cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.8.20.122 Par Nicolas Coolman (2015/08/20)
~ Démarré par HP (Administrator) (2015/08/21 00:08:59)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\HP\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\HP\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Home Premium, 64-bit (Build 7600)

---\\ Navigateurs Internet (2) - 0s
GCIE: Google Chrome v44.0.2403.155
MSIE: Internet Explorer v8.0.7600.16385

---\\ Informations sur les produits Windows (4) - 7s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK

---\\ Logiciels de protection (1) - 14s
Windows Defender W7 (Deactivate)

---\\ Logiciels de protection et autres (Superflus) (1) - 16s
McAfee Security Scan Plus v3.11.149.2

---\\ Surveillance de Logiciels (1) - 18s
Adobe Acrobat Reader DC - Français

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4119.416 MB (39% free)
~ System Restore: Activé (Enable)
~ System drive C: has 447 GB free of 592 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: HP-PC
~ User Name: HP
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 0s
~ Drive C: has 447 GB free of 592 GB (System)
~ Drive D: has 2 GB free of 18 GB
~ Drive E: has 0 GB free of 0 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (23) - 7s
[MD5.6D4F9E4B640B413C6F73414327484C80] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2868736]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [129024]
[MD5.B1037F0131C9A010D611F6914E03CD92] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [1193472]
[MD5.132328DF455B0028F13BF0ABEE51A63A] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [389120]
[MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [231936]
[MD5.F2521C3173E6027B3FBD5E44272BDF6C] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [19968]
[MD5.B9384E03479D2506BC924C16A3DB87BC] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [500224]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160]
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456]
[MD5.3F1DC527070ACB87E40AFE46EF6DA749] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400]
[MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224]
[MD5.CFDCD8CA87C2A657DEBC150AC35B5E08] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [157184]
[MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [259072]
[MD5.356698A13C4630D5B31C37378D469196] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1659984]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [97280]
[MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [130048]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184]
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [99840]
[MD5.58F82EED8CA24B461441F9C3E4F0BF5C] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [294992]

---\\ Processus lancés (64) - 5s
[MD5.8F9C2A5F96810467D50687AE00465424] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 188.1.) -- C:\Windows\system32\nvvsvc.exe [392296] [PID.912]
[MD5.75020E08A7BC67D08CE51B37B30C0AD9] - (.Tencent - 电脑管家-实时防护服务.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCRTP.exe [301728] [PID.944] =>PUP.Optional.TencentAddressBar
[MD5.7A094E697E8B7B4B495AFA3D522A8E8D] - (.Beijing Rising Information Technology Co., Ltd. - RsMgrSvc Application.) -- C:\Program Files (x86)\Rising\RSD\RsMgrSvc.exe [196288] [PID.520]
[MD5.28D944CAE5632248D3A546AAF7601160] - (.Beijing Rising Information Technology Co., Ltd. - 瑞星杀毒软件 安全服务核心程序.) -- C:\Program Files (x86)\Rising\RAV\ravmond.exe [277552] [PID.1124]
[MD5.57BEB4500716DD30B65DFA85A35CC3D7] - (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\stacsv64.exe [240640] [PID.1308]
[MD5.8F9C2A5F96810467D50687AE00465424] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 188.1.) -- C:\Windows\system32\nvvsvc.exe [392296] [PID.1504]
[MD5.AA036CC5F5221D9B915F4D4DCE74BA9A] - (.Hewlett-Packard - HpService.) -- C:\Windows\system32\Hpservice.exe [30520] [PID.1580]
[MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.2496]
[MD5.A6FB9DB8F1A86861D955FD6975977AE0] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\AESTSr64.exe [89600] [PID.2548]
[MD5.612CB66D93ED0F2F21BB109840C7D813] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128] [PID.2576]
[MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.3060]
[MD5.31DA517946FFE416442E864592548F8A] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [873248] [PID.2516]
[MD5.1CE55AE7E57826457FD56EB3C50E4E54] - (.CyberLink Corp. - HP MediaSmart TV Resident Program.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe [415016] [PID.2736]
[MD5.C6331D11F80B3AFFD91A9B3858E00F23] - (.CyberLink - CyberLink MediaLibray Service.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [210216] [PID.2684]
[MD5.FD70E66EB44D888C8A51D85419BDD6B9] - (.Copyright © MAVIN LOG, S.L. 2013 - InfigoOperator.) -- C:\Program Files (x86)\Infigo\InfigoOperator.exe [19720] [PID.3124]
[MD5.2238B91AC1A12CC6CC4C4FED41258B2A] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.3192]
[MD5.74E28771B00AFA677DDD35A85558D7F0] - (.Reimage® - Reimage Real Time Protection.) -- C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [7414256] [PID.3244] =>PUP.Optional.ReImageRepair
[MD5.6D6150098E2F00315C5E1160437CE997] - (...) -- C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe [6759912] [PID.3300] =>PUP.Optional.ReImageRepair
[MD5.498EB62A160674E793FA40FD65390625] - (.Copyright 2004 - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152] [PID.3308]
[MD5.2BACD71123F42CEA603F4E205E1AE337] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096] [PID.3488]
[MD5.2A46FFE841EC43001D5A293A54DB34DE] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223104] [PID.3560]
[MD5.F009FE263CD72EC129A615DC2B7EC7E2] - (.Tencent - 电脑管家.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCTray.exe [355296] [PID.3996] =>PUP.Optional.TencentAddressBar
[MD5.CB9EEDE9E800B3FB32426A078CC7C56D] - (...) -- C:\Users\HP\AppData\Local\gmsd_be_005010060\upgmsd_be_005010060.exe [3334800] [PID.4184] =>PUP.Optional.CrossRider
[MD5.5F45D87B172CFCA862B7F1BED641F263] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1814312] [PID.4520]
[MD5.59E58A7A5388E00BB4347AEBBDCC84FE] - (.Copyright (C) 2009 Hewlett-Packard Development Compan - SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610872] [PID.4548]
[MD5.2F407AA24101E4678B110A1FFA13F587] - (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe [171520] [PID.4604]
[MD5.0F22DA454AE3249AF6236098EDBA0AD9] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe [487424] [PID.4636]
[MD5.076B3EE149E01ADBAC2DC529554A3FD9] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [169768] [PID.4656]
[MD5.B15DFB916F0D7AFEA5802A014E0A3715] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [120616] [PID.4724]
[MD5.7BD78E432A88A1936862171146BB4DDD] - (...) -- C:\Windows\System32\cpuminer-gw64.exe [1408304] [PID.4772]
[MD5.A5F78606A9BA8F0C4C8FF9DED6ED5107] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048] [PID.4808]
[MD5.E02E715FA2BC8D88FF9362374E309D76] - (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392] [PID.4900]
[MD5.69E967F3FF9E3DF41F4228440FBD43AE] - (.Ares Development Group - Ares p2p for windows.) -- C:\Program Files (x86)\Ares\Ares.exe [1015808] [PID.4964]
[MD5.9EB925EDC8CF1C3D06E50E9348B54A0A] - (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\HP\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096] [PID.5060]
[MD5.E61BB95A7CB49696D25A0C4EBD108156] - (.Apple Inc. - iPodService Module (64-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [643880] [PID.3936]
[MD5.6BCFCFA512A003A8043CF2F370B0B479] - (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [637440] [PID.5068] =>PUP.Optional.CrossBrowse
[MD5.6BCFCFA512A003A8043CF2F370B0B479] - (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [637440] [PID.4696] =>PUP.Optional.CrossBrowse
[MD5.089AC78F91E11841D5D4E65719464285] - (.iQIYI.COM - 爱奇艺HCDN网络数据传输组件.) -- C:\IQIYI Video\Common\QyKernel.exe [576104] [PID.4652] =>PUP.Optional.IQIYIVideo
[MD5.C98B96445945027FD0B7DA2AA325F30A] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [1081632] [PID.5456]
[MD5.3D8F220E84D7D59246622DDC2AB0F2FE] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files\McAfee Security Scan\3.11.149\SSScheduler.exe [330456] [PID.5476]
[MD5.17DC4F47FA704582F01F822B1FDB2128] - (.Dropbox, Inc. - Dropbox.) -- C:\Users\HP\AppData\Roaming\Dropbox\bin\Dropbox.exe [39179912] [PID.5520]
[MD5.8F89E6CB82E6DB45BC993D423CD0FDBD] - (.Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe [323640] [PID.5528]
[MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [54576] [PID.5672]
[MD5.DA4ED31DD43ABB0AF99888E236FFDB91] - (.Hewlett-Packard - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744] [PID.5712]
[MD5.153F088DFDB3F940AD9DAEB04A3ACC4D] - (.SoftBrain Technologies Ltd. - SmartWeb helper.) -- C:\Users\HP\AppData\Local\SmartWeb\SmartWebHelper.exe [270368] [PID.5720] =>PUP.Optional.SmartWebSearch
[MD5.D898A66D91BAB6FB579A94D21793073F] - (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files (x86)\Athan\Athan.exe [1204224] [PID.5740]
[MD5.2CFA297E8EE94C4C7C41A65F6AB75816] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [296056] [PID.5828]
[MD5.BCF9046E588685DAF5D19DA9C5DF62AA] - (...) -- C:\Program Files (x86)\gmsd_be_005010060\gmsd_be_005010060.exe [3981456] [PID.5896] =>PUP.Optional.CrossRider
[MD5.44069C2AC699C8DAD80A96FB1C8DFE57] - (.SoftBrain Technologies Ltd. - SmartWeb Application.) -- C:\Users\HP\AppData\Local\SmartWeb\SmartWebApp.exe [557088] [PID.2728] =>PUP.Optional.SmartWebSearch
[MD5.A1C0CDE33B3FE6A885163DA25FDD92B1] - (...) -- C:\Program Files (x86)\gmsd_be_005010061\gmsd_be_005010061.exe [3982480] [PID.5168] =>PUP.Optional.CrossRider
[MD5.9B7EDD3FE7C211C36E921D34D18A3A0A] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [1001376] [PID.6172]
[MD5.7987410F0C210686B07C51E2D77809FF] - (...) -- C:\Program Files (x86)\gmsd_be_005010062\gmsd_be_005010062.exe [3980432] [PID.6264] =>PUP.Optional.CrossRider
[MD5.9FC8D62CD7E5C9DB50B515C26B968E00] - (.Beijing Rising Information Technology Co., Ltd. - tray 应用程序.) -- C:\Program Files (x86)\Rising\RSD\popwndexe.exe [126808] [PID.6660]
[MD5.F9A79C5B27037821112C50A9C8FB367A] - (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [228408] [PID.6792]
[MD5.136EBEBD47C626269EC708F35BC5E253] - (.Beijing Rising Information Technology Co., Ltd. - 瑞星杀毒软件 托盘程序.) -- C:\PROGRAM FILES (X86)\Rising\RAV\rstray.exe [111000] [PID.7000]
[MD5.0DE3C7622EC33126579B1742260F08C2] - (.Copyright (c) 2005 - 2009 Hewlett-Packard Development - HpqToaster Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.3764]
[MD5.CC8975B0745CA7CD5EA0C791AE0E10E6] - (.Beijing Rising Information Technology Co., Ltd. - rstray Application.) -- C:\PROGRAM FILES (X86)\Rising\RAV\rstray64.exe [50968] [PID.7596]
[MD5.1C05E323DD4D032FBE1E75D02C5F14C8] - (.Tencent - 电脑管家-网络流量监控.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\plugins\QMNetMon\QQPCNetFlow.exe [1186144] [PID.5344] =>PUP.Optional.TencentAddressBar
[MD5.3AEC17027235EF62EB9DF61F8532CE1D] - (.Tencent - 电脑管家-小火箭.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCRealTimeSpeedup.exe [612832] [PID.4972] =>PUP.Optional.TencentAddressBar
[MD5.6BCFCFA512A003A8043CF2F370B0B479] - (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [637440] [PID.7700] =>PUP.Optional.CrossBrowse
[MD5.6BCFCFA512A003A8043CF2F370B0B479] - (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [637440] [PID.7064] =>PUP.Optional.CrossBrowse
[MD5.6BCFCFA512A003A8043CF2F370B0B479] - (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [637440] [PID.5484] =>PUP.Optional.CrossBrowse
[MD5.6BCFCFA512A003A8043CF2F370B0B479] - (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [637440] [PID.3444] =>PUP.Optional.CrossBrowse
[MD5.63E20985B61368A6172D93D0245DC9F8] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\HP\ZHPDiag3.exe [1895424] [PID.8772]

---\\ Google Chrome, Démarrage,Recherche,Extensions (26) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://972357688.r.cdn77.net/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ctxfeed.media-serving.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://icm.r.worldssl.net/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://js.maxdevzone.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://systemocean.info/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apigetbananaphon-a.akamaihd.net/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://icm.cdn77-ssl.net/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://mynamedomain.koko/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.dropbox.com/
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cfnpidifppmenkapgihekkeednfoenal] TrafficLight
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [dgngpdbgpcphcopaajbmjgdmhejjbkoa] Banana Phone
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ifohbjbgfchkkfhphahclmkpgejiplfo] ifohbjbgfchkkfhphahclmkpgejiplfo
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ooebklgpfnbcnpokahmdidgbmlcdepkm] 电脑管家上网防护
G2 - GCE: Preference [User Data\Default] [papbadoldddalgcjcicnikcfenodpghp] CinemaPlus-3.2cV14.08 =>PUP.Optional.CrossRider
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pmmemlnpjmfkcddknibchodllhnnidlp] pmmemlnpjmfkcddknibchodllhnnidlp

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (9) - 1s
P2 - FPN: [HKCU] [@iqiyi.com/npWebPlayer] - (.爱奇艺公司.) -- C:\IQIYI Video\LStyle\npWebPlayer.dll =>PUP.Optional.IQIYIVideo
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS.) -- C:\Users\HP\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@iqiyi.com/npclient] - (.iQiyi.com.) -- C:\IQIYI Video\LStyle\npclient.dll =>PUP.Optional.IQIYIVideo
P2 - FPN: [HKLM] [@iqiyi.com/npWebPlayer] - (.爱奇艺公司.) -- C:\IQIYI Video\LStyle\npWebPlayer.dll =>PUP.Optional.IQIYIVideo
P2 - FPN: [HKLM] [@qq.com/npAndroidAssistant] - (.腾讯公司.) -- C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3198\npQQPhoneManagerExt.dll =>PUP.Optional.TencentAddressBar
P2 - FPN: [HKLM] [@qq.com/QQPCMgr] - (.Tencent Technology (Shenzhen) Company Limited.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\npQMExtensionsMozilla.dll =>PUP.Optional.TencentAddressBar
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (21) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hao123.com/ =>PUP.Optional.Browser
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hao123.com/ =>PUP.Optional.Browser
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.hao123.com/ =>PUP.Optional.Browser
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://french.eazel.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://isearch.avg.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://isearch.avg.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {EEE6C35D-6118-11DC-9C72-001320C79847} Orphean
R3 - URLSearchHook: (no name) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} Orphean
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R3 - URLSearchHook: (no name) - {90b49673-5506-483e-b92b-ca0265bd9ca8} Orphean

---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Etude du fichier hosts (2) - 0s
0
~ Le fichier hôte est sain (The hosts file is clean) (23)

---\\ Browser Helper Object de navigateur (BHO) (2) - 0s
O2 - BHO: TSWebMon [64Bits] - {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} . (.Tencent - 电脑管家-网页防火墙.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\TSWebMon64.dat =>PUP.Optional.TencentAddressBar
O2 - BHO: 50CoOOuupoonns [64Bits] - {E77A8936-3FA5-4C60-B624-71DC87D7C2EC} (Orphean) =>PUP.Optional.TencentAddressBar

---\\ Internet Explorer, Barre d'outil (7) - 1s
O3 - Toolbar: 0xEF44FA216D37534D9B0F8A89D3229068 - [HKCU]{21FA44EF-376D-4D53-9B0F-8A89D3229068} . (...) -- (.not file.)
O3 - Toolbar: 0x5BC3E6EE1861DC119C72001320C79847 - [HKCU]{EEE6C35B-6118-11DC-9C72-001320C79847} . (...) -- C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (.not file.) =>PUP.Optional.SweetIM
O3 - Toolbar: 0xCCE97A9783AFE8459E03E2798216E2D5 - [HKCU]{977AE9CC-AF83-45E8-9E03-E2798216E2D5} . (...) -- (.not file.)
O3 - Toolbar: 0x2D75F9A8B8E27A4E86B5499F4330E2FE - [HKCU]{A8F9752D-E2B8-4E7A-86B5-499F4330E2FE} . (...) -- (.not file.)
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- (.not file.)
O3 - Toolbar: 0x7396B49006553E48B92BCA0265BD9CA8 - [HKCU]{90B49673-5506-483E-B92B-CA0265BD9CA8} . (...) -- (.not file.)
O3 - Toolbar: 0xFF6BDFE7A555B74EA6734ED3E9456D39 - [HKCU]{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} . (...) -- (.not file.)

