:39 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840]
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128]
O58 - SDL:2015/04/03 00:22:32 A . (.NetFilterSDK.com - NetFilter SDK WFP Driver (WPP).) -- C:\WINDOWS\System32\drivers\netfilter64.sys [46376]
O58 - SDL:2015/07/25 01:28:44 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\WINDOWS\System32\drivers\nvhda64v.sys [204648]
O58 - SDL:2015/07/23 06:02:12 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\WINDOWS\System32\drivers\nvlddmkm.sys [11142984]
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368]
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240]
O58 - SDL:2015/07/25 02:14:14 A . (.NVIDIA Corporation - Stereoscopic 3D USB controller driver.) -- C:\WINDOWS\System32\drivers\nvstusb.sys [460976]
O58 - SDL:2015/07/03 06:28:26 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\WINDOWS\System32\drivers\nvvad64v.sys [47976]
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208]
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720]
O58 - SDL:2015/06/18 18:45:16 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [4496600]
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896]
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760]
O58 - SDL:2014/06/04 15:17:30 A . (.IObit - SmartDefrag Driver.) -- C:\WINDOWS\System32\drivers\SmartDefragDriver.sys [21184]
O58 - SDL:2015/08/08 09:49:57 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF_Aux.sys [33448]
O58 - SDL:2015/08/07 19:46:26 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [33448]
O58 - SDL:2015/08/08 09:49:57 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel_Aux.sys [33960]
O58 - SDL:2015/07/10 12:59:39 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072]
O58 - SDL:2015/08/08 09:49:58 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [606376]
O58 - SDL:2015/07/10 12:59:48 A . (...) -- C:\WINDOWS\System32\drivers\Udecx.sys [44032]
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752]
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504]
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976]
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232]
O58 - SDL:2015/06/16 00:28:50 A . (.Word Surfer - Word Surfer WFP Driver x64.) -- C:\WINDOWS\System32\drivers\wsafd_1_10_0_19.sys [57728] =>PUP.Optional.WordSurfer
O58 - SDL:2015/08/07 04:13:44 A . (.StdLib - StdLib.) -- C:\WINDOWS\System32\drivers\{3649d071-7ccc-406e-91c7-7e3a1383fa6f}Gw64.sys [48776] =>PUP.Optional.LinkiDoo

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (105) - 25s
O61 - LFC: 2015/08/07 18:13:44 A . (.Realtek Semiconductor Corp..) -- C:\Users\Audrey\Downloads\0005-Win7_Win8_Win81_Win10_R279.exe [228531151]
O61 - LFC: 2015/08/07 17:58:12 A . (..) -- C:\Users\Audrey\Downloads\MaConfigx64_8_0_0_5.exe [5440800]
O61 - LFC: 2015/08/07 18:00:57 A . (..) -- C:\Users\Audrey\Downloads\winrar-x64-521.exe [1941744]
O61 - LFC: 2015/08/03 21:29:40 A . (..) -- C:\Users\Audrey\Desktop\KMSPico 10.0.8.exe [1497821] =>PUA.KMSpico
O61 - LFC: 2015/08/08 08:43:05 A . (.Uniblue Systems Limited.) -- C:\Users\Audrey\AppData\Roaming\RPEng\C4F1852556A549EB85490FC78BB86F65\pcmechanicpmROW_p1v4.exe [1152488] =>PUP.Optional.Uniblue
O61 - LFC: 2015/08/08 08:44:26 A . (..) -- C:\Users\Audrey\AppData\Roaming\RPEng\8103A0DEB61A49AAAE4CD82940212FD2\setup.exe [298944]
O61 - LFC: 2015/08/08 10:53:16 A . (..) -- C:\Users\Audrey\AppData\Roaming\Outraged Library\Outraged Library.exe [66048]
O61 - LFC: 2015/08/08 10:31:57 A . (.Open Source.) -- C:\Users\Audrey\AppData\Roaming\cpuminer\sgminer-uninst.exe [55909]
O61 - LFC: 2015/08/08 10:34:18 A . (..) -- C:\Users\Audrey\AppData\Roaming\cpuminer\sgminer\darkcoin-modGeForce GT 425Mgw128l4ku0.bin [1939221]
O61 - LFC: 2015/08/07 19:06:37 A . (.Open Source.) -- C:\Users\Audrey\AppData\Roaming\cpuminer\sgminer\sgminer.exe [2749728]
O61 - LFC: 2015/08/08 10:51:37 A . (.SoftBrain Technologies Ltd..) -- C:\Users\Audrey\AppData\Local\SmartWeb\__u.exe [172673] =>PUP.Optional.SmartWebSearch
O61 - LFC: 2015/08/08 10:22:07 A . (..) -- C:\Users\Audrey\AppData\Local\ServiceWindows\van.exe [38400]
O61 - LFC: 2015/08/08 08:31:09 A . (..) -- C:\Users\Audrey\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Data.bin [1048576]
O61 - LFC: 2015/08/08 08:31:09 A . (..) -- C:\Users\Audrey\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Header.bin [9640]
O61 - LFC: 2015/08/08 08:42:51 A . (..) -- C:\Users\Audrey\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\Contacts_01.040c.digest.bin [4580]
O61 - LFC: 2015/08/08 08:35:10 A . (..) -- C:\Users\Audrey\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\Contacts_02.040c.digest.bin [4580]
O61 - LFC: 2015/08/08 11:49:19 A . (..) -- C:\Users\Audrey\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\PointsOfInterest2_01.040c.digest.bin [56]
O61 - LFC: 2015/08/08 11:34:17 A . (..) -- C:\Users\Audrey\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\PointsOfInterest2_02.040c.digest.bin [56]
O61 - LFC: 2015/08/08 11:49:17 A . (..) -- C:\Users\Audrey\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\PointsOfInterest_01.040c.digest.bin [56]
O61 - LFC: 2015/08/08 11:34:15 A . (..) -- C:\Users\Audrey\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\PointsOfInterest_02.040c.digest.bin [56]
O61 - LFC: 2015/08/08 11:49:19 A . (..) -- C:\Users\Audrey\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192]
O61 - LFC: 2015/08/08 11:47:07 A . (..) -- C:\Users\Audrey\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\VaStartMenu_01.040c.digest.bin [14540]
O61 - LFC: 2015/08/08 11:47:33 A . (..) -- C:\Users\Audrey\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\VaStartMenu_02.040c.digest.bin [14540]
O61 - LFC: 2015/08/08 08:34:13 A . (..) -- C:\Users\Audrey\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\cache\proactive\proactive-cache.bin [119493]
O61 - LFC: 2015/08/08 11:30:44 A . (..) -- C:\Users\Audrey\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\UrlBlock\urlblock_635746171616179114.bin [88057]
O61 - LFC: 2015/08/07 12:31:08 A . (..) -- C:\Users\Audrey\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [5135280]
O61 - LFC: 2015/08/07 19:18:26 A . (..) -- C:\Users\Audrey\AppData\Local\NVIDIA\NvBackend\Packages\00007c03\CoProc update.19841935.exe [515904]
O61 - LFC: 2015/08/07 19:18:33 A . (..) -- C:\Users\Audrey\AppData\Local\NVIDIA\NvBackend\Packages\00007beb\DAO.19838421.exe [5951752]
O61 - LFC: 2015/08/08 10:17:24 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\10100014[1].exe [1542450]
O61 - LFC: 2015/08/08 10:52:28 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\2114531a6c38573cd5b11063dccc3139[1].exe [68075]
O61 - LFC: 2015/08/08 11:31:36 A . (.AnyProtect.com.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\AnyProtect[2].exe [6434816] =>PUP.Optional.AnyProtect
