Publicité
Publicité
Commentaire : besoin d'aide
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.8.23.124 Par Nicolas Coolman (2015/08/23)
~ Démarré par XVIRUS (Administrator) (2015/08/24 10:12:26)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\XVIRUS\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\XVIRUS\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)
---\\ Navigateurs Internet (3) - 0s
MFIE: Mozilla Firefox 40.0.2 (x86 fr) v40.0.2
OPIE: Opera 31.0.1889.174 v31.0.1889.174
MSIE: Internet Explorer v8.0.7601.17514
---\\ Informations sur les produits Windows (10) - 4s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Demand)
Windows Activation Technologies : OK
~ Windows Operating System - Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 4P2KH
Windows License : OK
~ Windows Remaining Initializations Number : 4
---\\ Logiciels de protection (1) - 1s
Windows Defender W7 (Deactivate)
---\\ Logiciels d'optimisation (1) - 1s
CCleaner v4.15
---\\ Surveillance de Logiciels (1) - 1s
Adobe Flash Player 10.0.42.34
---\\ Informations sur le système (7) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3984.048 MB (11% free)
~ System Restore: Activé (Enable)
~ System drive C: has 55 GB free of 199 GB
Total RAM: 3984.048 MB (8% free)
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: XVIRUS-PC
~ User Name: XVIRUS
~ Logged in as Administrator
---\\ Enumération des unités disques (4) - 1s
~ Drive C: has 55 GB free of 199 GB (System)
~ Drive D: has 0 GB free of 0 GB
~ Drive E: has 274 GB free of 410 GB
~ Drive G: has 75 GB free of 953 GB
---\\ Etat du Centre de Sécurité Windows (15) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (24) - 2s
[MD5.AC4C51EB24AA95B77F705AB159189E24] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2872320]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [129024]
[MD5.F6C5302E1F4813D552F41A0AC82455E5] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [1188864]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480]
[MD5.D31DC7A16DEA4A9BAF179F3D6FBDB38C] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [499712]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224]
[MD5.FAF015B07E3A2874A790A39B7D2C579F] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632]
[MD5.05D78AA5CB5F3F5C31160BDB955D0B7C] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1659776]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [295808]
---\\ Processus lancés (48) - 8s
[MD5.95B960980034877821E7FB5BFE25136E] - (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) -- C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413304] [PID.1316]
[MD5.5EBFF8D302047F4709F3A4F1231236E9] - (.BlueStack Systems, Inc. - BlueStacks Updater Service.) -- C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [831096] [PID.1388]
[MD5.4DE2EE2A5186D74BABC4E7F60D2AE989] - (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) -- C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [1811456] [PID.1620]
[MD5.6D9901EF86BC869D7D5AF8B2F687106A] - (.XTab system - ProtectSvc.exe.) -- C:\Program Files (x86)\MiniLite\ProtectService.exe [129688] [PID.1656] =>PUP.Optional.AgentODR
[MD5.F57A690656A8CACFABB78E30D1E71EE1] - (.Mobogenie.com - MobogenieService.exe.) -- C:\Program Files (x86)\Mobogenie3\MobogenieService.exe [127680] [PID.1780] =>PUP.Optional.Mobogenie
[MD5.446462BBA744DA60379574926FD51EAB] - (.Copyright (C) 2012 - PassThruSvr Application.) -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912] [PID.1804]
[MD5.D9EFF16FEF8167544F6459E2A90EFEAD] - (.TorchMedia Inc. - TorchCrashHandler.) -- C:\Users\XVIRUS\AppData\Local\Torch\Update\TorchCrashHandler.exe [1217032] [PID.1936] =>PUP.Optional.Torch
[MD5.4F3CD0653217C06664C71443B617863B] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [161304] [PID.2268]
[MD5.D204C6D7C66B9FA2D4C87AB750B94891] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [386584] [PID.2284]
[MD5.17D08913D321AA7D258C2C38E59A2283] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [415256] [PID.2296]
[MD5.8C61888F1581C7812B4BC221F5661EBF] - (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe [171520] [PID.2316]
[MD5.AB9990DB80EA3DAC0EAE50C906EF7ECA] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\XVIRUS\AppData\Roaming\uTorrent\uTorrent.exe [1693024] [PID.2328]
[MD5.86BCE34FE7C15230EFFDCC3E1BFFDABE] - (.Evaer Technology - Video Channel Moniter.) -- C:\Program Files (x86)\Evaer\videochannel.exe [1752576] [PID.2368]
[MD5.74283EA6E068A71C135C9CE9E79A04C3] - (.Evaer.com - Evaer Video Call Recorder for Skype.) -- C:\Program Files (x86)\Evaer\evaer.exe [4675584] [PID.2400]
[MD5.25E8FAE159E9D28B490A936FD41C53D6] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [53729824] [PID.2464]
[MD5.D3BC8027763DB4B75A7C1C8353BD0446] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3886672] [PID.2568]
[MD5.1FAA54E9FFEA6FD3E0CEAD951CDDFEF6] - (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34160] [PID.2680]
[MD5.D470EB94988531FE20A2A78766BB6858] - (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe [896632] [PID.2708]
[MD5.BD95E822E7A958BBCA842D078426A151] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.3032]
[MD5.9D12F0AC68565E97C07B75314D53F2CE] - (...) -- C:\Program Files (x86)\Mobogenie3\MoboGenieHelper.exe [105152] [PID.3592] =>PUP.Optional.Mobogenie
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4064] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.548] =>PUP.Optional.Torch
[MD5.2F353E48314786E5D99CB799FC1625F5] - (.Torch Media Inc. - Torch Update Module.) -- C:\Users\XVIRUS\AppData\Local\Torch\Update\42.0.0.9895\TorchUpdate.exe [1122816] [PID.3316] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.3100] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4088] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.968] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.3356] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.2824] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.3328] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.716] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.3664] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4008] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.3912] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4592] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.5000] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4332] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4736] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4864] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.228] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4540] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.3872] =>PUP.Optional.Torch
[MD5.84867350CFF4C8551E5F5A3D355D8CB3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\XVIRUS\Downloads\Programs\ZHPDiag3.exe [1901056] [PID.4704]
[MD5.749C9E51E6D5A5AC23D2B4B8B63CAFE9] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [377000] [PID.4416]
[MD5.E10A68BA18BA07B591C59AC4A33860FE] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [277672] [PID.3340]
[MD5.61AD62A4A403B570D16473715A2989EF] - (.Adobe Systems, Inc. - Adobe Flash Player 18.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe [3423944] [PID.3632]
[MD5.61AD62A4A403B570D16473715A2989EF] - (.Adobe Systems, Inc. - Adobe Flash Player 18.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe [3423944] [PID.4564]
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.5880] =>PUP.Optional.Torch
[MD5.3D1409C825B40088003186FFC788E974] - (.Nicolas Coolman - ZHPFix.) -- C:\Program Files (x86)\ZHPFix\ZHPFix.exe [3060224] [PID.3948]
---\\ Google Chrome, Démarrage,Recherche,Extensions (20) - 2s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://r15---sn-hgn7zn76.gvt1.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://redirector.gvt1.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.facebook.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://accounts.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients2.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fbstatic-a.akamaihd.net/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://localhost:26143/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.dz/
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [jeaohhlajejodfjadcponpnjgkiikocn] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [lifbcibllhkdhoafpjfnlhfpfgnpldfl] Skype Click to Call
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (6) - 2s
M1 - SPR:Search Page Redirection - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT: (.mozilla.org - Default Plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npnul32.dll
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
---\\ Opera, Démarrage,Recherche,Plugins (1) - 0s
B2 - EXT: [{background:{scripts:[background.js]}content_scrip] C:\Users\XVIRUS\AppData\Roaming\Opera Software\Opera Stable\Extensions\ailacajdbblbccppaomkndepicioaehg
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (8) - 0s
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer,Proxy Management (6) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:9666 =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 1s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)
---\\ Etude du fichier hosts (6) - 0s
127
127
~ Nombre lignes détournées 127
30 (Hosts file redirected)
127
~ Nombre lignes détournées 127
30 (Hosts file redirected)
~ Nombre lignes détournées 127
21 (Hosts file redirected)
---\\ Browser Helper Object de navigateur (BHO) (3) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
---\\ Applications lancées au démarrage du système (32) - 1s
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\XVIRUS\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [AdobeBridge] (Orphean)
O4 - HKCU\..\Run: [avichannel] . (.Evaer Technology - Video Channel Moniter.) -- C:\Program Files (x86)\Evaer\videochannel.exe
O4 - HKCU\..\Run: [Evaer] . (.Evaer.com - Evaer Video Call Recorder for Skype.) -- C:\Program Files (x86)\Evaer\evaer.exe
O4 - HKCU\..\Run: [SSS14_Agent] C:\Program Files (x86)\Steganos Privacy Suite 14\Suite.exe (.not file.)