---\\ Applications lancées au démarrage du système (39) - 2s
O4 - HKLM\..\Run: [NvCplDaemon] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\RUNDLL32.EXE
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SmartMenu] . (.Copyright (C) 2009 Hewlett-Packard Development Compan - SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [gpuminer] . (...) -- C:\Users\HP\AppData\Roaming\cpuminer\sgminer\sgminer.cmd
O4 - HKLM\..\Run: [cpuminer] . (...) -- C:\Windows\system32\cpuminer-gw64.exe
O4 - HKCU\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKCU\..\Run: [ares] . (.Ares Development Group - Ares p2p for windows.) -- C:\Program Files (x86)\Ares\Ares.exe
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\HP\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [TBHostSupport] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\SysWOW64\rundll32.exe
O4 - HKCU\..\Run: [Infigo] . (.MAVIN LOG, S.L. - Infigo.) -- C:\Program Files (x86)\Infigo\Infigo.exe
O4 - HKCU\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\HP\AppData\Local\Dropbox\Update\DropboxUpdate.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_E48B451C3835DB6353A56B63A17AF714] . (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - HKCU\..\Run: [apphide] C:\Program Files (x86)\baidu\pps.exe (.not file.)
O4 - HKCU\..\Run: [HCDNClient] . (.iQIYI.COM - 爱奇艺HCDN网络数据传输组件.) -- C:\IQIYI Video\Common\QyKernel.exe =>PUP.Optional.IQIYIVideo
O4 - HKLM\..\Wow6432Node\Run: [HPCam_Menu] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [QlbCtrl.exe] . (.Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - .) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\RunOnce: [upgmsd_be_005010060.exe] . (...) -- C:\Users\HP\AppData\Local\gmsd_be_005010060\upgmsd_be_005010060.exe =>PUP.Optional.CrossRider
O4 - HKLM\..\Wow6432Node\RunOnce: [upgmsd_be_005010062.exe] . (...) -- C:\Users\HP\AppData\Local\gmsd_be_005010062\upgmsd_be_005010062.exe =>PUP.Optional.CrossRider
O4 - HKLM\..\Wow6432Node\RunOnce: [upgmsd_be_005010061.exe] . (...) -- C:\Users\HP\AppData\Local\gmsd_be_005010061\upgmsd_be_005010061.exe =>PUP.Optional.CrossRider
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-4003978189-4124775314-1412752633-1000\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKUS\S-1-5-21-4003978189-4124775314-1412752633-1000\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKUS\S-1-5-21-4003978189-4124775314-1412752633-1000\..\Run: [ares] . (.Ares Development Group - Ares p2p for windows.) -- C:\Program Files (x86)\Ares\Ares.exe
O4 - HKUS\S-1-5-21-4003978189-4124775314-1412752633-1000\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\HP\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-4003978189-4124775314-1412752633-1000\..\Run: [TBHostSupport] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\SysWOW64\rundll32.exe
O4 - HKUS\S-1-5-21-4003978189-4124775314-1412752633-1000\..\Run: [Infigo] . (.MAVIN LOG, S.L. - Infigo.) -- C:\Program Files (x86)\Infigo\Infigo.exe
O4 - HKUS\S-1-5-21-4003978189-4124775314-1412752633-1000\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\HP\AppData\Local\Dropbox\Update\DropboxUpdate.exe
O4 - HKUS\S-1-5-21-4003978189-4124775314-1412752633-1000\..\Run: [GoogleChromeAutoLaunch_E48B451C3835DB6353A56B63A17AF714] . (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - HKUS\S-1-5-21-4003978189-4124775314-1412752633-1000\..\Run: [apphide] C:\Program Files (x86)\baidu\pps.exe (.not file.)
O4 - HKUS\S-1-5-21-4003978189-4124775314-1412752633-1000\..\Run: [HCDNClient] . (.iQIYI.COM - 爱奇艺HCDN网络数据传输组件.) -- C:\IQIYI Video\Common\QyKernel.exe =>PUP.Optional.IQIYIVideo

---\\ Raccourcis Global Startup (14) - 6s
O4 - GS\Desktop [Administrator]: GUPlayer.lnk . (.M-Player-Video G - Video&audio-Player.) C:\Program Files (x86)\GUPlayer\GuPlayer.exe =>PUP.Optional.GUPlayer
O4 - GS\Quicklaunch [Administrator]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Administrator]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Administrator]: SmartWeb.lnk . (.SoftBrain Technologies Ltd. - SmartWeb helper.) C:\Users\HP\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\Desktop [Guest]: GUPlayer.lnk . (.M-Player-Video G - Video&audio-Player.) C:\Program Files (x86)\GUPlayer\GuPlayer.exe =>PUP.Optional.GUPlayer
O4 - GS\Quicklaunch [Guest]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Guest]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Guest]: SmartWeb.lnk . (.SoftBrain Technologies Ltd. - SmartWeb helper.) C:\Users\HP\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\Desktop [HP]: GUPlayer.lnk . (.M-Player-Video G - Video&audio-Player.) C:\Program Files (x86)\GUPlayer\GuPlayer.exe =>PUP.Optional.GUPlayer
O4 - GS\Quicklaunch [HP]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [HP]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [HP]: SmartWeb.lnk . (.SoftBrain Technologies Ltd. - SmartWeb helper.) C:\Users\HP\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\CommonDesktop [Public]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\CommonDesktop [Public]: PC Scan & Repair by Reimage.lnk . (.Reimage® - Reimage Downloader.) C:\Program Files\Reimage\Reimage Repair\ReimageRepair.exe =>PUP.Optional.ReImageRepair

---\\ Modification Domaine/Adresses DNS (6) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 52.18.92.32,8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.130.131.1 195.130.130.129
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 52.18.92.32,8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 195.130.131.1 195.130.130.129
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 52.18.92.32,8.8.8.8
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 195.130.131.1 195.130.130.129

---\\ Liste des services NT non Microsoft et non désactivés (26) - 3s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\AESTSr64.exe
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Wire Professional Version (comyninu) . (...) - C:\Program Files (x86)\30464E43-1439425597-5144-3044-C80AA94CC265\hnst2F7A.tmp (.not file.) =>PUP.Optional.CrossRider
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
O23 - Service: Service Google Update (gupdate) (gupdate) . (...) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.)
O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (...) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe (.not file.)
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard - HpService.) - C:\Windows\system32\Hpservice.exe
O23 - Service: Key In Bold Italic (hyverumu) . (...) - C:\Program Files (x86)\30464E43-1439425597-5144-3044-C80AA94CC265\jnsd19C6.tmp (.not file.) =>PUP.Optional.CrossRider
O23 - Service: Infigo Operator (InfigoOperator) . (.Copyright © MAVIN LOG, S.L. 2013 - InfigoOperator.) - C:\Program Files (x86)\Infigo\InfigoOperator.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 188.1.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: QQPCMgr RTP Service (QQPCRTP) . (.Tencent - 电脑管家-实时防护服务.) - C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCRTP.exe =>PUP.Optional.TencentAddressBar
O23 - Service: Reimage Real Time Protector (ReimageRealTimeProtector) . (.Reimage® - Reimage Real Time Protection.) - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe =>PUP.Optional.ReImageRepair
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Copyright 2004 - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Rsd Service (RsMgrSvc) . (.Beijing Rising Information Technology Co., Ltd. - RsMgrSvc Application.) - C:\Program Files (x86)\Rising\RSD\RsMgrSvc.exe
O23 - Service: Rav Service (RsRavMon) . (.Beijing Rising Information Technology Co., Ltd. - 瑞星杀毒软件 安全服务核心程序.) - C:\Program Files (x86)\Rising\RAV\ravmond.exe
O23 - Service: Find Optical (sefecewo) . (...) - C:\Program Files (x86)\30464E43-1439425597-5144-3044-C80AA94CC265\knsl997E.tmp (.not file.) =>PUP.Optional.CrossRider
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\stacsv64.exe
O23 - Service: Update Banana Phone (Update Banana Phone) . (...) - C:\Program Files (x86)\Banana Phone\updateBananaPhone.exe (.not file.) =>PUP.Optional.BananaPhone*
O23 - Service: Util Banana Phone (Util Banana Phone) . (...) - C:\Program Files (x86)\Banana Phone\bin\utilBananaPhone.exe (.not file.) =>PUP.Optional.BananaPhone*
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) . (...) - C:\ProgramData\aWinManProa\ProtectWindowsManager.exe (.not file.) =>PUP.Optional.Fuyu
O23 - Service: Word Surfer 1.10.0.19 Client Service (wsasvc_1.10.0.19) . (...) - C:\Program Files (x86)\WordSurfer_1.10.0.19\Service\wsasvc.exe (.not file.) =>PUP.Optional.Generic

---\\ Enumère les données de BootExecute (1) - 0s
O34 - HKLM BootExecute: ( bsmain)

---\\ Tâches planifiées en automatique (57) - 5s
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-1-6.job [3132] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-1-7.job [3132] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-10_user.job [2106] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-3.job [4488] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-5.job [2440] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-5_user.job [2440] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-6.job [5512] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-7.job [5512] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\BYAIAMUF.job [1674]
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\Crossbrowse.job [1050] =>PUP.Optional.CrossBrowse
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-4003978189-4124775314-1412752633-1000Core.job [1132]
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-4003978189-4124775314-1412752633-1000UA.job [1184]
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\f4nN8cBNXZaerslkixL3euLA.job [1008]
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4003978189-4124775314-1412752633-1000Core.job [1062]
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\FundTracker.job [356]
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job [964] =>PUP.Optional.GlobalUpdate
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job [968] =>PUP.Optional.GlobalUpdate
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\Optscan.job [334]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-1-6 [6160] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-1-7 [6162] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-10_user [5118] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-3 [7518] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-5 [5470] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-5_user [5454] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-6 [8540] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-7 [8542] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\BYAIAMUF [4688]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\CapSchedInst [2824]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\CapSvcInst [2820]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\CapUninst [2818]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\CLMLSvc [3200]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Crossbrowse [4064] =>PUP.Optional.CrossBrowse
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-4003978189-4124775314-1412752633-1000Core [3752]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-4003978189-4124775314-1412752633-1000UA [4148]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\DVDAgent [3164]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\f4nN8cBNXZaerslkixL3euLA [4022]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4003978189-4124775314-1412752633-1000Core [3686]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\FundTracker [3262]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore [3712] =>PUP.Optional.GlobalUpdate
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA [3966] =>PUP.Optional.GlobalUpdate
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\LaunchApp [4002]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\new tab helper oursurfing [4110] =>PUP.Optional.OurSurfing
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Optscan [3240]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\RealUpgradeLogonTaskS-1-5-21-4003978189-4124775314-1412752633-1000 [3188]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\RecoveryCDWin7 [3956]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Registration [3764]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Reimage Reminder [3416] =>PUP.Optional.ReImageRepair
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\ReimageUpdater [4262] =>PUP.Optional.ReImageRepair
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\RsDelayLauncher_{8A34248E-7D35-4832-8378-7659E0B0A380} [3302]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\SmartWeb Upgrade Trigger Task [4016] =>PUP.Optional.SmartWebSearch
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\TVAgent [3170]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Core [4172] =>PUP.Optional.WordSurfer
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Pending Update [4182] =>PUP.Optional.WordSurfer
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{1A40F78D-5C09-4D42-8122-82D6EA3EFEF1} [3038]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{4A151E06-DB53-403C-B0B1-A302EA19CE68} [3048]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{F2A9B2E4-35AD-48B3-ADEF-9729E47635E0} [3092]

---\\ Logiciels installés (118) - 21s
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM][64Bits] -- 3BA80AB4C7E9F8497C115C844953A3D4BEB84D21
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) - (.Broadcom.) [HKLM][64Bits] -- 6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (06/15/2009 6.2.0.9000) - (.Broadcom.) [HKLM][64Bits] -- 6B8550A319DDC8B17F35F4A89988705E4592349B
O42 - Logiciel: Banana Phone - (.Banana Phone.) [HKLM][64Bits] -- Banana Phone
O42 - Logiciel: CPU Miner - (.Open Source.) [HKLM][64Bits] -- cpuminer
O42 - Logiciel: ENE CIR Receiver Driver - (.ENE.) [HKLM][64Bits] -- FFE7D41DF3C645075BB149E21988B63996C34187
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers
O42 - Logiciel: Reimage Repair - (.Reimage.) [HKLM][64Bits] -- Reimage Repair =>PUP.Optional.ReImageRepair
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: Java(TM) 6 Update 15 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416015FF}
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard.) [HKLM][64Bits] -- {601871C3-CAFA-4244-B67D-36EC9AFA67EC}
O42 - Logiciel: Java(TM) SE Development Kit 6 Update 15 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0160150}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: HP MediaSmart SmartMenu - (.Hewlett-Packard.) [HKLM][64Bits] -- {88E60521-1E4E-4785-B9F1-1798A4BD0C30}
O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM][64Bits] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {93F2A022-6C37-48B8-B241-FFABD9F60C30}
O42 - Logiciel: HP Integrated Module with Bluetooth wireless technology - (.Broadcom Corporation.) [HKLM][64Bits] -- {9E9D49A4-1DF4-4138-B7DB-5D87A893088E}
O42 - Logiciel: Microsoft Camera Codec Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {B58E1A4F-9C9D-4513-ACD3-2D1831258254}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {C4123106-B685-48E6-B9BD-E4F911841EB4}
O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {D7B824DE-DA32-4772-9E5E-39C5158136A7}
O42 - Logiciel: Microsoft Age of Empires Gold - (...) [HKLM][64Bits] -- Age of Empires Gold 1.0
O42 - Logiciel: Ares 2.1.7 - (.Ares Development Group.) [HKLM][64Bits] -- Ares
O42 - Logiciel: Athan Basic 4.1 - (...) [HKLM][64Bits] -- Athan
O42 - Logiciel: AVG Security Toolbar - (.AVG Technologies.) [HKLM][64Bits] -- AVG Secure Search
O42 - Logiciel: CinemaPlus-3.2cV14.08 - (.Cinema PlusV14.08.) [HKLM][64Bits] -- CinemaPlus-3.2cV14.08 =>PUP.Optional.CrossRider
O42 - Logiciel: Crossbrowse - (.The Crossbrowse Authors.) [HKLM][64Bits] -- Crossbrowse =>PUP.Optional.CrossBrowse
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop
O42 - Logiciel: Friendly Error - (...) [HKLM][64Bits] -- FriendlyError
O42 - Logiciel: GamesDesktop 005.005010060 - (.GAMESDESKTOP.) [HKLM][64Bits] -- gmsd_be_005010060_is1 =>PUP.Optional.GamesDesktop
O42 - Logiciel: GamesDesktop 005.005010061 - (.GAMESDESKTOP.) [HKLM][64Bits] -- gmsd_be_005010061_is1 =>PUP.Optional.GamesDesktop
O42 - Logiciel: GamesDesktop 005.005010062 - (.GAMESDESKTOP.) [HKLM][64Bits] -- gmsd_be_005010062_is1 =>PUP.Optional.GamesDesktop
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: HDM Connection Manager - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- HDM Connection Manager
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: HP MediaSmart Live TV - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
O42 - Logiciel: 爱奇艺影音 - (.爱奇艺.) [HKLM][64Bits] -- IQIYI Video =>PUP.Optional.IQIYIVideo
O42 - Logiciel: istartsurf uninstall - (.istartsurf.) [HKLM][64Bits] -- istartsurf uninstall =>PUP.Optional.IsStart
O42 - Logiciel: PRGR 2009.2 - (.Euro Business Partner.) [HKLM][64Bits] -- Le Permis Réussi - Het Geslaagde Rijexamen_is1
O42 - Logiciel: mystartsearch uninstall - (.mystartsearch.) [HKLM][64Bits] -- mystartsearch uninstall =>PUP.Optional.StartSearch
O42 - Logiciel: Rising Antivirus - (.Beijing Rising Information Technology, Inc..) [HKLM][64Bits] -- RAV
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM][64Bits] -- RealPlayer 15.0
O42 - Logiciel: SmartWeb - (.SoftBrain Technologies Ltd..) [HKLM][64Bits] -- SmartWeb =>PUP.Optional.SmartWebSearch
O42 - Logiciel: Tactical Ops - (.Infogrames.) [HKLM][64Bits] -- Tactical Ops
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall =>.WildTangent
O42 - Logiciel: Windows Media Encoder 9 Series - (...) [HKLM][64Bits] -- Windows Media Encoder 9
O42 - Logiciel: WordSurfer 1.10.0.19 - (.WordSurfer.) [HKLM][64Bits] -- WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {111EE7DF-FC45-40C7-98A7-753AC46B12FB}
O42 - Logiciel: OpenOffice 4.1.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {121727D5-FDF3-4723-BA57-EB383440ED72}
O42 - Logiciel: Support PL 1.1 - (.riceLes.) [HKLM][64Bits] -- {12DA0E6F-5543-440C-BAA2-28BF01070AFA}{d89d157a}
O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM][64Bits] -- {17B4760F-334B-475D-829F-1A3E94A6A4E6}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM][64Bits] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7}
O42 - Logiciel: JMicron Flash Media Controller Driver - (.JMicron Technology Corp..) [HKLM][64Bits] -- {26604C7E-A313-4D12-867F-7C6E7820BE4C}
O42 - Logiciel: Java(TM) 6 Update 29 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216015FF}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM][64Bits] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard.) [HKLM][64Bits] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
O42 - Logiciel: ESU for Microsoft Windows 7 - (.Hewlett-Packard.) [HKLM][64Bits] -- {3877C901-7B90-4727-A639-B6ED2DD59D43}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B160861-7250-451E-B5EE-8B92BF30A710}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM][64Bits] -- {40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}
O42 - Logiciel: Recovery Manager - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}
O42 - Logiciel: youtubeadblocker - (...) [HKLM][64Bits] -- {4820778D-AB0D-6D18-C316-52A6A0E1D507} =>PUP.Optional.Multiplug
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {54CC7901-804D-4155-B353-21F0CC9112AB}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: HP MediaSmart Live TV - (.Hewlett-Packard.) [HKLM][64Bits] -- {67626E09-5366-4480-8F1E-93FADF50CA15}
O42 - Logiciel: Skype™ 7.8 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: PrriiceLess - (...) [HKLM][64Bits] -- {75F9BF4A-AF67-A478-A37B-31D73186D3F3} =>PUP.Optional.Multiplug
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Widestream6 - (.Secure Digital Services.) [HKLM][64Bits] -- {835525BE-63BD-4EC4-9425-00CEAD4849C2} =>PUP.Optional.SPointer
O42 - Logiciel: Realtek Ethernet Controller Driver For Windows Vista and Later - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: Update for Office 2007 (KB934528) - (...) [HKLM][64Bits] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{2B939677-2FFD-48F6-9075-7BF48CB87C80}
O42 - Logiciel: globalupdate Helper - (.globalupdate Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.GlobalUpdate
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215}
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100}
O42 - Logiciel: Hootsuite Hootlet - (...) [HKLM][64Bits] -- {AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {AFA1153A-F547-409B-B837-3A0D6C5A3FEC}
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {B2EE25B9-5B00-4ACF-94F0-92433C28C39E}
O42 - Logiciel: HP User Guides 0154 - (.Hewlett-Packard.) [HKLM][64Bits] -- {B51605BF-6326-4553-AE96-6D7F1813D5F5}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {CC8E94A2-55C7-4460-953C-2A790180578C}
O42 - Logiciel: 50CoOOuupoonns - (."".) [HKLM][64Bits] -- {CF987D06-1DCF-7B36-5B43-13BC8699C44C}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {D46D081B-F60E-467E-A7C4-117B70D76731}
O42 - Logiciel: Intel(R) Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM][64Bits] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- {DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Windows Media Encoder 9 Series - (.Microsoft Corporation.) [HKLM][64Bits] -- {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- {E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: QLBCASL - (.Hewlett-Packard.) [HKLM][64Bits] -- {F1D7AC58-554A-4A58-B784-B61558B1449A}
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox
O42 - Logiciel: GUPlayer (remove only) - (...) [HKCU][64Bits] -- GUPlayer =>PUP.Optional.GUPlayer
O42 - Logiciel: PhotoFiltre - (...) [HKCU][64Bits] -- PhotoFiltre
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer

---\\ HKCU & HKLM Software Keys (203) - 22s
HKLM\SOFTWARE\Wow6432Node\342d512b-4e38-6a29-c1bc-be1ccfc4fc2f =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AIM Toolbar
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\ArcSoft
HKLM\SOFTWARE\Wow6432Node\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Aureal
HKLM\SOFTWARE\Wow6432Node\AVG Secure Search =>Toolbar.AVGSearch
HKLM\SOFTWARE\Wow6432Node\Banana Phone
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-3.2cV14.08 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-3.2cV14.08-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-3.2cV14.08-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\Cyberlink
HKLM\SOFTWARE\Wow6432Node\d103239d-b05e-45a2-a34a-675bb5962aa3 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Digital River
HKLM\SOFTWARE\Wow6432Node\EasyBits
HKLM\SOFTWARE\Wow6432Node\FocusInteractive =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Wow6432Node\Fun Web Products =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Wow6432Node\GAMESDESKTOP =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\HP
HKLM\SOFTWARE\Wow6432Node\HPQ
HKLM\SOFTWARE\Wow6432Node\HPQLOG
HKLM\SOFTWARE\Wow6432Node\Huawei technologies
HKLM\SOFTWARE\Wow6432Node\IDT
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\Infigo
HKLM\SOFTWARE\Wow6432Node\Infogrames
HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\LightScribe
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\McAfee
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\McAfeeInstaller
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\MyWebSearch =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OpenOffice
HKLM\SOFTWARE\Wow6432Node\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Wow6432Node\P2G_Upgrade
HKLM\SOFTWARE\Wow6432Node\PDR_Upgrade
HKLM\SOFTWARE\Wow6432Node\Product_Upgrade
HKLM\SOFTWARE\Wow6432Node\RealNetworks
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Reg
HKLM\SOFTWARE\Wow6432Node\rising
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\searchult =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\SecureDigitalServices
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SmartSound Software
HKLM\SOFTWARE\Wow6432Node\Sonic
HKLM\SOFTWARE\Wow6432Node\SpeedBit
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.Fuyu
HKLM\SOFTWARE\Wow6432Node\SweetIM =>PUP.Optional.SweetIM
HKLM\SOFTWARE\Wow6432Node\Symantec
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Tencent =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WajIntEnhance =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\widestream =>PUP.Optional.SPointer
HKLM\SOFTWARE\Wow6432Node\WildTangent
HKLM\SOFTWARE\Wow6432Node\Windows
HKLM\SOFTWARE\Wow6432Node\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\Xing Technology Corp.
HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ArcSoft
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Ares
HKCU\SOFTWARE\AskPartnerNetwork =>Toolbar.AskBar
HKCU\SOFTWARE\AVG Secure Search =>Toolbar.AVGSearch
HKCU\SOFTWARE\Banana Phone
HKCU\SOFTWARE\BYAIAMUF
HKCU\SOFTWARE\Bytescout
HKCU\SOFTWARE\CDDB
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CinemaP-1.9cV16.03-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV13.08-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV14.08 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV14.08-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV14.08-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DailyPcClean =>PUP.Optional.DailyPCClean
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\DropboxUpdate
HKCU\SOFTWARE\EasyBits
HKCU\SOFTWARE\Facebook
HKCU\SOFTWARE\GameHouse
HKCU\SOFTWARE\gamesdesktop =>PUP.Optional.GamesDesktop
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\HomeTab =>PUP.Optional.CertifiedToolbar
HKCU\SOFTWARE\IDT
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Iminent =>PUP.Optional.IMBooster
HKCU\SOFTWARE\Infigo
HKCU\SOFTWARE\InstallCore =>PUP.Optional.InstallCore
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Kromtech
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LightScribe
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\McAfee
HKCU\SOFTWARE\McAfeeInstaller
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MyWebSearch =>PUP.Optional.MyWebSearch
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Norton
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\OB
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OpenOffice
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro
HKCU\SOFTWARE\PhotoFiltre
HKCU\SOFTWARE\PPStream
HKCU\SOFTWARE\QyGameClient =>PUP.Optional.IQIYIVideo
HKCU\SOFTWARE\RealNetworks
HKCU\SOFTWARE\Reg
HKCU\SOFTWARE\Reimage =>PUP.Optional.ReImageRepair
HKCU\SOFTWARE\reimagerepair =>PUP.Optional.ReImageRepair
HKCU\SOFTWARE\SearchProtectWS =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SkypeRS
HKCU\SOFTWARE\Smart Soft
HKCU\SOFTWARE\Soda PDF 2012
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\SweetIM =>PUP.Optional.SweetIM
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKCU\SOFTWARE\Tific
HKCU\SOFTWARE\TNT2 =>PUP.Optional.TidyNetwork
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\Ulead
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\WideStream =>PUP.Optional.SPointer
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\YahooPartnerToolbar =>Toolbar.YahooPartner
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Adobe
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Fun Web Products =>PUP.Optional.MyWebSearch
HKCU\SOFTWARE\AppDataLow\Software\FunWebProducts =>PUP.Optional.MyWebSearch
HKCU\SOFTWARE\AppDataLow\Software\Macromedia
HKCU\SOFTWARE\AppDataLow\Software\MyWebSearch =>PUP.Optional.MyWebSearch
HKCU\SOFTWARE\AppDataLow\Software\PriceGong =>PUP.Optional.PriceGong
HKCU\SOFTWARE\AppDataLow\Software\SmartBar =>PUP.Optional.SmartBar
HKCU\SOFTWARE\AppDataLow\Software\SmartWeb =>PUP.Optional.SmartWebSearch
HKCU\SOFTWARE\AppDataLow\Software\Unity

