cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.6.30.77 by Nicolas Coolman (2015\06\30)
~ Run by grand_000 (Administrator) (2015/08/16 17:00:21)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Scanner
~ Report : C:\Users\grand_000\Desktop\ZHPDiag.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
~ Windows 8.1, 64-bit (Build 9600)

---\\ Navigateurs Internet (3) - 1s
GCIE: Google Chrome v44.0.2403.155
MFIE: Mozilla v24.6.0
MSIE: Internet Explorer v11.0.9600.17937

---\\ Informations sur les produits Windows (9) - 15s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : W4243
Windows License : OK
~ Windows Remaining Initializations Number : 996
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 55 Stepping 3, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 4071200
~ System Restore: Activé (Enable)
~ System drive C: has 754 GB free of 890 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PCC
~ User Name: grand_000
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 754 GB free of 890 GB (System)
~ Drive D: has 49 GB free of 61 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (23) - 4s
[MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2501368]
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [54784]
[MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [145920]
[MD5.C555B5C8142844DED9E3BD94E6313000] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2427904]
[MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [572416]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [19456]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [134144]
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [76800]
[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [108544]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [142848]
[MD5.6FBDF2B1B025A8E6E069234362FFFFB7] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\Windows\System32\drivers\MRxSmb.sys [401408]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [282624]
[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [2025792]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\Windows\System32\drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [107520]
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [310080]

---\\ Processus lancés (31) - 6s
[MD5.C182C1477F8D730D84CC74A213F72D11] - (.All rights reserved - GFNEXSrv.) -- C:\Program Files (x86)\PHotkey\PGFNEXSrv.exe [136192] [PID.1220]
[MD5.4DD9421E6E67B8878DF4DA91FDBD0209] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2777840] [PID.1780]
[MD5.F54FA654E46EDA139DFFE872C6BE3896] - (.Realtek All Rights Reserved - Realtek Bluetooth BTDevManager Service Appl.) -- C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe [61440] [PID.1848]
[MD5.9FF6436D65CD8C798691373E28FBFB3B] - (.CyberLink - CyberLink Spark Media Server Monitor Servic.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [74712] [PID.1876]
[MD5.06B5C625CB915E9A7A1F08A43E332FA1] - (.CyberLink - CyberLink Spark Media Server Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [316376] [PID.1924]
[MD5.39AAA519F8563C068664E566435267E3] - (...) -- C:\ProgramData\QongaMiwe\voeiaqi.exe [124864] [PID.2024]
[MD5.768DD5CB66952BC4A3BD474757AEE34F] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696] [PID.1424]
[MD5.9DA2FFCC70C63722849CA99C532B6906] - (...) -- C:\Program Files (x86)\2E3E2BD0-1439490821-81E3-3ACD-20256445D541\knseEA6D.tmp [750592] [PID.2196] =>Adware.CrossRider
[MD5.ED890A4F39CE88EDFF0971C556718D52] - (...) -- C:\ProgramData\QongaMiwe\voeiwqi.exe [124864] [PID.2228]
[MD5.397C5355D5CBF00C547A4D9B111F5B4B] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [182000] [PID.2408]
[MD5.CE82BB0800A36F10C19349772438A3B6] - (.All rights reserved. - PHotkey.) -- C:\Program Files (x86)\PHotkey\PHotkey.exe [2215424] [PID.2736] =>Adware.Graftor
[MD5.D9B4595DE66295470A7077C3261F4922] - (...) -- C:\ProgramData\QongaMiwe\voei6qi.exe [118272] [PID.2476]
[MD5.FAA41A278E698C7D0D2D4312AC18CE21] - (.TODO: - TODO: .) -- C:\Program Files (x86)\PHotkey\HCSynApi.exe [345608] [PID.2376]
[MD5.525587DB6C99CE8358D2D7C7EF9B7C53] - (.All rights reserved. - OEM Osd.) -- C:\Program Files (x86)\PHotkey\POsd.exe [3471872] [PID.2496] =>Adware.Graftor
[MD5.CFB567E7A4373E3B6EC7FB808F5954CD] - (.All rights reserved. - Generic Power Manager.) -- C:\Program Files (x86)\PHotkey\GPMTray.exe [8856576] [PID.2624] =>Adware.Graftor
[MD5.9F9DC24937F62AC0674FF984F6D6A485] - (.Realtek Semiconductor Corporation - Realtek Bluetooth BTServer Application.) -- C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe [280576] [PID.992]
[MD5.E0486797BF92F13D27C549091F0BB38E] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [391152] [PID.4948]
[MD5.2B02AD1A45CA16D349417F8667ED1582] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\system32\igfxsrvc.exe [845296] [PID.4976]
[MD5.7DF0BEB3177EEFDC8FFF748DDFB8DF25] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [771056] [PID.5004]
[MD5.E20756442069E6D5E2E235F3BF731816] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [770032] [PID.5040]
[MD5.7068A2E090D56297A476C289CD2ABA41] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13653720] [PID.5068]
[MD5.668469AF43FD603610A56D91DC201F30] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1353944] [PID.5104]
[MD5.4E9AF25BA5E8219310E384AEA5B0EED8] - (.CyberLink - CyberLink MediaLibrary Service.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576] [PID.4568]
[MD5.0966408A384E8B0FE57B0008E18D561C] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192] [PID.4872]
[MD5.02E1E65A7E36D6A3A8A30451612DC0DF] - (.CyberLink Corp. - CyberLink YouCam Service.) -- C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [267224] [PID.4940]
[MD5.F955500BF253F388BF90431D726FC56C] - (.Copyright 2013 - .) -- C:\Users\grand_000\AppData\Local\Temp\nsq6C04.tmp [226952] [PID.3540]
[MD5.579FD11E112542A0D5D43838CCA08309] - (.DTools LIMITED - DTools.) -- C:\ProgramData\vWinManProv\ProtectWindowsManager.exe [708264] [PID.2240]
[MD5.36DA47145D0A6C56A5AAE8C4973E1093] - (.MovieDea - MovieDea.) -- C:\Program Files (x86)\MovieDea\MovieDea.exe [3184640] [PID.1320] =>PUP.MovieDea
[MD5.9777EAA3BECD29A7FE3235C9EFC960E3] - (...) -- C:\Program Files (x86)\2E3E2BD0-1439736840-81E3-3ACD-20256445D541\vnsx2C8F.tmp [1010907] [PID.3444] =>Adware.CrossRider
[MD5.9D602F18A06CDE51A3F7A373E254DE3A] - (...) -- C:\Program Files (x86)\2E3E2BD0-1439736840-81E3-3ACD-20256445D541\knsv4146.tmpfs [752128] [PID.5196] =>Adware.CrossRider
[MD5.BED1902AF249BF3BC269420021A03D0B] - (.CMI Limited - Setup.) -- C:\Users\grand_000\AppData\Local\Temp\nsfF7B6.tmp [613255] [PID.5996] =>PUP.CMILimited