O61 - LFC: 2015/08/08 10:30:22 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\b2wr[1].exe [81254]
O61 - LFC: 2015/08/08 08:42:32 A . (.Copyright (C) 2014.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\BiTool[1].dll [102912]
O61 - LFC: 2015/08/08 10:52:24 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\Bundle_FlowsurfCB[1].exe [99519] =>PUP.Optional.FlowSurf
O61 - LFC: 2015/08/08 10:30:20 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\bxwr[1].exe [56292]
O61 - LFC: 2015/08/08 10:31:31 A . (.Open Source.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\cdn[1].exe [4614240]
O61 - LFC: 2015/08/08 10:53:15 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\Download[1].exe [326144]
O61 - LFC: 2015/08/08 10:17:21 A . (.© 2015.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\install[1].exe [372860]
O61 - LFC: 2015/08/08 10:20:30 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\JOSrv[1].exe [209920]
O61 - LFC: 2015/08/08 11:14:25 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\policyname[1].exe [57665]
O61 - LFC: 2015/08/08 10:51:52 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\SearchUpdater[2].exe [121216]
O61 - LFC: 2015/08/08 10:30:17 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\setup[1].exe [123469]
O61 - LFC: 2015/08/08 10:31:29 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\Setup[2].exe [2364904]
O61 - LFC: 2015/08/08 11:29:53 A . (.CMI Limited.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\Setup[3].exe [628688] =>PUP.Optional.CMILimited
O61 - LFC: 2015/08/08 10:54:27 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\setup_gmsd_fr[1].exe [5799344]
O61 - LFC: 2015/08/08 10:20:43 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\SFSetup[1].exe [359945]
O61 - LFC: 2015/08/08 10:31:31 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\StormAlertsSetup[1].exe [378032] =>PUP.Optional.StormAlert
O61 - LFC: 2015/08/08 10:20:58 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\Update_Notifier[2].exe [564736]
O61 - LFC: 2015/08/08 10:17:26 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\VOPackage[1].exe [758423] =>PUP.Optional.Downware
O61 - LFC: 2015/08/08 11:15:11 A . (.CMI Limited.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\AnyProtectSetup[1].exe [613255] =>PUP.Optional.AnyProtect
O61 - LFC: 2015/08/08 10:30:19 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\Bundle_YTDownloader[1].exe [99555] =>PUP.Optional.YTDownloader
O61 - LFC: 2015/08/08 10:51:57 A . (.HTabp.com.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\cmi_mystartsearch[1].exe [670176] =>PUP.Optional.StartSearch
O61 - LFC: 2015/08/08 10:34:43 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\FinalInstaller_dotnet4[1].exe [3001344]
O61 - LFC: 2015/08/08 08:44:09 A . (.Uniblue Systems Limited.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\pcmechanicpm-standalone-setup[1].exe [19571272] =>PUP.Optional.Uniblue
O61 - LFC: 2015/08/08 10:20:56 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\runasu[2].exe [121344]
O61 - LFC: 2015/08/08 10:29:59 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\setup[1].exe [1967696]
O61 - LFC: 2015/08/08 10:51:11 A . (.Copyright 2013.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\Validate[1].exe [61981]
O61 - LFC: 2015/08/08 10:51:14 A . (.Word Surfer.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\wordsurfer-setup-1.10.0.19[1].exe [1172712] =>PUP.Optional.WordSurfer
O61 - LFC: 2015/08/08 10:51:40 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\36e0f22eacad857de2cd3b76aedc24a7[1].exe [72612]
O61 - LFC: 2015/08/08 10:53:09 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\4e4454ea6d4e491278aca3372a1c2062[1].exe [375463]
O61 - LFC: 2015/08/08 10:30:27 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\cb369ad7b027b8588a356348424ef3c4[2].exe [82261]
O61 - LFC: 2015/08/08 10:52:27 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\fastsearch_4435[1].exe [53841] =>PUP.Optional.FastSearch
O61 - LFC: 2015/08/08 10:51:42 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\FriendlyError_s3[1].exe [177664]
O61 - LFC: 2015/08/08 10:53:03 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\mpz[1].exe [6791168]
O61 - LFC: 2015/08/08 09:54:05 A . (.OperaChecker.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\OperaChecker25-6[1].exe [50225]
O61 - LFC: 2015/08/08 10:41:36 A . (.UIYTZ.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\Reimage[1].exe [677384] =>PUP.Optional.ReImageRepair
O61 - LFC: 2015/08/08 10:52:53 A . (.FastSearch.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\setupfa_4435[1].exe [4811097] =>PUP.Optional.FastSearch
O61 - LFC: 2015/08/08 08:42:41 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\setup[1].exe [430864]
O61 - LFC: 2015/08/08 09:55:14 A . (.Cinema Plus ProV31.07.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\setup[2].exe [14148592]
O61 - LFC: 2015/08/08 09:55:10 A . (.OB.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\setup[3].exe [11784826]
O61 - LFC: 2015/08/08 10:54:57 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\setup_362[1].exe [254464]
O61 - LFC: 2015/08/08 10:30:23 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\setup_v20[1].exe [123471]
O61 - LFC: 2015/08/08 10:34:25 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\smt[1].exe [211114]
O61 - LFC: 2015/08/08 10:51:40 A . (.shopperz.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\sprz[1].exe [2963920] =>PUP.Optional.Shopperz
O61 - LFC: 2015/08/08 10:31:13 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\tiwr[1].exe [76165]
O61 - LFC: 2015/08/08 10:48:42 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\UninstallModule[1].exe [87999]
O61 - LFC: 2015/08/08 09:54:06 A . (.XPVisChecker.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\XPVistaChecker[1].exe [50076]
O61 - LFC: 2015/08/08 10:32:07 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\3115[1].exe [426517]
O61 - LFC: 2015/08/08 10:34:31 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\BiTool[1].dll [59904]
O61 - LFC: 2015/08/08 10:53:19 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\Bundle_CPUminer[2].exe [99645]
O61 - LFC: 2015/08/08 09:54:16 A . (.Copyright (C) 2015.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\CM20150622[1].exe [172032]
O61 - LFC: 2015/08/08 10:51:13 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\cmmdWriter[2].exe [41440]
O61 - LFC: 2015/08/08 10:30:13 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\e73dd9d4bfabdb1eb2f12b4af7dede67[1].exe [64064]
O61 - LFC: 2015/08/08 10:53:32 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\FriendlyError_s4[1].exe [177664]