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKCU\..\Run: [IpShark] C:\Program Files (x86)\IpShark\IpShark.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [KeNotify] . (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [BlueStacks Agent] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Wow6432Node\Run: [IpShark] C:\Program Files (x86)\IpShark\IpShark.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\XVIRUS\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [AdobeBridge] (Orphean)
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [avichannel] . (.Evaer Technology - Video Channel Moniter.) -- C:\Program Files (x86)\Evaer\videochannel.exe
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [Evaer] . (.Evaer.com - Evaer Video Call Recorder for Skype.) -- C:\Program Files (x86)\Evaer\evaer.exe
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [SSS14_Agent] C:\Program Files (x86)\Steganos Privacy Suite 14\Suite.exe (.not file.)
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [IpShark] C:\Program Files (x86)\IpShark\IpShark.exe (.not file.)
---\\ Raccourcis Global Startup (14) - 10s
O4 - GS\Desktop [Administrateur]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\Quicklaunch [Administrateur]: Mobogenie3.lnk . (.Mobogenie.com - Mobogenie.exe.) C:\Program Files (x86)\Mobogenie3\Mobogenie.exe =>PUP.Optional.Mobogenie
O4 - GS\Quicklaunch [Administrateur]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\TaskBar [Administrateur]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\Desktop [Invité]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\Quicklaunch [Invité]: Mobogenie3.lnk . (.Mobogenie.com - Mobogenie.exe.) C:\Program Files (x86)\Mobogenie3\Mobogenie.exe =>PUP.Optional.Mobogenie
O4 - GS\Quicklaunch [Invité]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\TaskBar [Invité]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\Desktop [XVIRUS]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\Quicklaunch [XVIRUS]: Mobogenie3.lnk . (.Mobogenie.com - Mobogenie.exe.) C:\Program Files (x86)\Mobogenie3\Mobogenie.exe =>PUP.Optional.Mobogenie
O4 - GS\Quicklaunch [XVIRUS]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\TaskBar [XVIRUS]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\CommonDesktop [Public]: Mobogenie3.lnk . (.Mobogenie.com - Mobogenie.exe.) C:\Program Files (x86)\Mobogenie3\Mobogenie.exe =>PUP.Optional.Mobogenie
O4 - GS\Programs [Public]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
---\\ Protocole additionnel (24) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: skypec2c [64Bits] - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
---\\ Liste des services NT non Microsoft et non désactivés (9) - 1s
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc. - BlueStacks Updater Service.) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: IHProtect Service (IHProtect Service) . (.XTab system - ProtectSvc.exe.) - C:\Program Files (x86)\MiniLite\ProtectService.exe =>PUP.Optional.AgentODR
O23 - Service: MobogenieService (MobogenieService) . (.Mobogenie.com - MobogenieService.exe.) - C:\Program Files (x86)\Mobogenie3\MobogenieService.exe =>PUP.Optional.Mobogenie
O23 - Service: Internet Pass-Through Service (PassThru Service) . (.Copyright (C) 2012 - PassThruSvr Application.) - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Torch Crash Handler (TorchCrashHandler) . (.TorchMedia Inc. - TorchCrashHandler.) - C:\Users\XVIRUS\AppData\Local\Torch\Update\TorchCrashHandler.exe =>PUP.Optional.Torch
---\\ Tâches planifiées en automatique (23) - 6s
[MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000]
[MD5.11543DEB4316B9DBB42999C83495838F] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4624152]
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848]
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848]
[MD5.044C9C39D1164EB8CB8FA8DFBA6E063C] [APT] [Opera N Saturday] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [931960]
[MD5.044C9C39D1164EB8CB8FA8DFBA6E063C] [APT] [Opera N Sunday] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [931960]
[MD5.044C9C39D1164EB8CB8FA8DFBA6E063C] [APT] [Opera scheduled Autoupdate 1440089374] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [931960]
[MD5.92B2CC464136BA72FF7E57DF98993ACA] [APT] [{97D78635-24D4-472F-815A-B8B9197BEAB6}] (.Google Inc..) -- c:\program files (x86)\Google\Chrome\application\chrome.exe [813896]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] =>.Adobe Systems Incorporated
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070] =>.Google Inc.
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3940] =>.Adobe Systems Incorporated
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2774] =>.Piriform Ltd
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3814] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4066] =>.Google Inc.
O39 - APT: Opera N Saturday - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera N Saturday [3258] =>.Opera Software
O39 - APT: Opera N Sunday - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera N Sunday [3258] =>.Opera Software
O39 - APT: Opera scheduled Autoupdate 1440089374 - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1440089374 [3850] =>.Opera Software
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{0E431B7B-BAC1-4D8F-8C0A-C33AC980D799} [3226]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{71CC9C18-EE8F-40F8-8949-1D59BF604CCA} [3234]
O39 - APT: {97D78635-24D4-472F-815A-B8B9197BEAB6} - (.Google Inc..) -- C:\Windows\System32\Tasks\{97D78635-24D4-472F-815A-B8B9197BEAB6} [3162] =>.Google Inc.
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{AC2A61B4-A8AD-4987-B664-263CBD9F6DDF} [3242]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{D9DA1F41-5BA6-498F-A176-5867913834DD} [3312]
---\\ Logiciels installés (52) - 5s
O42 - Logiciel: Broadcom 802.11 Network Adapter - (.Broadcom Corporation.) [HKLM][64Bits] -- Broadcom 802.11 Network Adapter
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: x64 Components v2.2.0 - (.Shark007.) [HKLM][64Bits] -- x64 Components_is1
O42 - Logiciel: 7-Zip 4.65 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0465-000001000000}
O42 - Logiciel: Java(TM) 6 Update 16 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416016FF}
O42 - Logiciel: MPC-HC 1.7.9 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1
O42 - Logiciel: Revo Uninstaller Pro 3.1.4 - (.VS Revo Group, Ltd..) [HKLM][64Bits] -- {67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1
O42 - Logiciel: Paint.NET v3.5.5 - (.dotPDN LLC.) [HKLM][64Bits] -- {F0E2B312-D7FD-4349-A9B6-E90B36DB1BD1}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks App Player
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser
O42 - Logiciel: Evaer Video Recorder for Skype 1.3.10.21 - (.Evaer Technology.) [HKLM][64Bits] -- Evaer Video Recorder for Skype
O42 - Logiciel: Foxit Reader 5.0 - (.Foxit Corporation.) [HKLM][64Bits] -- Foxit Reader_is1
O42 - Logiciel: Utility Common Driver - (.TOSHIBA.) [HKLM][64Bits] -- InstallShield_{12688FD7-CB92-4A5B-BEE4-5C8E0574434F}
O42 - Logiciel: TOSHIBA Flash Cards Support Utility - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E}
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager
O42 - Logiciel: Mobogenie3 - (.Mobogenie.com.) [HKLM][64Bits] -- Mobogenie3 =>PUP.Optional.Mobogenie
O42 - Logiciel: Mozilla Firefox 40.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 40.0.2 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Notepad++ - (...) [HKLM][64Bits] -- Notepad++
O42 - Logiciel: Opera Stable 31.0.1889.174 - (.Opera Software.) [HKLM][64Bits] -- Opera 31.0.1889.174
O42 - Logiciel: Xvid MPEG-4 Video Codec - (.Xvid Development Team.) [HKLM][64Bits] -- xvid
O42 - Logiciel: IPTInstaller - (.HTC.) [HKLM][64Bits] -- {08208143-777D-4A06-BB54-71BF0AD1BB70}
O42 - Logiciel: Utility Common Driver - (.TOSHIBA.) [HKLM][64Bits] -- {12688FD7-CB92-4A5B-BEE4-5C8E0574434F}
O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A}
O42 - Logiciel: Adobe Flash Player 10.0.42.34 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {24762012-C6C8-4AAD-A02D-71A009FA1683}
O42 - Logiciel: Java(TM) 6 Update 18 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216018FF}
O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0}
O42 - Logiciel: Complément Office 2007 - Microsoft Enregistrer en tant que PDF ou XPS (Beta - (.Microsoft Corporation.) [HKLM][64Bits] -- {30120000-00B2-040C-0000-0000000FF1CE}
