cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.8.19.121 Par Nicolas Coolman (2015/08/19)
~ Démarré par RayanB (Administrator) (2015/08/20 00:32:01)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\RayanB\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\RayanB\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 8.1, 64-bit (Build 9600)

---\\ Navigateurs Internet (2) - 0s
GCIE: Google Chrome v43.0.2357.134
MSIE: Internet Explorer v11.0.9600.17937

---\\ Informations sur les produits Windows (9) - 4s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : BR9VT
Windows License : OK
~ Windows Remaining Initializations Number : 1000
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK

---\\ Logiciels de protection (1) - 1s
Windows Defender W8.1 (Activate)

---\\ Logiciels de protection et autres (Superflus) (1) - 1s
McAfee Security Scan Plus v3.11.149.2

---\\ Logiciels d'optimisation (1) - 1s
CCleaner v5.08

---\\ Surveillance de Logiciels (1) - 1s
Adobe Flash Player 18 NPAPI

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4083.996 MB (45% free)
~ System Restore: Activé (Enable)
~ System drive C: has 257 GB free of 454 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: RAYAN
~ User Name: RayanB
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 257 GB free of 454 GB (System)
~ Drive D: has 2 GB free of 21 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (23) - 1s
[MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [2501368]
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\WINDOWS\System32\rundll32.exe [54784]
[MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\WINDOWS\System32\Wininit.exe [145920]
[MD5.C555B5C8142844DED9E3BD94E6313000] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\WINDOWS\System32\wininet.dll [2427904]
[MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [572416]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\WINDOWS\System32\sppcomapi.dll [447488]
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19456]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\WINDOWS\System32\drivers\DfsC.sys [134144]
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [76800]
[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [108544]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [142848]
[MD5.6FBDF2B1B025A8E6E069234362FFFFB7] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [401408]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [282624]
[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [2025792]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\WINDOWS\System32\drivers\tdx.sys [107520]
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [310080]

---\\ Processus lancés (51) - 5s
[MD5.6CF81DD5083D7F94A7E76E50429A949C] - (.AMD - AMD External Events Service Module.) -- C:\WINDOWS\system32\atiesrxx.exe [239616] [PID.952]
[MD5.C814D4A0B7B91E936B2DC0828C69ACAB] - (.Intel Corporation - igfxCUIService Module.) -- C:\WINDOWS\system32\igfxCUIService.exe [319376] [PID.684]
[MD5.098185E9B7C417CF7480BB9F839DB652] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\stacsv64.exe [323072] [PID.1028]
[MD5.89B1B68B76363ABD2E24E3BB614CE53C] - (.AMD - AMD External Events Client Module.) -- C:\WINDOWS\system32\atieclxx.exe [588288] [PID.1052]
[MD5.55FFCBB036D7BE4BCA6FA1421203A27F] - (.Hewlett-Packard Company - HpService.) -- C:\WINDOWS\system32\Hpservice.exe [31040] [PID.1204]
[MD5.85CEA8DA44E82DE16FF79C440D4DEE01] - (.Copyright © 2015 - cimuonuk.) -- C:\ProgramData\Busiomof\1.0.4.1\cimuonuk.exe [157696] [PID.1972]
[MD5.30BCD776B3D06CCDD1EEC6A936684472] - (...) -- C:\Users\RayanB\AppData\Roaming\32444335-1424774348-3642-5335-28924A3BCF9A\nsdCBE6.tmpfs [141312] [PID.2220] =>PUP.Optional.CrossRider
[MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.2252]
[MD5.B7F55E2AE978D3D34F7876EE5D689AAE] - (.CyberLink - YouCam Mirage.) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488] [PID.2668]
[MD5.724CB7A116F7E1A67009D751BCF86586] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120] [PID.2676]
[MD5.1C8C0EFEFBAA298BB55F24BC7313483A] - (...) -- C:\Users\RayanB\AppData\Roaming\32444335-1425383889-3642-5335-28924A3BCF9A\nsw9979.tmpfs [115712] [PID.2844] =>PUP.Optional.CrossRider
[MD5.3C5B2067338E4EFDADE94E4A72728F23] - (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [35232] [PID.2892]
[MD5.0FFC955698269D6889A9F8866D349EA0] - (...) -- C:\Users\RayanB\AppData\Roaming\32444335-1424774348-3642-5335-28924A3BCF9A\jnscFC91.tmp [95232] [PID.3032] =>PUP.Optional.CrossRider
[MD5.6E5134A902958C2DA0E159F8C2F19996] - (...) -- C:\Users\RayanB\AppData\Roaming\32444335-1426002430-3642-5335-28924A3BCF9A\jnsf838A.tmp [179712] [PID.3052] =>PUP.Optional.CrossRider
[MD5.C99F8E90DE4B8F0C7FE15BB1CBCD29DC] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [635104] [PID.1992]
[MD5.3C4002D339491AF73D663FFC7F6E5ECB] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760] [PID.1984]
[MD5.C8158791418A749F981D1423C74BA4EE] - (.LeapFrog Enterprises, Inc. - CommandService Application.) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe [7392136] [PID.1964]
[MD5.02D3EA6B132C7B45C8814F6C0C1D3E47] - (...) -- C:\Users\RayanB\AppData\Roaming\32444335-1425383889-3642-5335-28924A3BCF9A\jnskC775.tmp [103424] [PID.2164] =>PUP.Optional.CrossRider
[MD5.4635935FC972C582632BF45C26BFCB0E] - (...) -- C:\Windows\SysWOW64\srvany.exe [8192] [PID.3092]
[MD5.818A1109EFF660A903A80415EE3B30F0] - (...) -- C:\Users\RayanB\AppData\Roaming\32444335-1433606691-3642-5335-28924A3BCF9A\jnsz9CA4.tmp [219136] [PID.3180] =>PUP.Optional.CrossRider
[MD5.FF45E14C8EB4EA2B1E6494088E2FDAC6] - (...) -- C:\Users\RayanB\AppData\Roaming\32444335-1433606691-3642-5335-28924A3BCF9A\hnsyB51F.tmp [166912] [PID.3208] =>PUP.Optional.CrossRider
[MD5.757DCCA4CE9A0E59FFDA8C1030931605] - (.Rational Thought Solutions - HealthAlert Service.) -- C:\ProgramData\CwOgudDOd\OCDRXw.exe [2733552] [PID.3296]
[MD5.85CEA8DA44E82DE16FF79C440D4DEE01] - (.Copyright © 2015 - cimuonuk.) -- C:\ProgramData\Busiomof\1.0.4.1\cimuonuk.exe [157696] [PID.3812]
[MD5.F736D121FF053AF9E860B91912E4D6F1] - (.Intel Corporation - igfxEM Module.) -- C:\WINDOWS\system32\igfxEM.exe [504208] [PID.4144]
[MD5.A923F9AA853AFB3E1C779C6696E344D2] - (.Intel Corporation - igfxHK Module.) -- C:\WINDOWS\system32\igfxHK.exe [246672] [PID.4152]
[MD5.8EC9EF60E24E88DC5DC74D305925E2CF] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxTray.exe [448912] [PID.4160]
[MD5.210875E72C45D712120904128F357233] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe [1664000] [PID.7596]
[MD5.98384182AC896D4F660B60F9D69412AF] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3053808] [PID.7680]
[MD5.971E5F226E0B144FB63B1F52AF8FE112] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [183024] [PID.7844]
[MD5.63A2D767B9261B4F33F97BF88F2FB197] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe [276328] [PID.7876]
[MD5.B7995C675014EEBE77A0BEB7AFCCFC08] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432] [PID.7924]
[MD5.D1C8B0DC04347B6B9B5B3B9204DF6756] - (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904] [PID.7948]
[MD5.3D8F220E84D7D59246622DDC2AB0F2FE] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files\McAfee Security Scan\3.11.149\SSScheduler.exe [330456] [PID.7956]
[MD5.D2946D9F020AE76E9CEF9B4A6DF838C0] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [1129760] [PID.7980]
[MD5.D658AB1B55127D18DCFBCAC8CAAEA522] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [49208] [PID.8080]
[MD5.6198A9BC15ED77F318D5DDD1918CF1D1] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024] [PID.8096]
[MD5.47DBCC66CF9A3DCEF2D42051431160D3] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [8418584] [PID.7780]
[MD5.77E81E788CC63E65272A7D247F441505] - (.Hewlett-Packard Company - HP Support Assistant Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [99128] [PID.2988]
[MD5.ABEFA4BD23329FD9BD47496BF2E58774] - (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456] [PID.7968]
[MD5.30E9FAC23E2537D82F2836CB81AEE186] - (.Intel Corporation - Intel(R) ME Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896] [PID.6292]
[MD5.4269D44BB47A6DA5D80B11F4C8536458] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [276864] [PID.6160]
[MD5.DBE2E6388379D5CC78099650541E9566] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [364416] [PID.8372]
[MD5.2B93781BD610B4532FB61259DBD81B89] - (...) -- C:\Program Files (x86)\32444335-1433606691-3642-5335-28924A3BCF9A\knsw8CC1.tmp [762368] [PID.10144] =>PUP.Optional.CrossRider
[MD5.3BBEC4CC2A388B4C5D1EFE20EAD7D98F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.7140]
[MD5.3BBEC4CC2A388B4C5D1EFE20EAD7D98F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.7268]
[MD5.3BBEC4CC2A388B4C5D1EFE20EAD7D98F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.8676]
[MD5.3BBEC4CC2A388B4C5D1EFE20EAD7D98F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.9280]
[MD5.3BBEC4CC2A388B4C5D1EFE20EAD7D98F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.7104]
[MD5.3BBEC4CC2A388B4C5D1EFE20EAD7D98F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.6904]
[MD5.3BBEC4CC2A388B4C5D1EFE20EAD7D98F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.1768]
[MD5.E0A3E3BC4E710FEB0AE037475BD7A4CF] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\RayanB\AppData\Roaming\ZHP\ZHPDiag3.exe [1894400] [PID.8668]

---\\ Google Chrome, Démarrage,Recherche,Extensions (3) - 0s
G2 - GCE: Preference [User Data\Default] [bcoopjhlogialpgbfijblmflglkenkdf] On Stage =>PUP.Optional.OnStage
G2 - GCE: Preference [User Data\Default] [mpfmcaabcpjbkmpkbfdlaghkbjfhidja] On Stage =>PUP.Optional.OnStage
G2 - GCE: Preference [User Data\Default] [plbmlgkncgdpmiodnnehgopdohfmgblc] On Stage =>PUP.Optional.OnStage

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (3) - 2s
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS.) -- C:\Users\RayanB\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll
P2 - FPN: [HKLM] [@WildTangent.com/GamesAppPresenceDetector,Version=1.0] - (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll

---\\ Opera, Démarrage,Recherche,Plugins (1) - 0s
B2 - EXT: [dcnjhgnfnmijfkmcddcmffeamphmmeed] C:\Users\RayanB\AppData\Roaming\Opera Software\Opera Stable\Extensions\dcnjhgnfnmijfkmcddcmffeamphmmeed

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (22) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} Orphean
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\WINDOWS\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Applications lancées au démarrage du système (27) - 2s
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe (.not file.)
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe (.not file.)
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [3D BubbleSound] C:\Program Files\BubbleSound\3D BubbleSound.exe (.not file.) =>PUP.Optional.BubbleSound
O4 - HKLM\..\Run: [Windesk Winsearch] C:\Program Files (x86)\WindeskWinsearch\Windesk Winsearch.exe (.not file.) =>PUP.Optional.WindeskWinsearch
O4 - HKLM\..\Run: [SpaceSoundPro] C:\Program Files\SpaceSoundPro\SpaceSoundPro.exe (.not file.) =>PUP.Optional.SpaceSoundPro
O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\RayanB\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\RayanB\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\steamm\Steam.exe
O4 - HKCU\..\Run: [Shop-wit] C:\Program Files (x86)\shopwit\shopwit\1.3.26.16\shopwit.exe (.not file.) =>PUP.Optional.ShopWit
O4 - HKCU\..\Run: [apphide] C:\Program Files (x86)\baidu\baidu.exe (.not file.)
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
O4 - HKLM\..\Wow6432Node\Run: [HP CoolSense] . (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
O4 - HKLM\..\Wow6432Node\Run: [Monitor] . (.LeapFrog Enterprises, Inc. - Monitor Application.) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\RunOnce: [Update] C:\Users\RayanB\AppData\Roaming\ASPackage\ASPackage.exe (.not file.) =>PUP.Optional.ASPackage
O4 - HKUS\S-1-5-21-2739589919-145359885-51219775-1001\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\RayanB\AppData\Local\Akamai\netsession_win.exe
O4 - HKUS\S-1-5-21-2739589919-145359885-51219775-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-2739589919-145359885-51219775-1001\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\RayanB\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-2739589919-145359885-51219775-1001\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\steamm\Steam.exe
O4 - HKUS\S-1-5-21-2739589919-145359885-51219775-1001\..\Run: [Shop-wit] C:\Program Files (x86)\shopwit\shopwit\1.3.26.16\shopwit.exe (.not file.) =>PUP.Optional.ShopWit
O4 - HKUS\S-1-5-21-2739589919-145359885-51219775-1001\..\Run: [apphide] C:\Program Files (x86)\baidu\baidu.exe (.not file.)
O4 - HKUS\S-1-5-21-2739589919-145359885-51219775-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe

---\\ Winsock hijacker (Layered Service Provider) (20) - 0s
O10 - WLSP:\Catalog_Entries\000000000001\Winsock LSP File . (...) -- C:\Windows\System32\Peakoar.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000002\Winsock LSP File . (...) -- C:\Windows\System32\Peakoar.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000003\Winsock LSP File . (...) -- C:\Windows\System32\Peakoar.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000004\Winsock LSP File . (...) -- C:\Windows\System32\Peakoar.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000005\Winsock LSP File . (...) -- C:\Windows\System32\Shjencueit.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000006\Winsock LSP File . (...) -- C:\Windows\System32\Shjencueit.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000007\Winsock LSP File . (...) -- C:\Windows\System32\Shjencueit.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000008\Winsock LSP File . (...) -- C:\Windows\System32\Shjencueit.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000019\Winsock LSP File . (...) -- C:\Windows\System32\Shjencueit.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000020\Winsock LSP File . (...) -- C:\Windows\System32\Peakoar.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000001\Winsock LSP File . (...) -- C:\WINDOWS\system32\Peakoar64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000002\Winsock LSP File . (...) -- C:\WINDOWS\system32\Peakoar64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000003\Winsock LSP File . (...) -- C:\WINDOWS\system32\Peakoar64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000004\Winsock LSP File . (...) -- C:\WINDOWS\system32\Peakoar64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000005\Winsock LSP File . (...) -- C:\WINDOWS\system32\Shjencueit64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000006\Winsock LSP File . (...) -- C:\WINDOWS\system32\Shjencueit64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000007\Winsock LSP File . (...) -- C:\WINDOWS\system32\Shjencueit64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000008\Winsock LSP File . (...) -- C:\WINDOWS\system32\Shjencueit64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000019\Winsock LSP File . (...) -- C:\WINDOWS\system32\Shjencueit64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000020\Winsock LSP File . (...) -- C:\WINDOWS\system32\Peakoar64.dll =>Hijacker.Winsock