O61 - LFC: 2015/08/08 10:52:18 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\fswr[1].exe [72182]
O61 - LFC: 2015/08/08 10:20:21 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\runasu[1].exe [121344]
O61 - LFC: 2015/08/08 10:31:08 A . (.Coupoon.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\setup34[1].exe [323648]
O61 - LFC: 2015/08/08 10:52:20 A . (.SoftBrain Technologies Ltd..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\SmartWebInstaller[1].exe [759544] =>PUP.Optional.SmartWebSearch
O61 - LFC: 2015/08/08 10:31:04 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\SpaceSondPro[2].exe [4936061] =>PUP.Optional.SpaceSoundPro
O61 - LFC: 2015/08/08 10:31:41 A . (.Weather Warnings LLC.) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\StormAlerts2_1[1].exe [247216] =>PUP.Optional.StormAlert
O61 - LFC: 2015/08/08 10:20:58 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\SU_Srv[2].exe [120832]
O61 - LFC: 2015/08/08 10:51:16 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\UKmqfq5Gr[1].exe [205140]
O61 - LFC: 2015/08/08 10:53:23 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\Updater[1].exe [641024]
O61 - LFC: 2015/08/08 11:14:46 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\VuuPC_VO2_8907[2].exe [229110] =>PUP.Optional.VuuPC
O61 - LFC: 2015/08/08 10:30:11 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\wswr[1].exe [122994]
O61 - LFC: 2015/08/08 10:20:37 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\XZ0R7BK[1].exe [161792]
O61 - LFC: 2015/08/08 10:31:10 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\ytdieamodc_amodc_setup[1].exe [1513657]
O61 - LFC: 2015/08/08 09:43:23 A . (..) -- C:\Users\Audrey\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [434028]
O61 - LFC: 2015/08/08 10:31:15 A . (.Copyright (C) 2014.) -- C:\Users\Audrey\AppData\Local\Installer\Install_30889\DCYTDownloader.exe [1446912] =>PUP.Optional.YTDownloader
O61 - LFC: 2015/08/08 11:14:40 A . (..) -- C:\Users\Audrey\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2015/08/07 15:42:49 A . (..) -- C:\Users\Audrey\AppData\Local\gmsd_fr_005010054\upgmsd_fr_005010054.exe [3347600] =>PUP.Optional.CrossRider
O61 - LFC: 2015/08/08 10:20:56 A . (..) -- C:\Users\Audrey\AppData\Local\B515B377-1439029253-8449-8293-60EB691F8972\rnsvADAA.exe [121344]
O61 - LFC: 2015/08/08 10:20:55 A . (..) -- C:\Users\Audrey\AppData\Local\B515B377-1439029253-8449-8293-60EB691F8972\rnsvADF8.exe [121344]
O61 - LFC: 2015/08/08 10:20:59 A . (..) -- C:\Users\Audrey\AppData\Local\B515B377-1439029253-8449-8293-60EB691F8972\Uninstall.exe [51000]
O61 - LFC: 2015/08/08 10:53:15 A . (..) -- C:\Users\Audrey\AppData\Local\20806\Updater.exe [641024]

---\\ Associations Shell Spawning (O67) (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (SMI) (O68) (16) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe http://www.mystartsearch.com/ =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.ex http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Launcher.) -- C:\Program Files (x86)\Opera\Launcher.exe http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Launcher.) -- C:\Program Files (x86)\Opera\launcher.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Launcher.) -- C:\Program Files (x86)\Opera\launcher.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Launcher.) -- C:\Program Files (x86)\Opera\launcher.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (5) - 0s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O69 - SBI: SearchScopes [HKCU] {1FACE0E9-F1A7-4921-9AA0-58024EC2A78F} - (Bing.com) - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} [DefaultScope] - (e) - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (mystartsearch) - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} - (Google) - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch

---\\ Enumère les services démarrés par Svchost (SSS) (O83) (42) - 3s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [192000]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [192000]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\system32\srvsvc.dll [283136]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1335296]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [954368]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [954880]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31232]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [93696]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151040]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [106496]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [1008640]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [226304]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll [133120]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [324608]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [371200]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [95744]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [2093056]
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [196096]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [167424]
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\WINDOWS\System32\NetSetupSvc.dll [186368]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [106496]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [679936]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [497152]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [72192]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [452608]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [311808]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\system32\wuaueng.dll [2239488]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [1168896]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [593920]
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [63488]
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1149440]
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1019392]
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll [343040]
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [717312]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [27136]
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776]
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [918016]
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [988672]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [359936]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [237568]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\system32\themeservice.dll [58368]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [200192]

---\\ Liste des exceptions du parefeu (FirewallRules) (O87) (5) - 1s
O87 - FAEL: "{F7CF4EAC-3B1B-4347-9164-2A77B856A05D}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\EroBisis\onuaci.exe (.not file.)