O42 - Logiciel: BlueStacks Notification Center - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- {3792811C-832F-4392-B44A-24092901EDDC}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: TOSHIBA Flash Cards Support Utility - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- {620BBA5E-F848-4D56-8BDA-584E44584C5E}
O42 - Logiciel: Skype™ 7.8 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1}
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}
O42 - Logiciel: Google Chrome - (.Google, Inc..) [HKLM][64Bits] -- {CA128A50-DB43-33A0-A8F0-E9EBA3ACA8A4}
O42 - Logiciel: WinZip 15.0 - (.WinZip Computing, S.L. .) [HKLM][64Bits] -- {CD95F661-A5C4-44F5-A6AA-ECDD91C240BE}
O42 - Logiciel: Adobe Creative Suite 6 Master Collection - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FE23D063-934D-4829-A0D8-00634CE79B4A}
O42 - Logiciel: Torch - (.Torch.) [HKCU][64Bits] -- Torch =>PUP.Optional.Torch
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPFix_is1
---\\ HKCU & HKLM Software Keys (80) - 5s
HKLM\SOFTWARE\Wow6432Node\ACLEngine
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\BcmSetup
HKLM\SOFTWARE\Wow6432Node\BlueStacks
HKLM\SOFTWARE\Wow6432Node\COMPAL
HKLM\SOFTWARE\Wow6432Node\Foxit Software
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HTC
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Imagenomic
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Mobogenie3 =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nico Mak Computing
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Rocket Division Software
HKLM\SOFTWARE\Wow6432Node\SDREngine
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Sonic
HKLM\SOFTWARE\Wow6432Node\SRDEngine
HKLM\SOFTWARE\Wow6432Node\Steganos
HKLM\SOFTWARE\Wow6432Node\Torch =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\TOSHIBA
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AnchorFree
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Bomers
HKCU\SOFTWARE\Coinis
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\Evaer
HKCU\SOFTWARE\ForceInterfaceCOM
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\hola
HKCU\SOFTWARE\ICSW1.14 =>PUP.Optional.InstallCore
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\LockHunter
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mirage
HKCU\SOFTWARE\Mobogenie =>PUP.Optional.Mobogenie
HKCU\SOFTWARE\Mobogenie3 =>PUP.Optional.Mobogenie
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nico Mak Computing
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\ProductSetup =>PUP.Optional.InstallCore
HKCU\SOFTWARE\Recovery Software
HKCU\SOFTWARE\SeriousBit
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Steganos
HKCU\SOFTWARE\Torch =>PUP.Optional.Torch
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\VS Revo Group
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\WinRecovery
HKCU\SOFTWARE\WinZip Computing
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
---\\ Contenu des dossiers Programmes (176) - 9s
O43 - CFD: 2015/07/19 22:31:03 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/08/23 11:14:15 - [] D -- C:\Program Files (x86)\AIMP3
O43 - CFD: 2015/08/22 01:47:15 - [] D -- C:\Program Files (x86)\BlueStacks
O43 - CFD: 2015/08/23 11:16:00 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/07/22 03:16:26 - [] D -- C:\Program Files (x86)\Evaer
O43 - CFD: 2015/07/19 21:49:13 - [] D -- C:\Program Files (x86)\Foxit Software
O43 - CFD: 2015/08/02 14:56:33 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/08/19 19:33:04 - [] D -- C:\Program Files (x86)\HTC
O43 - CFD: 2015/08/02 14:32:02 - [0] D -- C:\Program Files (x86)\Imagenomic
O43 - CFD: 2015/07/19 21:01:03 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/07/19 20:57:51 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/08/23 11:43:03 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 2015/07/27 13:17:23 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/07/19 20:10:39 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2015/07/23 16:57:07 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/07/19 20:11:01 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2015/07/23 17:10:29 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 2015/07/23 16:51:29 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 2015/07/23 17:10:52 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2015/07/23 16:55:44 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/08/20 18:46:37 - [] D -- C:\Program Files (x86)\MiniLite =>PUP.Optional.AgentODR
O43 - CFD: 2015/08/21 23:37:31 - [] D -- C:\Program Files (x86)\Mobogenie3 =>PUP.Optional.Mobogenie
O43 - CFD: 2015/08/23 18:02:19 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/08/23 18:02:26 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2015/07/23 17:10:45 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/07/23 17:22:55 - [] D -- C:\Program Files (x86)\MSECache
O43 - CFD: 2015/07/19 22:17:59 - [] D -- C:\Program Files (x86)\My Company Name
O43 - CFD: 2015/07/19 20:08:57 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 2015/08/23 18:49:55 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 2015/07/19 21:04:11 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/08/02 13:53:39 - [] D -- C:\Program Files (x86)\SafeIP
O43 - CFD: 2015/08/21 19:39:54 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2015/08/02 13:22:00 - [] D -- C:\Program Files (x86)\Steganos Internet Anonym VPN
O43 - CFD: 2015/07/19 21:00:50 - [] D -- C:\Program Files (x86)\TOSHIBA
O43 - CFD: 2009/07/14 06:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2009/07/14 13:02:44 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/07/27 13:17:23 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/07/27 13:17:23 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/07/27 13:17:23 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/07/27 13:17:23 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2015/07/27 13:17:24 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015/07/21 15:54:11 - [] D -- C:\Program Files (x86)\WinZip
O43 - CFD: 2015/07/19 20:11:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2015/07/19 20:02:30 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/27 13:24:39 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/07/19 22:32:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6
O43 - CFD: 2015/08/20 19:31:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
O43 - CFD: 2015/07/19 22:06:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/07/19 21:49:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader 5.0
O43 - CFD: 2009/07/14 13:22:21 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/08/02 14:56:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/08/02 14:32:02 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Imagenomic
O43 - CFD: 2015/08/23 11:43:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2009/07/14 06:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/23 17:11:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2015/07/19 20:11:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/08/19 19:43:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobogenie3 =>PUP.Optional.Mobogenie
O43 - CFD: 2015/07/19 20:09:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox
O43 - CFD: 2015/08/10 15:22:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
O43 - CFD: 2015/07/19 20:08:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2015/07/23 18:52:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
O43 - CFD: 2015/08/24 09:39:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
O43 - CFD: 2015/07/19 23:14:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shark007 Codecs
O43 - CFD: 2015/08/21 19:39:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/08/24 09:13:56 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/08/02 13:10:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steganos Internet Anonym VPN
O43 - CFD: 2009/07/14 13:21:47 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/07/19 23:08:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2010/04/22 23:53:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows GT
O43 - CFD: 2015/07/21 15:54:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
O43 - CFD: 2015/07/20 18:20:32 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2015/07/19 22:25:51 - [0] D -- C:\ProgramData\ALM
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/08/20 19:31:16 - [] D -- C:\ProgramData\BlueStacks
O43 - CFD: 2015/08/22 01:55:25 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 2015/07/19 20:06:26 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/07/19 20:06:26 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2015/08/19 19:32:32 - [] D -- C:\ProgramData\HTC