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) (9) - 1s
G2 - GCE: Extension [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [bepbmhgboaologfdajaanbcjmnhjmhfn] Google Voice Search Hotword (Beta)
G2 - GCE: Extension [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [fijhlnmmmgflacagjecncpmpnhjieggk] GoHD =>Adware.CrossRider
G2 - GCE: Extension [User Data\Default] [flliilndjeohchalpbbcdekjklbdgfkk] Avira Browser Safety
G2 - GCE: Extension [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (19) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/ =>PUP.IsStart
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/ =>PUP.IsStart
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer, Proxy Management (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\System32\Userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Applications lancées au démarrage du sytème (O4) (12) - 1s
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] . (.CyberLink - CyberLink MediaLibrary Service.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
O4 - HKLM\..\Run: [CLVirtualDrive] . (.CyberLink Corp. - CyberLink Virtual Drive.) -- C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
O4 - HKLM\..\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
O4 - HKLM\..\Run: [YouCam Service] . (.CyberLink Corp. - CyberLink YouCam Service.) -- C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
O4 - HKLM\..\Run: [MovieDea] . (.MovieDea - MovieDea.) -- C:\Program Files (x86)\MovieDea\MovieDea.exe =>PUP.MovieDea
O4 - HKLM\..\RunOnce: [Update] C:\Users\grand_000\AppData\Roaming\ASPackage\ASPackage.exe (.not file.) =>PUP.ASPackage
O4 - HKLM\..\Wow6432Node\Run: [CLMLServer_For_P2G8] . (.CyberLink - CyberLink MediaLibrary Service.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
O4 - HKLM\..\Wow6432Node\Run: [CLVirtualDrive] . (.CyberLink Corp. - CyberLink Virtual Drive.) -- C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
O4 - HKLM\..\Wow6432Node\Run: [YouCam Service] . (.CyberLink Corp. - CyberLink YouCam Service.) -- C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
O4 - HKLM\..\Wow6432Node\Run: [MovieDea] . (.MovieDea - MovieDea.) -- C:\Program Files (x86)\MovieDea\MovieDea.exe =>PUP.MovieDea
O4 - HKLM\..\Wow6432Node\RunOnce: [Update] C:\Users\grand_000\AppData\Roaming\ASPackage\ASPackage.exe (.not file.) =>PUP.ASPackage

---\\ Modification Domaine/Adresses DNS (O17) (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1

---\\ Liste des services NT non Microsoft et non désactivés (O23) (15) - 2s
O23 - Service: Avira Mail Protection (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner WFP Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - AntiVir WebGuard WFP Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: BTDevManager (BTDevManager) . (.Realtek All Rights Reserved - Realtek Bluetooth BTDevManager Service Appl.) - C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
O23 - Service: CyberLink PowerDVD 10 MS Monitor Service (CyberLink PowerDVD 10 MS Monitor Service) . (.CyberLink - CyberLink Spark Media Server Monitor Servic.) - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
O23 - Service: CyberLink PowerDVD 10 MS Service (CyberLink PowerDVD 10 MS Service) . (.CyberLink - CyberLink Spark Media Server Service.) - C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
O23 - Service: giskouo (giskouo) . (...) - C:\ProgramData\QongaMiwe\voeiaqi.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Repetitive Strain Injury Computer (meqexisi) . (...) - C:\Program Files (x86)\2E3E2BD0-1439736840-81E3-3ACD-20256445D541\knsv4146.tmpfs =>Adware.CrossRider
O23 - Service: PGFNEX Service (PGFNEXSrv) . (.All rights reserved - GFNEXSrv.) - C:\Program Files (x86)\PHotkey\PGFNEXSrv.exe
O23 - Service: Server Mouse (tucydypi) . (...) - C:\Program Files (x86)\2E3E2BD0-1439490821-81E3-3ACD-20256445D541\knseEA6D.tmp =>Adware.CrossRider
O23 - Service: witwachet (witwachet) . (...) - C:\ProgramData\QongaMiwe\voeiwqi.exe

---\\ Tâches planifiées en automatique (O39) (12) - 2s
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1080]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1084]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\Tasks\Tempo Runner voeidqi.job [404]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2788]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\cfr3011 [3096]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\CreateChoiceProcessTask [3548]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3820]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4056]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements [2990]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Tempo Runner voei3qi [0]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Tempo Runner voeidqi [2720]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\User_Feed_Synchronization-{B5D360D9-014C-40E5-840A-04665F71E4ED} [3932]