O87 - FAEL: "{EBD1FA8D-E7B2-4A8C-87E2-DAACA2BC5609}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\EroBisis\onuaci.exe (.not file.)
O87 - FAEL: "{B2C48F8F-A1F7-4896-8AFD-569BA003E82C}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\EroBisis\onuaci.exe (.not file.)
O87 - FAEL: "{006EE42E-1F62-41D9-B5B9-4F4BE2D7023E}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\EroBisis\onuaci.exe (.not file.)
O87 - FAEL: "{27B25F47-9BC5-4D2E-AE81-01395DD8C1F8}" [In-None-P17-TRUE] .(.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse

---\\ Recherche de clés de registre Tracing (O100) (6) - 1s
HKLM\SOFTWARE\Microsoft\Tracing\StormAlerts_RASAPI32 =>PUP.Optional.StormAlert
HKLM\SOFTWARE\Microsoft\Tracing\StormAlerts_RASMANCS =>PUP.Optional.StormAlert
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SpaceSondPro_Service_RASAPI32 =>PUP.Optional.SpaceSoundPro
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SpaceSondPro_Service_RASMANCS =>PUP.Optional.SpaceSoundPro
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSurferAutoUpdateClient_RASAPI32 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSurferAutoUpdateClient_RASMANCS =>PUP.Optional.WordSurfer

---\\ Scan Additionnel (O88) (330) - 0s
C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe =>PUP.Optional.CrossRider
C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\3\Plugin.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972\knsa148D.tmpfs =>PUP.Optional.CrossRider
C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972\knsq1539.tmpfs =>PUP.Optional.CrossRider
C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972\jnsy35C7.tmp =>PUP.Optional.CrossRider
C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972\hnsp5334.tmp =>PUP.Optional.CrossRider
C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-1-6.exe =>PUP.Optional.CrossRider
C:\ProgramData\TomorrowGames\TomorrowGames.exe =>PUP.Optional.TomorrowGames
C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe =>PUP.Optional.SearchDonkey
C:\Program Files\Common Files\ShopperPro\spbiu.exe =>PUP.Optional.ShopperPro
C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-64.exe =>PUP.Optional.CrossRider
C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\10\Plugin.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\WordSurfer_1.10.0.19\Service\wsasvc.exe =>PUP.Optional.WordSurfer
C:\Program Files\shopperz04082015\Qeeoozeou.exe =>PUP.Optional.Shopperz
C:\Program Files\shopperz04082015\Dmxkbb.exe =>PUP.Optional.Shopperz
C:\Program Files\shopperz04082015\Sfval.exe =>PUP.Optional.Shopperz
C:\Program Files\shopperz04082015\csrcc.exe =>PUP.Optional.Shopperz
C:\Program Files\shopperz04082015\Peakoar.EXE =>PUP.Optional.Shopperz
C:\Program Files\shopperz04082015\KomeUfuwe.exe =>PUP.Optional.Shopperz
C:\Program Files (x86)\MiuiTab\ProtectService.exe =>PUP.Optional.MiuiTab
C:\Program Files (x86)\MiuiTab\CmdShell.exe =>PUP.Optional.MiuiTab
C:\Program Files (x86)\MiuiTab\HPNotify.exe =>PUP.Optional.MiuiTab
C:\Program Files\shopperz04082015\Sfval64.exe =>PUP.Optional.Shopperz
C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe =>PUP.Optional.CrossRider
C:\Users\Audrey\AppData\Local\gmsd_fr_005010054\upgmsd_fr_005010054.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\gmsd_fr_005010054\gmsd_fr_005010054.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\YTDownloader\BrowserHelper.exe =>PUP.Optional.YTDownloader
C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-10.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-14.exe =>PUP.Optional.CrossRider
C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugins\5\Plugin.exe =>PUP.Optional.CrossRider
C:\Users\Audrey\AppData\Local\Google\Chrome\User Data\Default\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh
C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
C:\Program Files (x86)\SAveuLots\tznbxFw9pJkyjR.x64.dll =>PUP.Optional.Multiplug
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F79A5D96-7FB0-43B8-8077-9F43309175E8} =>PUP.Optional.Multiplug
C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
C:\Program Files (x86)\YTDownloader\YTDownloader.exe =>PUP.Optional.YTDownloader
C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2263\jsdrv.exe =>PUP.Optional.ShopperPro
C:\Users\Audrey\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
C:\WINDOWS\system32\acengine64.dll =>Hijacker.Winsock
C:\WINDOWS\system32\Peakoar64.dll =>Hijacker.Winsock
HKLM\SYSTEM\CurrentControlSet\Services\a34dfee7-ea86-4e1d-88fb-46171610240f =>PUP.Optional.Shopperz
HKLM\SYSTEM\CurrentControlSet\Services\BrsHelper =>PUP.Optional.YTDownloader
C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe =>PUP.Optional.YTDownloader
HKLM\SYSTEM\CurrentControlSet\Services\comyninu =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\csrcc =>PUP.Optional.Shopperz
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\gogomuky =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\hyverumu =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\IHProtect Service =>PUP.Optional.AgentODR
C:\Program Files (x86)\MiuiTab\ProtectService.exe =>PUP.Optional.AgentODR
HKLM\SYSTEM\CurrentControlSet\Services\mubupery =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\MyrwewNebg =>PUP.Optional.Shopperz
HKLM\SYSTEM\CurrentControlSet\Services\Service Mgr GreatFind =>PUP.Optional.GreatFind
C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe =>PUP.Optional.GreatFind
HKLM\SYSTEM\CurrentControlSet\Services\shopperz04082015 Updater =>PUP.Optional.Shopperz