O43 - CFD: 2015/08/02 04:16:54 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 2015/07/19 20:06:26 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/07/23 16:55:44 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/07/23 17:11:58 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2015/07/19 20:06:26 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/08/01 16:56:18 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/07/30 03:25:04 - [] D -- C:\ProgramData\SeriousBit
O43 - CFD: 2015/07/19 23:14:30 - [] D -- C:\ProgramData\Shark007
O43 - CFD: 2015/08/21 19:40:01 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/08/24 09:19:21 - [] D -- C:\ProgramData\TorchCrashHandler =>PUP.Optional.Torch
O43 - CFD: 2015/08/24 09:20:18 - [] D -- C:\ProgramData\update
O43 - CFD: 2015/08/20 18:46:38 - [] D -- C:\ProgramData\UWinManProU
O43 - CFD: 2015/07/19 21:01:02 - [] D -- C:\ProgramData\vista32
O43 - CFD: 2015/07/19 21:01:02 - [] D -- C:\ProgramData\vista64
O43 - CFD: 2015/08/24 09:39:26 - [] D -- C:\ProgramData\VS Revo Group
O43 - CFD: 2015/07/19 21:09:15 - [] D -- C:\ProgramData\win7_32
O43 - CFD: 2015/07/19 21:09:15 - [] D -- C:\ProgramData\win7_64
O43 - CFD: 2015/07/21 15:55:25 - [] D -- C:\ProgramData\WinZip
O43 - CFD: 2015/07/19 21:01:02 - [] D -- C:\ProgramData\xp
O43 - CFD: 2015/07/19 22:30:29 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2015/07/19 22:13:27 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2015/07/23 17:10:29 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2015/07/23 17:10:46 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2015/07/19 22:18:07 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/08/21 19:39:54 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2015/07/19 22:18:07 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2015/08/02 12:52:01 - [] D -- C:\Program Files (x86)\Common Files\Steganos
O43 - CFD: 2015/07/23 17:04:21 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/07/20 14:43:27 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Adobe
O43 - CFD: 2015/08/24 09:17:16 - [] D -- C:\Users\XVIRUS\AppData\Roaming\DMCache
O43 - CFD: 2015/08/01 04:28:11 - [] D -- C:\Users\XVIRUS\AppData\Roaming\dvdcss
O43 - CFD: 2015/07/22 23:20:46 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Evaer
O43 - CFD: 2015/07/29 16:10:24 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Foxit Software
O43 - CFD: 2015/07/19 20:54:07 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Identities
O43 - CFD: 2015/08/23 13:40:09 - [] D -- C:\Users\XVIRUS\AppData\Roaming\IDM
O43 - CFD: 2015/07/21 00:47:48 - [] D -- C:\Users\XVIRUS\AppData\Roaming\LockHunter
O43 - CFD: 2015/07/19 21:54:07 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Macromedia
O43 - CFD: 2009/07/14 13:21:47 - [0] D -- C:\Users\XVIRUS\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/08/23 00:42:44 - [] SD -- C:\Users\XVIRUS\AppData\Roaming\Microsoft
O43 - CFD: 2015/08/20 00:55:21 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Mobogenie =>PUP.Optional.Mobogenie
O43 - CFD: 2015/07/24 00:08:11 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Mozilla
O43 - CFD: 2015/08/10 15:25:16 - [] D -- C:\Users\XVIRUS\AppData\Roaming\MPC-HC
O43 - CFD: 2015/07/19 21:49:54 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Notepad++
O43 - CFD: 2015/08/20 18:53:37 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Opera Software
O43 - CFD: 2015/07/19 23:14:30 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Shark007
O43 - CFD: 2015/08/20 18:49:46 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Shortcut
O43 - CFD: 2015/08/24 09:40:46 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Skype
O43 - CFD: 2015/07/20 14:43:27 - [] D -- C:\Users\XVIRUS\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 2015/08/02 14:04:51 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Steganos
O43 - CFD: 2015/08/24 09:38:57 - [] D -- C:\Users\XVIRUS\AppData\Roaming\uTorrent
O43 - CFD: 2015/08/23 03:58:22 - [] D -- C:\Users\XVIRUS\AppData\Roaming\vlc
O43 - CFD: 2015/07/19 20:57:33 - [] D -- C:\Users\XVIRUS\AppData\Roaming\WinBatch
O43 - CFD: 2015/08/24 09:41:52 - [] D -- C:\Users\XVIRUS\AppData\Roaming\ZHP
O43 - CFD: 2015/08/23 03:26:26 - [] D -- C:\Users\XVIRUS\AppData\Local\Adobe
O43 - CFD: 2015/07/19 20:53:41 - [0] SHD -- C:\Users\XVIRUS\AppData\Local\Application Data
O43 - CFD: 2015/08/20 19:30:09 - [] D -- C:\Users\XVIRUS\AppData\Local\Bluestacks
O43 - CFD: 2015/07/22 04:13:32 - [] D -- C:\Users\XVIRUS\AppData\Local\CrashRpt =>.Legitimate.CrashReports
O43 - CFD: 2015/08/23 13:06:59 - [] D -- C:\Users\XVIRUS\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/08/21 20:06:28 - [] D -- C:\Users\XVIRUS\AppData\Local\Google
O43 - CFD: 2015/07/19 20:53:41 - [0] SHD -- C:\Users\XVIRUS\AppData\Local\Historique
O43 - CFD: 2015/07/30 03:33:54 - [] D -- C:\Users\XVIRUS\AppData\Local\IsolatedStorage
O43 - CFD: 2015/08/01 17:23:11 - [] D -- C:\Users\XVIRUS\AppData\Local\Macromedia
O43 - CFD: 2015/07/27 21:12:45 - [] D -- C:\Users\XVIRUS\AppData\Local\Microsoft
O43 - CFD: 2015/07/23 16:50:26 - [0] D -- C:\Users\XVIRUS\AppData\Local\Microsoft Help
O43 - CFD: 2015/08/19 20:57:37 - [] D -- C:\Users\XVIRUS\AppData\Local\Mobogenie =>PUP.Optional.Mobogenie
O43 - CFD: 2015/08/01 17:07:28 - [] D -- C:\Users\XVIRUS\AppData\Local\Mozilla
O43 - CFD: 2015/08/20 18:53:37 - [] D -- C:\Users\XVIRUS\AppData\Local\Opera Software
O43 - CFD: 2015/07/23 18:39:33 - [] D -- C:\Users\XVIRUS\AppData\Local\Programs
O43 - CFD: 2015/07/19 22:59:44 - [] D -- C:\Users\XVIRUS\AppData\Local\Skype
O43 - CFD: 2015/08/24 09:42:10 - [] D -- C:\Users\XVIRUS\AppData\Local\Temp
O43 - CFD: 2015/07/19 20:53:41 - [0] SHD -- C:\Users\XVIRUS\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/08/04 05:27:11 - [] D -- C:\Users\XVIRUS\AppData\Local\Torch =>PUP.Optional.Torch
O43 - CFD: 2015/08/24 09:39:31 - [] D -- C:\Users\XVIRUS\AppData\Local\VS Revo Group
O43 - CFD: 2015/07/21 15:54:41 - [] D -- C:\Users\XVIRUS\AppData\Local\WinZip
O43 - CFD: 2009/07/14 06:54:32 - [] RD -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/27 16:25:01 - [] RD -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/07/22 03:16:26 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Evaer
O43 - CFD: 2015/08/23 11:43:00 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2009/07/14 06:49:38 - [] RD -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/30 03:37:32 - [] RD -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/08/03 15:10:26 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch =>PUP.Optional.Torch
O43 - CFD: 2015/07/19 21:01:03 - [] D -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2009/07/14 06:57:06 - [0] D -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2015/08/24 10:01:14 - [] D -- C:\Program Files (x86)\ZHPFix
O43 - CFD: 2015/08/24 09:58:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
O43 - CFD: 2015/08/24 10:00:55 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Skype
O43 - CFD: 2015/08/24 10:12:14 - [] D -- C:\Users\XVIRUS\AppData\Roaming\uTorrent
O43 - CFD: 2015/08/24 10:12:47 - [] D -- C:\Users\XVIRUS\AppData\Roaming\ZHP
O43 - CFD: 2015/08/24 10:13:16 - [] D -- C:\Users\XVIRUS\AppData\Local\Temp
---\\ Liste des pilotes du système (61) - 8s
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864]
O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440]
O58 - SDL:2010/11/20 15:32:46 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904]
O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128]
O58 - SDL:2010/11/20 15:32:47 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008]
O58 - SDL:2009/11/02 12:16:50 A . (.HTC, Corporation - ADB Interface.) -- C:\Windows\System32\drivers\ANDROIDUSB.sys [33736]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856]
O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848]
O58 - SDL:2015/07/19 21:05:03 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL664.SYS [3058168]
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432]
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704]
O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480]
O58 - SDL:2011/10/17 03:00:00 N . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\Windows\System32\drivers\cdr4_xp.sys [10224]
O58 - SDL:2011/10/17 03:00:00 N . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\Windows\System32\drivers\cdralw2k.sys [10224]
O58 - SDL:2015/07/19 21:00:28 A . (.Compal Electronics, INC. - CeKbFilter.) -- C:\Windows\System32\drivers\CeKbFilter.sys [20592]
O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488]
O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496]
O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016]