---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Liste des services NT non Microsoft et non désactivés (29) - 1s
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: Application Manager 6.49.325397 (AppMgr6.49.325397) . (...) - C:\ProgramData\AppMgr6.49.325397\AppMgr.exe (.not file.)
O23 - Service: Page Mouthpiece (bomujope) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1424774348-3642-5335-28924A3BCF9A\nsdCBE6.tmpfs =>PUP.Optional.CrossRider
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: LAN Digital Photo (gixifiry) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1425383889-3642-5335-28924A3BCF9A\nsw9979.tmpfs =>PUP.Optional.CrossRider
O23 - Service: Service Google Update (gupdate) (gupdate) . (...) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.)
O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: @oem19.inf,%hpservice_desc%;HP Service (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\WINDOWS\system32\Hpservice.exe
O23 - Service: HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Keyboard Close Down (hurygire) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1424774348-3642-5335-28924A3BCF9A\jnscFC91.tmp =>PUP.Optional.CrossRider
O23 - Service: Reverse Word Processor (hycewyxo) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1426002430-3642-5335-28924A3BCF9A\jnsf838A.tmp =>PUP.Optional.CrossRider
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service (Intel(R) ME Service) . (.Intel Corporation - Intel(R) ME Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: LeapFrog Connect Device Service (LeapFrog Connect Device Service) . (.LeapFrog Enterprises, Inc. - CommandService Application.) - C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Auto Format Alt (logulobu) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1425383889-3642-5335-28924A3BCF9A\jnskC775.tmp =>PUP.Optional.CrossRider
O23 - Service: Sort Line (mucucizu) . (...) - C:\Program Files (x86)\32444335-1433606691-3642-5335-28924A3BCF9A\knsw8CC1.tmp =>PUP.Optional.CrossRider
O23 - Service: OCDRXw (OCDRXw) . (.Rational Thought Solutions - HealthAlert Service.) - C:\ProgramData\CwOgudDOd\OCDRXw.exe
O23 - Service: Zip Code Read (ronevulo) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1426002430-3642-5335-28924A3BCF9A\nsd445A.tmp (.not file.) =>PUP.Optional.CrossRider
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @C:\WINDOWS\system32\stlang64.dll,-10101 (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\stacsv64.exe
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Update Edu App (Update Edu App) . (...) - C:\Program Files (x86)\Edu App\updateEduApp.exe (.not file.) =>PUP.Optional.EduApp*
O23 - Service: WIN-srvGA (WIN-srvGA) . (...) - C:\Windows\SysWOW64\srvany.exe
O23 - Service: Device Cut (xoperoze) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1433606691-3642-5335-28924A3BCF9A\jnsz9CA4.tmp =>PUP.Optional.CrossRider
O23 - Service: Subscription Clear (zedepory) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1433606691-3642-5335-28924A3BCF9A\hnsyB51F.tmp =>PUP.Optional.CrossRider

---\\ Tâches planifiées en automatique (69) - 5s
[MD5.90E36865A87406BFDEBB89F9A07103F6] [APT] [2wmBNIOH1MOgDUI] (...) -- C:\Users\RayanB\AppData\Roaming\AgtEU7o\IBbi26T.exe [39752]
[MD5.00000000000000000000000000000000] [APT] [47ee19ae-4111-4c05-94fd-10a4febfdc12-7] (...) -- C:\Program Files (x86)\winservice86\47ee19ae-4111-4c05-94fd-10a4febfdc12-7.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.9986A45EAC29A2BF7381D658350A6D85] [APT] [56UJ0wn7CpDc3XK] (...) -- C:\Users\RayanB\AppData\Roaming\u7NkFwU\4vPXdGv.exe [7496]
[MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000]
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP1] (...) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.Optional.AnyProtect
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP2] (...) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.Optional.AnyProtect
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP3] (...) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.Optional.AnyProtect
[MD5.00000000000000000000000000000000] [APT] [Bidaily Synchronize Task[3c32]] (...) -- c:\programdata\{30524a40-cfad-674b-3052-24a40cfa2903}\hqghumeaylnlf.exe (.not file.) [0] =>PUP.Optional.BidailySync
[MD5.1F43457D589ACEE3C6C56ED78381C3DB] [APT] [blTtyyCWYZgS2hQ] (...) -- C:\Users\RayanB\AppData\Roaming\t8vp26e\J2AihmO.exe [31560]
[MD5.85CEA8DA44E82DE16FF79C440D4DEE01] [APT] [Busiomof] (.Copyright © 2015.) -- C:\ProgramData\Busiomof\1.0.4.1\cimuonuk.exe [157696] =>Heuristic.PullUpdate
[MD5.3D01BD151A423F6B7D89970E42E31E46] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6453528]
[MD5.724CB7A116F7E1A67009D751BCF86586] [APT] [CLMLSvc_P2G8] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120]
[MD5.CF7927AE082B578E38B82AE6D95B5F90] [APT] [CLVDLauncher] (.CyberLink Corp..) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [338544]
[MD5.00000000000000000000000000000000] [APT] [e88cab1d-5ce2-45cb-a6bc-61d4b48ece55-7] (...) -- C:\Program Files (x86)\winservice86\e88cab1d-5ce2-45cb-a6bc-61d4b48ece55-7.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-2739589919-145359885-51219775-1001Core] (.Facebook Inc..) -- C:\Users\RayanB\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-2739589919-145359885-51219775-1001UA] (.Facebook Inc..) -- C:\Users\RayanB\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.AF51D4FE088A3EFA5303B36FFFD0581B] [APT] [HPCeeScheduleForRayanB] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [91704]
[MD5.B7F55E2AE978D3D34F7876EE5D689AAE] [APT] [MirageAgent] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488]
[MD5.00000000000000000000000000000000] [APT] [mychromium_update] (...) -- C:\Users\RayanB\AppData\Roaming\~zotubmf.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [QAPZBODXZK] (...) -- C:\ProgramData\b2714154b29e46b4a53d9b6d21b8db45\b2714154b29e46b4a53d9b6d21b8db45.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [sol3007] (...) -- C:\PROGRA~2\FASTSE~1\sol3007.exe (.not file.) [0] =>PUP.Optional.FastSearch
[MD5.8B8BCACCFA78058820290172835023EA] [APT] [Superclean] (.Super PC Tools Ltd.) -- c:\programdata\{ea119d12-f3a8-13c7-ea11-19d12f3a744b}\hqghumeaylnlf.exe [6610592]
[MD5.00000000000000000000000000000000] [APT] [WIN-fdfEfEfAfC] (...) -- C:\Users\RayanB\AppData\Roaming\~qlossug.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [WIN-GGfIfEGCfEGbGffIfCfEGC] (...) -- C:\Users\RayanB\AppData\Roaming\~huctuvn.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [WIN-statsAdmin] (...) -- C:\Users\RayanB\AppData\Local\Microsoft\WinU\~rybziry.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [WIN-statsSystem] (...) -- C:\Users\RayanB\AppData\Local\Microsoft\WinU\~zsqgcef.exe (.not file.) [0]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [1002] =>.Adobe Systems Incorporated
O39 - APT: APSnotifierPP1 - (...) -- C:\WINDOWS\Tasks\APSnotifierPP1.job [378] =>PUP.Optional.AnyProtect
O39 - APT: APSnotifierPP2 - (...) -- C:\WINDOWS\Tasks\APSnotifierPP2.job [376] =>PUP.Optional.AnyProtect
O39 - APT: APSnotifierPP3 - (...) -- C:\WINDOWS\Tasks\APSnotifierPP3.job [376] =>PUP.Optional.AnyProtect
O39 - APT: Bidaily Synchronize Task[3c32] - (...) -- C:\WINDOWS\Tasks\Bidaily Synchronize Task[3c32].job [354] =>PUP.Optional.BidailySync
O39 - APT: FacebookUpdateTaskUserS-1-5-21-2739589919-145359885-51219775-1001Core - (.Facebook Inc..) -- C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2739589919-145359885-51219775-1001Core.job [922] =>.Facebook Inc.
O39 - APT: FacebookUpdateTaskUserS-1-5-21-2739589919-145359885-51219775-1001UA - (.Facebook Inc..) -- C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2739589919-145359885-51219775-1001UA.job [944] =>.Facebook Inc.
O39 - APT: HPCeeScheduleForRayanB - (.Hewlett-Packard.) -- C:\WINDOWS\Tasks\HPCeeScheduleForRayanB.job [348] =>.Hewlett-Packard
O39 - APT: Superclean - (.Super PC Tools Ltd.) -- C:\WINDOWS\Tasks\Superclean.job [354] =>.Super PC Tools Ltd
O39 - APT: 2wmBNIOH1MOgDUI - (...) -- C:\WINDOWS\System32\Tasks\2wmBNIOH1MOgDUI [3282]
O39 - APT: 47ee19ae-4111-4c05-94fd-10a4febfdc12-7 - (...) -- C:\WINDOWS\System32\Tasks\47ee19ae-4111-4c05-94fd-10a4febfdc12-7 [7542] =>PUP.Optional.CrossRider
O39 - APT: 56UJ0wn7CpDc3XK - (...) -- C:\WINDOWS\System32\Tasks\56UJ0wn7CpDc3XK [3242]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3890] =>.Adobe Systems Incorporated
O39 - APT: APSnotifierPP1 - (...) -- C:\WINDOWS\System32\Tasks\APSnotifierPP1 [2810] =>PUP.Optional.AnyProtect
O39 - APT: APSnotifierPP2 - (...) -- C:\WINDOWS\System32\Tasks\APSnotifierPP2 [2808] =>PUP.Optional.AnyProtect
O39 - APT: APSnotifierPP3 - (...) -- C:\WINDOWS\System32\Tasks\APSnotifierPP3 [2808] =>PUP.Optional.AnyProtect
O39 - APT: Bidaily Synchronize Task[3c32] - (...) -- C:\WINDOWS\System32\Tasks\Bidaily Synchronize Task[3c32] [3242] =>PUP.Optional.BidailySync
O39 - APT: blTtyyCWYZgS2hQ - (...) -- C:\WINDOWS\System32\Tasks\blTtyyCWYZgS2hQ [3240]
O39 - APT: Busiomof - (.Copyright © 2015.) -- C:\WINDOWS\System32\Tasks\Busiomof [3444] =>Heuristic.PullUpdate
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\WINDOWS\System32\Tasks\CCleanerSkipUAC [2774] =>.Piriform Ltd
O39 - APT: CLMLSvc_P2G8 - (.CyberLink.) -- C:\WINDOWS\System32\Tasks\CLMLSvc_P2G8 [3174] =>.CyberLink
O39 - APT: CLVDLauncher - (.CyberLink Corp..) -- C:\WINDOWS\System32\Tasks\CLVDLauncher [3174] =>.CyberLink Corp.
O39 - APT: e88cab1d-5ce2-45cb-a6bc-61d4b48ece55-7 - (...) -- C:\WINDOWS\System32\Tasks\e88cab1d-5ce2-45cb-a6bc-61d4b48ece55-7 [7542] =>PUP.Optional.CrossRider
O39 - APT: FacebookUpdateTaskUserS-1-5-21-2739589919-145359885-51219775-1001Core - (.Facebook Inc..) -- C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2739589919-145359885-51219775-1001Core [3444] =>.Facebook Inc.
O39 - APT: FacebookUpdateTaskUserS-1-5-21-2739589919-145359885-51219775-1001UA - (.Facebook Inc..) -- C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2739589919-145359885-51219775-1001UA [3794] =>.Facebook Inc.
O39 - APT: HPCeeScheduleForRayanB - (.Hewlett-Packard.) -- C:\WINDOWS\System32\Tasks\HPCeeScheduleForRayanB [3164] =>.Hewlett-Packard
O39 - APT: MirageAgent - (.CyberLink.) -- C:\WINDOWS\System32\Tasks\MirageAgent [3148] =>.CyberLink
O39 - APT: mychromium_update - (...) -- C:\WINDOWS\System32\Tasks\mychromium_update [3212]
O39 - APT: QAPZBODXZK - (...) -- C:\WINDOWS\System32\Tasks\QAPZBODXZK [3556]
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\Shop-wit Updater [3554] =>PUP.Optional.ShopWit
O39 - APT: sol3007 - (...) -- C:\WINDOWS\System32\Tasks\sol3007 [3090] =>PUP.Optional.FastSearch
O39 - APT: Superclean - (.Super PC Tools Ltd.) -- C:\WINDOWS\System32\Tasks\Superclean [3242] =>.Super PC Tools Ltd
O39 - APT: WIN-fdfEfEfAfC - (...) -- C:\WINDOWS\System32\Tasks\WIN-fdfEfEfAfC [3186]
O39 - APT: WIN-GGfIfEGCfEGbGffIfCfEGC - (...) -- C:\WINDOWS\System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC [3186]
O39 - APT: WIN-statsAdmin - (...) -- C:\WINDOWS\System32\Tasks\WIN-statsAdmin [3308]
O39 - APT: WIN-statsSystem - (...) -- C:\WINDOWS\System32\Tasks\WIN-statsSystem [3238]
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\{3DDAA09F-A023-4588-B33B-6F812A628A56} [3086]
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\{A3836613-2A03-436A-99D5-638D5D7A2551} [3136]
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\{CA191B2D-1DF2-4C0F-ABF6-42C4B0A0BA6F} [3476]
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\{CA90555D-D1DF-4AF2-BB89-A651DD21918B} [3146]
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\{CAD417DE-6D85-4BD9-8261-2FB74D436E07} [3146]
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\{F9994F76-BFA5-4D45-B544-C94DA279B663} [3112]
O39 - APT: Orphean - (...) -- C:\WINDOWS\System32\Tasks\{FE2866D3-DCC6-4C79-9B5E-994D2B521102} [3144]