HKLM\SYSTEM\CurrentControlSet\Services\SPBIUpd =>PUP.Optional.ShopperPro
HKLM\SYSTEM\CurrentControlSet\Services\TomorrowGames =>PUP.Optional.TomorrowGames
HKLM\SYSTEM\CurrentControlSet\Services\Update Mgr GreatFind =>PUP.Optional.GreatFind
C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe =>PUP.Optional.GreatFind
HKLM\SYSTEM\CurrentControlSet\Services\wsasvc_1.10.0.19 =>PUP.Optional.WordSurfer
C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-1-7.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-11.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-13.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-3.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-5.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-6.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\SavePass 1.1\2baf08be-a43a-44ab-950f-a58cdf6142a1-7.exe =>PUP.Optional.CrossRider
C:\Users\Audrey\AppData\Local\20806\Updater.exe =>PUP.Optional.SoftwareUpdater
C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect
C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe =>PUP.Optional.CrossBrowse
C:\Program Files\shopperz04082015\Qhgvel.bat =>PUP.Optional.Shopperz
C:\Users\Audrey\AppData\Roaming\LFkmE2Q4hGKI.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\ShopperPro\ShopperPro.exe =>PUP.Optional.ShopperPro
C:\Program Files (x86)\ShopperPro\Updater.exe =>PUP.Optional.ShopperPro
C:\Program Files (x86)\WordSurfer_1.10.0.19\Update\WordSurferAutoUpdateClient.exe =>PUP.Optional.WordSurfer
C:\Program Files (x86)\YTDownloader\Updater.exe =>PUP.Optional.YTDownloader
C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-1-6.job =>PUP.Optional.CrossRider
C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-1-7.job =>PUP.Optional.CrossRider
C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-10_user.job =>PUP.Optional.CrossRider
C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-11.job =>PUP.Optional.CrossRider
C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-13.job =>PUP.Optional.CrossRider
C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-14.job =>PUP.Optional.CrossRider
C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-3.job =>PUP.Optional.CrossRider
C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-5.job =>PUP.Optional.CrossRider
C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-5_user.job =>PUP.Optional.CrossRider
C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-6.job =>PUP.Optional.CrossRider
C:\WINDOWS\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-7.job =>PUP.Optional.CrossRider
C:\WINDOWS\Tasks\AmiUpdXp.job =>PUP.Optional.SoftwareUpdater
C:\WINDOWS\Tasks\APSnotifierPP1.job =>PUP.Optional.AnyProtect
C:\WINDOWS\Tasks\APSnotifierPP2.job =>PUP.Optional.AnyProtect
C:\WINDOWS\Tasks\APSnotifierPP3.job =>PUP.Optional.AnyProtect
C:\WINDOWS\Tasks\Bidaily Synchronize Task[973b].job =>PUP.Optional.BidailySync
C:\WINDOWS\Tasks\Crossbrowse.job =>PUP.Optional.CrossBrowse
C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job =>PUP.Optional.GlobalUpdate
C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job =>PUP.Optional.GlobalUpdate
C:\WINDOWS\Tasks\LFkmE2Q4hGKI.job =>PUP.Optional.CrossRider
C:\WINDOWS\Tasks\PC-Mechanic Maintenance.job =>PUP.Optional.Uniblue
C:\WINDOWS\Tasks\PC-Mechanic Startup.job =>PUP.Optional.Uniblue
C:\WINDOWS\Tasks\PC-Mechanic Subscription.job =>PUP.Optional.Uniblue
C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-1-6 =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-1-7 =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-10_user =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-11 =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-13 =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-14 =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-3 =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-5 =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-5_user =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-6 =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\2baf08be-a43a-44ab-950f-a58cdf6142a1-7 =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\AmiUpdXp =>PUP.Optional.SoftwareUpdater
C:\WINDOWS\System32\Tasks\APSnotifierPP1 =>PUP.Optional.AnyProtect
C:\WINDOWS\System32\Tasks\APSnotifierPP2 =>PUP.Optional.AnyProtect
C:\WINDOWS\System32\Tasks\APSnotifierPP3 =>PUP.Optional.AnyProtect
C:\WINDOWS\System32\Tasks\Crossbrowse =>PUP.Optional.CrossBrowse
C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineCore =>PUP.Optional.GlobalUpdate
C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineUA =>PUP.Optional.GlobalUpdate
C:\WINDOWS\System32\Tasks\Glopbbiq =>PUP.Optional.Shopperz
C:\WINDOWS\System32\Tasks\LFkmE2Q4hGKI =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\PC-Mechanic Maintenance =>PUP.Optional.Uniblue
C:\WINDOWS\System32\Tasks\PC-Mechanic Startup =>PUP.Optional.Uniblue
C:\WINDOWS\System32\Tasks\PC-Mechanic Subscription =>PUP.Optional.Uniblue
C:\WINDOWS\System32\Tasks\ShopperPro =>PUP.Optional.ShopperPro
C:\WINDOWS\System32\Tasks\ShopperProJSUpd =>PUP.Optional.ShopperPro
C:\WINDOWS\System32\Tasks\SmartWeb Upgrade Trigger Task =>PUP.Optional.SmartWebSearch
C:\WINDOWS\System32\Tasks\SPDriver =>PUP.Optional.ShopperPro
C:\WINDOWS\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Core =>PUP.Optional.WordSurfer
C:\WINDOWS\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Pending Update =>PUP.Optional.WordSurfer
C:\WINDOWS\System32\Tasks\YTDownloader =>PUP.Optional.YTDownloader