O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232]
O58 - SDL:2010/11/20 15:33:35 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720]
O58 - SDL:2013/10/17 15:27:02 A . (.Windows (R) Win 7 DDK provider - RawPacket NDIS Protocol Driver.) -- C:\Windows\System32\drivers\htcnprot.sys [36928]
O58 - SDL:2010/03/08 22:08:36 A . (.QUALCOMM Incorporated - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\HtcVComV64.sys [121800]
O58 - SDL:2010/11/20 15:33:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496]
O58 - SDL:2014/11/29 02:37:06 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [180648]
O58 - SDL:2010/07/29 05:10:42 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [10610400]
O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112]
O58 - SDL:2010/02/27 07:32:14 A . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\System32\drivers\Impcd.sys [158976]
O58 - SDL:2010/03/22 10:55:20 A . (.COMPAL ELECTRONIC INC. - LPCFilter.) -- C:\Windows\System32\drivers\LPCFilter.sys [46192]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736]
O58 - SDL:2015/06/30 09:28:28 A . (.SeriousBit - nbdrv helper driver.) -- C:\Windows\System32\drivers\nbdrv.sys [40976]
O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264]
O58 - SDL:2010/11/20 15:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352]
O58 - SDL:2010/11/20 15:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272]
O58 - SDL:2011/11/03 03:01:00 N . (.Rovi Corporation - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\System32\drivers\PxHlpa64.sys [56208]
O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816]
O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592]
O58 - SDL:2009/12/30 11:21:26 A . (.VS Revo Group - Revo Uninstaller Minifilter.) -- C:\Windows\System32\drivers\revoflt.sys [31800]
O58 - SDL:2010/09/24 15:11:18 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [349800]
O58 - SDL:2010/01/07 09:05:46 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\drivers\RtsUStor.sys [232992]
O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584]
O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464]
O58 - SDL:2015/07/19 20:11:34 A . (...) -- C:\Windows\System32\drivers\sptd.sys [828912]
O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656]
O58 - SDL:2013/08/22 14:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\tap0901.sys [40664]
O58 - SDL:2015/06/04 01:04:50 A . (.Anchorfree Inc. - Anchorfree HSS VPN Adapter.) -- C:\Windows\System32\drivers\taphss6.sys [42088]
O58 - SDL:2007/11/09 05:00:30 A . (.TOSHIBA Corporation - TOSHIBA ACPI-Based Value Added Logical and.) -- C:\Windows\System32\drivers\TVALZ_O.SYS [26968]
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488]
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872]
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (14) - 21s
O61 - LFC: 2015/08/20 19:29:52 A . (.BlueStack Systems Inc..) -- C:\Users\XVIRUS\Downloads\BlueStacks-ThinInstaller.exe [14246072]
O61 - LFC: 2015/08/20 19:10:18 RA . (..) -- C:\Users\XVIRUS\Downloads\BlueStacksAppPlayer_0.9.30.4239_by_AJacobs_Rooted_BSEasy.exe [265996156]
O61 - LFC: 2015/08/23 11:04:10 A . (..) -- C:\Users\XVIRUS\Downloads\FaceHacker Telecharger GRATUITEMENT Sans Code 1 .exe [187449344]
O61 - LFC: 2015/08/20 19:42:56 A . (.Windroy, Inc..) -- C:\Users\XVIRUS\Downloads\windroy_20140113.exe [83252212]
O61 - LFC: 2015/08/23 18:01:48 A . (..) -- C:\Users\XVIRUS\Downloads\Programs\Firefox Setup 40.0.2.exe [42088312]
O61 - LFC: 2015/08/19 19:41:50 A . (.Copyright (c) 2014 Gamease Age Digital Technology Co..) -- C:\Users\XVIRUS\Downloads\Programs\Mobogenie_Setup_3.3.7_10002.exe [36250840] =>PUP.Optional.Mobogenie
O61 - LFC: 2015/08/20 16:42:34 N . (.Software Program.) -- C:\Users\XVIRUS\Downloads\installer_whatsapp_for_pc_2_11_506_French\installer_whatsapp_for_pc_2_11_506_French\installer_whatsapp_for_pc_2_11_506_French.exe [909928]
O61 - LFC: 2015/08/23 00:21:58 A . (..) -- C:\Users\XVIRUS\Downloads\Compressed\FaceHacker Telecharger GRATUIT Downloader__3687_i1595211823.exe\FaceHacker Telecharger GRATUIT Downloader__3687_i1595211823.exe [761360]
O61 - LFC: 2015/08/20 19:10:18 A . (..) -- C:\Users\XVIRUS\Downloads\BlueStacksAppPlayer_0.9.30.4239_by_AJacobs_Rooted_BSEasy\$PLUGINSDIR\$PLUGINSDIR\NSISdl.dll [14848]
O61 - LFC: 2015/08/20 19:10:18 A . (..) -- C:\Users\XVIRUS\Downloads\BlueStacksAppPlayer_0.9.30.4239_by_AJacobs_Rooted_BSEasy\$PLUGINSDIR\$PLUGINSDIR\System.dll [11264]
O61 - LFC: 2015/08/23 00:44:34 N . (.Software Generic.) -- C:\Users\XVIRUS\Downloads\adobe_flash_player\adobe_flash_player\adobe_flash_player.exe [861592]
O61 - LFC: 2015/08/23 13:00:56 A . (..) -- C:\Users\XVIRUS\AppData\Local\Torch\User Data\ev_hashes_whitelist.bin [1113849] =>PUP.Optional.Torch
O61 - LFC: 2015/08/23 12:38:52 A . (..) -- C:\Users\XVIRUS\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2015/08/18 07:23:54 A . (.Google Inc..) -- C:\Users\XVIRUS\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll [189256]
---\\ Associations Shell Spawning (11) - 1s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
---\\ Menu de démarrage Internet (24) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Internet Explorer\iexplore.ex http://www.istartsurf.com/ =>PUP.Optional.IsStart
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch*
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch*
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
---\\ Recherche d'infection sur les navigateurs (2) - 3s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {471EBB6C-6DAD-47E6-AEE4-820C3EFFC804} [DefaultScope] - (Google) - http://www.google.com/
---\\ Enumère les fichiers Crack & Keygen (16) - 42s
O82 - LFC: 2014/09/25 00:12:34 A . (...) -- C:\Users\XVIRUS\Downloads\EaseUS Data Recovery Wizard 8.5\EaseUS Data Recovery Wizard 8.5\Keygen.exe [97280] =>.Crack,Keygen
O82 - LFC: 2015/08/10 21:39:21 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Prophet.V.VSTi.RTAS.v2.0.Incl.Keygen-AiR\arturia_prophetv_v2.x_keygen.exe [7548928] =>.Crack,Keygen
O82 - LFC: 2015/08/13 16:12:34 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Prophet.V.VSTi.RTAS.v2.0.Incl.Keygen-AiR\Prophet_V_2_0_setup.exe [52823459] =>.Crack,Keygen
O82 - LFC: 2015/08/13 16:12:34 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Moog.Modular.V.VSTi.RTAS.v2.5.Incl.Keygen-AiR\arturia_moog_modularv_v2.x_keyen.exe [7515648] =>.Crack,Keygen
O82 - LFC: 2015/08/11 19:47:42 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Moog.Modular.V.VSTi.RTAS.v2.5.Incl.Keygen-AiR\Moog_Modular_V_2_5_setup.exe [49779922] =>.Crack,Keygen
O82 - LFC: 2015/08/11 00:57:26 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Minimoog.V.VSTi.RTAS.v2.0.1.Incl.Keygen-AiR\arturia_minimoogv_v2.x_keygen.exe [7471104] =>.Crack,Keygen
O82 - LFC: 2015/08/11 19:47:42 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Minimoog.V.VSTi.RTAS.v2.0.1.Incl.Keygen-AiR\eLicenserControlSetup.exe [15674808] =>.Crack,Keygen
O82 - LFC: 2015/08/11 00:57:26 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Jupiter8.V.VSTi.RTAS.v2.0.Incl.Keygen-AiR\arturia_jupiter8v_v2.x_keygen.exe [7161344] =>.Crack,Keygen
O82 - LFC: 2015/08/13 16:12:34 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Jupiter8.V.VSTi.RTAS.v2.0.Incl.Keygen-AiR\Jupiter-8V_2_0_setup.exe [66609032] =>.Crack,Keygen
O82 - LFC: 2015/08/11 19:47:42 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Brass.VSTi.RTAS.v2.0.5.Incl.Keygen-AiR\arturia_brass_v2.x_keygen.exe [7529984] =>.Crack,Keygen
O82 - LFC: 2015/08/11 19:47:42 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Brass.VSTi.RTAS.v2.0.5.Incl.Keygen-AiR\Brass_2_0_5_setup.exe [111500730] =>.Crack,Keygen
O82 - LFC: 2015/08/11 19:47:42 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Arp2600.V.VSTi.RTAS.v2.0.Incl.Keygen-AiR\ARP2600_V_2.0_Setup.exe [51983377] =>.Crack,Keygen
O82 - LFC: 2015/08/10 22:55:50 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Arp2600.V.VSTi.RTAS.v2.0.Incl.Keygen-AiR\arturia_arp2600v_v2.x_keygen.exe [7603200] =>.Crack,Keygen
O82 - LFC: 2015/08/11 19:07:36 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Analog.Factory.VSTi.RTAS.v2.5\arturia_analog_factory_v2.x_keygen.exe [7493120] =>.Crack,Keygen
O82 - LFC: 2015/08/11 01:02:26 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia CS80 V VSTi RTAS v2.0.Incl.Keygen-AiR\arturia_cs80v_v2.x_keygen.exe [7570432] =>.Crack,Keygen
O82 - LFC: 2015/08/11 00:57:26 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia CS80 V VSTi RTAS v2.0.Incl.Keygen-AiR\cs80v_2_0_setup.exe [49448395] =>.Crack,Keygen