---\\ Contenu des dossiers Programmes (436) - 88s
O43 - CFD: 2015/08/17 13:26:58 - [] D -- C:\Program Files (x86)\30464E43-1439425597-5144-3044-C80AA94CC265 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/14 12:27:24 - [] D -- C:\Program Files (x86)\317dac5f-733c-4f37-8370-82f7f14a98c8 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/17 13:27:07 - [] D -- C:\Program Files (x86)\50CoOOuupoonns
O43 - CFD: 2015/08/13 22:58:42 - [] D -- C:\Program Files (x86)\50COOupons
O43 - CFD: 2015/08/13 22:59:02 - [] D -- C:\Program Files (x86)\5a0COupOns
O43 - CFD: 2015/05/05 00:24:10 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/08/13 02:46:24 - [] D -- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 2011/05/15 22:38:27 - [] D -- C:\Program Files (x86)\Ares
O43 - CFD: 2011/08/16 16:40:25 - [] D -- C:\Program Files (x86)\Athan
O43 - CFD: 2014/12/16 00:29:45 - [] D -- C:\Program Files (x86)\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 2015/08/18 14:25:06 - [] D -- C:\Program Files (x86)\baidu
O43 - CFD: 2015/08/17 14:00:46 - [] D -- C:\Program Files (x86)\Banana Phone
O43 - CFD: 2014/02/14 19:15:21 - [] D -- C:\Program Files (x86)\Bonjour
O43 - CFD: 2015/08/17 13:26:54 - [] D -- C:\Program Files (x86)\CinemaPlus-3.2cV14.08 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/17 03:31:12 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/08/13 14:01:19 - [] D -- C:\Program Files (x86)\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2010/01/15 21:06:51 - [] D -- C:\Program Files (x86)\CyberLink
O43 - CFD: 2011/07/23 19:33:44 - [] D -- C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 2013/04/09 20:47:53 - [] D -- C:\Program Files (x86)\EBP - PRGR
O43 - CFD: 2015/08/15 16:48:16 - [] D -- C:\Program Files (x86)\FriendlyError =>PUP.Optional.FriendlyError
O43 - CFD: 2015/08/14 12:26:58 - [] D -- C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/08/14 12:54:49 - [] D -- C:\Program Files (x86)\gmsd_be_005010060 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/15 16:48:26 - [] D -- C:\Program Files (x86)\gmsd_be_005010061 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/17 13:28:03 - [] D -- C:\Program Files (x86)\gmsd_be_005010062 =>PUP.Optional.CrossRider
O43 - CFD: 2015/04/30 11:05:53 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/08/15 20:21:57 - [] D -- C:\Program Files (x86)\GUPlayer =>PUP.Optional.GUPlayer
O43 - CFD: 2015/07/05 23:29:03 - [] D -- C:\Program Files (x86)\HDM Connection Manager
O43 - CFD: 2014/02/14 19:07:42 - [] D -- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 2015/08/13 14:08:40 - [] D -- C:\Program Files (x86)\Hootsuite Hootlet
O43 - CFD: 2010/01/15 22:05:36 - [] D -- C:\Program Files (x86)\Hp
O43 - CFD: 2010/01/15 19:53:26 - [] D -- C:\Program Files (x86)\HP Games
O43 - CFD: 2014/12/16 00:29:45 - [] D -- C:\Program Files (x86)\Infigo
O43 - CFD: 2011/07/15 16:11:17 - [] D -- C:\Program Files (x86)\Infogrames
O43 - CFD: 2015/08/12 23:14:00 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2011/03/22 14:53:41 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2011/04/19 22:38:50 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2014/12/17 17:03:19 - [] D -- C:\Program Files (x86)\Internet Haut Débit Mobile
O43 - CFD: 2015/05/06 22:13:36 - [] D -- C:\Program Files (x86)\iTunes
O43 - CFD: 2011/10/22 17:23:19 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2011/03/22 14:48:18 - [] D -- C:\Program Files (x86)\JMicron
O43 - CFD: 2011/03/22 16:17:44 - [] D -- C:\Program Files (x86)\Microsoft
O43 - CFD: 2013/06/23 14:10:07 - [] D -- C:\Program Files (x86)\Microsoft Games
O43 - CFD: 2010/01/15 20:08:04 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2010/01/15 20:08:54 - [] D -- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD: 2012/06/09 21:46:37 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2011/03/22 16:18:11 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2011/03/22 16:15:11 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2010/01/15 20:07:59 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/08/13 02:20:28 - [0] D -- C:\Program Files (x86)\MiuiTab =>PUP.Optional.MiuiTab
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2012/08/26 22:35:35 - [] D -- C:\Program Files (x86)\MSECache
O43 - CFD: 2011/03/27 17:31:24 - [] RD -- C:\Program Files (x86)\Online Services
O43 - CFD: 2014/10/26 15:51:24 - [] D -- C:\Program Files (x86)\OpenOffice 4
O43 - CFD: 2015/08/13 02:46:33 - [0] D -- C:\Program Files (x86)\Opera
O43 - CFD: 2012/12/28 03:20:46 - [] D -- C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 2015/08/13 14:09:20 - [0] D -- C:\Program Files (x86)\predm =>PUP.Optional.Downware
O43 - CFD: 2015/08/13 22:59:02 - [] D -- C:\Program Files (x86)\PrriiceLess =>PUP.Optional.Multiplug
O43 - CFD: 2014/03/25 22:59:03 - [] D -- C:\Program Files (x86)\QuickTime
O43 - CFD: 2012/04/24 23:12:05 - [] D -- C:\Program Files (x86)\Real
O43 - CFD: 2011/03/22 14:49:35 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/08/17 03:34:59 - [] D -- C:\Program Files (x86)\Rising
O43 - CFD: 2015/08/12 23:25:17 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2015/08/18 14:24:43 - [0] D -- C:\Program Files (x86)\SystemForce
O43 - CFD: 2015/08/17 03:28:36 - [] D -- C:\Program Files (x86)\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 2015/08/13 23:01:05 - [] D -- C:\Program Files (x86)\TrafficLight
O43 - CFD: 2009/07/14 06:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2011/04/19 22:38:50 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2012/06/29 16:07:06 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2011/04/19 22:38:50 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2011/03/22 15:12:05 - [] D -- C:\Program Files (x86)\Windows Media Components
O43 - CFD: 2011/04/19 22:38:50 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2011/04/19 22:38:50 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2009/07/14 07:32:40 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2011/04/19 22:38:50 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015/08/15 16:47:49 - [] D -- C:\Program Files (x86)\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
O43 - CFD: 2015/08/13 22:59:02 - [] D -- C:\Program Files (x86)\youtubeadblocker =>PUP.Optional.YouTubeAdBlock
O43 - CFD: 2011/04/25 16:34:30 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/07/14 06:57:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2011/05/15 22:38:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ares
O43 - CFD: 2011/08/16 16:40:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Athan
O43 - CFD: 2015/08/13 14:01:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2010/01/15 21:06:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
O43 - CFD: 2011/03/22 14:43:38 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/08/17 13:28:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>PUP.Optional.GamesDesktop
O43 - CFD: 2015/08/14 12:29:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/07/05 23:28:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDM Connection Manager
O43 - CFD: 2012/03/14 15:30:23 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2014/02/14 19:11:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
O43 - CFD: 2011/07/15 16:15:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Infogrames
O43 - CFD: 2015/05/06 22:14:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 2013/04/09 20:47:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Le Permis Réussi - Het Geslaagde Rijexamen
O43 - CFD: 2011/03/22 14:57:16 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling
O43 - CFD: 2009/07/14 06:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/27 02:20:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
O43 - CFD: 2013/06/23 14:11:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
O43 - CFD: 2012/06/08 22:12:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2011/03/22 16:15:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
O43 - CFD: 2011/03/27 17:31:24 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services
O43 - CFD: 2014/10/26 15:52:01 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
O43 - CFD: 2012/12/28 03:20:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 2014/03/25 22:59:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 2012/04/24 23:12:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real
O43 - CFD: 2010/01/15 20:19:30 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recovery Manager
O43 - CFD: 2015/01/04 18:07:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair =>PUP.Optional.ReImageRepair
O43 - CFD: 2015/08/12 23:19:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/07/27 02:20:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2011/04/04 18:11:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Widestream6 =>PUP.Optional.SPointer
O43 - CFD: 2012/06/29 16:08:22 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2011/03/22 15:12:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media
O43 - CFD: 2015/08/17 22:35:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\腾讯软件
O43 - CFD: 2015/05/06 22:13:23 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 2015/08/13 02:16:18 - [] D -- C:\ProgramData\3WinManPro3
O43 - CFD: 2015/08/18 14:00:36 - [] D -- C:\ProgramData\5196332891934567429
O43 - CFD: 2012/06/13 23:18:43 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2014/02/14 19:14:15 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2014/02/14 19:17:07 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/11/30 21:56:20 - [] D -- C:\ProgramData\Applications
O43 - CFD: 2015/08/12 22:49:11 - [] D -- C:\ProgramData\ArcSoft
O43 - CFD: 2015/08/18 14:25:11 - [] D -- C:\ProgramData\aWinManProa
O43 - CFD: 2012/04/06 22:48:07 - [] D -- C:\ProgramData\B7E8586B00000A6800006600A60145BE
O43 - CFD: 2011/03/22 16:12:09 - [0] SHD -- C:\ProgramData\Bureaublad
O43 - CFD: 2015/08/13 02:46:01 - [] D -- C:\ProgramData\c7b6fdb100004602
O43 - CFD: 2012/02/23 00:00:06 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 2015/08/17 02:55:08 - [] D -- C:\ProgramData\cWinManProc
O43 - CFD: 2011/06/23 14:25:22 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2011/03/22 16:12:09 - [0] SHD -- C:\ProgramData\Documenten
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/06/21 23:51:43 - [] D -- C:\ProgramData\Dropbox
O43 - CFD: 2015/05/06 22:14:26 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 2011/03/22 16:12:09 - [0] SHD -- C:\ProgramData\Favorieten
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2012/09/19 15:13:44 - [] D -- C:\ProgramData\Google
O43 - CFD: 2014/02/14 19:07:01 - [] D -- C:\ProgramData\Hewlett-Packard
O43 - CFD: 2015/08/13 02:15:31 - [] D -- C:\ProgramData\IHProtectUpDate =>PUP.Optional.AgentODR
O43 - CFD: 2015/08/17 02:55:30 - [0] D -- C:\ProgramData\IQIYI Video =>PUP.Optional.IQIYIVideo
O43 - CFD: 2012/09/19 14:56:33 - [] D -- C:\ProgramData\jfohdbghzidzwjy
O43 - CFD: 2012/02/21 01:33:28 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/07/27 02:20:12 - [] D -- C:\ProgramData\McAfee Security Scan
O43 - CFD: 2011/03/22 16:12:09 - [0] SHD -- C:\ProgramData\Menu Start
O43 - CFD: 2015/08/21 00:09:08 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2010/01/15 20:09:04 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2012/09/19 15:16:45 - [] D -- C:\ProgramData\Norton
O43 - CFD: 2012/03/03 23:47:09 - [] D -- C:\ProgramData\NortonInstaller
O43 - CFD: 2011/03/22 15:27:34 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2015/08/15 16:49:32 - [] D -- C:\ProgramData\OWinManProO
O43 - CFD: 2012/09/19 14:56:20 - [] D -- C:\ProgramData\Real
O43 - CFD: 2015/01/04 18:08:13 - [] D -- C:\ProgramData\Reimage Protector =>PUP.Optional.ReImageRepair
O43 - CFD: 2015/08/17 03:35:52 - [] D -- C:\ProgramData\Rising
O43 - CFD: 2011/03/22 16:12:09 - [0] SHD -- C:\ProgramData\Sjablonen
O43 - CFD: 2015/08/12 23:19:54 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2014/10/05 12:26:48 - [] D -- C:\ProgramData\Smart Soft
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2011/06/15 22:31:43 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2012/09/19 15:17:49 - [] D -- C:\ProgramData\Symantec
O43 - CFD: 2011/03/22 15:16:10 - [] D -- C:\ProgramData\Temp
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/08/17 03:34:40 - [] D -- C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 2015/08/17 03:32:58 - [0] D -- C:\ProgramData\TXQMPC
O43 - CFD: 2013/07/15 05:01:42 - [] D -- C:\ProgramData\WildTangent
O43 - CFD: 2014/02/14 19:07:51 - [] D -- C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
O43 - CFD: 2011/11/04 17:05:06 - [] D -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 2015/08/13 14:06:17 - [] D -- C:\ProgramData\{d1286400-4bdc-96d2-d128-864004bd9001}
O43 - CFD: 2015/08/18 14:14:01 - [] D -- C:\ProgramData\{ede84669-e7f3-2c53-ede8-84669e7f19a7}
O43 - CFD: 2015/05/05 00:24:10 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2015/05/06 22:13:23 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 2015/08/12 23:14:02 - [] D -- C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 2012/02/23 00:00:08 - [] D -- C:\Program Files (x86)\Common Files\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 2010/01/15 20:08:03 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2015/08/12 22:40:46 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2011/10/22 17:23:49 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2011/03/22 14:57:16 - [] D -- C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 2012/09/27 18:43:49 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2012/04/25 17:51:21 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/08/12 23:19:51 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2012/03/03 23:47:18 - [0] D -- C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 2011/04/19 22:38:50 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/08/17 22:34:53 - [] D -- C:\Program Files (x86)\Common Files\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 2014/12/17 16:58:43 - [] D -- C:\Program Files (x86)\Common Files\Ulead Systems
O43 - CFD: 2011/03/22 16:16:23 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2012/04/24 23:11:58 - [] D -- C:\Program Files (x86)\Common Files\xing shared
O43 - CFD: 2015/05/05 00:37:15 - [] D -- C:\Users\HP\AppData\Roaming\Adobe
O43 - CFD: 2014/12/16 01:50:45 - [] D -- C:\Users\HP\AppData\Roaming\Apowersoft
O43 - CFD: 2014/03/25 22:54:59 - [] D -- C:\Users\HP\AppData\Roaming\Apple Computer
O43 - CFD: 2015/08/12 22:49:00 - [] D -- C:\Users\HP\AppData\Roaming\ArcSoft
O43 - CFD: 2014/12/17 16:55:38 - [] D -- C:\Users\HP\AppData\Roaming\Corel
O43 - CFD: 2015/08/17 13:25:39 - [] D -- C:\Users\HP\AppData\Roaming\cpuminer
O43 - CFD: 2011/04/11 00:36:56 - [] D -- C:\Users\HP\AppData\Roaming\CyberLink
O43 - CFD: 2015/08/20 23:50:13 - [] D -- C:\Users\HP\AppData\Roaming\Dropbox
O43 - CFD: 2014/10/05 12:26:51 - [] D -- C:\Users\HP\AppData\Roaming\Free PDF to Word Converter
O43 - CFD: 2011/04/25 21:52:47 - [] D -- C:\Users\HP\AppData\Roaming\FreeCall
O43 - CFD: 2011/08/04 22:51:02 - [] D -- C:\Users\HP\AppData\Roaming\Google
O43 - CFD: 2011/05/17 20:09:23 - [] D -- C:\Users\HP\AppData\Roaming\Hewlett-Packard
O43 - CFD: 2011/04/23 22:30:25 - [] D -- C:\Users\HP\AppData\Roaming\HP Support Assistant
O43 - CFD: 2013/04/24 14:21:19 - [] D -- C:\Users\HP\AppData\Roaming\hpqLog
O43 - CFD: 2011/04/23 22:30:25 - [] D -- C:\Users\HP\AppData\Roaming\HpUpdate
O43 - CFD: 2011/04/03 13:42:18 - [] D -- C:\Users\HP\AppData\Roaming\Identities
O43 - CFD: 2014/12/16 17:52:41 - [] D -- C:\Users\HP\AppData\Roaming\Infigo
O43 - CFD: 2013/06/20 21:04:26 - [] D -- C:\Users\HP\AppData\Roaming\InstallShield
O43 - CFD: 2015/08/17 02:55:36 - [] D -- C:\Users\HP\AppData\Roaming\IQIYI Video =>PUP.Optional.IQIYIVideo
O43 - CFD: 2015/08/17 02:54:52 - [] D -- C:\Users\HP\AppData\Roaming\istartsurf =>PUP.Optional.IsStart
O43 - CFD: 2013/03/31 19:52:20 - [] D -- C:\Users\HP\AppData\Roaming\Lonely Troops
O43 - CFD: 2011/08/16 01:41:13 - [] D -- C:\Users\HP\AppData\Roaming\Macromedia
O43 - CFD: 2011/03/22 23:36:37 - [0] D -- C:\Users\HP\AppData\Roaming\Media Center Programs
O43 - CFD: 2014/09/24 14:36:40 - [] SD -- C:\Users\HP\AppData\Roaming\Microsoft
O43 - CFD: 2015/08/17 13:26:01 - [] D -- C:\Users\HP\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
O43 - CFD: 2014/10/26 15:57:24 - [] D -- C:\Users\HP\AppData\Roaming\OpenOffice
O43 - CFD: 2013/05/30 22:59:57 - [] D -- C:\Users\HP\AppData\Roaming\OpenOffice.org
O43 - CFD: 2014/12/16 00:17:44 - [] D -- C:\Users\HP\AppData\Roaming\PDF Software
O43 - CFD: 2012/12/28 03:29:34 - [] D -- C:\Users\HP\AppData\Roaming\PhotoFiltre
O43 - CFD: 2011/08/16 01:41:13 - [] D -- C:\Users\HP\AppData\Roaming\PlayFirst
O43 - CFD: 2012/08/13 21:51:27 - [] D -- C:\Users\HP\AppData\Roaming\Real
O43 - CFD: 2012/04/24 23:14:25 - [] D -- C:\Users\HP\AppData\Roaming\RealNetworks
O43 - CFD: 2015/08/14 01:57:15 - [] D -- C:\Users\HP\AppData\Roaming\Skype
O43 - CFD: 2015/05/03 17:21:15 - [0] D -- C:\Users\HP\AppData\Roaming\Systweak =>PUP.Optional.Systweak
O43 - CFD: 2011/10/23 01:44:26 - [] D -- C:\Users\HP\AppData\Roaming\Template
O43 - CFD: 2015/08/17 13:16:10 - [] D -- C:\Users\HP\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 2011/03/27 17:41:13 - [] D -- C:\Users\HP\AppData\Roaming\Tific
O43 - CFD: 2011/05/26 21:42:14 - [] D -- C:\Users\HP\AppData\Roaming\WildTangent
O43 - CFD: 2013/09/27 22:40:53 - [0] D -- C:\Users\HP\AppData\Roaming\Windows Live Writer
O43 - CFD: 2013/08/11 21:17:45 - [] D -- C:\Users\HP\AppData\Roaming\Youtube Downloader HD
O43 - CFD: 2015/08/21 00:09:52 - [] D -- C:\Users\HP\AppData\Roaming\ZHP
O43 - CFD: 2011/07/23 19:12:36 - [] D -- C:\Users\HP\AppData\Roaming\_MDLogs
O43 - CFD: 2015/08/13 02:32:29 - [] D -- C:\Users\HP\AppData\Local\30464E43-1439432847-5144-3044-C80AA94CC265
O43 - CFD: 2015/05/05 00:25:17 - [] D -- C:\Users\HP\AppData\Local\Adobe
O43 - CFD: 2011/10/17 20:32:20 - [] D -- C:\Users\HP\AppData\Local\Apple
O43 - CFD: 2012/03/22 21:48:13 - [] D -- C:\Users\HP\AppData\Local\Apple Computer
O43 - CFD: 2011/03/22 16:12:19 - [0] SHD -- C:\Users\HP\AppData\Local\Application Data
O43 - CFD: 2012/06/13 22:45:25 - [] D -- C:\Users\HP\AppData\Local\Apps
O43 - CFD: 2015/08/12 22:49:01 - [] D -- C:\Users\HP\AppData\Local\ArcSoft
O43 - CFD: 2012/12/17 21:01:49 - [] D -- C:\Users\HP\AppData\Local\Ares
O43 - CFD: 2011/03/22 16:21:53 - [] D -- C:\Users\HP\AppData\Local\Broadcom
O43 - CFD: 2013/02/17 22:53:08 - [] D -- C:\Users\HP\AppData\Local\Corel
O43 - CFD: 2015/08/13 14:01:33 - [] D -- C:\Users\HP\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2011/03/27 17:49:36 - [] D -- C:\Users\HP\AppData\Local\CyberLink
O43 - CFD: 2015/08/14 12:29:33 - [0] D -- C:\Users\HP\AppData\Local\Deployment
O43 - CFD: 2015/06/21 23:51:43 - [] D -- C:\Users\HP\AppData\Local\Dropbox
O43 - CFD: 2011/10/18 22:50:46 - [] D -- C:\Users\HP\AppData\Local\Facebook
O43 - CFD: 2015/08/13 02:15:48 - [] D -- C:\Users\HP\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/08/21 00:01:35 - [] D -- C:\Users\HP\AppData\Local\gmsd_be_005010060 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/20 23:46:58 - [] D -- C:\Users\HP\AppData\Local\gmsd_be_005010061 =>PUP.Optional.CrossRider
O43 - CFD: 2015/08/20 23:46:58 - [] D -- C:\Users\HP\AppData\Local\gmsd_be_005010062 =>PUP.Optional.CrossRider
O43 - CFD: 2015/04/30 11:01:08 - [] D -- C:\Users\HP\AppData\Local\Google
O43 - CFD: 2012/03/21 17:32:08 - [] D -- C:\Users\HP\AppData\Local\Hewlett-Packard
O43 - CFD: 2011/03/22 16:12:19 - [0] SHD -- C:\Users\HP\AppData\Local\Historique
O43 - CFD: 2015/04/22 17:22:33 - [] D -- C:\Users\HP\AppData\Local\Microsoft
O43 - CFD: 2013/07/15 04:39:03 - [] D -- C:\Users\HP\AppData\Local\Microsoft Games
O43 - CFD: 2011/06/15 22:16:12 - [] D -- C:\Users\HP\AppData\Local\Microsoft Help
O43 - CFD: 2014/11/19 19:24:50 - [] D -- C:\Users\HP\AppData\Local\Pay-By-Ads =>PUP.Optional.PaybyAds
O43 - CFD: 2011/03/27 17:49:35 - [] D -- C:\Users\HP\AppData\Local\PowerCinema
O43 - CFD: 2014/10/05 12:25:22 - [] D -- C:\Users\HP\AppData\Local\Programs
O43 - CFD: 2012/04/24 23:11:21 - [] D -- C:\Users\HP\AppData\Local\Real
O43 - CFD: 2015/08/12 23:20:00 - [] D -- C:\Users\HP\AppData\Local\Skype
O43 - CFD: 2015/08/14 02:39:36 - [] D -- C:\Users\HP\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
O43 - CFD: 2011/03/28 19:19:47 - [] D -- C:\Users\HP\AppData\Local\Symantec
O43 - CFD: 2015/08/17 02:58:10 - [] D -- C:\Users\HP\AppData\Local\SysassistByHotWheel =>PUP.Optional.Generic
O43 - CFD: 2015/05/21 13:17:11 - [0] D -- C:\Users\HP\AppData\Local\TB
O43 - CFD: 2013/11/02 16:28:44 - [] D -- C:\Users\HP\AppData\Local\TBHostSupport
O43 - CFD: 2015/08/21 00:11:22 - [] D -- C:\Users\HP\AppData\Local\Temp
O43 - CFD: 2011/03/22 16:12:19 - [0] SHD -- C:\Users\HP\AppData\Local\Temporary Internet Files
O43 - CFD: 2011/04/02 01:02:31 - [] D -- C:\Users\HP\AppData\Local\Tific
O43 - CFD: 2015/08/17 02:56:52 - [] D -- C:\Users\HP\AppData\Local\Unity
O43 - CFD: 2011/07/24 00:50:02 - [] D -- C:\Users\HP\AppData\Local\VirtualStore
O43 - CFD: 2014/06/21 22:50:49 - [] D -- C:\Users\HP\AppData\Local\Windows Live
O43 - CFD: 2013/09/27 22:41:00 - [] D -- C:\Users\HP\AppData\Local\Windows Live Writer
O43 - CFD: 2012/02/20 23:08:39 - [0] D -- C:\Users\HP\AppData\Local\{00408673-9451-422A-B49A-65AD9AADDB90}
O43 - CFD: 2013/02/12 02:27:06 - [0] D -- C:\Users\HP\AppData\Local\{02F8C354-DC30-4346-B470-AB3B9F6DA5DE}
O43 - CFD: 2012/06/21 15:36:23 - [0] D -- C:\Users\HP\AppData\Local\{073D1266-7E90-43FF-B709-DFD3AEEFB79B}
O43 - CFD: 2011/06/26 03:54:26 - [0] D -- C:\Users\HP\AppData\Local\{08F8B163-ED5A-45F4-B3FF-3A36F06E6C53}
O43 - CFD: 2013/08/16 22:16:52 - [0] D -- C:\Users\HP\AppData\Local\{0ABF9461-B973-4708-B0D9-644066C61D27}
O43 - CFD: 2012/01/03 22:43:25 - [0] D -- C:\Users\HP\AppData\Local\{0B4A836E-4F01-4401-94AA-21556489F41C}
O43 - CFD: 2013/08/12 11:56:09 - [0] D -- C:\Users\HP\AppData\Local\{0C213F43-8B97-42BA-B314-81737939A6BE}
O43 - CFD: 2011/11/18 19:50:02 - [0] D -- C:\Users\HP\AppData\Local\{0C78A39E-7E71-4A1F-B23B-86B62899976B}
O43 - CFD: 2012/08/08 22:55:07 - [0] D -- C:\Users\HP\AppData\Local\{0DA1CFE9-36C2-4EA3-ACAB-1F35E7DE6E1C}
O43 - CFD: 2012/11/19 20:17:21 - [0] D -- C:\Users\HP\AppData\Local\{0F762C1C-5E21-4702-BE70-8D500F776C24}
O43 - CFD: 2012/06/28 22:07:27 - [0] D -- C:\Users\HP\AppData\Local\{106D6352-5C7F-485F-A171-6507E2C651D9}
O43 - CFD: 2012/08/03 23:50:47 - [0] D -- C:\Users\HP\AppData\Local\{12B7702A-76E7-4D77-A6D1-5C2520F06E59}
O43 - CFD: 2011/10/17 20:04:55 - [0] D -- C:\Users\HP\AppData\Local\{146A72F2-0241-4025-A677-8A0D636DB2B8}
O43 - CFD: 2012/06/29 16:00:18 - [0] D -- C:\Users\HP\AppData\Local\{1522570A-8F13-4586-A162-7A05D6669C5B}
O43 - CFD: 2015/06/16 22:23:51 - [0] D -- C:\Users\HP\AppData\Local\{170E4ABF-370D-4FB9-920C-ADA69E310A3A}
O43 - CFD: 2013/08/18 19:56:04 - [0] D -- C:\Users\HP\AppData\Local\{17CB9747-4124-4762-8F90-8E6A3B49C25E}
O43 - CFD: 2012/06/29 03:08:02 - [0] D -- C:\Users\HP\AppData\Local\{196A6CE4-5242-4135-9734-4C656CD4670F}
O43 - CFD: 2013/01/22 23:22:38 - [0] D -- C:\Users\HP\AppData\Local\{1A6159FF-6749-415D-9CB5-33489B16C062}
O43 - CFD: 2012/07/19 14:20:13 - [0] D -- C:\Users\HP\AppData\Local\{1DF03C5B-6648-4362-A221-432D278DD130}
O43 - CFD: 2012/01/03 22:43:36 - [0] D -- C:\Users\HP\AppData\Local\{1E9BFBB0-CA40-4B52-BE61-F005028978BB}
O43 - CFD: 2013/07/08 15:28:05 - [0] D -- C:\Users\HP\AppData\Local\{1EF792CF-64A5-495A-91CF-E57E915EF577}
O43 - CFD: 2014/06/21 22:50:48 - [0] D -- C:\Users\HP\AppData\Local\{251B2293-2C8D-4446-99D8-E30F63835CCE}
O43 - CFD: 2015/07/15 17:58:43 - [0] D -- C:\Users\HP\AppData\Local\{27FAC95D-7271-49A7-AAD1-7EE47BFE57A5}
O43 - CFD: 2013/08/17 11:05:10 - [0] D -- C:\Users\HP\AppData\Local\{280A5018-2C44-4CBC-BEE5-1D498FA89736}
O43 - CFD: 2011/05/13 20:47:53 - [0] D -- C:\Users\HP\AppData\Local\{2832E857-3122-4F26-AF88-A6326C4E9244}
O43 - CFD: 2012/03/17 19:38:18 - [0] D -- C:\Users\HP\AppData\Local\{292A8F2F-9864-48A1-BA79-F9195F76D472}
O43 - CFD: 2012/06/26 00:00:09 - [0] D -- C:\Users\HP\AppData\Local\{295883CE-8615-49F8-91C0-A8E4E38D6CE7}
O43 - CFD: 2012/06/29 03:48:08 - [0] D -- C:\Users\HP\AppData\Local\{29EF60CD-6B1C-4B5F-94C7-8917DFB3B6AD}
O43 - CFD: 2011/07/03 23:02:27 - [0] D -- C:\Users\HP\AppData\Local\{2B5EAC3C-EB3D-471C-8DD6-5DCDA69B225E}
O43 - CFD: 2011/04/08 22:59:10 - [0] D -- C:\Users\HP\AppData\Local\{2C424083-EDC6-4AB9-AEDE-5DB4EAE42D57}
O43 - CFD: 2012/12/28 02:43:33 - [0] D -- C:\Users\HP\AppData\Local\{3181650A-8CAD-4621-B795-264E9F723C8B}
O43 - CFD: 2011/11/17 23:29:19 - [0] D -- C:\Users\HP\AppData\Local\{34B9AA34-4E95-4BE7-BD3C-1C540961152F}
O43 - CFD: 2011/06/26 03:40:34 - [0] D -- C:\Users\HP\AppData\Local\{3527B7D9-93CF-4019-8C5B-831A10B13C61}
O43 - CFD: 2011/06/30 22:03:38 - [0] D -- C:\Users\HP\AppData\Local\{353CBFA6-53D7-457C-A5F3-E4A85FBE7792}
O43 - CFD: 2011/04/10 22:03:25 - [0] D -- C:\Users\HP\AppData\Local\{37042B26-6C5F-41C4-BC19-349A4F5A8D29}
O43 - CFD: 2012/07/05 02:49:46 - [0] D -- C:\Users\HP\AppData\Local\{3AE7FEF2-0785-45BC-A3FF-AAA22EEC502A}
O43 - CFD: 2012/06/29 16:00:39 - [0] D -- C:\Users\HP\AppData\Local\{3C540F38-9BFD-4E22-A3E0-913D3CCC5E49}
O43 - CFD: 2011/11/11 23:15:31 - [0] D -- C:\Users\HP\AppData\Local\{3D07183C-C088-4EF6-8114-AE8F4FE7F369}
O43 - CFD: 2013/03/02 17:51:07 - [0] D -- C:\Users\HP\AppData\Local\{3EC52F39-B500-44B7-8796-4643CB72DC8D}
O43 - CFD: 2011/08/13 17:00:32 - [0] D -- C:\Users\HP\AppData\Local\{3F864F8E-4B32-4767-BFFA-1839FDFA3898}
O43 - CFD: 2011/06/09 19:45:21 - [0] D -- C:\Users\HP\AppData\Local\{44079E74-31D1-4870-9C4A-A8016713DBB0}
O43 - CFD: 2012/12/18 23:35:58 - [0] D -- C:\Users\HP\AppData\Local\{456B2052-C5BF-4FF9-94F2-D4D028A02455}
O43 - CFD: 2012/09/27 18:26:35 - [0] D -- C:\Users\HP\AppData\Local\{46841972-5322-4D0B-9135-E4D135FA9519}
O43 - CFD: 2012/02/20 23:08:28 - [0] D -- C:\Users\HP\AppData\Local\{47DF1ACB-897C-4CC7-B0F5-F60F2159F7C0}
O43 - CFD: 2011/06/26 00:51:30 - [0] D -- C:\Users\HP\AppData\Local\{4881B516-CC98-4AC2-BB12-1F298C87E3CE}
O43 - CFD: 2011/06/22 16:35:56 - [0] D -- C:\Users\HP\AppData\Local\{49761032-CD41-4641-BB32-A7F0BFD112FB}
O43 - CFD: 2012/08/07 20:02:37 - [0] D -- C:\Users\HP\AppData\Local\{49CA7D39-027A-423A-A797-07563575C630}
O43 - CFD: 2012/06/26 00:00:24 - [0] D -- C:\Users\HP\AppData\Local\{49EBFC6C-28D4-4CE5-8189-6C0FEAE8E741}
O43 - CFD: 2012/01/03 22:30:47 - [0] D -- C:\Users\HP\AppData\Local\{4D302018-3E1C-4E9B-8288-6FDEE30EFFEF}
O43 - CFD: 2014/01/24 22:04:45 - [0] D -- C:\Users\HP\AppData\Local\{4E2D5D10-3A5F-43A5-B67B-CE05CFE09988}
O43 - CFD: 2012/06/29 16:00:08 - [0] D -- C:\Users\HP\AppData\Local\{4F7340F7-79E4-4440-9945-519D99A552CE}
O43 - CFD: 2012/06/29 16:04:17 - [0] D -- C:\Users\HP\AppData\Local\{4FD5DB1C-D626-4F71-9EE3-BFBD0EBDD0FC}
O43 - CFD: 2015/05/04 19:09:29 - [0] D -- C:\Users\HP\AppData\Local\{50699EAA-A6FE-4EC4-A12A-7E91B9E00548}
O43 - CFD: 2013/09/01 01:35:57 - [0] D -- C:\Users\HP\AppData\Local\{55E118EB-ACE9-4B0E-8C11-DE27D834DEAD}
O43 - CFD: 2012/10/03 19:34:38 - [0] D -- C:\Users\HP\AppData\Local\{57C5B0F4-EAEF-4FD0-BE13-515AC1799A91}
O43 - CFD: 2011/11/15 23:00:34 - [0] D -- C:\Users\HP\AppData\Local\{5906C9DE-8D2D-4A98-88DF-632A0153D4B4}
O43 - CFD: 2012/01/03 23:04:42 - [0] D -- C:\Users\HP\AppData\Local\{59172E84-66A5-4467-A1AD-F84868422B59}
O43 - CFD: 2012/03/24 06:16:56 - [0] D -- C:\Users\HP\AppData\Local\{5AF47829-374D-46F4-98BB-C9DB5B6AEBC6}
O43 - CFD: 2012/04/28 01:02:17 - [0] D -- C:\Users\HP\AppData\Local\{5C2B6F6E-1A09-42C8-AC6B-382BB2F534D9}
O43 - CFD: 2012/05/02 15:41:01 - [0] D -- C:\Users\HP\AppData\Local\{5CA178D9-8543-4865-9D05-05480D7C39C7}
O43 - CFD: 2013/03/05 22:24:29 - [0] D -- C:\Users\HP\AppData\Local\{61B95A51-38FE-4137-9C3A-9FDB075C4699}
O43 - CFD: 2012/06/29 16:04:27 - [0] D -- C:\Users\HP\AppData\Local\{62A91639-C244-4236-AFC0-40968DF3C61D}
O43 - CFD: 2013/07/16 02:57:53 - [0] D -- C:\Users\HP\AppData\Local\{62ED1B9B-076C-493D-A61B-BF4A3CCCFED3}
O43 - CFD: 2011/05/03 21:42:44 - [0] D -- C:\Users\HP\AppData\Local\{63967E3D-1848-45EA-831F-B9B4B26566F0}
O43 - CFD: 2011/04/04 18:13:38 - [0] D -- C:\Users\HP\AppData\Local\{65F3DCB9-37F4-419B-B6E8-EED9A216A75E}
O43 - CFD: 2012/06/29 03:07:52 - [0] D -- C:\Users\HP\AppData\Local\{68502F7D-5388-4A7F-97B4-3B3A2E77BFFC}
O43 - CFD: 2011/06/15 16:46:00 - [0] D -- C:\Users\HP\AppData\Local\{68FE66BD-5C36-43FB-BAC7-1146B48A669D}
O43 - CFD: 2012/04/10 20:00:25 - [0] D -- C:\Users\HP\AppData\Local\{6912DB47-D82F-4B84-AD3B-7DB147F980DF}
O43 - CFD: 2012/06/29 16:01:17 - [0] D -- C:\Users\HP\AppData\Local\{6AC53F40-1D7B-429B-A6B2-E844DF516BAF}
O43 - CFD: 2012/03/24 06:17:07 - [0] D -- C:\Users\HP\AppData\Local\{6D475A8F-3201-4642-B67C-4F170F072BC7}
O43 - CFD: 2011/10/24 17:58:56 - [0] D -- C:\Users\HP\AppData\Local\{6DA24727-42DD-4415-9682-D80F8E219EDE}
O43 - CFD: 2011/05/02 22:19:56 - [0] D -- C:\Users\HP\AppData\Local\{6EBC9B87-87CF-408D-8CED-014FD7739D41}
O43 - CFD: 2013/05/02 22:05:21 - [0] D -- C:\Users\HP\AppData\Local\{7098FA76-4282-4AD6-A682-83091F4350D4}
O43 - CFD: 2013/08/17 11:43:51 - [0] D -- C:\Users\HP\AppData\Local\{73B83CA0-C2D6-481D-9D13-744CD37E806B}
O43 - CFD: 2012/06/29 03:49:01 - [0] D -- C:\Users\HP\AppData\Local\{751FC3EF-FFE2-4748-ADA9-EA7EF37EBE12}
O43 - CFD: 2012/06/29 03:07:24 - [0] D -- C:\Users\HP\AppData\Local\{75BF23E0-4B95-4881-88E2-14F17D744240}
O43 - CFD: 2012/03/17 19:38:07 - [0] D -- C:\Users\HP\AppData\Local\{78D11793-0B86-42B7-9C01-AAA529913C77}
O43 - CFD: 2013/03/15 01:14:40 - [0] D -- C:\Users\HP\AppData\Local\{7C0E7FB6-3D08-4AF7-82F7-434185CD10D4}
O43 - CFD: 2012/06/26 01:27:41 - [0] D -- C:\Users\HP\AppData\Local\{7CA726F1-F18C-4B43-8831-D75686346D4A}
O43 - CFD: 2012/06/21 15:36:23 - [0] D -- C:\Users\HP\AppData\Local\{7CE35236-DB27-4A77-9212-1FC4E6A27C81}
O43 - CFD: 2012/06/29 03:08:30 - [0] D -- C:\Users\HP\AppData\Local\{80FD8586-176C-4EA5-BBA4-5BE97F1B4BC5}
O43 - CFD: 2012/07/05 02:49:36 - [0] D -- C:\Users\HP\AppData\Local\{89F45DAE-1BE8-4EC0-B883-B0BD52C0B3D7}
O43 - CFD: 2011/06/03 22:39:05 - [0] D -- C:\Users\HP\AppData\Local\{8BBC8C2C-1AAA-4855-8CCE-04B2366FC7EA}
O43 - CFD: 2014/09/24 16:02:30 - [0] D -- C:\Users\HP\AppData\Local\{8CD16561-9CE7-4E4B-A9A9-284381359228}
O43 - CFD: 2012/01/03 22:30:35 - [0] D -- C:\Users\HP\AppData\Local\{8D9374E1-A019-486D-8CEE-302FC2A316B5}
O43 - CFD: 2011/05/01 00:08:39 - [0] D -- C:\Users\HP\AppData\Local\{8E482B96-FC7C-4B23-A302-B99CCFFF3BD0}
O43 - CFD: 2012/06/29 16:04:08 - [0] D -- C:\Users\HP\AppData\Local\{8F5EDDEC-7B7A-4263-A78B-6984DC43AF67}
O43 - CFD: 2013/07/20 01:45:16 - [0] D -- C:\Users\HP\AppData\Local\{91675457-DECB-4FDB-A57B-584D60CFA23E}
O43 - CFD: 2011/12/24 00:53:37 - [0] D -- C:\Users\HP\AppData\Local\{91AE2681-6C70-43E1-B54F-16A809F8DB19}
O43 - CFD: 2011/06/14 13:25:45 - [0] D -- C:\Users\HP\AppData\Local\{94F38C42-A1DF-4D6A-99F7-B924AC6DE1BB}
O43 - CFD: 2012/06/29 03:07:43 - [0] D -- C:\Users\HP\AppData\Local\{956089CB-2E71-41D0-8D69-F9468461D1F1}
O43 - CFD: 2012/06/29 03:48:52 - [0] D -- C:\Users\HP\AppData\Local\{966C8D27-AA5C-4EC6-B206-1B787741655A}
O43 - CFD: 2013/08/10 23:48:39 - [0] D -- C:\Users\HP\AppData\Local\{970D3964-7209-4BC6-B89C-373FCAB2B4BE}
O43 - CFD: 2011/06/26 04:07:42 - [0] D -- C:\Users\HP\AppData\Local\{9780BE46-1567-48D2-8F59-82E0C3D378ED}
O43 - CFD: 2011/11/18 19:49:50 - [0] D -- C:\Users\HP\AppData\Local\{9F1CDBAD-55AB-49EC-83AF-DF3DEE34D003}
O43 - CFD: 2012/12/18 03:00:24 - [0] D -- C:\Users\HP\AppData\Local\{9FAF0399-2A68-4AAC-9831-45860A71457D}
O43 - CFD: 2012/06/29 16:04:42 - [0] D -- C:\Users\HP\AppData\Local\{A71D3E49-491B-4CB2-9638-DC87FFC82212}
O43 - CFD: 2012/12/07 22:46:34 - [0] D -- C:\Users\HP\AppData\Local\{A74F46FC-C062-4BB6-B43F-86711736E4F0}
O43 - CFD: 2013/08/10 23:57:54 - [0] D -- C:\Users\HP\AppData\Local\{AA9E3A70-35E7-4F0B-A1DA-68D6226AB4D3}
O43 - CFD: 2012/07/24 03:15:16 - [0] D -- C:\Users\HP\AppData\Local\{AAA96CDE-EC70-4F85-89E1-48FD5D232C81}
O43 - CFD: 2011/07/03 22:39:54 - [0] D -- C:\Users\HP\AppData\Local\{ACFD1406-DF22-40AC-B6FE-B9C11731B6F0}
O43 - CFD: 2013/06/04 16:28:44 - [0] D -- C:\Users\HP\AppData\Local\{B149A715-9D0F-4E18-B9D4-E41A1EF34A4A}
O43 - CFD: 2011/05/13 21:01:47 - [0] D -- C:\Users\HP\AppData\Local\{B8730E80-1AAF-47CF-AAD7-DA27405685A7}
O43 - CFD: 2013/08/10 23:45:30 - [0] D -- C:\Users\HP\AppData\Local\{BB67BD49-BBFB-4D33-BF96-090FB9021B69}
O43 - CFD: 2011/07/23 13:37:21 - [0] D -- C:\Users\HP\AppData\Local\{BC62C5B1-835F-4D1E-98D6-1C63BEB5E465}
O43 - CFD: 2012/06/29 03:08:21 - [0] D -- C:\Users\HP\AppData\Local\{BC663062-79A2-4C80-85F3-1FDB9E61599D}
O43 - CFD: 2011/04/09 21:12:43 - [0] D -- C:\Users\HP\AppData\Local\{BD052FC5-75B4-4AE2-A54C-515C49060F84}
O43 - CFD: 2012/01/03 23:04:31 - [0] D -- C:\Users\HP\AppData\Local\{BFE120D8-77A3-4785-B4CF-4825C5229E8F}
O43 - CFD: 2013/08/12 12:01:19 - [0] D -- C:\Users\HP\AppData\Local\{C0F62D4B-9163-4515-AE96-7D1E4D5FCBD6}
O43 - CFD: 2011/10/23 19:23:03 - [0] D -- C:\Users\HP\AppData\Local\{C146A548-A7DA-426F-AECC-0BE1D730CDEC}
O43 - CFD: 2012/07/24 03:15:26 - [0] D -- C:\Users\HP\AppData\Local\{C24E3DFE-EDCE-4F42-AF04-657FD971C9FD}
O43 - CFD: 2012/06/29 16:00:48 - [0] D -- C:\Users\HP\AppData\Local\{C3B91213-9A48-4603-8C7F-3060E824511B}
O43 - CFD: 2012/08/08 22:54:57 - [0] D -- C:\Users\HP\AppData\Local\{C407D7F7-3738-4B11-A260-FBC640879C5F}
O43 - CFD: 2012/06/29 03:07:33 - [0] D -- C:\Users\HP\AppData\Local\{C5E6C37A-81FB-463A-9ADF-A964F2B45A83}
O43 - CFD: 2013/08/10 23:47:43 - [0] D -- C:\Users\HP\AppData\Local\{C6FB7583-3472-4DBE-A835-8E83A046F8B2}
O43 - CFD: 2012/06/29 16:00:27 - [0] D -- C:\Users\HP\AppData\Local\{C79589BD-EA45-4627-925E-8703371938A3}
O43 - CFD: 2012/07/06 15:05:34 - [0] D -- C:\Users\HP\AppData\Local\{C7D54AAE-0877-4CE5-AC0F-B4B59EB6AA59}
O43 - CFD: 2012/06/29 16:03:49 - [0] D -- C:\Users\HP\AppData\Local\{C802F9F7-E93C-44A9-BE46-66A103833328}
O43 - CFD: 2011/04/20 22:42:20 - [0] D -- C:\Users\HP\AppData\Local\{C858E4B7-ADD1-4A33-811A-A13CA98ABC65}
O43 - CFD: 2011/04/10 22:03:31 - [0] D -- C:\Users\HP\AppData\Local\{C9DCBE49-34D2-48B0-8340-B6D5E2980FD8}
O43 - CFD: 2011/05/26 21:09:21 - [0] D -- C:\Users\HP\AppData\Local\{CD601E1A-CA83-4847-8153-E1D29C9B727E}
O43 - CFD: 2011/11/12 19:18:06 - [0] D -- C:\Users\HP\AppData\Local\{CDF62F75-7289-4B6F-B93B-E44C95C9770C}
O43 - CFD: 2011/06/30 16:43:25 - [0] D -- C:\Users\HP\AppData\Local\{CE9D3909-F2B2-4577-9CEE-A106DF7FA841}
O43 - CFD: 2011/12/24 00:53:15 - [0] D -- C:\Users\HP\AppData\Local\{D3ED9F91-1259-4719-A8C4-BE5A2B0548FA}
O43 - CFD: 2013/01/22 23:26:39 - [0] D -- C:\Users\HP\AppData\Local\{D64F2304-9C60-4A56-9366-55D34CC2E86F}
O43 - CFD: 2012/01/16 01:14:14 - [0] D -- C:\Users\HP\AppData\Local\{D6CCC5E4-D696-4619-8239-DC31ED03F6B2}
O43 - CFD: 2012/07/06 15:05:44 - [0] D -- C:\Users\HP\AppData\Local\{D7E88C25-18A4-4EAA-958A-B8235685A651}
O43 - CFD: 2012/06/29 03:48:18 - [0] D -- C:\Users\HP\AppData\Local\{DAE6AEEF-64D7-4754-A473-1AB23DC2E7E8}
O43 - CFD: 2012/02/12 20:52:46 - [0] D -- C:\Users\HP\AppData\Local\{DB25BA0E-0E05-4DF7-BF11-05AC50B123C7}
O43 - CFD: 2013/08/10 23:59:35 - [0] D -- C:\Users\HP\AppData\Local\{DC17D30B-9F1F-43B0-BEF6-1329B33E0FE1}
O43 - CFD: 2012/07/19 14:20:23 - [0] D -- C:\Users\HP\AppData\Local\{DC3E7E3A-0007-4F51-8D29-CF19215F3D0C}
O43 - CFD: 2012/06/28 22:07:37 - [0] D -- C:\Users\HP\AppData\Local\{DC4BE5B4-B537-4EE6-A876-00E208BF1879}
O43 - CFD: 2012/04/02 23:21:28 - [0] D -- C:\Users\HP\AppData\Local\{DF7D7342-F114-492C-94DA-AC5AB13FBBAE}
O43 - CFD: 2012/06/29 16:01:07 - [0] D -- C:\Users\HP\AppData\Local\{DF837206-C096-4B9D-9B70-603A48EECA09}
O43 - CFD: 2012/02/12 20:52:45 - [0] D -- C:\Users\HP\AppData\Local\{E2F0FB89-08BA-46AB-B323-171A0B9EF40A}
O43 - CFD: 2012/01/29 17:52:21 - [0] D -- C:\Users\HP\AppData\Local\{E39FA96C-A16A-41C3-A330-479DCCDAB767}
O43 - CFD: 2013/07/16 22:51:45 - [0] D -- C:\Users\HP\AppData\Local\{E4B32D45-5B0C-43BF-B1A7-FBE1309856E9}
O43 - CFD: 2012/06/29 03:08:11 - [0] D -- C:\Users\HP\AppData\Local\{E525F79A-06EA-444D-9B10-FC49A28673FD}
O43 - CFD: 2012/06/29 16:00:58 - [0] D -- C:\Users\HP\AppData\Local\{E6F3EF47-45D2-43F7-8BE7-80605C66DF8D}
O43 - CFD: 2013/07/16 22:54:12 - [0] D -- C:\Users\HP\AppData\Local\{E7CC94FA-127F-44CD-A7F7-BAEDB309FF1B}
O43 - CFD: 2011/05/26 20:53:08 - [0] D -- C:\Users\HP\AppData\Local\{EBA20A70-822A-4832-BF69-A407A233BDC2}
O43 - CFD: 2012/06/29 16:04:42 - [0] D -- C:\Users\HP\AppData\Local\{EC350904-D205-430F-92A0-FF6718E3771C}
O43 - CFD: 2011/11/17 23:29:08 - [0] D -- C:\Users\HP\AppData\Local\{EC66440D-C552-49BA-9569-3E4E9D914BED}
O43 - CFD: 2011/07/05 00:16:15 - [0] D -- C:\Users\HP\AppData\Local\{ECAD69C2-74D4-4B7B-9207-22A3C317EA39}
O43 - CFD: 2012/05/02 15:41:11 - [0] D -- C:\Users\HP\AppData\Local\{EDD0FCF4-0C65-422E-BEEE-E8BA1690530E}
O43 - CFD: 2011/05/26 20:44:40 - [0] D -- C:\Users\HP\AppData\Local\{EF6CED25-8AC2-48F9-8361-9E2405C56304}
O43 - CFD: 2011/11/15 23:00:23 - [0] D -- C:\Users\HP\AppData\Local\{EFA4B75D-7589-45F1-BC18-B6FCC90E50D8}
O43 - CFD: 2011/08/13 17:00:10 - [0] D -- C:\Users\HP\AppData\Local\{F66C74A3-E920-4E05-AC73-5F1186E1C89F}
O43 - CFD: 2012/10/04 00:14:46 - [0] D -- C:\Users\HP\AppData\Local\{F6727156-544A-4F1D-83FB-4EB136E30B58}
O43 - CFD: 2013/08/30 23:51:02 - [0] D -- C:\Users\HP\AppData\Local\{F6816825-9CC4-4CA2-BC69-EF00B97A23F6}
O43 - CFD: 2013/06/02 16:42:20 - [0] D -- C:\Users\HP\AppData\Local\{F6B3EEDF-2599-420B-8758-C1ABA5141883}
O43 - CFD: 2013/04/10 23:21:16 - [0] D -- C:\Users\HP\AppData\Local\{F93B3DAF-EA1C-49C6-9F08-84840CF58435}
O43 - CFD: 2013/02/12 13:28:47 - [0] D -- C:\Users\HP\AppData\Local\{F9E3083C-0784-43AF-B5EE-668BE9A8FE4F}
O43 - CFD: 2009/07/14 06:54:32 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/08/14 02:09:56 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2011/05/15 22:38:01 - [0] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ares
O43 - CFD: 2015/08/12 00:32:23 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 2013/07/09 00:33:10 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/08/15 20:21:57 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GUPlayer =>PUP.Optional.GUPlayer
O43 - CFD: 2011/03/22 15:07:47 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2014/12/01 21:19:18 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Infigo
O43 - CFD: 2009/07/14 06:49:38 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2012/12/28 03:20:46 - [0] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 2015/08/12 23:06:44 - [] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Périphériques Bluetooth
O43 - CFD: 2015/08/17 02:57:34 - [] RD -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/08/17 22:35:12 - [0] D -- C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件