C:\WINDOWS\System32\Tasks\YTDownloaderUpd =>PUP.Optional.YTDownloader
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0a0e29f6-0ab0-44e1-a98e-bd050ee692ec}_is1 =>PUP.Optional.Shopperz
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AnyProtect =>PUP.Optional.AnyProtect
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\FastSearch =>PUP.Optional.FastSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_fr_005010054_is1 =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\mystartsearch uninstall =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ShopperPro =>PUP.Optional.ShopperPro
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SmartWeb =>PUP.Optional.SmartWebSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\TomorrowGames =>PUP.Optional.TomorrowGames
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\YTDownloader =>PUP.Optional.YTDownloader
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{35E13884-BAC3-5F4A-799B-05F882E0BD9F} =>PUP.Optional.Multiplug
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507} =>PUP.Optional.Multiplug
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{75F9BF4A-AF67-A478-A37B-31D73186D3F3} =>PUP.Optional.Multiplug
HKLM\SOFTWARE\Wow6432Node\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Boxore =>PUP.Optional.Boxore
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\coupoon =>PUP.Optional.Multiplug
HKLM\SOFTWARE\Wow6432Node\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\downchecker =>PUP.Optional.DownChecker
HKLM\SOFTWARE\Wow6432Node\FastSearch =>PUP.Optional.FastSearch
HKLM\SOFTWARE\Wow6432Node\GAMESDESKTOP =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\GreatFind =>PUP.Optional.GreatFind
HKLM\SOFTWARE\Wow6432Node\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\SavePass 1.1 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SavePass 1.1-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SavePass 1.1-nv-edge =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SavePass 1.1-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\searchult =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\ShopperPro =>PUP.Optional.ShopperPro
HKLM\SOFTWARE\Wow6432Node\shopperz04082015 =>PUP.Optional.Shopperz
HKLM\SOFTWARE\Wow6432Node\SpaceSondPro =>PUP.Optional.SpaceSoundPro
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.Fuyu
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\Uniblue =>PUP.Optional.Uniblue
HKLM\SOFTWARE\Wow6432Node\WajIntEnhance =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\YTDownloader =>PUP.Optional.YTDownloader
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AskPartnerNetwork =>Toolbar.Ask
HKCU\SOFTWARE\Boxore =>PUP.Optional.Boxore
HKCU\SOFTWARE\Cinem Plus 2.4cV31.07-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\DailyPcClean =>PUP.Optional.DailyPCClean
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\HomeTab =>PUP.Optional.CertifiedToolbar
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\SavePass 1.1 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv-edge =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SearchProtectWS =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\StormAlertsApp =>PUP.Optional.StormAlert
HKCU\SOFTWARE\TNT2 =>PUP.Optional.TidyNetwork
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\YTDownloader =>PUP.Optional.YTDownloader
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\SmartWeb =>PUP.Optional.SmartWebSearch =>PUP.Optional.SmartWebSearch
HKCU\SOFTWARE\AppDataLow\Software\_CrossriderRegNamePlaceHolder_ =>PUP.Optional.CrossRider =>PUP.Optional.CrossRider
C:\Program Files (x86)\71b21129-fb08-4b5a-9dae-6313e01e87e4 =>PUP.Optional.CrossRider
C:\Program Files (x86)\AnyProtectEx =>PUP.Optional.AnyProtect
C:\Program Files (x86)\B515B377-1439022008-8449-8293-60EB691F8972 =>PUP.Optional.CrossRider
C:\Program Files (x86)\Boxore =>PUP.Optional.Boxore
C:\Program Files (x86)\Coupoon =>PUP.Optional.Multiplug
C:\Program Files (x86)\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Program Files (x86)\FastSearch =>PUP.Optional.FastSearch
C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files (x86)\gmsd_fr_005010054 =>PUP.Optional.CrossRider
C:\Program Files (x86)\KMSPico 10.0.6 =>PUA.KMSpico
C:\Program Files (x86)\MiuiTab =>PUP.Optional.MiuiTab
C:\Program Files (x86)\Pine Tree =>PUP.Optional.PineTree
C:\Program Files (x86)\predm =>PUP.Optional.Downware
C:\Program Files (x86)\PriicceLess =>PUP.Optional.Multiplug
C:\Program Files (x86)\SaavELots =>PUP.Optional.Multiplug
C:\Program Files (x86)\SauVeLotS =>PUP.Optional.Multiplug
C:\Program Files (x86)\SavePass 1.1 =>PUP.Optional.CrossRider
C:\Program Files (x86)\SAveuLots =>PUP.Optional.Multiplug
C:\Program Files (x86)\ShopperPro =>PUP.Optional.ShopperPro
C:\Program Files (x86)\Software =>PUP.Optional.Boxore
C:\Program Files (x86)\Uniblue =>PUP.Optional.Uniblue
C:\Program Files (x86)\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
C:\Program Files (x86)\youtubeadblocker =>PUP.Optional.YouTubeAdBlock
C:\Program Files (x86)\YTDownloader =>PUP.Optional.YTDownloader
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse =>PUP.Optional.CrossBrowse
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>PUP.Optional.GamesDesktop
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue =>PUP.Optional.Uniblue
C:\ProgramData\abc =>PUP.Optional.BundleInstaller
C:\ProgramData\IHProtectUpDate =>PUP.Optional.AgentODR
C:\ProgramData\ShopperPro =>PUP.Optional.ShopperPro