---\\ Enumère les services démarrés par Svchost (33) - 2s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2477536]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136192]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536]
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (10) - 15s
SS - Demand [2015/06/16 22:33:14] [ 433784] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Service.exe
SR - Auto [2015/06/16 22:33:36] [ 413304] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
SR - Auto [2015/07/21 20:23:32] [ 831096] BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
SS - Auto [2015/08/02 14:56:02] [ 107848] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2015/08/02 14:56:02] [ 107848] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - Auto [2010/08/27 17:20:14] [ 1811456] IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
SR - Auto [2015/08/20 03:51:36] [ 129688] IHProtect Service (IHProtect Service) . (.XTab system.) - C:\Program Files (x86)\MiniLite\ProtectService.exe =>PUP.Optional.AgentODR
SR - Auto [2015/05/28 04:20:02] [ 127680] MobogenieService (MobogenieService) . (.Mobogenie.com.) - C:\Program Files (x86)\Mobogenie3\MobogenieService.exe =>PUP.Optional.Mobogenie
SR - Auto [2013/10/17 15:27:02] [ 166912] Internet Pass-Through Service (PassThru Service) . (.Copyright (C) 2012.) - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
SR - Auto [2015/07/16 10:13:40] [ 1217032] Torch Crash Handler (TorchCrashHandler) . (.TorchMedia Inc..) - C:\Users\XVIRUS\AppData\Local\Torch\Update\TorchCrashHandler.exe =>PUP.Optional.Torch
---\\ Recherche de clés de registre Tracing (16) - 3s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\4516_cor_istartsurf_RASAPI32 =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\4516_cor_istartsurf_RASMANCS =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MobogenieService_RASAPI32 =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MobogenieService_RASMANCS =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Mobogenie_Setup_3_RASAPI32 =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Mobogenie_Setup_3_RASMANCS =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup-r9-n-bc_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup-r9-n-bc_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetupFull-r28-n-bc_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetupFull-r28-n-bc_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_33-0-06969_fr_418134_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_33-0-06969_fr_418134_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_RASMANCS =>PUP.Optional.Torch
---\\ Scan Additionnel (47) - 0s
C:\Program Files (x86)\MiniLite\ProtectService.exe =>PUP.Optional.AgentODR
C:\Program Files (x86)\Mobogenie3\MobogenieService.exe =>PUP.Optional.Mobogenie
C:\Users\XVIRUS\AppData\Local\Torch\Update\TorchCrashHandler.exe =>PUP.Optional.Torch
C:\Program Files (x86)\Mobogenie3\MoboGenieHelper.exe =>PUP.Optional.Mobogenie
C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
C:\Users\XVIRUS\AppData\Local\Torch\Update\42.0.0.9895\TorchUpdate.exe =>PUP.Optional.Torch
HKLM\SYSTEM\CurrentControlSet\Services\IHProtect Service =>PUP.Optional.AgentODR
HKLM\SYSTEM\CurrentControlSet\Services\MobogenieService =>PUP.Optional.Mobogenie
HKLM\SYSTEM\CurrentControlSet\Services\TorchCrashHandler =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie3 =>PUP.Optional.Mobogenie
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Torch =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\Mobogenie3 =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Torch =>PUP.Optional.Torch
HKCU\SOFTWARE\ICSW1.14 =>PUP.Optional.InstallCore
HKCU\SOFTWARE\Mobogenie =>PUP.Optional.Mobogenie
HKCU\SOFTWARE\Mobogenie3 =>PUP.Optional.Mobogenie
HKCU\SOFTWARE\ProductSetup =>PUP.Optional.InstallCore
HKCU\SOFTWARE\Torch =>PUP.Optional.Torch
C:\Program Files (x86)\MiniLite =>PUP.Optional.AgentODR
C:\Program Files (x86)\Mobogenie3 =>PUP.Optional.Mobogenie
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobogenie3 =>PUP.Optional.Mobogenie
C:\ProgramData\TorchCrashHandler =>PUP.Optional.Torch
C:\Users\XVIRUS\AppData\Roaming\Mobogenie =>PUP.Optional.Mobogenie
C:\Users\XVIRUS\AppData\Local\CrashRpt =>.Legitimate.CrashReports
C:\Users\XVIRUS\AppData\Local\Mobogenie =>PUP.Optional.Mobogenie
C:\Users\XVIRUS\AppData\Local\Torch =>PUP.Optional.Torch
C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch =>PUP.Optional.Torch
C:\Users\XVIRUS\Downloads\Programs\Mobogenie_Setup_3.3.7_10002.exe =>PUP.Optional.Mobogenie
C:\Users\XVIRUS\AppData\Local\Torch\User Data\ev_hashes_whitelist.bin =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\4516_cor_istartsurf_RASAPI32 =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\4516_cor_istartsurf_RASMANCS =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MobogenieService_RASAPI32 =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MobogenieService_RASMANCS =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Mobogenie_Setup_3_RASAPI32 =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Mobogenie_Setup_3_RASMANCS =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup-r9-n-bc_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup-r9-n-bc_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetupFull-r28-n-bc_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetupFull-r28-n-bc_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_33-0-06969_fr_418134_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_33-0-06969_fr_418134_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_RASMANCS =>PUP.Optional.Torch
---\\ Récapitulatif des éléments trouvées sur votre station (7) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.AgentODR
http://www.nicolascoolman.fr/pup-mobogenie/ =>PUP.Optional.Mobogenie
http://www.nicolascoolman.fr/blog =>PUP.Optional.Torch
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/adware-installcore/ =>PUP.Optional.InstallCore
http://www.nicolascoolman.fr/blog =>.Legitimate.CrashReports
http://www.nicolascoolman.fr/blog =>PUP.Optional.Torch*
~ End of the scan, 40290 items in 157 seconds (863)(32)()
~ Démarré par XVIRUS (Administrator) (2015/08/24 10:12:26)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\XVIRUS\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\XVIRUS\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)
---\\ Navigateurs Internet (3) - 0s
MFIE: Mozilla Firefox 40.0.2 (x86 fr) v40.0.2
OPIE: Opera 31.0.1889.174 v31.0.1889.174
MSIE: Internet Explorer v8.0.7601.17514
---\\ Informations sur les produits Windows (10) - 4s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Demand)
Windows Activation Technologies : OK
~ Windows Operating System - Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 4P2KH
Windows License : OK
~ Windows Remaining Initializations Number : 4
---\\ Logiciels de protection (1) - 1s
Windows Defender W7 (Deactivate)
---\\ Logiciels d'optimisation (1) - 1s
CCleaner v4.15
---\\ Surveillance de Logiciels (1) - 1s
Adobe Flash Player 10.0.42.34
---\\ Informations sur le système (7) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3984.048 MB (11% free)
~ System Restore: Activé (Enable)
~ System drive C: has 55 GB free of 199 GB
Total RAM: 3984.048 MB (8% free)
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: XVIRUS-PC
~ User Name: XVIRUS
~ Logged in as Administrator
---\\ Enumération des unités disques (4) - 1s
~ Drive C: has 55 GB free of 199 GB (System)
~ Drive D: has 0 GB free of 0 GB
~ Drive E: has 274 GB free of 410 GB
~ Drive G: has 75 GB free of 953 GB
---\\ Etat du Centre de Sécurité Windows (15) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (24) - 2s
[MD5.AC4C51EB24AA95B77F705AB159189E24] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2872320]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [129024]
[MD5.F6C5302E1F4813D552F41A0AC82455E5] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [1188864]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480]
[MD5.D31DC7A16DEA4A9BAF179F3D6FBDB38C] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [499712]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224]
[MD5.FAF015B07E3A2874A790A39B7D2C579F] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632]
[MD5.05D78AA5CB5F3F5C31160BDB955D0B7C] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1659776]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [295808]
---\\ Processus lancés (48) - 8s
[MD5.95B960980034877821E7FB5BFE25136E] - (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) -- C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413304] [PID.1316]