---\\ Derniers fichiers créés dans Windows Prefetcher (10) - 10s
O45 - LFCP:[MD5.B005E635AE87ADEA9E3E1D786A3B95FB] 2015/08/21 00:02:57 A -- C:\Windows\Prefetch\CROSSBROWSE.EXE-CEDEC251.pf =>PUP.Optional.CrossBrowse
O45 - LFCP:[MD5.D45BC4A8F57335CD03EC10B9BBB72C40] 2015/08/20 23:48:59 A -- C:\Windows\Prefetch\GLOBALUPDATE.EXE-35F6B904.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.4C2B3C6BC85122C2E49F601219B107FE] 2015/08/20 23:49:03 A -- C:\Windows\Prefetch\GLOBALUPDATECRASHHANDLER.EXE-68CB7B8C.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.0BCE76FD069C983C0CA653961DAC18FF] 2015/08/18 13:42:15 A -- C:\Windows\Prefetch\GMSD_BE_005010060.EXE-E45E32B1.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.DA535B12B0984E0E1CE021AF91F25461] 2015/08/18 21:30:47 A -- C:\Windows\Prefetch\GMSD_BE_005010061.EXE-30A615EB.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.EB8195FDC327B584DFAF00F3B8E6D5D5] 2015/08/18 14:06:03 A -- C:\Windows\Prefetch\PRICELESS_P_SOFT_PARTNER.EXE-C80CFB38.pf =>PUP.Optional.PriceLess
O45 - LFCP:[MD5.8E6C1EBA760312343FEC25C7933B0DD4] 2015/08/20 23:50:25 A -- C:\Windows\Prefetch\UPGMSD_BE_005010060.EXE-83005BA4.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.920E5E4536C5A9F519B78B0A9C5D1D4C] 2015/08/18 21:29:38 A -- C:\Windows\Prefetch\UPGMSD_BE_005010061.EXE-6E45E08E.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.22B7E750BECC6B319E6654A14E3D441E] 2015/08/20 00:27:59 A -- C:\Windows\Prefetch\WORDSURFERAUTOUPDATECLIENT.EX-4E78B08A.pf =>PUP.Optional.WordSurfer
O45 - LFCP:[MD5.4BBFD8C40384689414C75D37602A3C6E] 2015/08/15 16:48:32 A -- C:\Windows\Prefetch\WPM_V20.0.0.2294.EXE-DA2C9CE5.pf =>PUP.Optional.WpManager