---\\ Logiciels installés (O42) (63) - 10s
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Windows Driver Package - Silicon Laboratories (silabenm) Ports (12/10/2012 - (.Silicon Laboratories.) [HKLM][64Bits] -- D680DEE0F68D64EC53D0C5769879D15D387054CC
O42 - Logiciel: GIMP 2.8.0 - (.The GIMP Team.) [HKLM][64Bits] -- GIMP-2_is1
O42 - Logiciel: ScanMaster-ELM 2.1.104.771 - (.WGSoft.de.) [HKLM][64Bits] -- ScanMaster-ELM_is1
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: WinRAR 5.21 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM][64Bits] -- {176E2755-0A17-42C6-88E2-192AB2131278}
O42 - Logiciel: Intel(R) Trusted Execution Engine Driver - (.Intel Corporation.) [HKLM][64Bits] -- {3685B5E8-A0A8-494B-B035-B221547A4B63}
O42 - Logiciel: CyberLink PowerRecover - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}
O42 - Logiciel: Dolby Digital Plus Advanced Audio - (.Dolby Laboratories Inc.) [HKLM][64Bits] -- {B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM][64Bits] -- {BCCACFE6-91A0-4F32-80A0-ADC0CA048C7B}
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: AnySend - (.CMI Limited.) [HKLM][64Bits] -- ASPackage =>PUP.ASPackage
O42 - Logiciel: Autocom Cars CDP+ - (...) [HKLM][64Bits] -- Autocom Cars CDP+
O42 - Logiciel: Avira Antivirus v15.0.11.579 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- Avira Antivirus
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: CyberLink PowerRecover - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}
O42 - Logiciel: CyberLink Home Cinema 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}
O42 - Logiciel: MovieDea 1.0 - (.MovieDea.) [HKLM][64Bits] -- MovieDea =>PUP.MovieDea
O42 - Logiciel: Mozilla Thunderbird 24.6.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 24.6.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: CyberLink YouCam 5 - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: S?????? f?t???af??? - (.Microsoft Corporation.) [HKLM][64Bits] -- {032CB0D7-FDBF-4CA9-901B-A4C1B01B1777}
O42 - Logiciel: Fotograf Galerisi - (.Microsoft Corporation.) [HKLM][64Bits] -- {06738361-EB60-40D7-84BC-7807ED7EF282}
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}
O42 - Logiciel: Fotogalerie - (.Microsoft Corporation.) [HKLM][64Bits] -- {0FD66C6F-4023-4C74-AF8E-9B8B2053868E}
O42 - Logiciel: CyberLink Home Cinema 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: Galeria fotografii - (.Microsoft Corporation.) [HKLM][64Bits] -- {207DA277-6A6D-4863-B535-129931D2BB21}
O42 - Logiciel: Valokuvavalikoima - (.Microsoft Corporation.) [HKLM][64Bits] -- {245C4CCD-8829-469C-9278-2BA330BEB8F4}
O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
O42 - Logiciel: Galeria de Fotografias - (.Microsoft Corporation.) [HKLM][64Bits] -- {6DFF6F1B-F876-4007-AC82-42D5DDF0E090}
O42 - Logiciel: QPST 2.7 - (.Qualcomm.) [HKLM][64Bits] -- {8035964D-75EB-4463-91DC-3F02EE9CF103}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Fotótár - (.Microsoft Corporation.) [HKLM][64Bits] -- {8D977EAA-DF3E-4054-A98D-F27AEB0248DD}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: Fotogalleri - (.Microsoft Corporation.) [HKLM][64Bits] -- {92E22997-3614-4ED9-9D53-C6C09B105BE9}
O42 - Logiciel: REALTEK Bluetooth Driver - (.REALTEK Semiconductor Corp..) [HKLM][64Bits] -- {9D3D8C60-A5EF-4123-B2B9-172095903AB}
O42 - Logiciel: REALTEK Wireless LAN Driver - (.REALTEK Semiconductor Corp..) [HKLM][64Bits] -- {9DAABC60-A5EF-41FF-B2B9-17329590CD5}
O42 - Logiciel: Avira v1.1.42.10415 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {a5e00a72-db4a-4f77-8874-d1265b8fcd7e}
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {AF312B06-5C5C-468E-89B3-BE6DE2645722}
O42 - Logiciel: Avira v1.1.42.10415 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {B4A68153-E9A2-4BC1-96C3-BEE5F56E788D}
O42 - Logiciel: Fotogalerija - (.Microsoft Corporation.) [HKLM][64Bits] -- {BE2DE42A-6696-4EE7-9E59-B9385F339DD3}
O42 - Logiciel: CyberLink LabelPrint 2.5 - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: CyberLink MediaEspresso 6.5 - (.CyberLink Corp..) [HKLM][64Bits] -- {E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink PowerDVD Copy 1.5 - (.CyberLink Corp..) [HKLM][64Bits] -- {E3D04529-6EDB-11D8-A372-0050BAE317E1}
O42 - Logiciel: PHotkey - (.Pegatron Corporation.) [HKLM][64Bits] -- {E50C224A-BBF2-428D-9DCF-DBF9DF85C40E}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Fotogalleriet - (.Microsoft Corporation.) [HKLM][64Bits] -- {F38BCC33-D42A-44EB-B62F-B3BB89B29FAF}
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {F4D99A13-F63A-4FC1-8799-CFFDB78DDFB3}
O42 - Logiciel: Galería de fotos - (.Microsoft Corporation.) [HKLM][64Bits] -- {F7314CA2-F900-46D7-9EA1-FBDD9D73F765}
O42 - Logiciel: Raccolta foto - (.Microsoft Corporation.) [HKLM][64Bits] -- {FA6BC7A5-85B3-4DC2-825C-D508E386151A}
O42 - Logiciel: adblocker - (.adblocker.) [HKLM][64Bits] -- {FE6C1F89-9D48-489D-8A4F-9D556BB6464E}
O42 - Logiciel: EOBD-Facile - (...) [HKCU][64Bits] -- EOBD-Facile
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys (76) - 11s
HKLM\SOFTWARE\Wow6432Node\121_31
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\AsLdr
HKLM\SOFTWARE\Wow6432Node\Autocom Cars CDP+
HKLM\SOFTWARE\Wow6432Node\Avira
HKLM\SOFTWARE\Wow6432Node\Brother
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\Diaginstinfo
HKLM\SOFTWARE\Wow6432Node\GoHD-nv =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\GoHD-nv-ie =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Lake
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\MovieDea =>PUP.MovieDea
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\Object Browser-nv =>PUP.ObjectBrowser
HKLM\SOFTWARE\Wow6432Node\Object Browser-nv-ie =>PUP.ObjectBrowser
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\PEGA
HKLM\SOFTWARE\Wow6432Node\Pegatron Corporation
HKLM\SOFTWARE\Wow6432Node\Qualcomm
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Reg
HKLM\SOFTWARE\Wow6432Node\searchult =>PUP.Optional
HKLM\SOFTWARE\Wow6432Node\Software
HKLM\SOFTWARE\Wow6432Node\SpeedBit
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\X-AVCSD
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\AnyProtect =>PUP.AnyProtect
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\APN PIP =>Toolbar.Agent
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Avira
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Brother
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\GoHD-nv =>Adware.CrossRider
HKCU\SOFTWARE\GoHD-nv-ie =>Adware.CrossRider
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\Kromtech
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\OB
HKCU\SOFTWARE\Object Browser-nv =>PUP.ObjectBrowser
HKCU\SOFTWARE\Object Browser-nv-ie =>PUP.ObjectBrowser
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Qualcomm
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Reg
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\StormAlerts =>Adware.StormAlert
HKCU\SOFTWARE\StormAlertsApp =>Adware.StormAlert
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\tstamptoken =>PUP.MaxComputerCleaner
HKCU\SOFTWARE\WGSoft
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\lescifut