[MD5.5EBFF8D302047F4709F3A4F1231236E9] - (.BlueStack Systems, Inc. - BlueStacks Updater Service.) -- C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [831096] [PID.1388]
[MD5.4DE2EE2A5186D74BABC4E7F60D2AE989] - (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) -- C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [1811456] [PID.1620]
[MD5.6D9901EF86BC869D7D5AF8B2F687106A] - (.XTab system - ProtectSvc.exe.) -- C:\Program Files (x86)\MiniLite\ProtectService.exe [129688] [PID.1656] =>PUP.Optional.AgentODR
[MD5.F57A690656A8CACFABB78E30D1E71EE1] - (.Mobogenie.com - MobogenieService.exe.) -- C:\Program Files (x86)\Mobogenie3\MobogenieService.exe [127680] [PID.1780] =>PUP.Optional.Mobogenie
[MD5.446462BBA744DA60379574926FD51EAB] - (.Copyright (C) 2012 - PassThruSvr Application.) -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912] [PID.1804]
[MD5.D9EFF16FEF8167544F6459E2A90EFEAD] - (.TorchMedia Inc. - TorchCrashHandler.) -- C:\Users\XVIRUS\AppData\Local\Torch\Update\TorchCrashHandler.exe [1217032] [PID.1936] =>PUP.Optional.Torch
[MD5.4F3CD0653217C06664C71443B617863B] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [161304] [PID.2268]
[MD5.D204C6D7C66B9FA2D4C87AB750B94891] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [386584] [PID.2284]
[MD5.17D08913D321AA7D258C2C38E59A2283] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [415256] [PID.2296]
[MD5.8C61888F1581C7812B4BC221F5661EBF] - (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe [171520] [PID.2316]
[MD5.AB9990DB80EA3DAC0EAE50C906EF7ECA] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\XVIRUS\AppData\Roaming\uTorrent\uTorrent.exe [1693024] [PID.2328]
[MD5.86BCE34FE7C15230EFFDCC3E1BFFDABE] - (.Evaer Technology - Video Channel Moniter.) -- C:\Program Files (x86)\Evaer\videochannel.exe [1752576] [PID.2368]
[MD5.74283EA6E068A71C135C9CE9E79A04C3] - (.Evaer.com - Evaer Video Call Recorder for Skype.) -- C:\Program Files (x86)\Evaer\evaer.exe [4675584] [PID.2400]
[MD5.25E8FAE159E9D28B490A936FD41C53D6] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [53729824] [PID.2464]
[MD5.D3BC8027763DB4B75A7C1C8353BD0446] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3886672] [PID.2568]
[MD5.1FAA54E9FFEA6FD3E0CEAD951CDDFEF6] - (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34160] [PID.2680]
[MD5.D470EB94988531FE20A2A78766BB6858] - (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe [896632] [PID.2708]
[MD5.BD95E822E7A958BBCA842D078426A151] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.3032]
[MD5.9D12F0AC68565E97C07B75314D53F2CE] - (...) -- C:\Program Files (x86)\Mobogenie3\MoboGenieHelper.exe [105152] [PID.3592] =>PUP.Optional.Mobogenie
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4064] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.548] =>PUP.Optional.Torch
[MD5.2F353E48314786E5D99CB799FC1625F5] - (.Torch Media Inc. - Torch Update Module.) -- C:\Users\XVIRUS\AppData\Local\Torch\Update\42.0.0.9895\TorchUpdate.exe [1122816] [PID.3316] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.3100] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4088] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.968] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.3356] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.2824] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.3328] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.716] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.3664] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4008] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.3912] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4592] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.5000] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4332] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4736] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4864] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.228] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.4540] =>PUP.Optional.Torch
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.3872] =>PUP.Optional.Torch
[MD5.84867350CFF4C8551E5F5A3D355D8CB3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\XVIRUS\Downloads\Programs\ZHPDiag3.exe [1901056] [PID.4704]
[MD5.749C9E51E6D5A5AC23D2B4B8B63CAFE9] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [377000] [PID.4416]
[MD5.E10A68BA18BA07B591C59AC4A33860FE] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [277672] [PID.3340]
[MD5.61AD62A4A403B570D16473715A2989EF] - (.Adobe Systems, Inc. - Adobe Flash Player 18.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe [3423944] [PID.3632]
[MD5.61AD62A4A403B570D16473715A2989EF] - (.Adobe Systems, Inc. - Adobe Flash Player 18.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe [3423944] [PID.4564]
[MD5.144B21DBCEFF38D4071F9BA12DF7294A] - (.Torch Media Inc. - Torch.) -- C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe [748552] [PID.5880] =>PUP.Optional.Torch
[MD5.3D1409C825B40088003186FFC788E974] - (.Nicolas Coolman - ZHPFix.) -- C:\Program Files (x86)\ZHPFix\ZHPFix.exe [3060224] [PID.3948]
---\\ Google Chrome, Démarrage,Recherche,Extensions (20) - 2s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://r15---sn-hgn7zn76.gvt1.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://redirector.gvt1.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.facebook.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://accounts.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients2.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fbstatic-a.akamaihd.net/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://localhost:26143/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.dz/
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [jeaohhlajejodfjadcponpnjgkiikocn] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [lifbcibllhkdhoafpjfnlhfpfgnpldfl] Skype Click to Call
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (6) - 2s
M1 - SPR:Search Page Redirection - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT: (.mozilla.org - Default Plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npnul32.dll
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll
---\\ Opera, Démarrage,Recherche,Plugins (1) - 0s
B2 - EXT: [{background:{scripts:[background.js]}content_scrip] C:\Users\XVIRUS\AppData\Roaming\Opera Software\Opera Stable\Extensions\ailacajdbblbccppaomkndepicioaehg
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (8) - 0s
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer,Proxy Management (6) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:9666 =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 1s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)
---\\ Etude du fichier hosts (6) - 0s
127
127
~ Nombre lignes détournées 127
30 (Hosts file redirected)
127
~ Nombre lignes détournées 127
30 (Hosts file redirected)
~ Nombre lignes détournées 127
21 (Hosts file redirected)
---\\ Browser Helper Object de navigateur (BHO) (3) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
---\\ Applications lancées au démarrage du système (32) - 1s
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\XVIRUS\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [AdobeBridge] (Orphean)
O4 - HKCU\..\Run: [avichannel] . (.Evaer Technology - Video Channel Moniter.) -- C:\Program Files (x86)\Evaer\videochannel.exe
O4 - HKCU\..\Run: [Evaer] . (.Evaer.com - Evaer Video Call Recorder for Skype.) -- C:\Program Files (x86)\Evaer\evaer.exe
O4 - HKCU\..\Run: [SSS14_Agent] C:\Program Files (x86)\Steganos Privacy Suite 14\Suite.exe (.not file.)
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKCU\..\Run: [IpShark] C:\Program Files (x86)\IpShark\IpShark.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [KeNotify] . (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [BlueStacks Agent] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Wow6432Node\Run: [IpShark] C:\Program Files (x86)\IpShark\IpShark.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\XVIRUS\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [AdobeBridge] (Orphean)
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [avichannel] . (.Evaer Technology - Video Channel Moniter.) -- C:\Program Files (x86)\Evaer\videochannel.exe
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [Evaer] . (.Evaer.com - Evaer Video Call Recorder for Skype.) -- C:\Program Files (x86)\Evaer\evaer.exe
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [SSS14_Agent] C:\Program Files (x86)\Steganos Privacy Suite 14\Suite.exe (.not file.)
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-21-254014899-2536635092-3683962233-1000\..\Run: [IpShark] C:\Program Files (x86)\IpShark\IpShark.exe (.not file.)