C:\ProgramData\TomorrowGames =>PUP.Optional.TomorrowGames
C:\Users\Audrey\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
C:\Users\Audrey\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
C:\Users\Audrey\AppData\Roaming\Uniblue =>PUP.Optional.Uniblue
C:\Users\Audrey\AppData\Local\Boxore =>PUP.Optional.Boxore
C:\Users\Audrey\AppData\Local\BrowserHelper =>PUP.Optional.BrowserHelper
C:\Users\Audrey\AppData\Local\CrashRpt =>.Legitimate.CrashReports
C:\Users\Audrey\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Users\Audrey\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Users\Audrey\AppData\Local\gmsd_fr_005010054 =>PUP.Optional.CrossRider
C:\Users\Audrey\AppData\Local\Installer =>PUP.Optional.InstallPedia
C:\Users\Audrey\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
C:\Users\Audrey\AppData\Local\Software =>PUP.Optional.Boxore
C:\Users\Audrey\AppData\Local\StormAlerts =>PUP.Optional.StormAlert
C:\Users\Audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.Optional.AnyProtect
C:\Users\Audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader =>PUP.Optional.YTDownloader
C:\WINDOWS\Prefetch\ACENGINE.EXE-B18BC157.pf =>PUP.Optional.Abengine
C:\WINDOWS\Prefetch\ANYPROTECT.EXE-1996592C.pf =>PUP.Optional.AnyProtect
C:\WINDOWS\Prefetch\BOXORE.EXE-872755D1.pf =>PUP.Optional.Boxore
C:\WINDOWS\Prefetch\CROSSBROWSE.EXE-CEDEC251.pf =>PUP.Optional.CrossBrowse
C:\WINDOWS\Prefetch\DCYTDOWNLOADER.EXE-BA9229F7.pf =>PUP.Optional.YTDownloader
C:\WINDOWS\Prefetch\FASTSEARCH_4435.EXE-58CFCB50.pf =>PUP.Optional.FastSearch
C:\WINDOWS\Prefetch\GLOBALUPDATE.EXE-35F6B904.pf =>PUP.Optional.GlobalUpdate
C:\WINDOWS\Prefetch\GLOBALUPDATE.EXE-67BF3740.pf =>PUP.Optional.GlobalUpdate
C:\WINDOWS\Prefetch\GLOBALUPDATE.EXE-73804BB3.pf =>PUP.Optional.GlobalUpdate
C:\WINDOWS\Prefetch\GLOBALUPDATECRASHHANDLER.EXE-68CB7B8C.pf =>PUP.Optional.GlobalUpdate
C:\WINDOWS\Prefetch\GMSD_FR_005010054.EXE-8B8B92E9.pf =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\INS_IWEBAR.EXE-C5577FC6.pf =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\INS_SHOPPERPRO.EXE-035D9FA6.pf =>PUP.Optional.ShopperPro
C:\WINDOWS\Prefetch\KMSPICO 10.0.8.EXE-0CAB0926.pf =>PUA.KMSpico
C:\WINDOWS\Prefetch\KMSPICO 10.0.8.EXE-5B0C7A38.pf =>PUA.KMSpico
C:\WINDOWS\Prefetch\KMSPICO.EXE-D7607F14.pf =>PUA.KMSpico
C:\WINDOWS\Prefetch\KMSPICO10.0.9__8173_IL94690.E-12CC569F.pf =>PUA.KMSpico
C:\WINDOWS\Prefetch\PC-MECHANIC.EXE-C4EBFA11.pf =>PUP.Optional.Uniblue
C:\WINDOWS\Prefetch\PEAKOAR.EXE-F96B68E0.pf =>PUP.Optional.Shopperz
C:\WINDOWS\Prefetch\PREDM.EXE-B6DC1AC9.pf =>PUP.Optional.Downware
C:\WINDOWS\Prefetch\PREDM.TMP-65C83E35.pf =>PUP.Optional.Downware
C:\WINDOWS\Prefetch\SHOPPERPRO.EXE-D629434D.pf =>PUP.Optional.ShopperPro
C:\WINDOWS\Prefetch\SMARTWEBAPP.EXE-4AA18E54.pf =>PUP.Optional.SmartWebSearch
C:\WINDOWS\Prefetch\SMARTWEBHELPER.EXE-07DE3BCF.pf =>PUP.Optional.SmartWebSearch
C:\WINDOWS\Prefetch\SPACESONDPRO_SERVICE.EXE-45F6D934.pf =>PUP.Optional.SpaceSoundPro
C:\WINDOWS\Prefetch\STORMALERTS.EXE-CFC1877D.pf =>PUP.Optional.StormAlert
C:\WINDOWS\Prefetch\STORMALERTS2_1.EXE-EDDD5F9B.pf =>PUP.Optional.StormAlert
C:\WINDOWS\Prefetch\STORMALERTSAPP.EXE-2F2178BA.pf =>PUP.Optional.StormAlert
C:\WINDOWS\Prefetch\STORMALERTSAPPUNINSTALL.EXE-F128A36C.pf =>PUP.Optional.StormAlert
C:\WINDOWS\Prefetch\STORMALERTSSETUP.EXE-6348716E.pf =>PUP.Optional.StormAlert
C:\WINDOWS\Prefetch\TOMORROWGAMES.EXE-D7530645.pf =>PUP.Optional.TomorrowGames
C:\WINDOWS\Prefetch\UPGMSD_FR_005010054.EXE-58CAF406.pf =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\WORDSURFERAUTOUPDATECLIENT.EX-4E78B08A.pf =>PUP.Optional.WordSurfer
C:\WINDOWS\Prefetch\WPM_V20.0.0.2294.EXE-31429B20.pf =>PUP.Optional.WpManager
C:\WINDOWS\Prefetch\WPM_V20.0.0.2294.EXE-D482EB63.pf =>PUP.Optional.WpManager
C:\WINDOWS\System32\drivers\bsdriver.sys =>PUP.Optional.Shopperz
C:\WINDOWS\System32\drivers\cherimoya.sys =>PUP.Optional.Shopper
C:\WINDOWS\System32\drivers\wsafd_1_10_0_19.sys =>PUP.Optional.WordSurfer
C:\WINDOWS\System32\drivers\{3649d071-7ccc-406e-91c7-7e3a1383fa6f}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Users\Audrey\Desktop\KMSPico 10.0.8.exe =>PUA.KMSpico
C:\Users\Audrey\AppData\Roaming\RPEng\C4F1852556A549EB85490FC78BB86F65\pcmechanicpmROW_p1v4.exe =>PUP.Optional.Uniblue
C:\Users\Audrey\AppData\Local\SmartWeb\__u.exe =>PUP.Optional.SmartWebSearch
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\AnyProtect[2].exe =>PUP.Optional.AnyProtect
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\Bundle_FlowsurfCB[1].exe =>PUP.Optional.FlowSurf
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\Setup[3].exe =>PUP.Optional.CMILimited
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\StormAlertsSetup[1].exe =>PUP.Optional.StormAlert
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\JKB3FNXC\VOPackage[1].exe =>PUP.Optional.Downware
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\AnyProtectSetup[1].exe =>PUP.Optional.AnyProtect
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\Bundle_YTDownloader[1].exe =>PUP.Optional.YTDownloader
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\cmi_mystartsearch[1].exe =>PUP.Optional.StartSearch
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\pcmechanicpm-standalone-setup[1].exe =>PUP.Optional.Uniblue
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\B5N41H28\wordsurfer-setup-1.10.0.19[1].exe =>PUP.Optional.WordSurfer
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\fastsearch_4435[1].exe =>PUP.Optional.FastSearch