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/ (151) - 10s
O43 - CFD: 2015/08/16 - 16:29:00 - [] D -- C:\Program Files (x86)\2E3E2BD0-1439490821-81E3-3ACD-20256445D541 =>Adware.CrossRider
O43 - CFD: 2015/08/16 - 16:54:25 - [] D -- C:\Program Files (x86)\2E3E2BD0-1439736840-81E3-3ACD-20256445D541 =>Adware.CrossRider
O43 - CFD: 2015/08/16 - 16:59:17 - [] D -- C:\Program Files (x86)\AnyProtectEx =>PUP.AnyProtect
O43 - CFD: 2015/08/13 - 19:56:31 - [] D -- C:\Program Files (x86)\Autocom
O43 - CFD: 2015/07/13 - 15:59:12 - [] D -- C:\Program Files (x86)\Avira
O43 - CFD: 2015/08/16 - 16:00:59 - [] D -- C:\Program Files (x86)\b863b1ac-3b43-4a39-9223-8d0cab4be350 =>Adware.CrossRider
O43 - CFD: 2015/08/16 - 15:54:46 - [] D -- C:\Program Files (x86)\bb59d1f1-3150-430a-9359-54d8a3288fa2 =>Adware.CrossRider
O43 - CFD: 2014/01/07 - 15:12:23 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 2014/01/07 - 15:54:42 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2014/01/07 - 16:06:05 - [] D -- C:\Program Files (x86)\CyberLink
O43 - CFD: 2015/08/14 - 10:48:55 - [] D -- C:\Program Files (x86)\EOBD-Facile
O43 - CFD: 2015/01/17 - 17:50:14 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2014/01/07 - 16:04:55 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2014/01/07 - 14:40:42 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/08/16 - 12:54:01 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2013/09/19 - 17:45:58 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/08/13 - 22:42:23 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2013/09/19 - 17:47:38 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2013/08/22 - 17:36:30 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/08/16 - 16:53:33 - [] D -- C:\Program Files (x86)\MovieDea =>PUP.MovieDea
O43 - CFD: 2014/07/16 - 15:22:59 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2014/06/28 - 16:15:05 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 2013/09/12 - 13:12:02 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2014/01/07 - 15:43:03 - [] D -- C:\Program Files (x86)\PHotkey
O43 - CFD: 2015/08/08 - 18:35:09 - [] D -- C:\Program Files (x86)\Qualcomm
O43 - CFD: 2014/01/07 - 15:08:22 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2014/01/07 - 15:12:07 - [] D -- C:\Program Files (x86)\REALTEK PCIE Wireless LAN Driver
O43 - CFD: 2013/09/12 - 13:12:02 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/08/13 - 20:32:35 - [] D -- C:\Program Files (x86)\Software
O43 - CFD: 2014/01/07 - 14:49:44 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2015/08/16 - 15:20:46 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2013/09/19 - 17:47:35 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2015/06/09 - 21:50:50 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/06/09 - 21:50:49 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2015/06/09 - 21:50:49 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2013/08/22 - 17:36:30 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/06/09 - 21:50:48 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/06/09 - 21:50:49 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2013/08/22 - 17:36:30 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2013/08/22 - 17:36:30 - [] D -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 2015/06/09 - 21:55:53 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/06/09 - 21:55:53 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/06/09 - 21:55:53 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/08/13 - 19:57:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autocom
O43 - CFD: 2015/08/07 - 23:52:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
O43 - CFD: 2013/09/19 - 17:48:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerRecover
O43 - CFD: 2015/08/16 - 16:19:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2014/01/07 - 16:06:37 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomeCinema
O43 - CFD: 2014/01/07 - 14:40:44 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 2013/08/22 - 17:36:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/08/13 - 22:43:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/08/08 - 18:35:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QPST
O43 - CFD: 2015/08/13 - 19:27:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanMaster-ELM
O43 - CFD: 2013/08/22 - 17:36:33 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/06/09 - 21:55:53 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2013/08/22 - 22:59:48 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/08/13 - 23:21:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/08/13 - 21:14:34 - [] D -- C:\ProgramData\5WinManPro5
O43 - CFD: 2015/08/13 - 20:31:34 - [] D -- C:\ProgramData\9WinManPro9
O43 - CFD: 2013/08/22 - 16:45:52 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/08/13 - 19:59:44 - [] D -- C:\ProgramData\Autocom
O43 - CFD: 2015/07/13 - 15:59:14 - [] D -- C:\ProgramData\Avira
O43 - CFD: 2015/04/05 - 21:39:22 - [] D -- C:\ProgramData\Brother
O43 - CFD: 2014/02/28 - 19:16:33 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2014/01/07 - 15:47:23 - [] D -- C:\ProgramData\CLSK
O43 - CFD: 2015/08/13 - 19:59:38 - [] D -- C:\ProgramData\Common Diagnostics
O43 - CFD: 2014/06/04 - 17:12:21 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2013/08/22 - 16:45:52 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2013/08/22 - 16:45:52 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2014/01/07 - 16:04:55 - [] D -- C:\ProgramData\install_clap
O43 - CFD: 2014/01/07 - 14:35:59 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2015/08/13 - 22:43:29 - [] D -- C:\ProgramData\iWinManProi
O43 - CFD: 2014/02/28 - 19:16:33 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/08/13 - 22:43:26 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2014/02/28 - 19:16:33 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/08/16 - 16:53:34 - [] D -- C:\ProgramData\MovieDeaConfig =>PUP.MovieDea
O43 - CFD: 2014/06/04 - 12:19:28 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/08/16 - 15:27:35 - [] D -- C:\ProgramData\nWinManPron
O43 - CFD: 2015/08/07 - 23:54:03 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2013/09/13 - 09:45:12 - [] D -- C:\ProgramData\PowerRecover
O43 - CFD: 2015/08/16 - 15:39:28 - [] D -- C:\ProgramData\QongaMiwe
O43 - CFD: 2015/08/08 - 18:38:09 - [] D -- C:\ProgramData\Qualcomm
O43 - CFD: 2014/01/07 - 15:06:07 - [] D -- C:\ProgramData\Realtek
O43 - CFD: 2015/06/09 - 21:50:42 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/08/08 - 18:31:37 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 2013/08/22 - 16:45:52 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2014/01/07 - 16:06:05 - [] D -- C:\ProgramData\Temp
O43 - CFD: 2013/08/22 - 16:45:52 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/08/16 - 16:54:20 - [] D -- C:\ProgramData\vWinManProv
O43 - CFD: 2015/08/13 - 22:46:38 - [] D -- C:\ProgramData\ZWinManProZ
O43 - CFD: 2014/01/07 - 15:54:42 - [] D -- C:\Program Files (x86)\Common Files\CyberLink
O43 - CFD: 2014/01/07 - 14:44:28 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2014/02/28 - 19:07:53 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 2014/07/16 - 15:15:59 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2013/08/22 - 17:36:33 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/06/09 - 21:50:42 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2013/09/13 - 09:14:31 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2014/06/04 - 11:17:46 - [] D -- C:\Users\grand_000\AppData\Roaming\Adobe
O43 - CFD: 2015/08/16 - 16:59:17 - [] SHD -- C:\Users\grand_000\AppData\Roaming\AnyProtectEx =>PUP.AnyProtect
O43 - CFD: 2015/08/13 - 19:59:29 - [] D -- C:\Users\grand_000\AppData\Roaming\Autocom
O43 - CFD: 2015/03/23 - 17:04:27 - [] D -- C:\Users\grand_000\AppData\Roaming\Avira
O43 - CFD: 2015/06/09 - 22:12:11 - [] D -- C:\Users\grand_000\AppData\Roaming\Identities
O43 - CFD: 2014/06/04 - 11:36:57 - [] D -- C:\Users\grand_000\AppData\Roaming\Macromedia
O43 - CFD: 2015/08/13 - 22:45:13 - [] SD -- C:\Users\grand_000\AppData\Roaming\Microsoft
O43 - CFD: 2015/01/17 - 18:38:16 - [] D -- C:\Users\grand_000\AppData\Roaming\Mozilla
O43 - CFD: 2015/08/13 - 22:25:41 - [0] D -- C:\Users\grand_000\AppData\Roaming\Opera Software
O43 - CFD: 2015/08/13 - 19:31:14 - [] D -- C:\Users\grand_000\AppData\Roaming\ScanMaster-ELM
O43 - CFD: 2014/06/04 - 12:19:37 - [] D -- C:\Users\grand_000\AppData\Roaming\Thunderbird
O43 - CFD: 2015/08/16 - 16:48:20 - [] D -- C:\Users\grand_000\AppData\Roaming\uTorrent
O43 - CFD: 2015/08/13 - 23:23:00 - [] D -- C:\Users\grand_000\AppData\Roaming\WinRAR
O43 - CFD: 2015/08/14 - 00:05:23 - [] SHD -- C:\Users\grand_000\AppData\Roaming\wyUpdate AU
O43 - CFD: 2015/08/16 - 17:00:49 - [] D -- C:\Users\grand_000\AppData\Roaming\ZHP
O43 - CFD: 2014/06/04 - 11:17:05 - [0] SHD -- C:\Users\grand_000\AppData\Local\Application Data
O43 - CFD: 2015/01/17 - 17:47:28 - [] D -- C:\Users\grand_000\AppData\Local\Apps
O43 - CFD: 2015/08/16 - 15:53:12 - [] D -- C:\Users\grand_000\AppData\Local\CrashRpt =>SUP.CrashReports
O43 - CFD: 2014/06/04 - 11:19:00 - [] D -- C:\Users\grand_000\AppData\Local\CyberLink
O43 - CFD: 2015/01/17 - 17:48:55 - [0] D -- C:\Users\grand_000\AppData\Local\Deployment
O43 - CFD: 2015/08/08 - 19:39:52 - [] D -- C:\Users\grand_000\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/07/13 - 15:58:19 - [0] SHD -- C:\Users\grand_000\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/07/13 - 15:58:19 - [0] SHD -- C:\Users\grand_000\AppData\Local\EmieSiteList
O43 - CFD: 2015/07/13 - 15:58:19 - [0] SHD -- C:\Users\grand_000\AppData\Local\EmieUserList
O43 - CFD: 2015/07/14 - 18:39:25 - [] D -- C:\Users\grand_000\AppData\Local\fontconfig