---\\ Liste des pilotes du système (102) - 11s
O58 - SDL:2009/07/08 14:48:50 A . (.Hewlett-Packard - HP Accelerometer.) -- C:\Windows\System32\drivers\Accelerometer.sys [41272]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864]
O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440]
O58 - SDL:2009/07/14 03:52:21 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [106576]
O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128]
O58 - SDL:2009/07/14 03:52:21 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [28752]
O58 - SDL:2014/12/16 01:50:37 A . (.Wondershare - Wondershare Virtual Audio Device.) -- C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856]
O58 - SDL:2008/10/28 11:27:52 A . (.ArcSoft, Inc. - ArcSoft Virtual Audio Device.) -- C:\Windows\System32\drivers\ArcVad.sys [27136]
O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848]
O58 - SDL:2009/06/10 22:34:38 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL664.SYS [1311232]
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432]
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704]
O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2009/09/17 22:56:10 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys [98344]
O58 - SDL:2009/09/17 22:56:14 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys [132648]
O58 - SDL:2009/09/17 22:56:16 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\System32\drivers\btwl2cap.sys [35104]
O58 - SDL:2009/09/17 22:56:24 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys [21160]
O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480]
O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488]
O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496]
O58 - SDL:2009/06/29 20:17:00 A . (.ENE TECHNOLOGY INC. - ENE CIR Driver for eHome(64).) -- C:\Windows\System32\drivers\enecir.sys [70656]
O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016]
O58 - SDL:2007/08/09 04:10:54 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\Windows\System32\drivers\ewdcsc.sys [29696]
O58 - SDL:2009/10/12 15:23:22 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ewusbdev.sys [114304]
O58 - SDL:2009/12/07 19:53:26 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ewusbmdm.sys [117504]
O58 - SDL:2009/12/07 19:36:48 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\ewusbnet.sys [246224]
O58 - SDL:2012/08/21 14:01:20 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\drivers\GEARAspiWDM.sys [33240]
O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232]
O58 - SDL:2009/07/08 14:49:08 A . (.Hewlett-Packard - HP Disk Filter - SATA/RAID.) -- C:\Windows\System32\drivers\hpdskflt.sys [30008]
O58 - SDL:2009/04/29 09:48:32 A . (.Hewlett-Packard Development Company, L.P. - HpqKbFiltr Keyboard Filter Driver.) -- C:\Windows\System32\drivers\HpqKbFiltr.sys [18432]
O58 - SDL:2009/07/14 03:47:48 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [77888]
O58 - SDL:2015/08/18 00:36:10 N . (.Beijing Rising Information Technology Co., Ltd. - VM Monitor.) -- C:\Windows\System32\drivers\hvm.sys [41784]
O58 - SDL:2009/10/13 11:16:40 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [409624]
O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410688]
O58 - SDL:2009/06/10 22:37:05 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [6108416]
O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112]
O58 - SDL:2009/10/13 05:00:52 A . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\System32\drivers\Impcd.sys [151040]
O58 - SDL:2009/07/21 05:39:22 A . (.JMicron Technology Corporation - JMicron JMB38X Flash Media Controller Drive.) -- C:\Windows\System32\drivers\jmcr.sys [140712]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736]
O58 - SDL:2010/04/14 19:50:14 RA . (.McAfee, Inc. - Access Protection Filter Driver.) -- C:\Windows\System32\drivers\mfeapfk.sys [121504]
O58 - SDL:2010/04/14 19:50:14 RA . (.McAfee, Inc. - McAfee Link Driver.) -- C:\Windows\System32\drivers\mfehidk.sys [528232]
O58 - SDL:2009/10/03 06:23:28 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETw5s64.sys [6952960]
O58 - SDL:2009/06/10 22:35:28 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\netw5v64.sys [5434368]
O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264]
O58 - SDL:2009/08/22 11:54:04 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [84512]
O58 - SDL:2009/11/29 19:20:40 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [11686248]
O58 - SDL:2009/07/14 03:48:27 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [149056]
O58 - SDL:2009/07/14 03:45:45 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [167488]
O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816]
O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592]
O58 - SDL:2012/02/29 09:49:54 N . (.Beijing Rising Information Technology Co., Ltd. - rsndisp.sys.) -- C:\Windows\System32\drivers\rsndisp.sys [11888]
O58 - SDL:2015/08/18 00:33:51 N . (.Beijing Rising Information Technology Co., Ltd. - rsutils.sys.) -- C:\Windows\System32\drivers\rsutils.sys [71760]
O58 - SDL:2009/10/03 05:58:12 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [258560]
O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584]
O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464]
O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656]
O58 - SDL:2009/10/21 09:35:26 A . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\drivers\stwrt64.sys [501760]
O58 - SDL:2009/08/15 08:54:54 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\drivers\SynTP.sys [286768]
O58 - SDL:2015/08/18 00:33:51 N . (.Beijing Rising Information Technology Co., Ltd. - sysmon.sys.) -- C:\Windows\System32\drivers\sysmon.sys [119256]
O58 - SDL:2015/08/17 03:29:58 A . (.Tencent - 电脑管家-TAO游戏启动加速驱动.) -- C:\Windows\System32\drivers\TAOAccelerator64.sys [74040] =>PUP.Optional.TencentAddressBar
O58 - SDL:2015/08/17 03:29:58 A . (.Tencent Technology(Shenzhen) Company Limited - TAOKernel.) -- C:\Windows\System32\drivers\TAOKernel64.sys [274232]
O58 - SDL:2015/08/17 03:29:59 A . (.电脑管家 - 电脑管家-驱动模块.) -- C:\Windows\System32\drivers\TFsFltX64.sys [87864]
O58 - SDL:2015/08/17 03:29:59 A . (.电脑管家 - 电脑管家-TSSK Driver.) -- C:\Windows\System32\drivers\TSSKX64.sys [38200]
O58 - SDL:2013/03/18 17:51:08 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl64.sys [54784]
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488]
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872]
O58 - SDL:2009/06/10 23:01:11 A . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\System32\drivers\VSTAZL6.SYS [292864]
O58 - SDL:2009/06/10 23:01:11 A . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\System32\drivers\VSTCNXT6.SYS [740864]
O58 - SDL:2009/06/10 23:01:11 A . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\System32\drivers\VSTDPV6.SYS [1485312]
O58 - SDL:2015/06/16 00:28:50 A . (.Word Surfer - Word Surfer TDI Driver x64.) -- C:\Windows\System32\drivers\wsafd_1_10_0_19.sys [61312] =>PUP.Optional.WordSurfer
O58 - SDL:2009/06/10 22:35:33 A . (.Marvell - Miniport Driver for Marvell Yukon Ethernet.) -- C:\Windows\System32\drivers\yk62x64.sys [389120]
O58 - SDL:2014/11/06 22:24:50 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{10e3e2da-8f7b-42cc-9f00-90007ce494b8}Gw64.sys [48832] =>PUP.Optional.LinkiDoo
O58 - SDL:2014/10/13 12:52:06 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gw64.sys [48784] =>PUP.Optional.LinkiDoo
O58 - SDL:2014/10/13 03:05:34 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{3b808196-ff63-49ee-b33b-efdf51723eca}Gw64.sys [48784] =>PUP.Optional.LinkiDoo
O58 - SDL:2014/11/12 09:33:54 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{51b9c91c-8e38-40ae-80de-58a590512b6b}Gw64.sys [48832] =>PUP.Optional.LinkiDoo
O58 - SDL:2015/02/14 02:27:46 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{6b89253f-7097-40c7-9ead-2d5b1ceb02e2}Gw64.sys [48776] =>PUP.Optional.LinkiDoo
O58 - SDL:2014/10/19 11:09:54 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gw64.sys [48784] =>PUP.Optional.LinkiDoo
O58 - SDL:2014/10/21 12:00:46 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{733fb217-c049-41ba-9504-3f2045e61977}Gw64.sys [48784] =>PUP.Optional.LinkiDoo
O58 - SDL:2015/08/12 11:19:04 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{7be47c3d-8483-4c40-8829-edea7219c992}Gw64.sys [48784] =>PUP.Optional.LinkiDoo
O58 - SDL:2014/12/05 04:07:44 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{94d62e35-4b43-494c-bf52-ba5935df36ef}Gw64.sys [48784] =>PUP.Optional.LinkiDoo
O58 - SDL:2015/08/17 04:42:16 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{987371d1-e860-4e27-ba6a-35575fd33b7c}Gw64.sys [48784] =>PUP.Optional.LinkiDoo
O58 - SDL:2015/08/15 08:32:44 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{abea8017-d6e9-43b5-9981-0890634ff140}Gw64.sys [48784] =>PUP.Optional.LinkiDoo
O58 - SDL:2014/10/26 04:41:04 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{b0c7827f-c845-429a-833b-c2a798fc4fc3}Gw64.sys [48784] =>PUP.Optional.LinkiDoo
O58 - SDL:2014/10/05 02:19:38 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gw64.sys [48784] =>PUP.Optional.LinkiDoo
O58 - SDL:2014/11/28 09:49:58 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{d997fcb4-42b4-4f84-a147-2e498567c954}Gw64.sys [48784] =>PUP.Optional.LinkiDoo
O58 - SDL:2014/11/30 00:50:30 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{dbec4a38-79aa-4d48-ac2b-d4467b1ded12}Gw64.sys [48784] =>PUP.Optional.LinkiDoo
O58 - SDL:2014/10/22 01:31:18 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{dc592624-f532-4311-9fc7-6920126fc404}Gw64.sys [48784] =>PUP.Optional.LinkiDoo
O58 - SDL:2014/11/06 08:30:38 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}Gw64.sys [48832] =>PUP.Optional.LinkiDoo
O58 - SDL:2014/10/19 04:04:18 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{fce396ae-d8d1-4789-946e-2106fbe4292b}Gw64.sys [48784] =>PUP.Optional.LinkiDoo

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (62) - 84s
O61 - LFC: 2015/08/16 01:07:38 A . (..) -- C:\Users\HP\Music\setup_gmsd_en(1).exe [4810368]
O61 - LFC: 2015/08/15 20:22:02 A . (..) -- C:\Users\HP\Music\setup_gmsd_en.exe [4810368]
O61 - LFC: 2015/08/18 14:00:18 A . (..) -- C:\Users\HP\AppData\Roaming\appdataFr25.bin [24]
O61 - LFC: 2015/08/13 02:16:07 A . (.Cinema PlusV16.03.) -- C:\Users\HP\AppData\Roaming\BYAIAMUF.exe [2035200]
O61 - LFC: 2015/08/17 22:35:44 A . (.The ICU Project.) -- C:\Users\HP\AppData\Roaming\Tencent\QQPhoneManager\Components\Webkit3.1\icudt.dll [4154936] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 22:35:45 A . (.Copyright (C) 2013 The Chromium Embedded Framework Au.) -- C:\Users\HP\AppData\Roaming\Tencent\QQPhoneManager\Components\Webkit3.1\libcef3.dll [29811712] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:34:41 A . (.Tencent.) -- C:\Users\HP\AppData\Roaming\Tencent\QQPCMgr\qmdr\dr.dll [76168] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AdbCmdServer.dll [201784] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.Google, inc.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AdbWinApi.dll [43064] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.Google, inc.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AdbWinUsbApi.dll [24632] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AndroidDaemon.exe [29240] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AndroidDevice.dll [367672] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AndroidServer.exe [229432] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AndroidServerUp.exe [212024] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.Tencent.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\arkFS.dll [76344] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.Tencent.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\arkGraphic.dll [355384] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.Tencent.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\arkImage.dll [56888] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.Tencent.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\arkIOStub.dll [16440] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.Tencent.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AsyncTask.dll [86072] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\bugreport.exe [270392] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.Tencent.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\Common.dll [1948728] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\ConnectManager.dll [442936] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\ConnectUI.dll [382008] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\Daemon.dll [102456] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\DaemonProxy.dll [36408] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\DriverTools.exe [114744] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\DriverToolsX64.exe [134200] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.Tencent.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\GF.dll [2334776] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (..) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\libexpatw.dll [129592] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.Tencent.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\libimagequant.dll [52792] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (..) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\libjpegturbo.dll [279608] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (..) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\libpng.dll [128568] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (..) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\libtcmalloc.dll [177720] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (..) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\Log4cplus.dll [295992] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (..) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\lua.dll [157752] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (..) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\mdb.exe [20024] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\NetHub.dll [311352] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\QQPMIpc.dll [80952] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.TODO: <公司名>.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\RubikEngine.dll [1038392] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\SdkClient.dll [608312] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (..) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\sqlite.dll [448568] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\tadb.exe [621624] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.腾讯公司.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\TADInstaller.dll [207928] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.Tencent.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\tinyxml.dll [93752] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (.Tencent.) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\xGraphic32.dll [132152] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/17 03:37:32 A . (..) -- C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\zlib.dll [75320] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/08/13 04:11:14 A . (..) -- C:\Users\HP\AppData\Roaming\mystartsearch\key.dll [57856] =>PUP.Optional.StartSearch
O61 - LFC: 2015/08/13 04:11:14 A . (.Skytech Co., Ltd..) -- C:\Users\HP\AppData\Roaming\mystartsearch\UninstallManager.exe [1782272] =>PUP.Optional.StartSearch
O61 - LFC: 2015/08/13 04:11:14 A . (..) -- C:\Users\HP\AppData\Roaming\istartsurf\key.dll [57856] =>PUP.Optional.IsStart
O61 - LFC: 2015/08/13 04:11:14 A . (.Skytech Co., Ltd..) -- C:\Users\HP\AppData\Roaming\istartsurf\UninstallManager.exe [1782272] =>PUP.Optional.IsStart
O61 - LFC: 2015/08/17 03:07:43 A . (.爱奇艺.) -- C:\Users\HP\AppData\Roaming\IQIYI Video\LStyle\QyUpdate\IQIYIsetup_update_201506041.exe [7801192] =>PUP.Optional.IQIYIVideo
O61 - LFC: 2015/08/17 03:07:52 A . (.爱奇艺.) -- C:\Users\HP\AppData\Roaming\IQIYI Video\LStyle\GpUpdate\GeePlayerSetup_update20150609.exe [13784184] =>PUP.Optional.IQIYIVideo
O61 - LFC: 2015/08/17 02:56:52 A . (.Unity Technologies ApS.) -- C:\Users\HP\AppData\Local\Unity\WebPlayer\Uninstall.exe [644549]
O61 - LFC: 2015/08/14 02:39:36 A . (.SoftBrain Technologies Ltd..) -- C:\Users\HP\AppData\Local\SmartWeb\__u.exe [172673] =>PUP.Optional.SmartWebSearch
O61 - LFC: 2015/08/20 23:49:31 A . (..) -- C:\Users\HP\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2015/08/16 13:58:10 A . (..) -- C:\Users\HP\AppData\Local\gmsd_be_005010062\upgmsd_be_005010062.exe [3332752] =>PUP.Optional.CrossRider
O61 - LFC: 2015/08/14 18:48:09 A . (..) -- C:\Users\HP\AppData\Local\gmsd_be_005010061\upgmsd_be_005010061.exe [3312272] =>PUP.Optional.CrossRider
O61 - LFC: 2015/08/13 12:19:20 A . (..) -- C:\Users\HP\AppData\Local\gmsd_be_005010060\upgmsd_be_005010060.exe [3334800] =>PUP.Optional.CrossRider
O61 - LFC: 2015/08/20 23:50:20 A . (..) -- C:\Users\HP\AppData\Local\gmsd_be_005010060\Download\majmp_gentleeu.exe [4590663] =>PUP.Optional.CrossRider
O61 - LFC: 2015/08/13 14:04:35 N . (..) -- C:\Users\HP\AppData\Local\Apps\2.0\NW2G18YG.N4K\C336PAOE.BPV\prog...app_86fd5b6b43e66935_0001.0003_9ffc048bf1071f7d\clickonce_bootstrap.exe [11080]
O61 - LFC: 2015/08/13 02:27:27 A . (..) -- C:\Users\HP\AppData\Local\30464E43-1439432847-5144-3044-C80AA94CC265\rnseB3E7.exe [148480]
O61 - LFC: 2015/08/13 02:27:28 A . (..) -- C:\Users\HP\AppData\Local\30464E43-1439432847-5144-3044-C80AA94CC265\Uninstall.exe [51000]

---\\ Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (12) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe http://www.mystartsearch.com/ =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Internet Explorer\iexplore.ex http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe

---\\ Recherche d'infection sur les navigateurs (11) - 0s
O69 - SBI: SearchScopes [HKCU] OldSearch - (e) - http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} [DefaultScope] - (e) - http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (mystartsearch) - http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
O69 - SBI: SearchScopes [HKCU] {56256A51-B582-467e-B8D4-7786EDA79AE0} - () - http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Yahoo! Search) - http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
O69 - SBI: SearchScopes [HKCU] {8976ACF5-6E36-4DA6-884E-8E4C8E2744A2} - () - http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
O69 - SBI: SearchScopes [HKCU] {B6882AE3-873C-4E28-9DE4-9A0A252684C2} - (Google) - http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
O69 - SBI: SearchScopes [HKCU] {DD108C93-A9A2-46D4-9A66-1EE9449F5326} - () - http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} - (Google) - http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
O69 - SBI: SearchScopes [HKCU] {EEE6C360-6118-11DC-9C72-001320C79847} - () - http://www.oursurfing.com/ =>PUP.Optional.OurSurfing

---\\ Enumère les services démarrés par Svchost (32) - 3s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [235520]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [776192]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [845824]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [676864]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [343552]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316416]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [706560]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2418176]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [848384]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [369664]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [565760]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [104960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136192]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1104384]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [208384]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]

---\\ Liste des exceptions du parefeu Windows (60) - 8s
O87 - FAEL: "{8358A2B0-4F8C-417D-8DA3-C3F3A1DC5730}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartMusic.exe (.not file.)
O87 - FAEL: "{EA589B46-1416-4BDC-8F20-5775BA70D8AB}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartPhoto.exe (.not file.)
O87 - FAEL: "{2693B0EC-F729-447B-90E7-15706ED30D15}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartVideo.exe (.not file.)
O87 - FAEL: "{59B10351-5220-4450-AC95-374B2E411C1D}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\TSMAgent.exe (.not file.)
O87 - FAEL: "{15D7F6E5-D510-4F1C-A595-C76B4324D1E2}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\CLML\CLMLSvc.exe (.not file.)
O87 - FAEL: "{F255CF3A-C4A6-40D2-88EC-F79A23547F2B}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\QP.exe (.not file.)
O87 - FAEL: "{CDB05571-4E43-460F-A4F3-EE6724C29216}" [In-None-P6-TRUE] .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\QPService.exe (.not file.)
O87 - FAEL: "{78692F14-B80C-48C8-8096-E5D439B7D65C}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\SweetIM\Messenger\update\sweetimsetup.exe (.not file.) =>PUP.Optional.SweetIM
O87 - FAEL: "{3E299245-CAEF-4C4C-9BAA-4CCA554D7FDA}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\SweetIM\Messenger\update\sweetimsetup.exe (.not file.) =>PUP.Optional.SweetIM
O87 - FAEL: "TCP Query User{81EDA8AF-6ACB-44D4-A67B-39E19CABBC54}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\symantec\norton online backup\nobuclient.exe (.not file.)
O87 - FAEL: "UDP Query User{ECF7BEC5-12B9-4574-849D-12CB0959787E}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\symantec\norton online backup\nobuclient.exe (.not file.)
O87 - FAEL: "TCP Query User{30C1D80E-025B-401C-B145-1ADF525B6006}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\symantec\norton online backup\nobuclient.exe (.not file.)
O87 - FAEL: "UDP Query User{2B67B328-980E-4385-9E3B-A893461E7C5E}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\symantec\norton online backup\nobuclient.exe (.not file.)
O87 - FAEL: "TCP Query User{1D768723-739A-45D6-BA71-2ADD221FD52A}C:\program files (x86)\freecall.com\freecall\freecall.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\freecall.com\freecall\freecall.exe (.not file.)
O87 - FAEL: "UDP Query User{05A87818-42C4-4159-AFEB-4CA633E12077}C:\program files (x86)\freecall.com\freecall\freecall.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\freecall.com\freecall\freecall.exe (.not file.)
O87 - FAEL: "TCP Query User{AC0DF46C-6816-4CBA-9D3F-A4AD421245E9}C:\program files (x86)\freecall.com\freecall\freecall.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\freecall.com\freecall\freecall.exe (.not file.)
O87 - FAEL: "UDP Query User{C5AB25E0-26E5-4752-B7B3-0115D244393E}C:\program files (x86)\freecall.com\freecall\freecall.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\freecall.com\freecall\freecall.exe (.not file.)
O87 - FAEL: "TCP Query User{F8F02EAC-B25F-4296-BE14-190E01F04276}C:\program files (x86)\ares\ares.exe" [In-None-P6-TRUE] .(.Ares Development Group - Ares p2p for windows.) -- C:\program files (x86)\ares\ares.exe
O87 - FAEL: "UDP Query User{A746720E-0D41-4925-B949-F5670468DD66}C:\program files (x86)\ares\ares.exe" [In-None-P17-TRUE] .(.Ares Development Group - Ares p2p for windows.) -- C:\program files (x86)\ares\ares.exe
O87 - FAEL: "TCP Query User{A8DBC178-8F38-4A2A-A856-E5F2381736F5}C:\program files (x86)\ares\ares.exe" [In-None-P6-TRUE] .(.Ares Development Group - Ares p2p for windows.) -- C:\program files (x86)\ares\ares.exe
O87 - FAEL: "UDP Query User{A3EA168B-F12F-414E-8168-0A088063BBC6}C:\program files (x86)\ares\ares.exe" [In-None-P17-TRUE] .(.Ares Development Group - Ares p2p for windows.) -- C:\program files (x86)\ares\ares.exe
O87 - FAEL: "{5C55ED9C-1F62-44FB-9CC3-5B726BF8E63A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AdvanceElite\bin\AdvanceElite.BRT.Helper.exe (.not file.)
O87 - FAEL: "{FC816963-CDCB-4BCA-8E57-6EDFC0A64916}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AdvanceElite\bin\AdvanceElite.BRT.Helper.exe (.not file.)
O87 - FAEL: "{D11AF754-820A-413C-8571-B085A6AD8783}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AdvanceElite\bin\AdvanceElite.BRT.Helper.exe (.not file.)
O87 - FAEL: "{81B60F35-4B62-433A-B478-0DC77EB47249}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AdvanceElite\bin\AdvanceElite.BRT.Helper.exe (.not file.)
O87 - FAEL: "{3938C005-C532-4588-B84C-9770C96D4740}" [In-None-P17-TRUE] .(.Crossbrowse - Crossbrowse.) -- C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O87 - FAEL: "{E17ECF80-1FD4-4D59-AB30-05BEED7F8035}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺升级模块.) -- C:\Users\HP\AppData\Roaming\IQIYI Video\LStyle\GpUpdate.exe =>PUP.Optional.IQIYIVideo
O87 - FAEL: "{ED528101-4C1C-484E-B82D-F65325A6D84A}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺万能播放器.) -- C:\IQIYI Video\GeePlayer\GeePlayer.exe =>PUP.Optional.IQIYIVideo
O87 - FAEL: "{0BD92257-A471-4228-9869-1EA0AF66CF80}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺升级模块.) -- C:\Users\HP\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exe =>PUP.Optional.IQIYIVideo
O87 - FAEL: "{78774262-D0EE-4091-92D3-A0BC529AC339}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺PPS影音.) -- C:\IQIYI Video\LStyle\QyClient.exe =>PUP.Optional.IQIYIVideo
O87 - FAEL: "{7D3CF7CC-56B5-48B3-997E-0260B58E0CDF}" [In-None-P17-TRUE] .(.爱奇艺公司 - 爱奇艺PPS影音 网页播放组件.) -- C:\IQIYI Video\LStyle\QyWebPlayer.exe =>PUP.Optional.IQIYIVideo
O87 - FAEL: "{DDB1E867-545A-4084-B89E-EC0E7C6C1D70}" [In-None-P17-TRUE] .(.iQIYI.COM - 爱奇艺HCDN网络数据传输组件.) -- C:\IQIYI Video\Common\QyKernel.exe =>PUP.Optional.IQIYIVideo
O87 - FAEL: "{50E97197-3A94-4F7F-BA34-D9C19D68B18B}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺视频播放器.) -- C:\IQIYI Video\LStyle\QyPlayer.exe =>PUP.Optional.IQIYIVideo
O87 - FAEL: "{943D2271-2CB9-46F7-B0E5-9CEC4493E49A}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-安装引导.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCmgrInstallGuide.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{EEC2CCB5-8B13-481A-9B5F-CE93DDC07D3F}" [In-None-P17-TRUE] .(.Tencent - 电脑管家.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCTray.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{9EEBA574-FFA6-4048-9323-1297BFAB48BF}" [In-None-P17-TRUE] .(.Tencent - 电脑管家.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCMgr.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{0088DE61-65A3-469E-94A6-2DD4FE79A8FC}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-实时防护服务.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCRTP.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{0A0C7D8E-33BC-43F9-AB5D-CF50F034C028}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-下载中心.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMDL.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{D6567CAB-99B4-42CA-AC47-C20A6CEFB118}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-crash上报.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\bugreport.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{8A4F4EC9-27AF-4C3B-9617-1ABD1A957280}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-未知文件打开.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCFileOpen.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{01EEAACC-04B1-48F6-9583-03E411A0CB8E}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-漏洞扫描.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCLeakScan.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{4B1F1AFC-664E-4049-A61D-0E48F8300DBB}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-设置中心.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPConfig.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{995AD8A7-AE89-4B68-97A4-3280832182C3}" [In-None-P17-TRUE] .(.Tencent - 软件管理.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCSoftMgr.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{16350AC9-ED15-4D34-B6AA-DF110931D38A}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-网络流量监控.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\plugins\QMNetMon\QQPCNetFlow.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{2DC2C4AD-8172-443D-9CB6-950F792D1D96}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-日志上传.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCBTU.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{D5D9B198-0822-415A-BCC8-09EEA1FAA4EF}" [In-None-P17-TRUE] .(.Tencent - 电脑诊所.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCClinic.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{1583B2DA-612E-48A2-BDE5-F43C57F40084}" [In-None-P17-TRUE] .(.Copyright (C) 2012 - 电脑管家-引导启动.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCLaunch.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{5B5A6BFF-08AF-405A-97CE-DB1BD81C73AC}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-自升级程序.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMUpdate\QQPCMgrUpdate.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{F8C7BF39-D5AC-43CC-BB78-33B854421A41}" [In-None-P17-TRUE] .(.Copyright (C) 2012 - 电脑管家-游戏专区.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCSoftGame.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{FA12FA31-078D-4869-8A03-DF767F7C029E}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-系统优化.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCSysOptimize.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{3A296B3D-9BAC-4108-9569-8BCDD28A35CD}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-杀毒.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCUpdateAVLib.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{019A5F80-0EFF-45FF-8C2C-3887E9F34567}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-修复器.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQRepair.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{4D28D7AD-A124-4D33-9E5F-8917AC3A51A5}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-卸载程序.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\Uninst.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{59175DED-6D31-46EB-8286-862B7B11221A}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-模块升级.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCPatch.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{1BCED675-E0C8-4D7E-A8F9-FDFA6A4F640D}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-反病毒引擎升级程序.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\TpkUpdate.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{7C76D05F-CABD-44C4-B016-C8BEADFA906E}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-路由器管家.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMRouterMgr.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{7F5EEFAA-F0A5-4494-888D-3FBE87614C5E}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-帐号宝.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMAccountProtection.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{ED06278E-2F55-4729-874E-DDDA426FD46C}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-弹窗拦截.) -- C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMAdBlock.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{755D2FB9-31C7-42D7-ACA5-07A8CB125909}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{31647477-5996-4050-8FCD-DCFDB020C779}" [In-None-P17-TRUE] .(.Tencent - 腾讯高速下载引擎.) -- C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe =>PUP.Optional.TencentAddressBar

---\\ Enumère les codes produits des logiciels (2) - 4s
O90 - PUC: "93BAD29AC2E44034A96BCB446EB8552E" . (.globalupdate Helper.) =>PUP.Optional.GlobalUpdate
O90 - PUC: "EB525538DB364CE4495200ECDA84942C" . (.Widestream6.) -- C:\Windows\Installer\{835525BE-63BD-4EC4-9425-00CEAD4849C2}\ARPPRODUCTICON.exe =>PUP.Optional.SPointer

---\\ Recherche des packages WindowsInstaller (2) - 13s
[MD5.] [WIS][2011/04/04 18:10:14] (.Secure Digital Services - InstallShield® 2010 - Professional Edition.) -- C:\Windows\Installer\1e0b48.msi [3523072] =>PUP.Optional.SPointer
[MD5.] [WIS][2015/08/14 12:26:57] (.globalupdate - Windows Installer XML Toolset (3.9.1208.0).) -- C:\Windows\Installer\45ded.msi [32768] =>PUP.Optional.GlobalUpdate

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (24) - 46s
SR - Auto [2015/07/07 20:12:28] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - Auto [2009/03/03 12:42:58] [ 89600] Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\AESTSr64.exe
SR - Auto [2015/01/19 23:30:38] [ 77128] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - Auto [2011/08/31 00:05:32] [ 462184] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - Auto [2009/09/04 14:35:12] [ 873248] Bluetooth Service (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
SR - Demand [2009/05/05 11:11:50] [ 228408] Com4QLBEx (Com4QLBEx) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
SS - Demand [2009/06/06 02:07:28] [ 250616] GameConsoleService (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
SS - Auto [2015/08/14 12:26:57] [ 68608] globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate.) - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
SS - Demand [2015/08/14 12:26:57] [ 68608] globalUpdate Update Service (globalUpdatem) (globalUpdatem) . (.globalUpdate.) - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
SR - Demand [2012/08/10 15:46:12] [ 1001376] HP Software Framework Service (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - Auto [2009/07/08 14:49:02] [ 30520] HP Service (hpsrv) . (.Hewlett-Packard.) - C:\Windows\system32\Hpservice.exe
SR - Auto [2014/11/13 17:23:08] [ 19720] Infigo Operator (InfigoOperator) . (.Copyright © MAVIN LOG, S.L. 2013.) - C:\Program Files (x86)\Infigo\InfigoOperator.exe
SR - Demand [2015/04/07 00:28:50] [ 643880] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - Auto [2009/08/20 14:34:04] [ 73728] LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
SS - Demand [2015/06/26 13:05:26] [ 289256] McAfee Security Scan Component Host Service (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.11.149\McCHSvc.exe
SR - Auto [2009/11/28 22:56:00] [ 392296] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - Auto [2015/08/17 03:29:31] [ 301728] QQPCMgr RTP Service (QQPCRTP) . (.Tencent.) - C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCRTP.exe =>PUP.Optional.TencentAddressBar
SR - Auto [2015/05/19 12:47:52] [ 7414256] Reimage Real Time Protector (ReimageRealTimeProtector) . (.Reimage®.) - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe =>PUP.Optional.ReImageRepair
SR - Auto [2009/07/06 21:20:18] [ 247152] Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Copyright 2004.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
SR - Auto [2015/08/18 00:33:21] [ 196288] Rsd Service (RsMgrSvc) . (.Beijing Rising Information Technology Co., Ltd..) - C:\Program Files (x86)\Rising\RSD\RsMgrSvc.exe
SR - Auto [2014/05/15 03:16:38] [ 277552] Rav Service (RsRavMon) . (.Beijing Rising Information Technology Co., Ltd..) - C:\Program Files (x86)\Rising\RAV\ravmond.exe
SS - Auto [2015/07/09 13:14:04] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - Auto [2009/10/21 09:35:26] [ 240640] Audio Service (STacSV) . (.IDT, Inc..) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\stacsv64.exe
SS - Demand [2015/08/17 03:29:33] [ 293856] TAOFrame (TAOFrame) . (.Tencent.) - C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\TAOFrame.exe =>PUP.Optional.TencentAddressBar

---\\ Recherche de clés de registre Tracing (14) - 36s
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASAPI32 =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASMANCS =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\RegistryReviver_RASAPI32 =>PUP.Optional.RegistryReviver
HKLM\SOFTWARE\Microsoft\Tracing\RegistryReviver_RASMANCS =>PUP.Optional.RegistryReviver
HKLM\SOFTWARE\Microsoft\Tracing\ReimageReminder_RASAPI32 =>PUP.Optional.ReImageRepair
HKLM\SOFTWARE\Microsoft\Tracing\ReimageReminder_RASMANCS =>PUP.Optional.ReImageRepair
HKLM\SOFTWARE\Microsoft\Tracing\Reimage_RASAPI32 =>PUP.Optional.ReImageRepair
HKLM\SOFTWARE\Microsoft\Tracing\Reimage_RASMANCS =>PUP.Optional.ReImageRepair
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\crossbrowse_RASAPI32 =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\crossbrowse_RASMANCS =>PUP.Optional.CrossBrowse