---\\ Logiciels installés (117) - 8s
O42 - Logiciel: Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03. - (.Leapfrog.) [HKLM][64Bits] -- 8F14F2ECEDE68D26EA515B48DC25B39103C4FE8D
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: HP Imaging Device Functions 14.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions
O42 - Logiciel: HP Solution Center 14.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Customer Participation Program 14.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities
O42 - Logiciel: OCR Software by I.R.I.S. 14.0 - (.HP.) [HKLM][64Bits] -- HPOCR
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM][64Bits] -- Shop for HP Supplies
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: VLC media player 2.1.4 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Energy Star - (.Hewlett-Packard.) [HKLM][64Bits] -- {0FA995CC-C849-4755-B14B-5404CC75DC24}
O42 - Logiciel: HP Photosmart All-In-One Driver Software - (.HP.) [HKLM][64Bits] -- {4F6C1178-3FC0-44BB-8F9A-28D8516DFEE2}
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5977D04D-1D6A-952C-97AF-04D9D4C0AE56}
O42 - Logiciel: HP Postscript Converter - (.Hewlett-Packard.) [HKLM][64Bits] -- {6E14E6D6-3175-4E1A-B934-CAB5A86367CD}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D66B7840-6A9B-11E4-8FED-F04DA23A5C58}
O42 - Logiciel: HP Registration Service - (.Hewlett-Packard.) [HKLM][64Bits] -- {E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {F9E399CB-046F-45FD-A67F-CF399E2128E4}
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Aeria Ignite - (.Aeria Games & Entertainment.) [HKLM][64Bits] -- Aeria Ignite 1.13.3296
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net
O42 - Logiciel: French App Name - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: EdenEternal-FR - (...) [HKLM][64Bits] -- EdenEternal-FR
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink Media Suite 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
O42 - Logiciel: CyberLink PhotoDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}
O42 - Logiciel: CyberLink PowerDirector 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink PowerDVD - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: Use the entry named LeapFrog Connect to uninstall (LeapFrog LeapPad Explore - (.LeapFrog.) [HKLM][64Bits] -- LeapPadExplorerPlugin
O42 - Logiciel: Use the entry named LeapFrog Connect to uninstall (LeapFrog Leapster Explor - (.LeapFrog.) [HKLM][64Bits] -- LeapsterExplorerPlugin
O42 - Logiciel: Pivot Stickfigure Animator version 2.2.6 - (...) [HKLM][64Bits] -- Pivot Stickfigure Animator_is1
O42 - Logiciel: HP Connected Music (Meridian - installer) - (.Meridian Audio Ltd.) [HKLM][64Bits] -- StartHPConnectedMusic
O42 - Logiciel: Total War: ROME II - Emperor Edition - (.Creative Assembly.) [HKLM][64Bits] -- Steam App 214950
O42 - Logiciel: LeapFrog Connect (French) - (.LeapFrog.) [HKLM][64Bits] -- UPCShell
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall =>.WildTangent
O42 - Logiciel: Jeux WildTangent - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall =>.WildTangent
O42 - Logiciel: World of Warcraft - (.Blizzard Entertainment.) [HKLM][64Bits] -- World of Warcraft
O42 - Logiciel: 7 Wonders II - (.WildTangent.) [HKLM][64Bits] -- WTA-0e88a5cf-56db-40f9-b6a1-db8d1a21c56d =>.WildTangent
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WTA-19c05930-3edf-433a-a2fb-abfd72c91259 =>.WildTangent
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-1e38c2c8-1f49-449f-b9ad-b80bc6374d04 =>.WildTangent
O42 - Logiciel: Jewel Quest Solitaire 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-267f6629-0fd8-4b1a-82fe-7ac3057b4199 =>.WildTangent
O42 - Logiciel: Build-a-lot 4 - Power Source - (.WildTangent.) [HKLM][64Bits] -- WTA-2eb9e434-33c4-4c0d-9795-bcebcaa6b04f =>.WildTangent
O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM][64Bits] -- WTA-3c7381f5-e5ac-47ef-8a01-f9179bc75fcd =>.WildTangent
O42 - Logiciel: Bejeweled 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-3f24f65f-a088-4e55-91d5-288fd7ad38eb =>.WildTangent
O42 - Logiciel: Zuma's Revenge - (.WildTangent.) [HKLM][64Bits] -- WTA-46ce0cd7-dbf4-4791-b740-6beedcf896b2 =>.WildTangent
O42 - Logiciel: Jewel Quest II - (.WildTangent.) [HKLM][64Bits] -- WTA-5b9778aa-f5af-442f-8c2f-9840bc4114a1 =>.WildTangent
O42 - Logiciel: Ranch Rush 2 - Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-69698f37-6cbc-4e12-89e7-4aa19ae22a54 =>.WildTangent
O42 - Logiciel: Cradle of Rome 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-75c9cefb-eabf-4b26-abbc-e1d707079233 =>.WildTangent
O42 - Logiciel: Final Drive Fury - (.WildTangent.) [HKLM][64Bits] -- WTA-93653345-e086-4e89-a39b-b9d40bdd0a34 =>.WildTangent
O42 - Logiciel: Jewel Match 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-9bdb6881-8f3f-456d-94fd-13fe9fff60d0 =>.WildTangent
O42 - Logiciel: Mystery of Mortlake Mansion - (.WildTangent.) [HKLM][64Bits] -- WTA-9e4b0894-773e-4a6d-8332-94b7698fbdcb =>.WildTangent
O42 - Logiciel: Crazy Chicken Soccer - (.WildTangent.) [HKLM][64Bits] -- WTA-a170daec-11c1-452e-a600-415f00a267a2 =>.WildTangent
O42 - Logiciel: Governor of Poker 2 Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-a5690c2d-152c-4063-bfcb-e16d2dc0a619 =>.WildTangent
O42 - Logiciel: Virtual Families - (.WildTangent.) [HKLM][64Bits] -- WTA-a95f67f3-1aa7-4ba4-a060-b10c4946332b =>.WildTangent
O42 - Logiciel: Aloha TriPeaks - (.WildTangent.) [HKLM][64Bits] -- WTA-ab62d97f-0cd8-4418-b725-5cc41602c1a5 =>.WildTangent
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WTA-b6722e44-8c60-4c08-b4e2-ba23031f594e =>.WildTangent
O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM][64Bits] -- WTA-d68205d9-ec80-400c-ba63-1488975a6b7c =>.WildTangent
O42 - Logiciel: Trinklit Supreme - (.WildTangent.) [HKLM][64Bits] -- WTA-e9d03400-a63b-4d51-9cdd-2fc9a23d7821 =>.WildTangent
O42 - Logiciel: LeapFrog Leapster Explorer Plugin - (.LeapFrog.) [HKLM][64Bits] -- {01E73236-BF0E-44E3-B926-0A40996F1671}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Utility Center - (.Hewlett-Packard.) [HKLM][64Bits] -- {0C57987A-A03A-4B95-A309-D23F78F406CA}
O42 - Logiciel: HP CoolSense - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F}
O42 - Logiciel: HP Documentation - (.Hewlett-Packard.) [HKLM][64Bits] -- {1AC082E0-049D-4C5C-9ECF-9473AD5A949D}
O42 - Logiciel: CyberLink Media Suite 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM][64Bits] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7}
O42 - Logiciel: Aeria Ignite - (.Aeria Games & Entertainment.) [HKLM][64Bits] -- {22A72F06-FA80-42CB-9A8C-46C6AE53425C}
O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {23CCE784-A812-4647-AEFF-1DCCD4E57478}
O42 - Logiciel: Skype™ 7.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Java 8 Update 25 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218025F0}
O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App =>.WildTangent
O42 - Logiciel: HP Wireless Button Driver - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {30B2D1D8-0A07-4B71-9553-0710C5D31E35}
O42 - Logiciel: Connected Music powered by Universal Music Group version 1.0 - (.Snowite.) [HKLM][64Bits] -- {46037DC7-F927-46DF-935F-D6F122BDD34B}_is1
O42 - Logiciel: CyberLink PhotoDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {4862344A-A39C-4897-ACD4-A1BED5163C5A}
O42 - Logiciel: HP Recovery Manager - (.Hewlett-Packard.) [HKLM][64Bits] -- {528AB81B-D65A-4AB0-A2B6-82B51A087D01}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.2.2.3 - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp =>.WildTangent
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {77D28FF5-242F-488A-8215-937D6A4D69E0}
O42 - Logiciel: OpenOffice.org 3.4.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: Ralink RT5390R 802.11bgn Wi-Fi Adapter - (.Ralink.) [HKLM][64Bits] -- {8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {925652DC-D377-41CC-B97E-B0979B4F534D}
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- {92606477-9366-4D3B-8AE3-6BE4B29727AB}
O42 - Logiciel: HP Software Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {98D5A5FA-1AA3-4CBE-B26C-A737E20F8A6D}
O42 - Logiciel: TERA - (.Gameforge Productions GmbH.) [HKLM][64Bits] -- {A2F166A0-F031-4E27-A057-C69733219434}_is1
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}
O42 - Logiciel: CyberLink PowerDirector 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LeapFrog Connect - (.LeapFrog.) [HKLM][64Bits] -- {C9505888-CD3C-4E59-BBD8-07D155D7E912}
O42 - Logiciel: French App Name - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {DE3A9DC5-9A5D-6485-9662-347162C7E4CA}
O42 - Logiciel: CyberLink PowerDVD - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E5823036-6F09-4D0A-B05C-E2BAA129288A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: LeapFrog LeapPad Explorer Plugin - (.LeapFrog.) [HKLM][64Bits] -- {FB5102A1-43D2-4264-A12A-0A0C46FD7AC5}
O42 - Logiciel: Dofus Beta - (.Ankama.) [HKCU][64Bits] -- 1D98FB2F-73F1-419A-A159-521B0F645CFB-2
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU][64Bits] -- Akamai
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer

---\\ HKCU & HKLM Software Keys (192) - 8s
HKLM\SOFTWARE\Wow6432Node\39ba1440-2262-497e-a08b-cdaf04856e09 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\435d9d33-8305-d1e4-d97e-864ca253d43d =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AIM Toolbar
HKLM\SOFTWARE\Wow6432Node\anset
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies
HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\Dofus2
HKLM\SOFTWARE\Wow6432Node\Dofus2Beta
HKLM\SOFTWARE\Wow6432Node\f1a9cb74-b1ce-4f94-bfc7-8c3c27804eab =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\FNOnlineFB
HKLM\SOFTWARE\Wow6432Node\Fraps
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\IDT
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\IncrediMail
HKLM\SOFTWARE\Wow6432Node\Infonaut_1.10.0.14 =>PUP.Optional.Infonaut
HKLM\SOFTWARE\Wow6432Node\Insoft
HKLM\SOFTWARE\Wow6432Node\Insyde
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Klip Pal =>PUP.Optional.KlipPal
HKLM\SOFTWARE\Wow6432Node\Lake
HKLM\SOFTWARE\Wow6432Node\LeapFrog
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Mychromium
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OpenOffice.org
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\Pando Networks
HKLM\SOFTWARE\Wow6432Node\Ralink
HKLM\SOFTWARE\Wow6432Node\raptor
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Reg
HKLM\SOFTWARE\Wow6432Node\Riot Games
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\searchult =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\SIEN SA
HKLM\SOFTWARE\Wow6432Node\SiteWhatsapp
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SmartPurpleConf
HKLM\SOFTWARE\Wow6432Node\Software
HKLM\SOFTWARE\Wow6432Node\Sony Creative Software
HKLM\SOFTWARE\Wow6432Node\SpeedBit
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\SuperClick_1.10.0.16 =>PUP.Optional.SuperClick
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.Fuyu
HKLM\SOFTWARE\Wow6432Node\Symantec
HKLM\SOFTWARE\Wow6432Node\SymNRT
HKLM\SOFTWARE\Wow6432Node\TERA
HKLM\SOFTWARE\Wow6432Node\troll
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WajIntEnhance =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\WildTangent
HKLM\SOFTWARE\Wow6432Node\winservice86-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\WinU
HKLM\SOFTWARE\Wow6432Node\WordShark_1.10.0.20 =>PUP.Optional.WordShark
HKLM\SOFTWARE\Wow6432Node\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Aeria Games
HKCU\SOFTWARE\Akamai
HKCU\SOFTWARE\Ankama
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AskPartnerNetwork =>Toolbar.AskBar
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\Bugsplat
HKCU\SOFTWARE\CamStudioOpenSource for Nick
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CinemaPlus-3.2cV01.04-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV06.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV07.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV10.08-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV11.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV15.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV22.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-4.2vV06.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Cinemax Video 1.9cV24.02-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DailyPcClean =>PUP.Optional.DailyPCClean
HKCU\SOFTWARE\DirectShow
HKCU\SOFTWARE\DoctorPCConfig
HKCU\SOFTWARE\DoctorPCLanguage
HKCU\SOFTWARE\Facebook
HKCU\SOFTWARE\FlashGamesRockstarApp =>PUP.Optional.FlashGamesRockstar
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\HD-Quality-3.1V27.03-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\HomeTab =>PUP.Optional.CertifiedToolbar
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\HQ.Video_f4V26.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\HQVid-1.7pV03.03-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\I - Cinema-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\IncrediMail
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\iWebar-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\kde.org
HKCU\SOFTWARE\Klip Pal =>PUP.Optional.KlipPal
HKCU\SOFTWARE\Kromtech
HKCU\SOFTWARE\Lake
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\MGinstall
HKCU\SOFTWARE\Mine
HKCU\SOFTWARE\mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Norton
HKCU\SOFTWARE\Object Browser-nv-ie =>PUP.Optional.ObjectBrowser
HKCU\SOFTWARE\OpenOffice.org
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Pando Networks
HKCU\SOFTWARE\phenomedia publishing gmbh
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Reg
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\SearchProtectWS =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\shockwave.com
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\skype
HKCU\SOFTWARE\SkypeRS
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\Sony Creative Software
HKCU\SOFTWARE\Super Optimizer =>PUP.Optional.SuperOptimizer
HKCU\SOFTWARE\Symantec
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\teras games
HKCU\SOFTWARE\The Creative Assembly
HKCU\SOFTWARE\TNT2 =>PUP.Optional.TidyNetwork
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\Windows Live Writer
HKCU\SOFTWARE\winservice86-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Adobe
HKCU\SOFTWARE\AppDataLow\Software\AppDataLow
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Macromedia
HKCU\SOFTWARE\AppDataLow\Software\Unity