O43 - CFD: 2015/07/14 - 18:39:21 - [] D -- C:\Users\grand_000\AppData\Local\gegl-0.2
O43 - CFD: 2015/01/17 - 17:50:42 - [] D -- C:\Users\grand_000\AppData\Local\Google
O43 - CFD: 2015/06/24 - 14:14:46 - [] D -- C:\Users\grand_000\AppData\Local\GWX
O43 - CFD: 2014/06/04 - 11:17:05 - [0] SHD -- C:\Users\grand_000\AppData\Local\Historique
O43 - CFD: 2015/08/16 - 15:53:13 - [] D -- C:\Users\grand_000\AppData\Local\Installer
O43 - CFD: 2014/06/04 - 11:23:31 - [] D -- C:\Users\grand_000\AppData\Local\Intel_Corporation
O43 - CFD: 2015/08/13 - 23:23:00 - [] D -- C:\Users\grand_000\AppData\Local\Microsoft
O43 - CFD: 2015/08/13 - 22:25:41 - [0] D -- C:\Users\grand_000\AppData\Local\Opera Software
O43 - CFD: 2015/08/13 - 22:42:03 - [] D -- C:\Users\grand_000\AppData\Local\ospd_us_013010060
O43 - CFD: 2015/08/13 - 19:08:57 - [] D -- C:\Users\grand_000\AppData\Local\Packages
O43 - CFD: 2014/06/04 - 11:18:23 - [] D -- C:\Users\grand_000\AppData\Local\Power2Go8
O43 - CFD: 2015/01/17 - 18:53:40 - [] D -- C:\Users\grand_000\AppData\Local\Programs
O43 - CFD: 2015/08/13 - 22:41:55 - [] D -- C:\Users\grand_000\AppData\Local\Protectionlogicielle32
O43 - CFD: 2015/08/13 - 20:32:35 - [] D -- C:\Users\grand_000\AppData\Local\Software
O43 - CFD: 2015/08/16 - 17:00:30 - [] D -- C:\Users\grand_000\AppData\Local\Temp
O43 - CFD: 2014/06/04 - 11:17:05 - [0] SHD -- C:\Users\grand_000\AppData\Local\Temporary Internet Files
O43 - CFD: 2014/06/18 - 15:06:28 - [] D -- C:\Users\grand_000\AppData\Local\Thunderbird
O43 - CFD: 2015/08/08 - 18:56:55 - [] D -- C:\Users\grand_000\AppData\Local\VirtualStore
O43 - CFD: 2015/07/14 - 22:06:54 - [] D -- C:\Users\grand_000\AppData\Local\webkit
O43 - CFD: 2014/06/28 - 16:12:29 - [] D -- C:\Users\grand_000\AppData\Local\Windows Live
O43 - CFD: 2013/08/22 - 17:36:32 - [] RD -- C:\Users\grand_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2013/08/22 - 17:36:32 - [] RD -- C:\Users\grand_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/08/16 - 16:21:59 - [] RD -- C:\Users\grand_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/08/14 - 10:48:56 - [] D -- C:\Users\grand_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EOBD-Facile
O43 - CFD: 2013/08/22 - 17:36:32 - [] D -- C:\Users\grand_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/08/16 - 16:53:30 - [] D -- C:\Users\grand_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MovieDea =>PUP.MovieDea
O43 - CFD: 2015/08/16 - 16:21:59 - [] RD -- C:\Users\grand_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2013/08/22 - 17:36:32 - [] RD -- C:\Users\grand_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/08/13 - 23:21:44 - [] D -- C:\Users\grand_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Liste des pilotes du système (SDL) (O58) (60) - 17s
O58 - SDL:2013/08/22 14:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [108896]
O58 - SDL:2015/08/13 14:49:42 A . (.Abengine - WFP driver.) -- C:\Windows\System32\drivers\acwfp64.sys [45784]
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [782176]
O58 - SDL:2013/08/22 14:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [79200]
O58 - SDL:2013/08/22 14:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259424]
O58 - SDL:2013/08/22 14:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [25952]
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [114016]
O58 - SDL:2015/06/20 14:22:15 A . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\drivers\avgntflt.sys [153256]
O58 - SDL:2015/06/20 14:22:15 A . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\Windows\System32\drivers\avipbb.sys [132656]
O58 - SDL:2014/11/24 11:23:23 A . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\Windows\System32\drivers\avkmgr.sys [28600]
O58 - SDL:2015/03/12 16:22:55 A . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\Windows\System32\drivers\avnetflt.sys [43576]
O58 - SDL:2013/08/13 01:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [17624]
O58 - SDL:2013/08/22 14:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [531296]
O58 - SDL:2013/03/05 14:01:42 A . (.CyberLink - It is a virtual device driver which could c.) -- C:\Windows\System32\drivers\CLVirtualDrive.sys [91712]
O58 - SDL:2013/03/05 08:22:20 A . (.CyberLink Corporation - CyberLink WebCam Virtual Driver.) -- C:\Windows\System32\drivers\clwvd.sys [41408]
O58 - SDL:2013/08/22 14:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3357024]
O58 - SDL:2013/08/22 14:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64352]
O58 - SDL:2013/07/30 20:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568]
O58 - SDL:2013/07/25 21:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320]
O58 - SDL:2013/08/10 02:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\Windows\System32\drivers\iaStorAV.sys [651248]
O58 - SDL:2013/08/22 14:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [412000]
O58 - SDL:2013/11/02 10:21:34 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [4207104]
O58 - SDL:2013/11/02 10:26:42 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [449496]
O58 - SDL:2013/10/29 03:08:35 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\intelaud.sys [39320]
O58 - SDL:2013/10/29 03:08:35 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\iwdbus.sys [27032]
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [109408]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [93536]
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3.sys [81760]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [82784]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [56672]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575840]
O58 - SDL:2013/08/22 14:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63840]
O58 - SDL:2013/06/18 16:45:43 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETwew02.sys [4649440]
O58 - SDL:2013/08/22 14:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150368]
O58 - SDL:2013/08/22 14:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [168288]
O58 - SDL:2013/08/22 12:23:40 A . (.Windows (R) Win 7 DDK provider - Pega Radio Switch mini driver.) -- C:\Windows\System32\drivers\PegaRadioSwitch.sys [23552]
O58 - SDL:2015/07/28 23:47:42 A . (.PhraseProfessor - PP TDI Driver x64.) -- C:\Windows\System32\drivers\ppfd_vt_1_10_0_21.sys [61328] =>PUP.Optional
O58 - SDL:2015/07/28 23:47:44 A . (.PhraseProfessor - PP WFP Driver x64.) -- C:\Windows\System32\drivers\ppfd_vw_1_10_0_21.sys [57744] =>PUP.Optional
O58 - SDL:2013/08/15 14:28:42 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\Windows\System32\drivers\Rt630x64.sys [830680]
O58 - SDL:2013/09/05 14:39:44 A . (.Realtek Semiconductor Corporation - Realtek Bluetooth Filter Driver.) -- C:\Windows\System32\drivers\RtkBtfilter.sys [548056]
O58 - SDL:2013/09/24 18:42:16 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [3667416]
O58 - SDL:2013/08/08 16:27:54 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\drivers\RtsUVStor.sys [329944]
O58 - SDL:2013/09/12 03:17:00 A . (.Realtek Semiconductor Corporation - Realtek PCIE NDIS Driverr.) -- C:\Windows\System32\drivers\rtwlane.sys [2945240]
O58 - SDL:2013/08/22 17:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2014/04/11 20:22:08 A . (.Silicon Laboratories - Silicon Labs VCP Serial Enumerator.) -- C:\Windows\System32\drivers\silabenm.sys [23552]
O58 - SDL:2014/04/11 20:22:08 A . (.Silicon Laboratories - Silicon Labs CP210x USB to UART Bridge Driv.) -- C:\Windows\System32\drivers\silabser.sys [79360]
O58 - SDL:2013/08/22 14:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44896]
O58 - SDL:2013/08/22 14:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81760]
O58 - SDL:2013/08/14 15:01:22 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448]
O58 - SDL:2013/08/14 15:01:22 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys [34544]
O58 - SDL:2014/01/22 08:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys [108800]
O58 - SDL:2014/01/22 08:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudmdm.sys [206080]
O58 - SDL:2014/01/22 08:52:12 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Mobile Logging Device Driver (M.) -- C:\Windows\System32\drivers\ssudserd.sys [206080]
O58 - SDL:2013/08/22 14:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31072]
O58 - SDL:2013/08/14 15:01:22 A . (.Synaptics Incorporated - Synaptics Touchpad 64-bit Driver.) -- C:\Windows\System32\drivers\SynTP.sys [527600]
O58 - SDL:2013/07/01 22:10:20 A . (.Intel Corporation - Intel(R) Trusted Execution Engine Interface.) -- C:\Windows\System32\drivers\TXEIx64.sys [87568]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [19808]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [168800]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305504]
O58 - SDL:2015/06/16 00:28:50 A . (.Word Surfer - Word Surfer WFP Driver x64.) -- C:\Windows\System32\drivers\wsafd_1_10_0_19.sys [57728]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (90) - 113s
O61 - LFC: 2015/08/13 20:29:09 A . (..) -- C:\Users\grand_000\Downloads\Delphi keygen activator 2013 3_10924_i43991390_il345.exe [1502224]
O61 - LFC: 2015/08/08 18:19:58 A . (.Samsung Electronics Co., Ltd..) -- C:\Users\grand_000\Desktop\Pierre\GS3\Odin3 3.04\Odin3 v3.04.exe [977408]
O61 - LFC: 2015/08/08 18:19:58 A . (.TmaxSoft Co., Ltd.) -- C:\Users\grand_000\Desktop\Pierre\GS3\Odin3 3.04\tmax.dll [159744]
O61 - LFC: 2015/08/08 18:19:59 A . (..) -- C:\Users\grand_000\Desktop\Pierre\GS3\Odin3 3.04\zlib.dll [102400]
O61 - LFC: 2015/08/13 19:22:38 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\._Cle¦ü.exe [212]
O61 - LFC: 2015/08/13 19:22:39 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\._LOGICIEL FRANCAIS.exe [212]
O61 - LFC: 2015/08/13 19:22:39 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\._Pilote 3.exe [212]
O61 - LFC: 2015/08/13 19:22:39 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\._Pilotes 1.exe [212]