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\Reimage[1].exe =>PUP.Optional.ReImageRepair
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\setupfa_4435[1].exe =>PUP.Optional.FastSearch
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\7UIE2XDG\sprz[1].exe =>PUP.Optional.Shopperz
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\SmartWebInstaller[1].exe =>PUP.Optional.SmartWebSearch
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\SpaceSondPro[2].exe =>PUP.Optional.SpaceSoundPro
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\StormAlerts2_1[1].exe =>PUP.Optional.StormAlert
C:\Users\Audrey\AppData\Local\Microsoft\Windows\INetCache\IE\6T8LFHSK\VuuPC_VO2_8907[2].exe =>PUP.Optional.VuuPC
C:\Users\Audrey\AppData\Local\Installer\Install_30889\DCYTDownloader.exe =>PUP.Optional.YTDownloader
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdatem =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\Peakoar =>PUP.Optional.Shopperz
HKLM\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect =>PUP.Optional.Fuyu
C:\ProgramData\DWinManProD\ProtectWindowsManager.exe =>PUP.Optional.Fuyu
HKLM64\SOFTWARE\Microsoft\Tracing\StormAlerts_RASAPI32 =>PUP.Optional.StormAlert
HKLM64\SOFTWARE\Microsoft\Tracing\StormAlerts_RASMANCS =>PUP.Optional.StormAlert
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SpaceSondPro_Service_RASAPI32 =>PUP.Optional.SpaceSoundPro
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SpaceSondPro_Service_RASMANCS =>PUP.Optional.SpaceSoundPro
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSurferAutoUpdateClient_RASAPI32 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSurferAutoUpdateClient_RASMANCS =>PUP.Optional.WordSurfer

---\\ Récapitulatif des éléments trouvées sur votre station (59) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/blog =>PUP.Optional.TomorrowGames
http://www.nicolascoolman.fr/pup-searchdonkey / =>PUP.Optional.SearchDonkey
http://www.nicolascoolman.fr/pup-shopperpro/ =>PUP.Optional.ShopperPro
http://www.nicolascoolman.fr/blog =>PUP.Optional.WordSurfer
http://www.nicolascoolman.fr/blog =>PUP.Optional.Shopperz
http://www.nicolascoolman.fr/blog =>PUP.Optional.MiuiTab
http://www.nicolascoolman.fr/pup-ytdownloader/ =>PUP.Optional.YTDownloader
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/pup-optional-startsearch/ =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/pup-mutiplug/ =>PUP.Optional.Multiplug
http://www.nicolascoolman.fr/blog =>PUP.Optional.SpaceSoundPro
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowse
http://www.nicolascoolman.fr/pup-smartwebsearch/ =>PUP.Optional.SmartWebSearch
http://www.nicolascoolman.fr/pup-anyprotect/ =>PUP.Optional.AnyProtect
http://www.nicolascoolman.fr/blog =>PUP.Optional.Uniblue
http://www.nicolascoolman.fr/blog =>PUP.Optional.AgentODR
http://www.nicolascoolman.fr/blog =>PUP.Optional.GreatFind
http://www.nicolascoolman.fr/pup-software-updater/ =>PUP.Optional.SoftwareUpdater
http://www.nicolascoolman.fr/blog =>PUP.Optional.BidailySync
http://www.nicolascoolman.fr/blog =>PUP.Optional.FastSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.GamesDesktop
http://www.nicolascoolman.fr/toolbar-ask/ =>Toolbar.Ask
http://www.nicolascoolman.fr/adware-boxore/ =>PUP.Optional.Boxore
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/blog =>PUP.Optional.DownChecker
http://www.nicolascoolman.fr/adware-imbooster/ =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/blog =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/pup-searchprotect/ =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/trojan-fuyu/ =>PUP.Optional.Fuyu
http://www.nicolascoolman.fr/spyware-agenceexclusive/ =>PUP.Optional.AgenceExclusive
http://www.nicolascoolman.fr/pup-wajam/ =>PUP.Optional.Wajam
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowser
http://www.nicolascoolman.fr/pup-optional-dailypcclean/ =>PUP.Optional.DailyPCClean
http://www.nicolascoolman.fr/pup-certifiedtoolbar/ =>PUP.Optional.CertifiedToolbar
http://www.nicolascoolman.fr/pup-linkeysearch/ =>PUP.Optional.LinkeySearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.SimplyTech
http://www.nicolascoolman.fr/blog =>PUP.Optional.StormAlert
http://www.nicolascoolman.fr/adware-tidynetwork/ =>PUP.Optional.TidyNetwork
http://www.nicolascoolman.fr/blog =>PUP.Optional.MaxComputerCleaner
http://www.nicolascoolman.fr/pup-kmspico/ =>PUA.KMSpico
http://www.nicolascoolman.fr/pup-pinetree/ =>PUP.Optional.PineTree
http://www.nicolascoolman.fr/adware-downware/ =>PUP.Optional.Downware
http://www.nicolascoolman.fr/blog =>PUP.Optional.YouTubeAdBlock
http://www.nicolascoolman.fr/blog =>PUP.Optional.BundleInstaller
http://www.nicolascoolman.fr/blog =>PUP.Optional.BrowserHelper
http://www.nicolascoolman.fr/blog =>.Legitimate.CrashReports
http://www.nicolascoolman.fr/adware-installpedia/ =>PUP.Optional.InstallPedia
http://www.nicolascoolman.fr/blog =>PUP.Optional.Abengine
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/42115162-adware-shopper/ =>PUP.Optional.Shopper
http://www.nicolascoolman.fr/pup-linkidoo/ =>PUP.Optional.LinkiDoo
http://www.nicolascoolman.fr/blog =>PUP.Optional.FlowSurf
http://www.nicolascoolman.fr/blog =>PUP.Optional.CMILimited
http://www.nicolascoolman.fr/rogue-reimagerepair/ =>PUP.Optional.ReImageRepair
http://www.nicolascoolman.fr/pup-vuupc/ =>PUP.Optional.VuuPC

~ End of the scan, 24912 items in 226 seconds (1415)(0)()

Publicité


Signaler le contenu de ce document

Publicité