---\\ Contenu des dossiers Programmes (318) - 9s
O43 - CFD: 2015/08/20 00:26:10 - [] D -- C:\Program Files (x86)\32444335-1433606691-3642-5335-28924A3BCF9A =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/10 22:49:38 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/06/27 23:47:05 - [] D -- C:\Program Files (x86)\Adobe Media Player
O43 - CFD: 2014/02/02 18:21:37 - [] D -- C:\Program Files (x86)\Aeria Games
O43 - CFD: 2014/11/14 18:22:40 - [0] D -- C:\Program Files (x86)\Amazon
O43 - CFD: 2012/09/23 01:18:56 - [] D -- C:\Program Files (x86)\AMD APP
O43 - CFD: 2015/02/18 19:07:54 - [] D -- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 2015/04/18 21:05:41 - [] D -- C:\Program Files (x86)\Battle.net
O43 - CFD: 2012/09/23 01:24:08 - [] D -- C:\Program Files (x86)\Bonjour
O43 - CFD: 2013/04/22 22:04:09 - [] D -- C:\Program Files (x86)\CamStudio 2.7
O43 - CFD: 2015/08/09 22:30:34 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2012/09/01 22:29:02 - [] D -- C:\Program Files (x86)\Connected Music powered by Universal Music Group
O43 - CFD: 2014/04/05 23:19:14 - [] D -- C:\Program Files (x86)\CyberLink
O43 - CFD: 2013/09/10 17:05:33 - [] D -- C:\Program Files (x86)\Dofus2Beta
O43 - CFD: 2015/08/14 22:46:07 - [] D -- C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/01/01 01:43:53 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2014/05/20 11:38:32 - [] D -- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 2014/01/22 20:59:33 - [] D -- C:\Program Files (x86)\Hp
O43 - CFD: 2012/09/01 22:39:12 - [] D -- C:\Program Files (x86)\HP Games
O43 - CFD: 2012/09/01 22:28:55 - [] D -- C:\Program Files (x86)\HPConnectedMusic
O43 - CFD: 2015/04/15 17:35:17 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2012/09/23 01:21:08 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/08/13 01:33:51 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2014/11/21 16:54:05 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2012/12/25 23:29:05 - [] D -- C:\Program Files (x86)\LeapFrog
O43 - CFD: 2013/07/26 02:07:16 - [0] D -- C:\Program Files (x86)\majtuto4pc_fr_a2 =>PUP.Optional.Softomate
O43 - CFD: 2014/02/19 14:44:38 - [0] D -- C:\Program Files (x86)\Microsoft
O43 - CFD: 2012/09/01 22:19:24 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/08/12 23:40:48 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2012/09/01 22:24:17 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2013/11/09 15:17:16 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/02/18 18:28:28 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2012/12/24 23:53:51 - [] RD -- C:\Program Files (x86)\Online Services
O43 - CFD: 2013/04/20 14:01:51 - [] D -- C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 2014/03/11 20:16:20 - [0] D -- C:\Program Files (x86)\Pando Networks
O43 - CFD: 2012/12/27 16:00:54 - [] D -- C:\Program Files (x86)\Pivot Stickfigure Animator
O43 - CFD: 2015/08/09 22:31:33 - [0] D -- C:\Program Files (x86)\predm =>PUP.Optional.Downware
O43 - CFD: 2015/04/15 17:35:17 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2015/02/18 18:28:28 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/05/27 12:16:15 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2015/02/24 12:05:34 - [] D -- C:\Program Files (x86)\Software =>PUP.Optional.Boxore
O43 - CFD: 2015/04/15 18:11:15 - [] D -- C:\Program Files (x86)\Steam
O43 - CFD: 2012/09/23 01:49:52 - [] D -- C:\Program Files (x86)\SymSilent
O43 - CFD: 2015/05/26 18:58:13 - [] D -- C:\Program Files (x86)\TERA
O43 - CFD: 2014/02/19 15:07:04 - [] D -- C:\Program Files (x86)\VLC Player GPU+
O43 - CFD: 2012/09/01 22:39:01 - [] D -- C:\Program Files (x86)\WildGames
O43 - CFD: 2013/01/26 23:09:53 - [] D -- C:\Program Files (x86)\WildTangent Games
O43 - CFD: 2015/08/13 01:33:36 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2012/09/01 22:24:43 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2014/11/21 07:55:33 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/02/18 19:08:05 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2014/11/21 07:55:33 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2014/11/21 07:55:33 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2014/11/21 07:55:33 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2015/02/18 19:08:05 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 2014/11/21 07:56:04 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/03/11 23:55:56 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/02/23 17:48:01 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/02/18 19:18:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
O43 - CFD: 2015/02/18 19:08:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AeriaGames
O43 - CFD: 2015/04/06 12:41:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
O43 - CFD: 2015/08/10 14:21:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/02/18 19:18:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
O43 - CFD: 2012/12/25 00:14:34 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dofus2
O43 - CFD: 2015/02/18 19:18:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dofus2Beta
O43 - CFD: 2015/07/04 23:04:49 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/08/10 22:39:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/02/18 19:18:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2015/02/18 19:18:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
O43 - CFD: 2015/02/18 19:18:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015/02/18 19:18:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LeapFrog Connect
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/27 00:28:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
O43 - CFD: 2015/08/12 23:37:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/02/18 19:18:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
O43 - CFD: 2015/02/18 19:08:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewFeature1
O43 - CFD: 2015/02/18 19:18:09 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
O43 - CFD: 2015/02/18 19:18:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
O43 - CFD: 2015/02/18 19:08:15 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
O43 - CFD: 2015/02/18 19:08:15 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shopping and Services
O43 - CFD: 2015/02/18 19:18:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/07/27 00:28:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/04/15 18:11:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2014/11/21 07:56:04 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2014/11/21 00:27:29 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/02/18 19:18:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TERA
O43 - CFD: 2015/02/18 19:18:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/02/18 19:18:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2015/02/18 19:18:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
O43 - CFD: 2015/08/11 18:33:42 - [] D -- C:\ProgramData\7WinManPro7
O43 - CFD: 2015/08/10 22:49:02 - [] D -- C:\ProgramData\9085cf4400007c51
O43 - CFD: 2012/12/25 23:37:07 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2013/04/27 20:12:56 - [] D -- C:\ProgramData\Aeria Games
O43 - CFD: 2012/09/23 01:24:06 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/08/09 21:05:42 - [] D -- C:\ProgramData\ATI
O43 - CFD: 2015/08/10 14:26:06 - [] D -- C:\ProgramData\atjs
O43 - CFD: 2013/03/27 17:52:25 - [] D -- C:\ProgramData\Battle.net
O43 - CFD: 2013/03/27 17:53:13 - [] D -- C:\ProgramData\Blizzard Entertainment
O43 - CFD: 2012/12/24 23:07:53 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2015/08/09 21:10:16 - [] D -- C:\ProgramData\Busiomof
O43 - CFD: 2015/02/24 13:17:13 - [] D -- C:\ProgramData\CwOgudDOd
O43 - CFD: 2013/01/05 00:41:23 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2014/03/18 13:55:07 - [] D -- C:\ProgramData\Hewlett-Packard
O43 - CFD: 2014/05/26 16:51:15 - [] D -- C:\ProgramData\HP
O43 - CFD: 2014/01/22 20:58:55 - [] D -- C:\ProgramData\HP Product Assistant
O43 - CFD: 2014/03/10 20:29:06 - [] D -- C:\ProgramData\HPSSUPPLY
O43 - CFD: 2015/08/10 22:37:58 - [] D -- C:\ProgramData\IHProtectUpDate =>PUP.Optional.AgentODR
O43 - CFD: 2012/09/23 01:37:43 - [] D -- C:\ProgramData\install_clap
O43 - CFD: 2012/09/23 01:21:09 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2012/12/25 23:28:04 - [] D -- C:\ProgramData\Leapfrog
O43 - CFD: 2012/12/25 23:37:03 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/07/27 00:28:33 - [] D -- C:\ProgramData\McAfee Security Scan
O43 - CFD: 2012/12/24 23:07:53 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/02/18 19:08:17 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2012/12/24 23:07:53 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2013/06/02 17:19:26 - [] D -- C:\ProgramData\Norton
O43 - CFD: 2012/09/23 01:47:48 - [] D -- C:\ProgramData\NortonInstaller
O43 - CFD: 2014/11/21 16:54:07 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2012/09/23 01:24:23 - [] D -- C:\ProgramData\Ralink Driver
O43 - CFD: 2014/11/21 07:55:33 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2014/07/24 16:18:22 - [] D -- C:\ProgramData\Riot Games
O43 - CFD: 2015/03/03 19:09:03 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2013/11/09 17:46:37 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2012/09/23 01:27:51 - [] D -- C:\ProgramData\Synaptics
O43 - CFD: 2014/07/14 17:18:23 - [] AD -- C:\ProgramData\Temp
O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2013/01/26 23:11:09 - [] D -- C:\ProgramData\WildTangent
O43 - CFD: 2015/08/10 22:38:37 - [] D -- C:\ProgramData\yWinManProy
O43 - CFD: 2015/08/16 22:41:00 - [] D -- C:\ProgramData\{ea119d12-f3a8-13c7-ea11-19d12f3a744b}
O43 - CFD: 2014/07/11 02:56:03 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2015/04/06 12:46:22 - [] D -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 2014/04/05 23:21:37 - [] D -- C:\Program Files (x86)\Common Files\CyberLink
O43 - CFD: 2014/01/22 20:57:24 - [] D -- C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 2014/01/22 20:57:27 - [] D -- C:\Program Files (x86)\Common Files\HP
O43 - CFD: 2012/09/23 01:19:10 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 2014/11/21 16:54:50 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2013/06/02 17:24:23 - [] D -- C:\Program Files (x86)\Common Files\Kaspersky Lab
O43 - CFD: 2015/02/18 19:07:56 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2012/09/01 22:16:41 - [] D -- C:\Program Files (x86)\Common Files\Nikon
O43 - CFD: 2012/09/23 01:19:47 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2014/10/01 15:58:11 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2015/06/08 10:31:29 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 2013/06/02 17:17:24 - [0] D -- C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 2014/11/21 07:55:33 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2012/09/01 22:23:00 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2014/04/06 21:55:42 - [] D -- C:\Users\RayanB\AppData\Roaming\.ascentia
O43 - CFD: 2013/11/09 20:39:37 - [] D -- C:\Users\RayanB\AppData\Roaming\.minecraft
O43 - CFD: 2015/07/27 00:26:20 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1424774348-3642-5335-28924A3BCF9A
O43 - CFD: 2015/02/24 12:50:18 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1424778617-3642-5335-28924A3BCF9A
O43 - CFD: 2015/02/24 14:10:25 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1424783423-3642-5335-28924A3BCF9A
O43 - CFD: 2015/03/02 15:09:00 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1425305339-3642-5335-28924A3BCF9A
O43 - CFD: 2015/07/27 00:26:20 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1425383889-3642-5335-28924A3BCF9A
O43 - CFD: 2015/03/03 14:35:00 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1425389699-3642-5335-28924A3BCF9A
O43 - CFD: 2015/03/03 21:55:13 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1425416112-3642-5335-28924A3BCF9A
O43 - CFD: 2015/03/04 14:17:27 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1425471445-3642-5335-28924A3BCF9A
O43 - CFD: 2015/03/05 02:10:13 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1425514213-3642-5335-28924A3BCF9A
O43 - CFD: 2015/03/05 15:53:58 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1425563633-3642-5335-28924A3BCF9A
O43 - CFD: 2015/03/09 19:19:28 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1425921565-3642-5335-28924A3BCF9A
O43 - CFD: 2015/04/14 17:54:26 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1426002430-3642-5335-28924A3BCF9A
O43 - CFD: 2015/03/11 15:12:45 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1426079564-3642-5335-28924A3BCF9A
O43 - CFD: 2015/07/16 20:55:53 - [] D -- C:\Users\RayanB\AppData\Roaming\32444335-1433606691-3642-5335-28924A3BCF9A
O43 - CFD: 2014/07/11 00:55:44 - [] D -- C:\Users\RayanB\AppData\Roaming\Adobe
O43 - CFD: 2014/11/11 12:53:35 - [] D -- C:\Users\RayanB\AppData\Roaming\AdvancedSystemProtector =>PUP.Optional.AdvancedSystemProtector
O43 - CFD: 2013/04/27 20:05:11 - [] D -- C:\Users\RayanB\AppData\Roaming\Aeria Games & Entertainment
O43 - CFD: 2015/07/24 01:52:43 - [] D -- C:\Users\RayanB\AppData\Roaming\AgtEU7o
O43 - CFD: 2012/12/25 02:41:15 - [] D -- C:\Users\RayanB\AppData\Roaming\AnkamaCertificates
O43 - CFD: 2015/08/09 22:30:16 - [] SHD -- C:\Users\RayanB\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
O43 - CFD: 2012/12/25 02:40:44 - [] D -- C:\Users\RayanB\AppData\Roaming\app
O43 - CFD: 2012/12/24 23:54:25 - [] D -- C:\Users\RayanB\AppData\Roaming\ATI
O43 - CFD: 2015/04/06 12:44:50 - [] D -- C:\Users\RayanB\AppData\Roaming\Battle.net
O43 - CFD: 2014/07/11 00:55:45 - [] D -- C:\Users\RayanB\AppData\Roaming\com.adobe.amp
O43 - CFD: 2014/04/05 23:39:28 - [] D -- C:\Users\RayanB\AppData\Roaming\CyberLink
O43 - CFD: 2013/06/28 19:35:06 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus
O43 - CFD: 2015/04/11 13:19:49 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus Beta
O43 - CFD: 2014/07/04 19:15:31 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus-10
O43 - CFD: 2014/07/04 19:15:32 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus-11
O43 - CFD: 2014/07/04 19:15:35 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus-12
O43 - CFD: 2014/07/04 19:15:38 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus-13
O43 - CFD: 2014/07/04 21:17:04 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus-14
O43 - CFD: 2013/06/28 20:55:46 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus-2
O43 - CFD: 2013/06/29 13:25:13 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus-3
O43 - CFD: 2013/07/01 10:41:02 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus-4
O43 - CFD: 2013/07/17 17:30:18 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus-5
O43 - CFD: 2013/07/17 17:43:18 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus-6
O43 - CFD: 2013/07/19 19:26:37 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus-7
O43 - CFD: 2013/07/19 20:46:08 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus-8
O43 - CFD: 2013/07/19 23:15:20 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus-9
O43 - CFD: 2015/04/10 20:02:39 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus2
O43 - CFD: 2015/04/01 12:30:57 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofus2Beta
O43 - CFD: 2013/07/03 18:27:17 - [] D -- C:\Users\RayanB\AppData\Roaming\DofusBeta
O43 - CFD: 2013/07/03 18:37:10 - [] D -- C:\Users\RayanB\AppData\Roaming\DofusBeta-2
O43 - CFD: 2013/07/03 19:11:43 - [] D -- C:\Users\RayanB\AppData\Roaming\DofusBeta-3
O43 - CFD: 2013/08/05 20:16:27 - [] D -- C:\Users\RayanB\AppData\Roaming\DofusBeta-4
O43 - CFD: 2014/08/13 23:40:20 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofusbeta-5
O43 - CFD: 2014/08/16 18:38:22 - [] D -- C:\Users\RayanB\AppData\Roaming\Dofusbeta-6
O43 - CFD: 2012/12/25 03:18:10 - [] D -- C:\Users\RayanB\AppData\Roaming\DofusTesting
O43 - CFD: 2012/12/25 02:40:42 - [] D -- C:\Users\RayanB\AppData\Roaming\DofusTesting-2
O43 - CFD: 2012/12/25 03:18:14 - [] D -- C:\Users\RayanB\AppData\Roaming\DofusTesting-3
O43 - CFD: 2012/12/25 11:42:44 - [] D -- C:\Users\RayanB\AppData\Roaming\DofusTesting-4
O43 - CFD: 2013/02/22 21:52:57 - [] D -- C:\Users\RayanB\AppData\Roaming\DofusTesting-5
O43 - CFD: 2012/12/25 11:44:21 - [] D -- C:\Users\RayanB\AppData\Roaming\Hewlett-Packard
O43 - CFD: 2014/01/22 21:06:22 - [] D -- C:\Users\RayanB\AppData\Roaming\HP
O43 - CFD: 2014/05/20 11:38:33 - [] D -- C:\Users\RayanB\AppData\Roaming\hpqlog
O43 - CFD: 2014/02/09 13:38:50 - [] D -- C:\Users\RayanB\AppData\Roaming\HpUpdate
O43 - CFD: 2015/02/18 22:11:52 - [] D -- C:\Users\RayanB\AppData\Roaming\Identities
O43 - CFD: 2013/05/09 23:16:38 - [] D -- C:\Users\RayanB\AppData\Roaming\LolClient
O43 - CFD: 2012/12/25 00:14:28 - [] D -- C:\Users\RayanB\AppData\Roaming\Macromedia
O43 - CFD: 2015/02/18 19:32:17 - [] SD -- C:\Users\RayanB\AppData\Roaming\Microsoft
O43 - CFD: 2015/04/01 21:05:11 - [] D -- C:\Users\RayanB\AppData\Roaming\Mozilla
O43 - CFD: 2014/02/19 14:42:08 - [] D -- C:\Users\RayanB\AppData\Roaming\Mychromium
O43 - CFD: 2014/11/14 14:51:28 - [] D -- C:\Users\RayanB\AppData\Roaming\mychromium_update
O43 - CFD: 2015/08/19 15:58:25 - [] D -- C:\Users\RayanB\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
O43 - CFD: 2014/12/22 15:38:44 - [] D -- C:\Users\RayanB\AppData\Roaming\NQnWVZ4
O43 - CFD: 2013/04/20 14:04:54 - [] D -- C:\Users\RayanB\AppData\Roaming\OpenOffice.org
O43 - CFD: 2015/07/24 02:24:30 - [] D -- C:\Users\RayanB\AppData\Roaming\Opera Software
O43 - CFD: 2015/04/25 10:13:31 - [] D -- C:\Users\RayanB\AppData\Roaming\pqL1ocj
O43 - CFD: 2015/03/05 17:14:06 - [0] D -- C:\Users\RayanB\AppData\Roaming\Publish Providers
O43 - CFD: 2014/10/15 18:49:33 - [] D -- C:\Users\RayanB\AppData\Roaming\Reg
O43 - CFD: 2012/12/25 02:40:44 - [] D -- C:\Users\RayanB\AppData\Roaming\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 2014/07/28 22:52:58 - [] D -- C:\Users\RayanB\AppData\Roaming\RegBeta
O43 - CFD: 2013/04/14 13:23:50 - [] D -- C:\Users\RayanB\AppData\Roaming\RegBeta.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 2014/06/29 16:01:16 - [] D -- C:\Users\RayanB\AppData\Roaming\RegLocal
O43 - CFD: 2015/04/28 21:42:37 - [] D -- C:\Users\RayanB\AppData\Roaming\Skype
O43 - CFD: 2015/03/09 19:27:15 - [] D -- C:\Users\RayanB\AppData\Roaming\Sony
O43 - CFD: 2012/12/24 23:52:11 - [] D -- C:\Users\RayanB\AppData\Roaming\Synaptics
O43 - CFD: 2014/11/25 15:57:19 - [] D -- C:\Users\RayanB\AppData\Roaming\T1SopSW
O43 - CFD: 2015/07/24 01:52:43 - [] D -- C:\Users\RayanB\AppData\Roaming\t8vp26e
O43 - CFD: 2014/05/23 01:12:25 - [] D -- C:\Users\RayanB\AppData\Roaming\TERA
O43 - CFD: 2014/03/29 23:04:02 - [] D -- C:\Users\RayanB\AppData\Roaming\The Creative Assembly
O43 - CFD: 2015/07/24 01:52:37 - [] D -- C:\Users\RayanB\AppData\Roaming\u7NkFwU
O43 - CFD: 2013/01/27 20:07:15 - [] D -- C:\Users\RayanB\AppData\Roaming\Unity
O43 - CFD: 2015/08/14 22:43:55 - [] D -- C:\Users\RayanB\AppData\Roaming\vlc
O43 - CFD: 2013/01/05 03:07:10 - [] D -- C:\Users\RayanB\AppData\Roaming\WebApp
O43 - CFD: 2012/12/28 17:03:21 - [] D -- C:\Users\RayanB\AppData\Roaming\WildTangent
O43 - CFD: 2013/07/25 17:15:32 - [0] D -- C:\Users\RayanB\AppData\Roaming\Windows Live Writer
O43 - CFD: 2015/05/25 20:56:25 - [] D -- C:\Users\RayanB\AppData\Roaming\XGH99nA
O43 - CFD: 2015/08/20 00:32:19 - [] D -- C:\Users\RayanB\AppData\Roaming\ZHP
O43 - CFD: 2014/11/23 22:25:48 - [] D -- C:\Users\RayanB\AppData\Roaming\{37E99E86-D615-4B08-937F-F8F935C455F3}_ANZHUANG
O43 - CFD: 2015/02/24 11:45:28 - [] D -- C:\Users\RayanB\AppData\Local\32444335-1424774412-3642-5335-28924A3BCF9A
O43 - CFD: 2015/03/03 13:09:44 - [] D -- C:\Users\RayanB\AppData\Local\32444335-1425384274-3642-5335-28924A3BCF9A
O43 - CFD: 2015/03/10 17:55:58 - [] D -- C:\Users\RayanB\AppData\Local\32444335-1426006244-3642-5335-28924A3BCF9A
O43 - CFD: 2012/12/25 00:14:27 - [] D -- C:\Users\RayanB\AppData\Local\Adobe
O43 - CFD: 2013/04/27 20:13:34 - [] D -- C:\Users\RayanB\AppData\Local\Aeria Games
O43 - CFD: 2015/04/15 17:53:05 - [] D -- C:\Users\RayanB\AppData\Local\Akamai
O43 - CFD: 2014/10/08 13:55:03 - [] D -- C:\Users\RayanB\AppData\Local\Ankama
O43 - CFD: 2015/02/18 19:02:05 - [0] SHD -- C:\Users\RayanB\AppData\Local\Application Data
O43 - CFD: 2012/12/24 23:56:00 - [] D -- C:\Users\RayanB\AppData\Local\Apps
O43 - CFD: 2013/01/06 00:03:48 - [] D -- C:\Users\RayanB\AppData\Local\Ares
O43 - CFD: 2012/12/24 23:54:25 - [] D -- C:\Users\RayanB\AppData\Local\ATI
O43 - CFD: 2015/04/18 21:05:36 - [] D -- C:\Users\RayanB\AppData\Local\Battle.net
O43 - CFD: 2015/04/06 18:54:07 - [] D -- C:\Users\RayanB\AppData\Local\Blizzard
O43 - CFD: 2014/02/21 20:58:05 - [] D -- C:\Users\RayanB\AppData\Local\Blizzard Entertainment
O43 - CFD: 2014/02/19 14:52:25 - [0] D -- C:\Users\RayanB\AppData\Local\cache
O43 - CFD: 2015/08/01 01:13:59 - [] D -- C:\Users\RayanB\AppData\Local\CrashRpt =>.Legitimate.CrashReports
O43 - CFD: 2014/02/19 14:35:51 - [] D -- C:\Users\RayanB\AppData\Local\CRE
O43 - CFD: 2015/08/10 22:39:26 - [] D -- C:\Users\RayanB\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2013/01/05 01:23:28 - [] D -- C:\Users\RayanB\AppData\Local\Cyberlink
O43 - CFD: 2015/08/12 23:21:35 - [] D -- C:\Users\RayanB\AppData\Local\Diagnostics
O43 - CFD: 2014/02/01 22:13:40 - [] D -- C:\Users\RayanB\AppData\Local\DofusBeta
O43 - CFD: 2013/04/22 21:19:35 - [] D -- C:\Users\RayanB\AppData\Local\Downloaded Installations
O43 - CFD: 2015/07/20 02:59:12 - [0] SHD -- C:\Users\RayanB\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/07/20 02:59:12 - [0] SHD -- C:\Users\RayanB\AppData\Local\EmieSiteList
O43 - CFD: 2015/07/20 02:59:12 - [0] SHD -- C:\Users\RayanB\AppData\Local\EmieUserList
O43 - CFD: 2014/11/30 22:18:32 - [] D -- C:\Users\RayanB\AppData\Local\Facebook
O43 - CFD: 2015/08/10 22:41:05 - [] D -- C:\Users\RayanB\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/07/31 00:43:41 - [] D -- C:\Users\RayanB\AppData\Local\Google
O43 - CFD: 2015/06/05 14:17:22 - [] D -- C:\Users\RayanB\AppData\Local\GWX
O43 - CFD: 2015/08/19 16:43:19 - [] D -- C:\Users\RayanB\AppData\Local\HealthAlert =>PUP.Optional.HealthAlert
O43 - CFD: 2013/02/21 16:36:05 - [] D -- C:\Users\RayanB\AppData\Local\Hewlett-Packard
O43 - CFD: 2015/02/18 19:02:05 - [0] SHD -- C:\Users\RayanB\AppData\Local\Historique
O43 - CFD: 2014/01/22 21:05:42 - [] D -- C:\Users\RayanB\AppData\Local\HP
O43 - CFD: 2015/08/01 01:14:11 - [] D -- C:\Users\RayanB\AppData\Local\Installer =>PUP.Optional.InstallPedia
O43 - CFD: 2015/02/18 22:18:01 - [] D -- C:\Users\RayanB\AppData\Local\Microsoft
O43 - CFD: 2015/07/24 02:24:30 - [] D -- C:\Users\RayanB\AppData\Local\Opera Software
O43 - CFD: 2015/08/08 15:31:52 - [] D -- C:\Users\RayanB\AppData\Local\Packages
O43 - CFD: 2012/12/24 23:52:19 - [] D -- C:\Users\RayanB\AppData\Local\Power2Go8
O43 - CFD: 2013/04/18 22:20:41 - [] D -- C:\Users\RayanB\AppData\Local\Programs
O43 - CFD: 2014/10/01 15:58:18 - [] D -- C:\Users\RayanB\AppData\Local\Skype
O43 - CFD: 2015/08/19 16:33:57 - [] D -- C:\Users\RayanB\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
O43 - CFD: 2015/03/10 17:35:45 - [] D -- C:\Users\RayanB\AppData\Local\Sony
O43 - CFD: 2015/04/07 17:43:52 - [] D -- C:\Users\RayanB\AppData\Local\Steam
O43 - CFD: 2015/08/20 00:32:22 - [] D -- C:\Users\RayanB\AppData\Local\Temp
O43 - CFD: 2015/02/18 19:02:05 - [0] SHD -- C:\Users\RayanB\AppData\Local\Temporary Internet Files
O43 - CFD: 2014/09/12 16:32:37 - [] D -- C:\Users\RayanB\AppData\Local\Unity
O43 - CFD: 2012/12/24 23:51:33 - [0] D -- C:\Users\RayanB\AppData\Local\VirtualStore
O43 - CFD: 2015/04/12 21:42:34 - [] D -- C:\Users\RayanB\AppData\Local\Windows Live
O43 - CFD: 2013/07/25 17:15:33 - [] D -- C:\Users\RayanB\AppData\Local\Windows Live Writer
O43 - CFD: 2013/04/18 23:01:52 - [0] D -- C:\Users\RayanB\AppData\Local\{01D704FF-C51D-40B2-A005-6BEC6716F317}
O43 - CFD: 2013/04/18 22:46:42 - [0] D -- C:\Users\RayanB\AppData\Local\{09D70689-C3E8-4EC1-A19D-E63D23B4F6EE}
O43 - CFD: 2013/12/31 23:23:11 - [0] D -- C:\Users\RayanB\AppData\Local\{15B39666-2257-487A-B078-730379CB930F}
O43 - CFD: 2013/04/18 22:50:27 - [0] D -- C:\Users\RayanB\AppData\Local\{1A142F15-1940-412B-8915-43BDE4957182}
O43 - CFD: 2013/04/18 22:58:09 - [0] D -- C:\Users\RayanB\AppData\Local\{35814F47-FF5D-4A33-A665-553105A8EAEB}
O43 - CFD: 2013/04/18 22:46:17 - [0] D -- C:\Users\RayanB\AppData\Local\{3C7F8496-FB41-4810-ACDC-E1E3BB4217E9}
O43 - CFD: 2015/03/09 21:11:19 - [0] D -- C:\Users\RayanB\AppData\Local\{615E121B-2991-471F-8C1B-A606F143266F}
O43 - CFD: 2015/04/12 21:42:59 - [0] D -- C:\Users\RayanB\AppData\Local\{A24FA911-08FD-41FF-8403-3F574A791BC1}
O43 - CFD: 2015/04/19 00:20:20 - [0] D -- C:\Users\RayanB\AppData\Local\{C2915C99-2DB4-426E-BD4B-B5FDF05C3B3B}
O43 - CFD: 2013/07/25 17:15:45 - [0] D -- C:\Users\RayanB\AppData\Local\{CAC69F77-E6E2-46E0-9525-74C41577577F}
O43 - CFD: 2013/04/19 00:07:52 - [0] D -- C:\Users\RayanB\AppData\Local\{D897B724-4997-47B1-8D86-D613A6A24FBC}
O43 - CFD: 2013/04/18 22:50:15 - [0] D -- C:\Users\RayanB\AppData\Local\{D9C461F3-53DB-4ECA-A577-6A7DD1E2E100}
O43 - CFD: 2013/04/19 00:07:46 - [0] D -- C:\Users\RayanB\AppData\Local\{DA252245-5528-404F-92AB-97ED68834819}
O43 - CFD: 2014/11/21 07:56:04 - [] RD -- C:\Users\RayanB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2014/11/21 07:56:04 - [] RD -- C:\Users\RayanB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/08/19 16:02:50 - [] RD -- C:\Users\RayanB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/02/18 19:03:43 - [] D -- C:\Users\RayanB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
O43 - CFD: 2015/02/18 19:18:08 - [] D -- C:\Users\RayanB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dofus2
O43 - CFD: 2015/02/18 19:18:08 - [] D -- C:\Users\RayanB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dofus2Beta
O43 - CFD: 2013/08/22 17:36:32 - [] D -- C:\Users\RayanB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/08/19 16:33:57 - [] RD -- C:\Users\RayanB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/04/15 19:24:45 - [] D -- C:\Users\RayanB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2015/02/18 19:03:44 - [] RD -- C:\Users\RayanB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