O61 - LFC: 2015/08/13 19:22:39 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\._Pilotes 2.exe [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\USB2.0-Serial\._CH341SER.EXE [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\USB2.0-Serial\._lpk.dll [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\._ftbusui.dll [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\._ftcserco.dll [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\._ftd2xx.dll [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\._ftdibus.sys [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\._ftlang.dll [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\._ftser2k.sys [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\._ftserui2.dll [212]
O61 - LFC: 2015/08/13 19:22:40 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\._ftbusui.dll [212]
O61 - LFC: 2015/08/13 19:22:40 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\._ftcserco.dll [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\._ftd2xx64.dll [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\._ftdibus.sys [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\._ftlang.dll [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\._ftser2k.sys [212]
O61 - LFC: 2015/08/13 19:22:41 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\._ftserui2.dll [212]
O61 - LFC: 2015/08/13 19:22:39 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\CP2102 USB\CP210x_VCP_Windows\._CP210xVCPInstaller_x64.exe [212]
O61 - LFC: 2015/08/13 19:22:39 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\CP2102 USB\CP210x_VCP_Windows\._CP210xVCPInstaller_x86.exe [212]
O61 - LFC: 2015/08/13 19:22:40 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\CP2102 USB\CP210x_VCP_Windows\x86\._silabenm.sys [212]
O61 - LFC: 2015/08/13 19:22:40 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\CP2102 USB\CP210x_VCP_Windows\x86\._silabser.sys [212]
O61 - LFC: 2015/08/13 19:22:40 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\CP2102 USB\CP210x_VCP_Windows\x86\._WdfCoInstaller01009.dll [212]
O61 - LFC: 2015/08/13 19:22:39 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\CP2102 USB\CP210x_VCP_Windows\x64\._silabenm.sys [212]
O61 - LFC: 2015/08/13 19:22:39 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\CP2102 USB\CP210x_VCP_Windows\x64\._silabser.sys [212]
O61 - LFC: 2015/08/13 19:22:39 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\CP2102 USB\CP210x_VCP_Windows\x64\._WdfCoInstaller01009.dll [212]
O61 - LFC: 2015/08/13 19:22:39 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\__MACOSX\P1\Driver USB\CP2102 USB\CP210x_VCP_Win2K\._CP210x_VCP_Win2K.exe [212]
O61 - LFC: 2015/08/13 19:22:31 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Cle¦ü.exe [194796]
O61 - LFC: 2015/08/13 19:22:32 A . (.WGSoft.de.) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\LOGICIEL FRANCAIS.exe [16892095]
O61 - LFC: 2015/08/13 19:22:34 A . (.Macrovision Corporation.) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\Pilote 3.exe [3051929]
O61 - LFC: 2015/08/13 19:22:35 A . (.Acresso Software Inc..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\Pilotes 1.exe [7116716]
O61 - LFC: 2015/08/13 19:22:35 A . (.Macrovision Corporation.) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\Pilotes 2.exe [3210944]
O61 - LFC: 2015/08/13 19:22:38 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\USB2.0-Serial\CH341SER.EXE [233018]
O61 - LFC: 2015/08/13 19:22:38 A . (..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\USB2.0-Serial\lpk.dll [47104]
O61 - LFC: 2015/08/13 19:22:37 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\ftbusui.dll [105352]
O61 - LFC: 2015/08/13 19:22:37 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\ftcserco.dll [69000]
O61 - LFC: 2015/08/13 19:22:37 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\ftd2xx.dll [218504]
O61 - LFC: 2015/08/13 19:22:37 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\ftdibus.sys [62216]
O61 - LFC: 2015/08/13 19:22:37 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\ftlang.dll [201096]
O61 - LFC: 2015/08/13 19:22:37 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\ftser2k.sys [73096]
O61 - LFC: 2015/08/13 19:22:37 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\i386\ftserui2.dll [52616]
O61 - LFC: 2015/08/13 19:22:36 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\ftbusui.dll [108936]
O61 - LFC: 2015/08/13 19:22:36 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\ftcserco.dll [65416]
O61 - LFC: 2015/08/13 19:22:36 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\ftd2xx64.dll [256392]
O61 - LFC: 2015/08/13 19:22:36 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\ftdibus.sys [75016]
O61 - LFC: 2015/08/13 19:22:36 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\ftlang.dll [214920]
O61 - LFC: 2015/08/13 19:22:37 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\ftser2k.sys [85384]
O61 - LFC: 2015/08/13 19:22:37 A . (.FTDI Ltd..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\FT232 USB\CDM 2.08.24\amd64\ftserui2.dll [55176]
O61 - LFC: 2015/08/13 19:22:36 A . (.Silicon Laboratories.) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\CP2102 USB\CP210x_VCP_Windows\x86\silabenm.sys [47176]
O61 - LFC: 2015/08/13 19:22:36 A . (.Silicon Laboratories.) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\CP2102 USB\CP210x_VCP_Windows\x86\silabser.sys [63104]
O61 - LFC: 2015/08/13 19:22:35 A . (.Silicon Laboratories.) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\CP2102 USB\CP210x_VCP_Windows\x64\silabenm.sys [27336]
O61 - LFC: 2015/08/13 19:22:36 A . (.Silicon Laboratories.) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\CP2102 USB\CP210x_VCP_Windows\x64\silabser.sys [73216]
O61 - LFC: 2015/08/13 19:22:35 A . (.Acresso Software Inc..) -- C:\Users\grand_000\Desktop\Pierre\ELM\elm327 pack 1\P1\Driver USB\CP2102 USB\CP210x_VCP_Win2K\CP210x_VCP_Win2K.exe [5032094]
O61 - LFC: 2015/08/13 12:50:44 A . (..) -- C:\Users\grand_000\AppData\Local\ospd_us_013010060\upospd_us_013010060.exe [3334288]
O61 - LFC: 2015/08/16 16:52:21 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\WQDE170E\15b365fe97056e31353ba58793643ff5[1].exe [91848]
O61 - LFC: 2015/08/16 16:59:16 A . (.CMI Limited.) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\WQDE170E\AnyProtectSetup[1].exe [613255] =>PUP.AnyProtect
O61 - LFC: 2015/08/16 16:52:14 A . (.7th.) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\WQDE170E\face_istartsurf[1].exe [357472] =>PUP.IsStart
O61 - LFC: // :: . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\WQDE170E\PFLn7r[1].exe [0]
O61 - LFC: 2015/08/16 16:54:06 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\WQDE170E\prepreinstaller_win3[1].exe [174592]
O61 - LFC: 2015/08/16 16:58:45 A . (.systweak.com.) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\WQDE170E\rcpsetup_17970[1].exe [4445480]
O61 - LFC: 2015/08/16 16:52:33 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\WQDE170E\setup_362[1].exe [254464]
O61 - LFC: // :: . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\QFGB96FI\7b2bc6f2ba9c4bacc39bf4fde5757a89[1].exe [0]
O61 - LFC: // :: . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\QFGB96FI\cmmdWriter[1].exe [0]
O61 - LFC: 2015/08/16 16:52:24 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\QFGB96FI\FriendlyError_s4[1].exe [177664]
O61 - LFC: 2015/08/16 16:52:52 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\QFGB96FI\MovieDea_t13_Setup[1].exe [1778553] =>PUP.MovieDea
O61 - LFC: 2015/08/16 16:54:25 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\QFGB96FI\oQo4jGO[1].exe [161792]
O61 - LFC: 2015/08/16 16:52:34 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\QFGB96FI\policyname[1].exe [57665]
O61 - LFC: // :: . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\QFGB96FI\SearchUpdater[1].exe [0]
O61 - LFC: 2015/08/16 16:54:32 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\QFGB96FI\SFSetup[1].exe [359945]
O61 - LFC: 2015/08/16 16:58:06 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\QFGB96FI\WWE_1.50.1.10[1].exe [3810776]
O61 - LFC: 2015/08/16 16:52:25 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\HAM2KXBK\4bbda52393b575e64d530bd478a6717b[1].exe [76441]
O61 - LFC: 2015/08/16 16:54:12 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\HAM2KXBK\runasu[1].exe [104960]
O61 - LFC: 2015/08/16 16:52:17 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\HAM2KXBK\setup[1].exe [1964104]
O61 - LFC: // :: . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\HAM2KXBK\Validate[1].exe [0]
O61 - LFC: 2015/08/16 16:52:37 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\HAM2KXBK\VuuPC_VO2_8907[1].exe [229125] =>PUP.VuuPC
O61 - LFC: 2015/08/16 17:00:26 A . (.AnyProtect.com.) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\0S6Y5489\AnyProtect[1].exe [6434816] =>PUP.AnyProtect
O61 - LFC: 2015/08/16 16:52:58 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\0S6Y5489\ASIns[1].exe [1010907]
O61 - LFC: 2015/08/16 16:53:37 A . (.Copyright 2013.) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\0S6Y5489\check[1].exe [202653]
O61 - LFC: 2015/08/16 16:54:18 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\0S6Y5489\JOSrv[1].exe [209920]
O61 - LFC: 2015/08/16 16:52:30 A . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\0S6Y5489\setup_gmsd_fr[1].exe [5803584]
O61 - LFC: // :: . (..) -- C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\0S6Y5489\SmartWebInstaller[1].exe [0] =>PUP.SmartWebSearch
O61 - LFC: 2015/08/16 15:53:12 A . (..) -- C:\Users\grand_000\AppData\Local\Installer\Install_27806\DCYTDownloader.exe [1446912] =>PUP.YTDownloader
O61 - LFC: 2015/08/16 16:55:10 A . (..) -- C:\Users\grand_000\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]