---\\ Scan Additionnel (341) - 0s
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCRTP.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe =>PUP.Optional.ReImageRepair
C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe =>PUP.Optional.ReImageRepair
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCTray.exe =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Local\gmsd_be_005010060\upgmsd_be_005010060.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
C:\IQIYI Video\Common\QyKernel.exe =>PUP.Optional.IQIYIVideo
C:\Users\HP\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
C:\Program Files (x86)\gmsd_be_005010060\gmsd_be_005010060.exe =>PUP.Optional.CrossRider
C:\Users\HP\AppData\Local\SmartWeb\SmartWebApp.exe =>PUP.Optional.SmartWebSearch
C:\Program Files (x86)\gmsd_be_005010061\gmsd_be_005010061.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\gmsd_be_005010062\gmsd_be_005010062.exe =>PUP.Optional.CrossRider
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\plugins\QMNetMon\QQPCNetFlow.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCRealTimeSpeedup.exe =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\papbadoldddalgcjcicnikcfenodpghp
C:\IQIYI Video\LStyle\npWebPlayer.dll =>PUP.Optional.IQIYIVideo
C:\IQIYI Video\LStyle\npclient.dll =>PUP.Optional.IQIYIVideo
C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3198\npQQPhoneManagerExt.dll =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\npQMExtensionsMozilla.dll =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\TSWebMon64.dat =>PUP.Optional.TencentAddressBar
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} =>PUP.Optional.TencentAddressBar
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E77A8936-3FA5-4C60-B624-71DC87D7C2EC} =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Local\gmsd_be_005010062\upgmsd_be_005010062.exe =>PUP.Optional.CrossRider
C:\Users\HP\AppData\Local\gmsd_be_005010061\upgmsd_be_005010061.exe =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\comyninu =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\hyverumu =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\QQPCRTP =>PUP.Optional.TencentAddressBar
HKLM\SYSTEM\CurrentControlSet\Services\ReimageRealTimeProtector =>PUP.Optional.ReImageRepair
HKLM\SYSTEM\CurrentControlSet\Services\sefecewo =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Banana Phone =>PUP.Optional.BananaPhone*
HKCU\SOFTWARE\Banana Phone =>PUP.Optional.BananaPhone*
C:\Program Files (x86)\Banana Phone =>PUP.Optional.BananaPhone*
HKLM\SYSTEM\CurrentControlSet\Services\Update Banana Phone =>PUP.Optional.BananaPhone*
HKLM\SYSTEM\CurrentControlSet\Services\Util Banana Phone =>PUP.Optional.BananaPhone*
HKLM\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect =>PUP.Optional.Fuyu
HKLM\SYSTEM\CurrentControlSet\Services\wsasvc_1.10.0.19 =>PUP.Optional.Generic
C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-1-6.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-1-7.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-10_user.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-3.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-5.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-5_user.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-6.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-7.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\Crossbrowse.job =>PUP.Optional.CrossBrowse
C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job =>PUP.Optional.GlobalUpdate
C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job =>PUP.Optional.GlobalUpdate
C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-1-6 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-1-7 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-10_user =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-3 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-5 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-5_user =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-6 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\70bd90b1-9308-4888-a13b-5e8d34777312-7 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore =>PUP.Optional.GlobalUpdate
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA =>PUP.Optional.GlobalUpdate
C:\Windows\System32\Tasks\new tab helper oursurfing =>PUP.Optional.OurSurfing
C:\Windows\System32\Tasks\Reimage Reminder =>PUP.Optional.ReImageRepair
C:\Windows\System32\Tasks\ReimageUpdater =>PUP.Optional.ReImageRepair
C:\Windows\System32\Tasks\SmartWeb Upgrade Trigger Task =>PUP.Optional.SmartWebSearch
C:\Windows\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Core =>PUP.Optional.WordSurfer
C:\Windows\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Pending Update =>PUP.Optional.WordSurfer
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair =>PUP.Optional.ReImageRepair
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search =>Toolbar.AVGSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\CinemaPlus-3.2cV14.08 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_be_005010060_is1 =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_be_005010061_is1 =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_be_005010062_is1 =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IQIYI Video =>PUP.Optional.IQIYIVideo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\istartsurf uninstall =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\mystartsearch uninstall =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SmartWeb =>PUP.Optional.SmartWebSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507} =>PUP.Optional.Multiplug
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{75F9BF4A-AF67-A478-A37B-31D73186D3F3} =>PUP.Optional.Multiplug
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{835525BE-63BD-4EC4-9425-00CEAD4849C2} =>PUP.Optional.SPointer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GUPlayer =>PUP.Optional.GUPlayer
HKLM\SOFTWARE\Wow6432Node\342d512b-4e38-6a29-c1bc-be1ccfc4fc2f =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\AVG Secure Search =>Toolbar.AVGSearch
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-3.2cV14.08 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-3.2cV14.08-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-3.2cV14.08-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\d103239d-b05e-45a2-a34a-675bb5962aa3 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\FocusInteractive =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Wow6432Node\Fun Web Products =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Wow6432Node\GAMESDESKTOP =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\MyWebSearch =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Wow6432Node\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\searchult =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.Fuyu
HKLM\SOFTWARE\Wow6432Node\SweetIM =>PUP.Optional.SweetIM
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Tencent =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\WajIntEnhance =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\widestream =>PUP.Optional.SPointer
HKLM\SOFTWARE\Wow6432Node\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AskPartnerNetwork =>Toolbar.AskBar
HKCU\SOFTWARE\AVG Secure Search =>Toolbar.AVGSearch
HKCU\SOFTWARE\CinemaP-1.9cV16.03-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV13.08-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV14.08 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV14.08-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV14.08-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\DailyPcClean =>PUP.Optional.DailyPCClean
HKCU\SOFTWARE\gamesdesktop =>PUP.Optional.GamesDesktop
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\HomeTab =>PUP.Optional.CertifiedToolbar
HKCU\SOFTWARE\Iminent =>PUP.Optional.IMBooster
HKCU\SOFTWARE\InstallCore =>PUP.Optional.InstallCore
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\MyWebSearch =>PUP.Optional.MyWebSearch
HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro
HKCU\SOFTWARE\QyGameClient =>PUP.Optional.IQIYIVideo
HKCU\SOFTWARE\Reimage =>PUP.Optional.ReImageRepair
HKCU\SOFTWARE\reimagerepair =>PUP.Optional.ReImageRepair
HKCU\SOFTWARE\SearchProtectWS =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\SimplyTech =>PUP.Optional.SimplyTech
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\SweetIM =>PUP.Optional.SweetIM
HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKCU\SOFTWARE\TNT2 =>PUP.Optional.TidyNetwork
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WajIntEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WideStream =>PUP.Optional.SPointer
HKCU\SOFTWARE\YahooPartnerToolbar =>Toolbar.YahooPartner
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Fun Web Products =>PUP.Optional.MyWebSearch
HKCU\SOFTWARE\AppDataLow\Software\FunWebProducts =>PUP.Optional.MyWebSearch
HKCU\SOFTWARE\AppDataLow\Software\MyWebSearch =>PUP.Optional.MyWebSearch
HKCU\SOFTWARE\AppDataLow\Software\PriceGong =>PUP.Optional.PriceGong
HKCU\SOFTWARE\AppDataLow\Software\SmartBar =>PUP.Optional.SmartBar
HKCU\SOFTWARE\AppDataLow\Software\SmartWeb =>PUP.Optional.SmartWebSearch
C:\Program Files (x86)\30464E43-1439425597-5144-3044-C80AA94CC265 =>PUP.Optional.CrossRider
C:\Program Files (x86)\317dac5f-733c-4f37-8370-82f7f14a98c8 =>PUP.Optional.CrossRider
C:\Program Files (x86)\AVG Secure Search =>Toolbar.AVGSearch
C:\Program Files (x86)\CinemaPlus-3.2cV14.08 =>PUP.Optional.CrossRider
C:\Program Files (x86)\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Program Files (x86)\FriendlyError =>PUP.Optional.FriendlyError
C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files (x86)\gmsd_be_005010060 =>PUP.Optional.CrossRider
C:\Program Files (x86)\gmsd_be_005010061 =>PUP.Optional.CrossRider
C:\Program Files (x86)\gmsd_be_005010062 =>PUP.Optional.CrossRider
C:\Program Files (x86)\GUPlayer =>PUP.Optional.GUPlayer
C:\Program Files (x86)\MiuiTab =>PUP.Optional.MiuiTab
C:\Program Files (x86)\predm =>PUP.Optional.Downware
C:\Program Files (x86)\PrriiceLess =>PUP.Optional.Multiplug
C:\Program Files (x86)\Tencent =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
C:\Program Files (x86)\youtubeadblocker =>PUP.Optional.YouTubeAdBlock
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse =>PUP.Optional.CrossBrowse
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>PUP.Optional.GamesDesktop
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair =>PUP.Optional.ReImageRepair
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Widestream6 =>PUP.Optional.SPointer
C:\ProgramData\IHProtectUpDate =>PUP.Optional.AgentODR
C:\ProgramData\IQIYI Video =>PUP.Optional.IQIYIVideo
C:\ProgramData\Reimage Protector =>PUP.Optional.ReImageRepair
C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Common Files\AVG Secure Search =>Toolbar.AVGSearch
C:\Program Files (x86)\Common Files\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\IQIYI Video =>PUP.Optional.IQIYIVideo
C:\Users\HP\AppData\Roaming\istartsurf =>PUP.Optional.IsStart
C:\Users\HP\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
C:\Users\HP\AppData\Roaming\Systweak =>PUP.Optional.Systweak
C:\Users\HP\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Users\HP\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Users\HP\AppData\Local\gmsd_be_005010060 =>PUP.Optional.CrossRider
C:\Users\HP\AppData\Local\gmsd_be_005010061 =>PUP.Optional.CrossRider
C:\Users\HP\AppData\Local\gmsd_be_005010062 =>PUP.Optional.CrossRider
C:\Users\HP\AppData\Local\Pay-By-Ads =>PUP.Optional.PaybyAds
C:\Users\HP\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
C:\Users\HP\AppData\Local\SysassistByHotWheel =>PUP.Optional.Generic
C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GUPlayer =>PUP.Optional.GUPlayer
C:\Windows\Prefetch\CROSSBROWSE.EXE-CEDEC251.pf =>PUP.Optional.CrossBrowse
C:\Windows\Prefetch\GLOBALUPDATE.EXE-35F6B904.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\GLOBALUPDATECRASHHANDLER.EXE-68CB7B8C.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\GMSD_BE_005010060.EXE-E45E32B1.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\GMSD_BE_005010061.EXE-30A615EB.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\PRICELESS_P_SOFT_PARTNER.EXE-C80CFB38.pf =>PUP.Optional.PriceLess
C:\Windows\Prefetch\UPGMSD_BE_005010060.EXE-83005BA4.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\UPGMSD_BE_005010061.EXE-6E45E08E.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\WORDSURFERAUTOUPDATECLIENT.EX-4E78B08A.pf =>PUP.Optional.WordSurfer
C:\Windows\Prefetch\WPM_V20.0.0.2294.EXE-DA2C9CE5.pf =>PUP.Optional.WpManager
C:\Windows\System32\drivers\TAOAccelerator64.sys =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\wsafd_1_10_0_19.sys =>PUP.Optional.WordSurfer
C:\Windows\System32\drivers\{10e3e2da-8f7b-42cc-9f00-90007ce494b8}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{3b808196-ff63-49ee-b33b-efdf51723eca}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{51b9c91c-8e38-40ae-80de-58a590512b6b}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{6b89253f-7097-40c7-9ead-2d5b1ceb02e2}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{733fb217-c049-41ba-9504-3f2045e61977}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{7be47c3d-8483-4c40-8829-edea7219c992}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{94d62e35-4b43-494c-bf52-ba5935df36ef}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{987371d1-e860-4e27-ba6a-35575fd33b7c}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{abea8017-d6e9-43b5-9981-0890634ff140}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{b0c7827f-c845-429a-833b-c2a798fc4fc3}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{d997fcb4-42b4-4f84-a147-2e498567c954}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{dbec4a38-79aa-4d48-ac2b-d4467b1ded12}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{dc592624-f532-4311-9fc7-6920126fc404}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{f63e4e62-e47d-4415-9bb4-c9b1dfe161b9}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Windows\System32\drivers\{fce396ae-d8d1-4789-946e-2106fbe4292b}Gw64.sys =>PUP.Optional.LinkiDoo
C:\Users\HP\AppData\Roaming\Tencent\QQPhoneManager\Components\Webkit3.1\icudt.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\QQPhoneManager\Components\Webkit3.1\libcef3.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\QQPCMgr\qmdr\dr.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AdbCmdServer.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AdbWinApi.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AdbWinUsbApi.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AndroidDaemon.exe =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AndroidDevice.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AndroidServer.exe =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AndroidServerUp.exe =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\arkFS.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\arkGraphic.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\arkImage.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\arkIOStub.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\AsyncTask.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\bugreport.exe =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\Common.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\ConnectManager.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\ConnectUI.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\Daemon.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\DaemonProxy.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\DriverTools.exe =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\DriverToolsX64.exe =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\GF.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\libexpatw.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\libimagequant.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\libjpegturbo.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\libpng.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\libtcmalloc.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\Log4cplus.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\lua.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\mdb.exe =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\NetHub.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\QQPMIpc.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\RubikEngine.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\SdkClient.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\sqlite.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\tadb.exe =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\TADInstaller.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\tinyxml.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\xGraphic32.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\Tencent\AndroidServer\1.0.0.485\zlib.dll =>PUP.Optional.TencentAddressBar
C:\Users\HP\AppData\Roaming\mystartsearch\key.dll =>PUP.Optional.StartSearch
C:\Users\HP\AppData\Roaming\mystartsearch\UninstallManager.exe =>PUP.Optional.StartSearch
C:\Users\HP\AppData\Roaming\istartsurf\key.dll =>PUP.Optional.IsStart
C:\Users\HP\AppData\Roaming\istartsurf\UninstallManager.exe =>PUP.Optional.IsStart
C:\Users\HP\AppData\Roaming\IQIYI Video\LStyle\QyUpdate\IQIYIsetup_update_201506041.exe =>PUP.Optional.IQIYIVideo
C:\Users\HP\AppData\Roaming\IQIYI Video\LStyle\GpUpdate\GeePlayerSetup_update20150609.exe =>PUP.Optional.IQIYIVideo
C:\Users\HP\AppData\Local\SmartWeb\__u.exe =>PUP.Optional.SmartWebSearch
C:\Users\HP\AppData\Local\gmsd_be_005010060\Download\majmp_gentleeu.exe =>PUP.Optional.CrossRider
C:\Users\HP\AppData\Roaming\IQIYI Video\LStyle\GpUpdate.exe =>PUP.Optional.IQIYIVideo
C:\IQIYI Video\GeePlayer\GeePlayer.exe =>PUP.Optional.IQIYIVideo
C:\Users\HP\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exe =>PUP.Optional.IQIYIVideo
C:\IQIYI Video\LStyle\QyClient.exe =>PUP.Optional.IQIYIVideo
C:\IQIYI Video\LStyle\QyWebPlayer.exe =>PUP.Optional.IQIYIVideo
C:\IQIYI Video\LStyle\QyPlayer.exe =>PUP.Optional.IQIYIVideo
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCmgrInstallGuide.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCMgr.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMDL.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\bugreport.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCFileOpen.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCLeakScan.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPConfig.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCSoftMgr.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCBTU.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCClinic.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCLaunch.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMUpdate\QQPCMgrUpdate.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCSoftGame.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCSysOptimize.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCUpdateAVLib.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQRepair.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\Uninst.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCPatch.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\TpkUpdate.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMRouterMgr.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMAccountProtection.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMAdBlock.exe =>PUP.Optional.TencentAddressBar
C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe =>PUP.Optional.TencentAddressBar
C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe =>PUP.Optional.TencentAddressBar
HKLM\Software\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E =>PUP.Optional.GlobalUpdate
HKLM\Software\Classes\Installer\Features\93BAD29AC2E44034A96BCB446EB8552E =>PUP.Optional.GlobalUpdate
C:\Windows\Installer\{835525BE-63BD-4EC4-9425-00CEAD4849C2}\ARPPRODUCTICON.exe =>PUP.Optional.SPointer
HKLM\Software\Classes\Installer\Products\EB525538DB364CE4495200ECDA84942C =>PUP.Optional.SPointer
HKLM\Software\Classes\Installer\Features\EB525538DB364CE4495200ECDA84942C =>PUP.Optional.SPointer
C:\Windows\Installer\1e0b48.msi =>PUP.Optional.SPointer
C:\Windows\Installer\45ded.msi =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdatem =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\TAOFrame =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\TAOFrame.exe =>PUP.Optional.TencentAddressBar
HKLM64\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.Optional.MyPCBackup
HKLM64\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup
HKLM64\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASAPI32 =>PUP.Optional.MyPCBackup
HKLM64\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASMANCS =>PUP.Optional.MyPCBackup
HKLM64\SOFTWARE\Microsoft\Tracing\RegistryReviver_RASAPI32 =>PUP.Optional.RegistryReviver
HKLM64\SOFTWARE\Microsoft\Tracing\RegistryReviver_RASMANCS =>PUP.Optional.RegistryReviver
HKLM64\SOFTWARE\Microsoft\Tracing\ReimageReminder_RASAPI32 =>PUP.Optional.ReImageRepair
HKLM64\SOFTWARE\Microsoft\Tracing\ReimageReminder_RASMANCS =>PUP.Optional.ReImageRepair
HKLM64\SOFTWARE\Microsoft\Tracing\Reimage_RASAPI32 =>PUP.Optional.ReImageRepair
HKLM64\SOFTWARE\Microsoft\Tracing\Reimage_RASMANCS =>PUP.Optional.ReImageRepair
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\crossbrowse_RASAPI32 =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\crossbrowse_RASMANCS =>PUP.Optional.CrossBrowse

---\\ Récapitulatif des éléments trouvées sur votre station (55) - 0s
http://www.nicolascoolman.fr/adware-tencentaddressbar/ =>PUP.Optional.TencentAddressBar
http://www.nicolascoolman.fr/rogue-reimagerepair/ =>PUP.Optional.ReImageRepair
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowse
http://www.nicolascoolman.fr/blog =>PUP.Optional.IQIYIVideo
http://www.nicolascoolman.fr/pup-smartwebsearch/ =>PUP.Optional.SmartWebSearch
http://www.nicolascoolman.fr/pup-optional-startsearch/ =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/hijacker-browsers/ =>PUP.Optional.Browser
http://www.nicolascoolman.fr/pup-sweetim/ =>PUP.Optional.SweetIM
http://www.nicolascoolman.fr/blog =>PUP.Optional.GUPlayer
http://www.nicolascoolman.fr/blog =>PUP.Optional.BananaPhone*
http://www.nicolascoolman.fr/trojan-fuyu/ =>PUP.Optional.Fuyu
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic
http://www.nicolascoolman.fr/blog =>PUP.Optional.OurSurfing
http://www.nicolascoolman.fr/blog =>PUP.Optional.WordSurfer
http://www.nicolascoolman.fr/blog =>Toolbar.AVGSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.GamesDesktop
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/pup-mutiplug/ =>PUP.Optional.Multiplug
http://www.nicolascoolman.fr/adware-spointer/ =>PUP.Optional.SPointer
http://www.nicolascoolman.fr/blog =>Toolbar.AskBar
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/adware-mywebsearch/ =>PUP.Optional.MyWebSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.AgentODR
http://www.nicolascoolman.fr/adware-imbooster/ =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/blog =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/pup-searchprotect/ =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/pup-systweak/ =>PUP.Optional.Systweak
http://www.nicolascoolman.fr/spyware-agenceexclusive/ =>PUP.Optional.AgenceExclusive
http://www.nicolascoolman.fr/pup-wajam/ =>PUP.Optional.Wajam
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowser
http://www.nicolascoolman.fr/pup-optional-dailypcclean/ =>PUP.Optional.DailyPCClean
http://www.nicolascoolman.fr/pup-certifiedtoolbar/ =>PUP.Optional.CertifiedToolbar
http://www.nicolascoolman.fr/adware-installcore/ =>PUP.Optional.InstallCore
http://www.nicolascoolman.fr/pup-linkeysearch/ =>PUP.Optional.LinkeySearch
http://www.nicolascoolman.fr/pup-optimizerpro/ =>PUP.Optional.OptimizerPro
http://www.nicolascoolman.fr/blog =>PUP.Optional.SimplyTech
http://www.nicolascoolman.fr/blog =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/adware-tidynetwork/ =>PUP.Optional.TidyNetwork
http://www.nicolascoolman.fr/blog =>Toolbar.YahooPartner
http://www.nicolascoolman.fr/adware-pricegong/ =>PUP.Optional.PriceGong
http://www.nicolascoolman.fr/hijacker-smartbar/ =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/blog =>PUP.Optional.FriendlyError
http://www.nicolascoolman.fr/blog =>PUP.Optional.MiuiTab
http://www.nicolascoolman.fr/adware-downware/ =>PUP.Optional.Downware
http://www.nicolascoolman.fr/blog =>PUP.Optional.YouTubeAdBlock
http://www.nicolascoolman.fr/pup-paybyads/ =>PUP.Optional.PaybyAds
http://www.nicolascoolman.fr/blog =>PUP.Optional.PriceLess
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/pup-linkidoo/ =>PUP.Optional.LinkiDoo
http://www.nicolascoolman.fr/pup-mypcbackup/ =>PUP.Optional.MyPCBackup
http://www.nicolascoolman.fr/blog =>PUP.Optional.RegistryReviver
http://www.nicolascoolman.fr/pup-advancedsystemprotector/ =>PUP.Optional.AdvancedSystemProtector

~ End of the scan, 34560 items in 432 seconds (1872)(0)()

Publicité


Signaler le contenu de ce document

Publicité