---\\ Derniers fichiers créés dans Windows Prefetcher (18) - 9s
O45 - LFCP:[MD5.AE40490621C835A4A2D5F399EACBFD50] 2015/08/19 16:37:49 A -- C:\WINDOWS\Prefetch\ANYPROTECT.EXE-53752276.pf =>PUP.Optional.AnyProtect
O45 - LFCP:[MD5.55C33A16466AEC9FA12B298107B8AD18] 2015/08/10 22:39:38 A -- C:\WINDOWS\Prefetch\CROSSBROWSE.EXE-6BE4601B.pf =>PUP.Optional.CrossBrowse
O45 - LFCP:[MD5.8ADB49A7FE1E1DAA37E74437E143E4C5] 2015/08/19 16:34:56 A -- C:\WINDOWS\Prefetch\GMSD_FR_005010064.EXE-8832739D.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.7ADB2C23E966AD828B5528A00D13494B] 2015/08/09 22:30:29 A -- C:\WINDOWS\Prefetch\IMINENTUNINSTALL.EXE-9087B9EC.pf =>PUP.Optional.IMBooster
O45 - LFCP:[MD5.FB02B2A1978A72B6CFFAD35B19F94DC6] 2015/08/19 16:37:15 A -- C:\WINDOWS\Prefetch\PREDM.EXE-A62E7FE0.pf =>PUP.Optional.Downware
O45 - LFCP:[MD5.78F46D44D00290237DAD9FD97C196F92] 2015/08/10 22:40:19 A -- C:\WINDOWS\Prefetch\PREDM.TMP-022AA8C9.pf =>PUP.Optional.Downware
O45 - LFCP:[MD5.0A8FBB1A81DCB33564C5F379FE770B12] 2015/08/19 16:37:16 A -- C:\WINDOWS\Prefetch\PREDM.TMP-0631E1AD.pf =>PUP.Optional.Downware
O45 - LFCP:[MD5.6518A015FFE902FA818A6DFFB2C16D84] 2015/08/09 22:31:07 A -- C:\WINDOWS\Prefetch\PREDM.TMP-4FF7B86A.pf =>PUP.Optional.Downware
O45 - LFCP:[MD5.699D4B421338F1C604968F1E94BEFF6B] 2015/08/11 18:37:12 A -- C:\WINDOWS\Prefetch\PREDM.TMP-CC3416D2.pf =>PUP.Optional.Downware
O45 - LFCP:[MD5.C693493BA0F7D75B3A2D46906AFAA5C5] 2015/08/19 15:58:55 A -- C:\WINDOWS\Prefetch\PREDM.TMP-CDBF8F65.pf =>PUP.Optional.Downware
O45 - LFCP:[MD5.EEF16821CECE65E748423011805C3F0B] 2015/08/19 15:56:37 A -- C:\WINDOWS\Prefetch\SMARTWEBAPP.EXE-1B36F5FD.pf =>PUP.Optional.SmartWebSearch
O45 - LFCP:[MD5.7975AE1557FD2B150E7F98746B396B6E] 2015/08/19 16:33:40 A -- C:\WINDOWS\Prefetch\SMARTWEBHELPER.EXE-D7557F80.pf =>PUP.Optional.SmartWebSearch
O45 - LFCP:[MD5.85EC1894316DDAEEAD31B461CF628C18] 2015/08/01 02:15:32 A -- C:\WINDOWS\Prefetch\UPGMSD_FR_005010047.EXE-06FA95AB.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.445626AD0637C9788ABFE96797EAFA0B] 2015/08/09 21:45:15 A -- C:\WINDOWS\Prefetch\UPGMSD_FR_005010055.EXE-57335331.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.D9095FF234A6E0B73113EDF3E0E4C45B] 2015/08/10 22:39:02 A -- C:\WINDOWS\Prefetch\UPGMSD_FR_005010057.EXE-2DBE5D05.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.574DBE0CDE86A4BBB6E72F719BF6A9B4] 2015/08/19 16:34:56 A -- C:\WINDOWS\Prefetch\UPGMSD_FR_005010064.EXE-92B195A1.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.96B92EF7DD7F4C77B1A28544BC6A2D6B] 2015/06/08 10:24:42 A -- C:\WINDOWS\Prefetch\UPGMSD_FR_610.EXE-6CC33467.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.C78866ED974904A44237E9F15BFED18D] 2015/08/19 16:36:31 A -- C:\WINDOWS\Prefetch\WORDSHARKAUTOUPDATECLIENT.EXE-5FC08740.pf =>PUP.Optional.WordShark