---\\ Associations Shell Spawning (O67) (10) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (SMI) (O68) (6) - 1s
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI (1) - 0s
O69 - SBI: SearchScopes [HKCU] {48CD2807-E491-463B-9CFE-EB5A8CF584A6} [DefaultScope] - (Bing) - http://www.bing.com/

---\\ Enumère les fichiers Crack & Keygen (CKF) (O82) (1) - 0s
O82 - LFC: 2015/08/13 20:29:09 A . (..) -- C:\Users\grand_000\Downloads\Delphi keygen activator 2013 3_10924_i43991390_il345.exe [1502224] =>.Crack,Keygen

---\\ Scan Additionnel (O88) (47) - 0s
C:\Program Files (x86)\2E3E2BD0-1439490821-81E3-3ACD-20256445D541\knseEA6D.tmp =>Adware.CrossRider
C:\Program Files (x86)\PHotkey\PHotkey.exe =>Adware.Graftor
C:\Program Files (x86)\PHotkey\POsd.exe =>Adware.Graftor
C:\Program Files (x86)\PHotkey\GPMTray.exe =>Adware.Graftor
C:\Program Files (x86)\MovieDea\MovieDea.exe =>PUP.MovieDea
C:\Program Files (x86)\2E3E2BD0-1439736840-81E3-3ACD-20256445D541\vnsx2C8F.tmp =>Adware.CrossRider
C:\Program Files (x86)\2E3E2BD0-1439736840-81E3-3ACD-20256445D541\knsv4146.tmpfs =>Adware.CrossRider
C:\Users\grand_000\AppData\Local\Temp\nsfF7B6.tmp =>PUP.CMILimited
C:\Users\grand_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fijhlnmmmgflacagjecncpmpnhjieggk
HKLM\SYSTEM\CurrentControlSet\Services\meqexisi =>Adware.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\tucydypi =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ASPackage =>PUP.ASPackage
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\MovieDea =>PUP.MovieDea
HKLM\SOFTWARE\Wow6432Node\GoHD-nv =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\GoHD-nv-ie =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\MovieDea =>PUP.MovieDea
HKLM\SOFTWARE\Wow6432Node\Object Browser-nv =>PUP.ObjectBrowser
HKLM\SOFTWARE\Wow6432Node\Object Browser-nv-ie =>PUP.ObjectBrowser
HKLM\SOFTWARE\Wow6432Node\searchult =>PUP.Optional
HKCU\SOFTWARE\AnyProtect =>PUP.AnyProtect
HKCU\SOFTWARE\APN PIP =>Toolbar.Agent
HKCU\SOFTWARE\GoHD-nv =>Adware.CrossRider
HKCU\SOFTWARE\GoHD-nv-ie =>Adware.CrossRider
HKCU\SOFTWARE\Object Browser-nv =>PUP.ObjectBrowser
HKCU\SOFTWARE\Object Browser-nv-ie =>PUP.ObjectBrowser
HKCU\SOFTWARE\StormAlerts =>Adware.StormAlert
HKCU\SOFTWARE\StormAlertsApp =>Adware.StormAlert
HKCU\SOFTWARE\tstamptoken =>PUP.MaxComputerCleaner
C:\Program Files (x86)\2E3E2BD0-1439490821-81E3-3ACD-20256445D541 =>Adware.CrossRider
C:\Program Files (x86)\2E3E2BD0-1439736840-81E3-3ACD-20256445D541 =>Adware.CrossRider
C:\Program Files (x86)\AnyProtectEx =>PUP.AnyProtect
C:\Program Files (x86)\b863b1ac-3b43-4a39-9223-8d0cab4be350 =>Adware.CrossRider
C:\Program Files (x86)\bb59d1f1-3150-430a-9359-54d8a3288fa2 =>Adware.CrossRider
C:\Program Files (x86)\MovieDea =>PUP.MovieDea
C:\ProgramData\MovieDeaConfig =>PUP.MovieDea
C:\Users\grand_000\AppData\Roaming\AnyProtectEx =>PUP.AnyProtect
C:\Users\grand_000\AppData\Local\CrashRpt =>SUP.CrashReports
C:\Users\grand_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MovieDea =>PUP.MovieDea
C:\Windows\System32\drivers\ppfd_vt_1_10_0_21.sys =>PUP.Optional
C:\Windows\System32\drivers\ppfd_vw_1_10_0_21.sys =>PUP.Optional
C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\WQDE170E\AnyProtectSetup[1].exe =>PUP.AnyProtect
C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\WQDE170E\face_istartsurf[1].exe =>PUP.IsStart
C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\QFGB96FI\MovieDea_t13_Setup[1].exe =>PUP.MovieDea
C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\HAM2KXBK\VuuPC_VO2_8907[1].exe =>PUP.VuuPC
C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\0S6Y5489\AnyProtect[1].exe =>PUP.AnyProtect
C:\Users\grand_000\AppData\Local\Microsoft\Windows\INetCache\IE\0S6Y5489\SmartWebInstaller[1].exe =>PUP.SmartWebSearch
C:\Users\grand_000\AppData\Local\Installer\Install_27806\DCYTDownloader.exe =>PUP.YTDownloader