---\\ Liste des pilotes du système (54) - 9s
O58 - SDL:2013/08/22 14:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [108896]
O58 - SDL:2012/09/24 13:40:56 A . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\WINDOWS\System32\drivers\Accelerometer.sys [43840]
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [782176]
O58 - SDL:2014/07/21 23:03:42 A . (.Advanced Micro Devices, Inc. - AMD PCI Root Bus Lower Filter.) -- C:\WINDOWS\System32\drivers\amdkmpfd.sys [36096]
O58 - SDL:2013/08/22 14:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [79200]
O58 - SDL:2013/08/22 14:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424]
O58 - SDL:2013/08/22 14:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [25952]
O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [114016]
O58 - SDL:2014/07/21 23:04:28 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\atikmdag.sys [13209088]
O58 - SDL:2014/07/21 23:04:28 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\WINDOWS\System32\drivers\atikmpag.sys [626688]
O58 - SDL:2013/08/13 01:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624]
O58 - SDL:2015/08/08 15:55:54 A . (.Copyright (c) 2012 - .) -- C:\WINDOWS\System32\drivers\bsdriver.sys [34712] =>PUP.Optional.Shopperz
O58 - SDL:2013/08/22 14:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296]
O58 - SDL:2012/06/25 10:24:50 A . (.CyberLink - It is a virtual device driver which could c.) -- C:\WINDOWS\System32\drivers\CLVirtualDrive.sys [92536]
O58 - SDL:2013/08/22 14:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3357024]
O58 - SDL:2012/07/03 01:16:02 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\HECIx64.sys [62784]
O58 - SDL:2012/09/24 13:40:56 A . (.Hewlett-Packard Company - HP Disk Filter - SATA/RAID.) -- C:\WINDOWS\System32\drivers\hpdskflt.sys [31040]
O58 - SDL:2013/08/22 14:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352]
O58 - SDL:2013/07/30 20:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [24568]
O58 - SDL:2013/07/25 21:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [99320]
O58 - SDL:2012/07/31 21:22:00 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [645952]
O58 - SDL:2013/08/10 02:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [651248]
O58 - SDL:2013/08/22 14:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000]
O58 - SDL:2014/10/01 20:54:16 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [3828152]
O58 - SDL:2012/06/19 17:40:50 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [342528]
O58 - SDL:2014/08/01 22:18:33 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\intelaud.sys [38296]
O58 - SDL:2014/08/01 22:18:33 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\iwdbus.sys [27032]
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [109408]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2.sys [93536]
O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3.sys [81760]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [56672]
O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840]
O58 - SDL:2013/08/22 14:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840]
O58 - SDL:2013/12/04 11:02:30 A . (.Ralink Technology, Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\WINDOWS\System32\drivers\netr28x.sys [2505904]
O58 - SDL:2013/08/22 14:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368]
O58 - SDL:2013/08/22 14:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [168288]
O58 - SDL:2013/06/18 16:46:17 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\WINDOWS\System32\drivers\Rt630x64.sys [591360]
O58 - SDL:2012/07/04 15:09:08 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsP2Stor.sys [269968]
O58 - SDL:2013/08/22 17:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [23040]
O58 - SDL:2013/08/22 14:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896]
O58 - SDL:2013/08/22 14:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760]
O58 - SDL:2012/08/24 11:38:26 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [41272]
O58 - SDL:2014/07/14 18:55:38 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [33008]
O58 - SDL:2014/01/22 09:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [108800]
O58 - SDL:2014/01/22 09:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [206080]
O58 - SDL:2013/08/22 14:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072]
O58 - SDL:2011/08/24 12:56:28 A . (.Windows (R) Win 7 DDK provider - Spyware Terminator 2012 driver.) -- C:\WINDOWS\System32\drivers\stflt.sys [51496]
O58 - SDL:2014/08/17 21:02:07 A . (.IDT, Inc. - IDT PC Audio.) -- C:\WINDOWS\System32\drivers\stwrt64.sys [542208]
O58 - SDL:2014/07/14 18:55:42 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [495856]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\WINDOWS\System32\drivers\viaide.sys [19808]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [168800]
O58 - SDL:2013/08/22 14:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504]
O58 - SDL:2013/06/27 10:33:20 A . (.Hewlett-Packard Development Company, L.P. - HP Wireless Button Driver.) -- C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [20800]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (20) - 41s
O61 - LFC: 2015/08/17 22:47:00 A . (..) -- C:\Users\RayanB\AppData\Roaming\mystartsearch\key.dll [57856] =>PUP.Optional.StartSearch
O61 - LFC: 2015/08/19 16:33:31 A . (.SoftBrain Technologies Ltd..) -- C:\Users\RayanB\AppData\Local\SmartWeb\__u.exe [172673] =>PUP.Optional.SmartWebSearch
O61 - LFC: 2015/08/19 16:35:58 A . (.CMI Limited.) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\VND2NKA5\AnyProtectSetup[1].exe [613255] =>PUP.Optional.AnyProtect
O61 - LFC: 2015/08/19 16:36:38 A . (.AnyProtect.com.) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\VND2NKA5\AnyProtect[1].exe [6434816] =>PUP.Optional.AnyProtect
O61 - LFC: 2015/08/19 16:34:21 A . (..) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\VND2NKA5\setup_gmsd_fr[1].exe [5794200]
O61 - LFC: 2015/08/19 16:33:32 A . (..) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\R2FRZ3GK\15b365fe97056e31353ba58793643ff5[1].exe [77558]
O61 - LFC: 2015/08/19 16:35:11 A . (..) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\R2FRZ3GK\policyname[1].exe [57665]
O61 - LFC: 2015/08/19 16:34:54 A . (..) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\Q6NXN2ST\setup_362[1].exe [254464]
O61 - LFC: 2015/08/19 16:33:08 A . (.Copyright 2013.) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\Q6NXN2ST\Validate[1].exe [61981]
O61 - LFC: 2015/08/19 16:00:01 A . (..) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\AnyProtect[1].exe [3104768] =>PUP.Optional.AnyProtect
O61 - LFC: 2015/08/19 16:33:17 A . (.Welnk.com.) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\cmi_mystartsearch[2].exe [269408] =>PUP.Optional.StartSearch
O61 - LFC: 2015/08/19 16:33:09 A . (..) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\cmmdWriter[2].exe [41440]
O61 - LFC: 2015/08/19 15:58:30 A . (..) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\FinalInstaller_dotnet4[1].exe [3001344]
O61 - LFC: 2015/08/19 16:33:39 A . (..) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\FriendlyError_s4[1].exe [177664] =>PUP.Optional.FriendlyError
O61 - LFC: 2015/08/19 16:33:37 A . (..) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\prepreinstaller_win[1].exe [190976]
O61 - LFC: 2015/08/19 16:33:13 A . (..) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\SearchUpdater[2].exe [121216]
O61 - LFC: 2015/08/19 16:33:19 A . (.SoftBrain Technologies Ltd..) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\SmartWebInstaller[2].exe [759544] =>PUP.Optional.SmartWebSearch
O61 - LFC: 2015/08/19 16:33:10 A . (..) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\SxVkfL[1].exe [158251]
O61 - LFC: 2015/08/19 16:35:16 A . (..) -- C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\VuuPC_VO2_8907[1].exe [229215] =>PUP.Optional.VuuPC
O61 - LFC: 2015/08/20 00:30:42 A . (..) -- C:\Users\RayanB\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]

---\\ Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Internet Explorer\iexplore.ex http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe

---\\ Recherche d'infection sur les navigateurs (5) - 0s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} - (StartWeb) - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} - (Google) - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch

---\\ Enumère les services démarrés par Svchost (34) - 2s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\WINDOWS\System32\aelupsvc.dll [214528]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\system32\srvsvc.dll [329216]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1360896]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [1084416]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [926208]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31744]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [110080]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151040]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [110592]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [1265152]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [230400]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\WINDOWS\system32\mmcss.dll [71168]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll [135168]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [227328]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [339968]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [101376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [348672]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [522240]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [1639424]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\system32\themeservice.dll [59392]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [206848]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [166400]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [102912]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [542208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [226816]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [73728]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [452608]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [313344]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\system32\wuaueng.dll [3704320]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [933376]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [640000]

---\\ Liste des exceptions du parefeu Windows (53) - 11s
O87 - FAEL: "{F9F30EC8-F544-460D-BBAB-2E0F75DDFA0B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe (.not file.)
O87 - FAEL: "{6FFD605A-4A98-48D8-837D-D7612439DEC1}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe (.not file.)
O87 - FAEL: "{DE0DF989-F828-4356-BD73-49E43C78B509}" [In-None-P17-TRUE] .(...) -- C:\Program Files\ma-config.com\MaConfigAgent.exe (.not file.)
O87 - FAEL: "{F86A98C5-45BD-4233-BFE8-AC06447E8D2B}" [In-None-P6-TRUE] .(...) -- C:\Program Files\ma-config.com\MaConfigAgent.exe (.not file.)
O87 - FAEL: "{9C1464E4-683B-426F-9C46-14A891E45898}" [In-None-P17-TRUE] .(.X-LEGEND Entertaimment - Finding Neverland Online.) -- C:\AeriaGames\EdenEternal-FR\game.bin
O87 - FAEL: "{EED305F3-3BD7-470C-8FC7-C6ADA906FC22}" [In-None-P6-TRUE] .(.X-LEGEND Entertaimment - Finding Neverland Online.) -- C:\AeriaGames\EdenEternal-FR\game.bin
O87 - FAEL: "UDP Query User{82E073F2-B5ED-4E64-A167-720607CBA64F}C:\users\rayanb\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P17-TRUE] .(...) -- C:\users\rayanb\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.Optional.CacaoWeb
O87 - FAEL: "TCP Query User{015598A3-6927-4E89-AFA2-979ED7859670}C:\users\rayanb\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P6-TRUE] .(...) -- C:\users\rayanb\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.Optional.CacaoWeb
O87 - FAEL: "UDP Query User{C4248D61-A048-4159-A98C-5EF8498F9392}C:\users\rayanb\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P17-TRUE] .(...) -- C:\users\rayanb\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.Optional.CacaoWeb
O87 - FAEL: "TCP Query User{45F8335B-2158-4593-BD8B-90C213AAEC56}C:\users\rayanb\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P6-TRUE] .(...) -- C:\users\rayanb\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.Optional.CacaoWeb
O87 - FAEL: "{52A6B5EA-2619-4FB8-B4E7-0C5DFAA35296}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe (.not file.)
O87 - FAEL: "{DBD2BBC5-0BD3-4D16-BF7E-16EC6EA1CD8E}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe (.not file.)
O87 - FAEL: "{466213EE-86EB-47F9-8845-7373C54F241A}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe (.not file.) =>PUP.Optional.RelevantKnowledge
O87 - FAEL: "{1590981C-36C7-41C1-A08A-8ACCD91EE965}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe (.not file.) =>PUP.Optional.RelevantKnowledge
O87 - FAEL: "UDP Query User{7E37D141-DD98-4108-9830-C04BDC7F098B}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe (.not file.)
O87 - FAEL: "TCP Query User{49D6CF19-4B29-421B-8206-366EA3894344}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe (.not file.)
O87 - FAEL: "{745E5E34-1AE7-4639-9D40-E85D90BE0912}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\Steam.exe (.not file.)
O87 - FAEL: "{F074C14E-B7B9-4394-A20F-995E5295CAD2}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\Steam.exe (.not file.)
O87 - FAEL: "{B871F6B4-B2E9-4EAF-B18D-230782045389}" [In-None-P17-TRUE] .(.X-LEGEND ENTERTAINMENT - Eden Eternal.) -- C:\AeriaGames\EdenEternal-FR\_Launcher.exe
O87 - FAEL: "{57E3DABD-7110-4296-8A55-DA051AB9644D}" [In-None-P6-TRUE] .(.X-LEGEND ENTERTAINMENT - Eden Eternal.) -- C:\AeriaGames\EdenEternal-FR\_Launcher.exe
O87 - FAEL: "{ECD2F374-23C7-49A3-BA5F-862C18E3641B}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe (.not file.)
O87 - FAEL: "{85CB94B1-A1C1-4482-B632-72058BFE7F01}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe (.not file.)
O87 - FAEL: "{710C8E48-4204-4AB1-8378-C5AD588EAD3A}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe (.not file.)
O87 - FAEL: "{F72C7B31-D0E6-426F-AFB9-4DE31A26B374}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe (.not file.)
O87 - FAEL: "{9BB3EE8D-D03B-44A3-A1CC-E5A31890367B}" [In-None-P17-TRUE] .(...) -- C:\Users\RayanB\AppData\Local\Temp\7zS475E\setup\hpznui40.exe (.not file.)
O87 - FAEL: "UDP Query User{5823149F-F31E-47FB-ADA7-824DF45F9594}C:\program files (x86)\java\jre7\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\java\jre7\bin\javaw.exe (.not file.)
O87 - FAEL: "TCP Query User{C2D3661B-5664-4CE4-82F7-445B56184289}C:\program files (x86)\java\jre7\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\java\jre7\bin\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{01C707F7-04F2-4A0F-B209-765297A5ABE3}C:\program files (x86)\java\jre7\bin\java.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\java\jre7\bin\java.exe (.not file.)
O87 - FAEL: "TCP Query User{7CCE090B-4FF3-4C30-919A-CEF54436D238}C:\program files (x86)\java\jre7\bin\java.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\java\jre7\bin\java.exe (.not file.)
O87 - FAEL: "UDP Query User{6C73F037-FDA5-4B43-B9C5-83AE0A2E04B7}C:\program files (x86)\java\jre7\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\java\jre7\bin\javaw.exe (.not file.)
O87 - FAEL: "TCP Query User{31DFD486-E3E6-42B9-9D98-C1A05D051C3F}C:\program files (x86)\java\jre7\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\java\jre7\bin\javaw.exe (.not file.)
O87 - FAEL: "{03830CDF-3A0F-4709-860F-8E2DB1A4D71A}" [In-None-P17-TRUE] .(.X-LEGEND ENTERTAINMENT - Eden Eternal.) -- C:\AeriaGames\EdenEternal-FR\Launcher.exe
O87 - FAEL: "{FB528CB0-135D-4354-A163-545D879A18B8}" [In-None-P6-TRUE] .(.X-LEGEND ENTERTAINMENT - Eden Eternal.) -- C:\AeriaGames\EdenEternal-FR\Launcher.exe
O87 - FAEL: "{F335224E-847B-459E-88C3-430FECFC7E0B}" [In-None-P17-TRUE] .(...) -- C:\Users\RayanB\AppData\Local\Temp\7zS8D36.tmp\SymNRT.exe (.not file.)
O87 - FAEL: "{DED03ADC-99C6-45A8-B421-3910C9EEF708}" [In-None-P6-TRUE] .(...) -- C:\Users\RayanB\AppData\Local\Temp\7zS8D36.tmp\SymNRT.exe (.not file.)
O87 - FAEL: "{4F4484F6-9669-470F-88F8-FE1DE266E8F8}" [In-None-P17-TRUE] .(.X-LEGEND ENTERTAINMENT - Eden Eternal.) -- C:\AeriaGames\EdenEternal-FR\_Launcher.exe
O87 - FAEL: "{D726C13F-D613-4120-84A0-6E2BBC069198}" [In-None-P6-TRUE] .(.X-LEGEND ENTERTAINMENT - Eden Eternal.) -- C:\AeriaGames\EdenEternal-FR\_Launcher.exe
O87 - FAEL: "{8101E67D-9A74-4389-8E66-A6D971279BB4}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe (.not file.)
O87 - FAEL: "{FC8D431C-A546-49C4-B6A0-E4EABA055F51}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe (.not file.)
O87 - FAEL: "{8F199874-7E2E-4D15-B786-309B36DE0A30}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe (.not file.)
O87 - FAEL: "{767546A2-0D2A-4BAA-AE11-480EC641597E}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe (.not file.)
O87 - FAEL: "UDP Query User{F1380129-072E-4589-B3B1-EBA14506BF88}C:\program files (x86)\ares\ares.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\ares\ares.exe (.not file.)
O87 - FAEL: "TCP Query User{DECE8492-50AF-452C-A413-53201ED324FA}C:\program files (x86)\ares\ares.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\ares\ares.exe (.not file.)
O87 - FAEL: "UDP Query User{843B0B70-8F12-473F-8E38-01D497076430}C:\program files (x86)\ares\ares.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\ares\ares.exe (.not file.)
O87 - FAEL: "TCP Query User{80E4EE79-9D4B-4C61-9CFB-4A273184AC63}C:\program files (x86)\ares\ares.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\ares\ares.exe (.not file.)
O87 - FAEL: "{494C404F-4553-4378-BD4E-EBADEDB1D72F}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "{4CD4E351-7AE7-43E2-8A6E-7E2DCD5B18DD}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "{4EE2F2F4-AEF9-46F1-9A70-5C09EDF0201D}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\dmwu.exe (.not file.)
O87 - FAEL: "{67DBE27A-F9D9-4DA5-94EE-AAAECCE3C558}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\dmwu.exe (.not file.)
O87 - FAEL: "{36965A3C-8BF0-41C6-9E3C-D75E13BD02CC}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "{3A09CE00-D302-42EB-A426-CEF0DC9886C0}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "{47545712-0CDF-4590-8FEB-DD884F3995CA}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\dmwu.exe (.not file.)
O87 - FAEL: "{2DB55B26-B8A7-4AA6-9BAD-FE41A318AC07}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\dmwu.exe (.not file.)

---\\ Enumère les codes produits des logiciels (1) - 1s
O90 - PUC: "E0BD057F254D8013369CEF61CB867614" . (.Webplayer.) =>PUP.Optional.WebPlayer

---\\ Recherche des packages WindowsInstaller (2) - 10s
[MD5.] [WIS][2013/08/16 17:36:03] (.Boxore OU - Windows Installer XML (3.6.3303.0).) -- C:\WINDOWS\Installer\1f703489.msi [1974272] =>PUP.Optional.Boxore
[MD5.] [WIS][2014/02/01 15:21:05] (.Kreapixel - Adobe AIR.) -- C:\WINDOWS\Installer\35e08ae.msi [21504] =>PUP.Optional.SocialSkinz

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (31) - 17s
SS - Demand [2015/08/12 01:07:43] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - Auto [2014/07/21 23:04:24] [ 239616] (AMD External Events Utility) . (.AMD.) - C:\WINDOWS\system32\atiesrxx.exe
SR - Auto [2015/02/24 11:39:32] [ 141312] Page Mouthpiece (bomujope) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1424774348-3642-5335-28924A3BCF9A\nsdCBE6.tmpfs =>PUP.Optional.CrossRider
SR - Auto [2011/08/30 23:05:32] [ 462184] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - Demand [2014/10/01 20:54:28] [ 281488] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe
SS - Demand [2010/10/12 19:59:12] [ 206072] GamesAppService (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
SR - Auto [2015/03/03 12:58:27] [ 115712] LAN Digital Photo (gixifiry) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1425383889-3642-5335-28924A3BCF9A\nsw9979.tmpfs =>PUP.Optional.CrossRider
SR - Auto [2015/05/19 17:22:06] [ 99128] HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
SR - Demand [2013/05/13 21:09:20] [ 1129760] HP Software Framework Service (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
SR - Auto [2012/09/24 13:40:56] [ 31040] @oem19.inf,%hpservice_desc%;HP Service (hpsrv) . (.Hewlett-Packard Company.) - C:\WINDOWS\system32\Hpservice.exe
SR - Auto [2012/09/07 17:33:08] [ 35232] HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
SR - Auto [2015/02/24 11:39:44] [ 95232] Keyboard Close Down (hurygire) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1424774348-3642-5335-28924A3BCF9A\jnscFC91.tmp =>PUP.Optional.CrossRider
SR - Auto [2015/03/10 17:47:47] [ 179712] Reverse Word Processor (hycewyxo) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1426002430-3642-5335-28924A3BCF9A\jnsf838A.tmp =>PUP.Optional.CrossRider
SR - Auto [2012/07/14 18:02:16] [ 2451456] IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
SR - Auto [2014/10/01 20:54:24] [ 319376] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\WINDOWS\system32\igfxCUIService.exe
SR - Auto [2012/04/20 14:16:12] [ 635104] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - Auto [2012/07/18 03:10:24] [ 128896] Intel(R) ME Service (Intel(R) ME Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
SR - Auto [2012/07/18 03:10:16] [ 165760] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - Auto [2012/08/17 11:34:00] [ 7392136] LeapFrog Connect Device Service (LeapFrog Connect Device Service) . (.LeapFrog Enterprises, Inc..) - C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
SR - Auto [2012/07/18 03:10:30] [ 276864] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - Auto [2015/03/03 12:58:42] [ 103424] Auto Format Alt (logulobu) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1425383889-3642-5335-28924A3BCF9A\jnskC775.tmp =>PUP.Optional.CrossRider
SS - Demand [2015/06/26 13:05:26] [ 289256] McAfee Security Scan Component Host Service (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.11.149\McCHSvc.exe
SR - Auto [2015/08/19 22:49:02] [ 762368] Sort Line (mucucizu) . (...) - C:\Program Files (x86)\32444335-1433606691-3642-5335-28924A3BCF9A\knsw8CC1.tmp =>PUP.Optional.CrossRider
SR - Auto [2015/02/24 13:09:39] [ 2733552] OCDRXw (OCDRXw) . (.Rational Thought Solutions.) - C:\ProgramData\CwOgudDOd\OCDRXw.exe
SS - Auto [2015/01/02 20:45:12] [ 315488] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - Auto [2014/08/17 21:02:06] [ 323072] @C:\WINDOWS\system32\stlang64.dll,-10101 (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\stacsv64.exe
SS - Demand [2015/06/04 20:56:54] [ 837312] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - Auto [2012/07/18 03:10:32] [ 364416] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - Auto [2003/04/18 18:06:26] [ 8192] WIN-srvGA (WIN-srvGA) . (...) - C:\Windows\SysWOW64\srvany.exe
SR - Auto [2015/06/06 18:05:17] [ 219136] Device Cut (xoperoze) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1433606691-3642-5335-28924A3BCF9A\jnsz9CA4.tmp =>PUP.Optional.CrossRider
SR - Auto [2015/06/06 18:05:23] [ 166912] Subscription Clear (zedepory) . (...) - C:\Users\RayanB\AppData\Roaming\32444335-1433606691-3642-5335-28924A3BCF9A\hnsyB51F.tmp =>PUP.Optional.CrossRider

---\\ Recherche de clés de registre Tracing (2) - 0s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSharkAutoUpdateClient_RASAPI32 =>PUP.Optional.WordShark
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSharkAutoUpdateClient_RASMANCS =>PUP.Optional.WordShark