---\\ Récapitulatif des détections trouvées sur votre station (16) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>Adware.CrossRider
http://www.nicolascoolman.fr/blog =>Adware.Graftor
http://www.nicolascoolman.fr/blog =>PUP.MovieDea
http://www.nicolascoolman.fr/blog =>PUP.CMILimited
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.IsStart
http://www.nicolascoolman.fr/blog =>PUP.ASPackage
http://www.nicolascoolman.fr/pup-objectbrowser/ =>PUP.ObjectBrowser
http://www.nicolascoolman.fr/blog =>PUP.Optional
http://www.nicolascoolman.fr/pup-anyprotect/ =>PUP.AnyProtect
http://www.nicolascoolman.fr/blog =>Toolbar.Agent
http://www.nicolascoolman.fr/blog =>Adware.StormAlert
http://www.nicolascoolman.fr/blog =>PUP.MaxComputerCleaner
http://www.nicolascoolman.fr/blog =>SUP.CrashReports
http://www.nicolascoolman.fr/pup-vuupc/ =>PUP.VuuPC
http://www.nicolascoolman.fr/pup-smartwebsearch/ =>PUP.SmartWebSearch
http://www.nicolascoolman.fr/pup-ytdownloader/ =>PUP.YTDownloader

~ End of the scan, 48996 items in 216 seconds (713)(1)()

Publicité


Signaler le contenu de ce document

Publicité