---\\ Scan Additionnel (149) - 0s
C:\Users\RayanB\AppData\Roaming\32444335-1424774348-3642-5335-28924A3BCF9A\nsdCBE6.tmpfs =>PUP.Optional.CrossRider
C:\Users\RayanB\AppData\Roaming\32444335-1425383889-3642-5335-28924A3BCF9A\nsw9979.tmpfs =>PUP.Optional.CrossRider
C:\Users\RayanB\AppData\Roaming\32444335-1424774348-3642-5335-28924A3BCF9A\jnscFC91.tmp =>PUP.Optional.CrossRider
C:\Users\RayanB\AppData\Roaming\32444335-1426002430-3642-5335-28924A3BCF9A\jnsf838A.tmp =>PUP.Optional.CrossRider
C:\Users\RayanB\AppData\Roaming\32444335-1425383889-3642-5335-28924A3BCF9A\jnskC775.tmp =>PUP.Optional.CrossRider
C:\Users\RayanB\AppData\Roaming\32444335-1433606691-3642-5335-28924A3BCF9A\jnsz9CA4.tmp =>PUP.Optional.CrossRider
C:\Users\RayanB\AppData\Roaming\32444335-1433606691-3642-5335-28924A3BCF9A\hnsyB51F.tmp =>PUP.Optional.CrossRider
C:\Program Files (x86)\32444335-1433606691-3642-5335-28924A3BCF9A\knsw8CC1.tmp =>PUP.Optional.CrossRider
C:\Users\RayanB\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcoopjhlogialpgbfijblmflglkenkdf
C:\Users\RayanB\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpfmcaabcpjbkmpkbfdlaghkbjfhidja
C:\Users\RayanB\AppData\Local\Google\Chrome\User Data\Default\Extensions\plbmlgkncgdpmiodnnehgopdohfmgblc
C:\WINDOWS\system32\Peakoar64.dll =>Hijacker.Winsock
C:\WINDOWS\system32\Shjencueit64.dll =>Hijacker.Winsock
HKLM\SYSTEM\CurrentControlSet\Services\bomujope =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\gixifiry =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\hurygire =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\hycewyxo =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\logulobu =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\mucucizu =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\ronevulo =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\Update Edu App =>PUP.Optional.EduApp*
HKLM\SYSTEM\CurrentControlSet\Services\xoperoze =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\zedepory =>PUP.Optional.CrossRider
C:\ProgramData\Busiomof\1.0.4.1\cimuonuk.exe =>Heuristic.PullUpdate
C:\WINDOWS\Tasks\APSnotifierPP1.job =>PUP.Optional.AnyProtect
C:\WINDOWS\Tasks\APSnotifierPP2.job =>PUP.Optional.AnyProtect
C:\WINDOWS\Tasks\APSnotifierPP3.job =>PUP.Optional.AnyProtect
C:\WINDOWS\Tasks\Bidaily Synchronize Task[3c32].job =>PUP.Optional.BidailySync
C:\WINDOWS\System32\Tasks\47ee19ae-4111-4c05-94fd-10a4febfdc12-7 =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\APSnotifierPP1 =>PUP.Optional.AnyProtect
C:\WINDOWS\System32\Tasks\APSnotifierPP2 =>PUP.Optional.AnyProtect
C:\WINDOWS\System32\Tasks\APSnotifierPP3 =>PUP.Optional.AnyProtect
C:\WINDOWS\System32\Tasks\Bidaily Synchronize Task[3c32] =>PUP.Optional.BidailySync
C:\WINDOWS\System32\Tasks\Busiomof =>Heuristic.PullUpdate
C:\WINDOWS\System32\Tasks\e88cab1d-5ce2-45cb-a6bc-61d4b48ece55-7 =>PUP.Optional.CrossRider
C:\WINDOWS\System32\Tasks\Shop-wit Updater =>PUP.Optional.ShopWit
C:\WINDOWS\System32\Tasks\sol3007 =>PUP.Optional.FastSearch
HKLM\SOFTWARE\Wow6432Node\39ba1440-2262-497e-a08b-cdaf04856e09 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\435d9d33-8305-d1e4-d97e-864ca253d43d =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\f1a9cb74-b1ce-4f94-bfc7-8c3c27804eab =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Infonaut_1.10.0.14 =>PUP.Optional.Infonaut
HKLM\SOFTWARE\Wow6432Node\Klip Pal =>PUP.Optional.KlipPal
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\searchult =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\SuperClick_1.10.0.16 =>PUP.Optional.SuperClick
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.Fuyu
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\WajIntEnhance =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\winservice86-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\WordShark_1.10.0.20 =>PUP.Optional.WordShark
HKLM\SOFTWARE\Wow6432Node\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AskPartnerNetwork =>Toolbar.AskBar
HKCU\SOFTWARE\CinemaPlus-3.2cV01.04-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV06.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV07.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV10.08-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV11.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV15.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV22.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-4.2vV06.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Cinemax Video 1.9cV24.02-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\DailyPcClean =>PUP.Optional.DailyPCClean
HKCU\SOFTWARE\FlashGamesRockstarApp =>PUP.Optional.FlashGamesRockstar
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\HD-Quality-3.1V27.03-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\HomeTab =>PUP.Optional.CertifiedToolbar
HKCU\SOFTWARE\HQ.Video_f4V26.06-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\HQVid-1.7pV03.03-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\I - Cinema-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\iWebar-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Klip Pal =>PUP.Optional.KlipPal
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Object Browser-nv-ie =>PUP.Optional.ObjectBrowser
HKCU\SOFTWARE\SearchProtectWS =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\Super Optimizer =>PUP.Optional.SuperOptimizer
HKCU\SOFTWARE\TNT2 =>PUP.Optional.TidyNetwork
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\winservice86-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
C:\Program Files (x86)\32444335-1433606691-3642-5335-28924A3BCF9A =>PUP.Optional.CrossRider
C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files (x86)\majtuto4pc_fr_a2 =>PUP.Optional.Softomate
C:\Program Files (x86)\predm =>PUP.Optional.Downware
C:\Program Files (x86)\Software =>PUP.Optional.Boxore
C:\ProgramData\IHProtectUpDate =>PUP.Optional.AgentODR
C:\Users\RayanB\AppData\Roaming\AdvancedSystemProtector =>PUP.Optional.AdvancedSystemProtector
C:\Users\RayanB\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
C:\Users\RayanB\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
C:\Users\RayanB\AppData\Local\CrashRpt =>.Legitimate.CrashReports
C:\Users\RayanB\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Users\RayanB\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Users\RayanB\AppData\Local\HealthAlert =>PUP.Optional.HealthAlert
C:\Users\RayanB\AppData\Local\Installer =>PUP.Optional.InstallPedia
C:\Users\RayanB\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
C:\WINDOWS\Prefetch\ANYPROTECT.EXE-53752276.pf =>PUP.Optional.AnyProtect
C:\WINDOWS\Prefetch\CROSSBROWSE.EXE-6BE4601B.pf =>PUP.Optional.CrossBrowse
C:\WINDOWS\Prefetch\GMSD_FR_005010064.EXE-8832739D.pf =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\IMINENTUNINSTALL.EXE-9087B9EC.pf =>PUP.Optional.IMBooster
C:\WINDOWS\Prefetch\PREDM.EXE-A62E7FE0.pf =>PUP.Optional.Downware
C:\WINDOWS\Prefetch\PREDM.TMP-022AA8C9.pf =>PUP.Optional.Downware
C:\WINDOWS\Prefetch\PREDM.TMP-0631E1AD.pf =>PUP.Optional.Downware
C:\WINDOWS\Prefetch\PREDM.TMP-4FF7B86A.pf =>PUP.Optional.Downware
C:\WINDOWS\Prefetch\PREDM.TMP-CC3416D2.pf =>PUP.Optional.Downware
C:\WINDOWS\Prefetch\PREDM.TMP-CDBF8F65.pf =>PUP.Optional.Downware
C:\WINDOWS\Prefetch\SMARTWEBAPP.EXE-1B36F5FD.pf =>PUP.Optional.SmartWebSearch
C:\WINDOWS\Prefetch\SMARTWEBHELPER.EXE-D7557F80.pf =>PUP.Optional.SmartWebSearch
C:\WINDOWS\Prefetch\UPGMSD_FR_005010047.EXE-06FA95AB.pf =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\UPGMSD_FR_005010055.EXE-57335331.pf =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\UPGMSD_FR_005010057.EXE-2DBE5D05.pf =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\UPGMSD_FR_005010064.EXE-92B195A1.pf =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\UPGMSD_FR_610.EXE-6CC33467.pf =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\WORDSHARKAUTOUPDATECLIENT.EXE-5FC08740.pf =>PUP.Optional.WordShark
C:\WINDOWS\System32\drivers\bsdriver.sys =>PUP.Optional.Shopperz
C:\Users\RayanB\AppData\Roaming\mystartsearch\key.dll =>PUP.Optional.StartSearch
C:\Users\RayanB\AppData\Local\SmartWeb\__u.exe =>PUP.Optional.SmartWebSearch
C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\VND2NKA5\AnyProtectSetup[1].exe =>PUP.Optional.AnyProtect
C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\VND2NKA5\AnyProtect[1].exe =>PUP.Optional.AnyProtect
C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\AnyProtect[1].exe =>PUP.Optional.AnyProtect
C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\cmi_mystartsearch[2].exe =>PUP.Optional.StartSearch
C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\FriendlyError_s4[1].exe =>PUP.Optional.FriendlyError
C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\SmartWebInstaller[2].exe =>PUP.Optional.SmartWebSearch
C:\Users\RayanB\AppData\Local\Microsoft\Windows\INetCache\IE\NZCX0F9A\VuuPC_VO2_8907[1].exe =>PUP.Optional.VuuPC
HKLM\Software\Classes\Installer\Products\E0BD057F254D8013369CEF61CB867614 =>PUP.Optional.WebPlayer
HKLM\Software\Classes\Installer\Features\E0BD057F254D8013369CEF61CB867614 =>PUP.Optional.WebPlayer
C:\WINDOWS\Installer\1f703489.msi =>PUP.Optional.Boxore
C:\WINDOWS\Installer\35e08ae.msi =>PUP.Optional.SocialSkinz
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSharkAutoUpdateClient_RASAPI32 =>PUP.Optional.WordShark
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WordSharkAutoUpdateClient_RASMANCS =>PUP.Optional.WordShark

---\\ Récapitulatif des éléments trouvées sur votre station (54) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/blog =>PUP.Optional.OnStage
http://www.nicolascoolman.fr/pup-optional-startsearch/ =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.BubbleSound
http://www.nicolascoolman.fr/blog =>PUP.Optional.WindeskWinsearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.SpaceSoundPro
http://www.nicolascoolman.fr/pup-optional-shopwit =>PUP.Optional.ShopWit
http://www.nicolascoolman.fr/blog =>PUP.Optional.ASPackage
http://www.nicolascoolman.fr/blog =>PUP.Optional.EduApp*
http://www.nicolascoolman.fr/pup-anyprotect/ =>PUP.Optional.AnyProtect
http://www.nicolascoolman.fr/blog =>PUP.Optional.BidailySync
http://www.nicolascoolman.fr/blog =>Heuristic.PullUpdate
http://www.nicolascoolman.fr/blog =>PUP.Optional.FastSearch
http://www.nicolascoolman.fr/blog =>Toolbar.AskBar
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowse
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/blog =>PUP.Optional.AgentODR
http://www.nicolascoolman.fr/adware-imbooster/ =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/blog =>PUP.Optional.Infonaut
http://www.nicolascoolman.fr/pup-klippal/ =>PUP.Optional.KlipPal
http://www.nicolascoolman.fr/pup-searchprotect/ =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/pup-superClick/ =>PUP.Optional.SuperClick
http://www.nicolascoolman.fr/trojan-fuyu/ =>PUP.Optional.Fuyu
http://www.nicolascoolman.fr/spyware-agenceexclusive/ =>PUP.Optional.AgenceExclusive
http://www.nicolascoolman.fr/pup-wajam/ =>PUP.Optional.Wajam
http://www.nicolascoolman.fr/pup-wordshark/ =>PUP.Optional.WordShark
http://www.nicolascoolman.fr/blog =>PUP.Optional.WordSurfer
http://www.nicolascoolman.fr/pup-optional-dailypcclean/ =>PUP.Optional.DailyPCClean
http://www.nicolascoolman.fr/blog =>PUP.Optional.FlashGamesRockstar
http://www.nicolascoolman.fr/pup-certifiedtoolbar/ =>PUP.Optional.CertifiedToolbar
http://www.nicolascoolman.fr/pup-linkeysearch/ =>PUP.Optional.LinkeySearch
http://www.nicolascoolman.fr/pup-objectbrowser/ =>PUP.Optional.ObjectBrowser
http://www.nicolascoolman.fr/blog =>PUP.Optional.SimplyTech
http://www.nicolascoolman.fr/blog =>PUP.Optional.SuperOptimizer
http://www.nicolascoolman.fr/adware-tidynetwork/ =>PUP.Optional.TidyNetwork
http://www.nicolascoolman.fr/blog =>PUP.Optional.MaxComputerCleaner
http://www.nicolascoolman.fr/adware-softomate/ =>PUP.Optional.Softomate
http://www.nicolascoolman.fr/adware-downware/ =>PUP.Optional.Downware
http://www.nicolascoolman.fr/adware-boxore/ =>PUP.Optional.Boxore
http://www.nicolascoolman.fr/pup-advancedsystemprotector/ =>PUP.Optional.AdvancedSystemProtector
http://www.nicolascoolman.fr/blog =>.Legitimate.CrashReports
http://www.nicolascoolman.fr/blog =>PUP.Optional.HealthAlert
http://www.nicolascoolman.fr/adware-installpedia/ =>PUP.Optional.InstallPedia
http://www.nicolascoolman.fr/pup-smartwebsearch/ =>PUP.Optional.SmartWebSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.Shopperz
http://www.nicolascoolman.fr/blog =>PUP.Optional.FriendlyError
http://www.nicolascoolman.fr/pup-vuupc/ =>PUP.Optional.VuuPC
http://www.nicolascoolman.fr/pup-cacaoweb/ =>PUP.Optional.CacaoWeb
http://www.nicolascoolman.fr/adware-relevantknowledge/ =>PUP.Optional.RelevantKnowledge
http://www.nicolascoolman.fr/blog =>PUP.Optional.WebPlayer
http://www.nicolascoolman.fr/adware-socialskinz/ =>PUP.Optional.SocialSkinz

~ End of the scan, 36500 items in 235 seconds (1404)(0)()

Publicité


Signaler le contenu de ce document

Publicité