---\\ Raccourcis Global Startup (14) - 10s
O4 - GS\Desktop [Administrateur]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\Quicklaunch [Administrateur]: Mobogenie3.lnk . (.Mobogenie.com - Mobogenie.exe.) C:\Program Files (x86)\Mobogenie3\Mobogenie.exe =>PUP.Optional.Mobogenie
O4 - GS\Quicklaunch [Administrateur]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\TaskBar [Administrateur]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\Desktop [Invité]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\Quicklaunch [Invité]: Mobogenie3.lnk . (.Mobogenie.com - Mobogenie.exe.) C:\Program Files (x86)\Mobogenie3\Mobogenie.exe =>PUP.Optional.Mobogenie
O4 - GS\Quicklaunch [Invité]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\TaskBar [Invité]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\Desktop [XVIRUS]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\Quicklaunch [XVIRUS]: Mobogenie3.lnk . (.Mobogenie.com - Mobogenie.exe.) C:\Program Files (x86)\Mobogenie3\Mobogenie.exe =>PUP.Optional.Mobogenie
O4 - GS\Quicklaunch [XVIRUS]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\TaskBar [XVIRUS]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
O4 - GS\CommonDesktop [Public]: Mobogenie3.lnk . (.Mobogenie.com - Mobogenie.exe.) C:\Program Files (x86)\Mobogenie3\Mobogenie.exe =>PUP.Optional.Mobogenie
O4 - GS\Programs [Public]: Torch.lnk . (.Torch Media Inc. - Torch.) C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
---\\ Protocole additionnel (24) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: skypec2c [64Bits] - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
---\\ Liste des services NT non Microsoft et non désactivés (9) - 1s
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc. - BlueStacks Updater Service.) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: IHProtect Service (IHProtect Service) . (.XTab system - ProtectSvc.exe.) - C:\Program Files (x86)\MiniLite\ProtectService.exe =>PUP.Optional.AgentODR
O23 - Service: MobogenieService (MobogenieService) . (.Mobogenie.com - MobogenieService.exe.) - C:\Program Files (x86)\Mobogenie3\MobogenieService.exe =>PUP.Optional.Mobogenie
O23 - Service: Internet Pass-Through Service (PassThru Service) . (.Copyright (C) 2012 - PassThruSvr Application.) - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Torch Crash Handler (TorchCrashHandler) . (.TorchMedia Inc. - TorchCrashHandler.) - C:\Users\XVIRUS\AppData\Local\Torch\Update\TorchCrashHandler.exe =>PUP.Optional.Torch
---\\ Tâches planifiées en automatique (23) - 6s
[MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000]
[MD5.11543DEB4316B9DBB42999C83495838F] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4624152]
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848]
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848]
[MD5.044C9C39D1164EB8CB8FA8DFBA6E063C] [APT] [Opera N Saturday] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [931960]
[MD5.044C9C39D1164EB8CB8FA8DFBA6E063C] [APT] [Opera N Sunday] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [931960]
[MD5.044C9C39D1164EB8CB8FA8DFBA6E063C] [APT] [Opera scheduled Autoupdate 1440089374] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [931960]
[MD5.92B2CC464136BA72FF7E57DF98993ACA] [APT] [{97D78635-24D4-472F-815A-B8B9197BEAB6}] (.Google Inc..) -- c:\program files (x86)\Google\Chrome\application\chrome.exe [813896]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] =>.Adobe Systems Incorporated
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070] =>.Google Inc.
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3940] =>.Adobe Systems Incorporated
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2774] =>.Piriform Ltd
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3814] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4066] =>.Google Inc.
O39 - APT: Opera N Saturday - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera N Saturday [3258] =>.Opera Software
O39 - APT: Opera N Sunday - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera N Sunday [3258] =>.Opera Software
O39 - APT: Opera scheduled Autoupdate 1440089374 - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1440089374 [3850] =>.Opera Software
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{0E431B7B-BAC1-4D8F-8C0A-C33AC980D799} [3226]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{71CC9C18-EE8F-40F8-8949-1D59BF604CCA} [3234]
O39 - APT: {97D78635-24D4-472F-815A-B8B9197BEAB6} - (.Google Inc..) -- C:\Windows\System32\Tasks\{97D78635-24D4-472F-815A-B8B9197BEAB6} [3162] =>.Google Inc.
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{AC2A61B4-A8AD-4987-B664-263CBD9F6DDF} [3242]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{D9DA1F41-5BA6-498F-A176-5867913834DD} [3312]
---\\ Logiciels installés (52) - 5s
O42 - Logiciel: Broadcom 802.11 Network Adapter - (.Broadcom Corporation.) [HKLM][64Bits] -- Broadcom 802.11 Network Adapter
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: x64 Components v2.2.0 - (.Shark007.) [HKLM][64Bits] -- x64 Components_is1
O42 - Logiciel: 7-Zip 4.65 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0465-000001000000}
O42 - Logiciel: Java(TM) 6 Update 16 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416016FF}
O42 - Logiciel: MPC-HC 1.7.9 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1
O42 - Logiciel: Revo Uninstaller Pro 3.1.4 - (.VS Revo Group, Ltd..) [HKLM][64Bits] -- {67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1
O42 - Logiciel: Paint.NET v3.5.5 - (.dotPDN LLC.) [HKLM][64Bits] -- {F0E2B312-D7FD-4349-A9B6-E90B36DB1BD1}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks App Player
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser
O42 - Logiciel: Evaer Video Recorder for Skype 1.3.10.21 - (.Evaer Technology.) [HKLM][64Bits] -- Evaer Video Recorder for Skype
O42 - Logiciel: Foxit Reader 5.0 - (.Foxit Corporation.) [HKLM][64Bits] -- Foxit Reader_is1
O42 - Logiciel: Utility Common Driver - (.TOSHIBA.) [HKLM][64Bits] -- InstallShield_{12688FD7-CB92-4A5B-BEE4-5C8E0574434F}
O42 - Logiciel: TOSHIBA Flash Cards Support Utility - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E}
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager
O42 - Logiciel: Mobogenie3 - (.Mobogenie.com.) [HKLM][64Bits] -- Mobogenie3 =>PUP.Optional.Mobogenie
O42 - Logiciel: Mozilla Firefox 40.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 40.0.2 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Notepad++ - (...) [HKLM][64Bits] -- Notepad++
O42 - Logiciel: Opera Stable 31.0.1889.174 - (.Opera Software.) [HKLM][64Bits] -- Opera 31.0.1889.174
O42 - Logiciel: Xvid MPEG-4 Video Codec - (.Xvid Development Team.) [HKLM][64Bits] -- xvid
O42 - Logiciel: IPTInstaller - (.HTC.) [HKLM][64Bits] -- {08208143-777D-4A06-BB54-71BF0AD1BB70}
O42 - Logiciel: Utility Common Driver - (.TOSHIBA.) [HKLM][64Bits] -- {12688FD7-CB92-4A5B-BEE4-5C8E0574434F}
O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A}
O42 - Logiciel: Adobe Flash Player 10.0.42.34 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {24762012-C6C8-4AAD-A02D-71A009FA1683}
O42 - Logiciel: Java(TM) 6 Update 18 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216018FF}
O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0}
O42 - Logiciel: Complément Office 2007 - Microsoft Enregistrer en tant que PDF ou XPS (Beta - (.Microsoft Corporation.) [HKLM][64Bits] -- {30120000-00B2-040C-0000-0000000FF1CE}
O42 - Logiciel: BlueStacks Notification Center - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- {3792811C-832F-4392-B44A-24092901EDDC}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: TOSHIBA Flash Cards Support Utility - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- {620BBA5E-F848-4D56-8BDA-584E44584C5E}
O42 - Logiciel: Skype™ 7.8 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1}
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}
O42 - Logiciel: Google Chrome - (.Google, Inc..) [HKLM][64Bits] -- {CA128A50-DB43-33A0-A8F0-E9EBA3ACA8A4}
O42 - Logiciel: WinZip 15.0 - (.WinZip Computing, S.L. .) [HKLM][64Bits] -- {CD95F661-A5C4-44F5-A6AA-ECDD91C240BE}
O42 - Logiciel: Adobe Creative Suite 6 Master Collection - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FE23D063-934D-4829-A0D8-00634CE79B4A}
O42 - Logiciel: Torch - (.Torch.) [HKCU][64Bits] -- Torch =>PUP.Optional.Torch
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPFix_is1
---\\ HKCU & HKLM Software Keys (80) - 5s
HKLM\SOFTWARE\Wow6432Node\ACLEngine
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\BcmSetup
HKLM\SOFTWARE\Wow6432Node\BlueStacks
HKLM\SOFTWARE\Wow6432Node\COMPAL
HKLM\SOFTWARE\Wow6432Node\Foxit Software
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HTC
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Imagenomic
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Mobogenie3 =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nico Mak Computing
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Rocket Division Software
HKLM\SOFTWARE\Wow6432Node\SDREngine
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Sonic
HKLM\SOFTWARE\Wow6432Node\SRDEngine
HKLM\SOFTWARE\Wow6432Node\Steganos
HKLM\SOFTWARE\Wow6432Node\Torch =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\TOSHIBA
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AnchorFree
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Bomers
HKCU\SOFTWARE\Coinis
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\Evaer
HKCU\SOFTWARE\ForceInterfaceCOM
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\hola
HKCU\SOFTWARE\ICSW1.14 =>PUP.Optional.InstallCore
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\LockHunter
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mirage
HKCU\SOFTWARE\Mobogenie =>PUP.Optional.Mobogenie
HKCU\SOFTWARE\Mobogenie3 =>PUP.Optional.Mobogenie
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nico Mak Computing
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\ProductSetup =>PUP.Optional.InstallCore
HKCU\SOFTWARE\Recovery Software
HKCU\SOFTWARE\SeriousBit
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Steganos
HKCU\SOFTWARE\Torch =>PUP.Optional.Torch
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\VS Revo Group
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\WinRecovery
HKCU\SOFTWARE\WinZip Computing
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
---\\ Contenu des dossiers Programmes (176) - 9s
O43 - CFD: 2015/07/19 22:31:03 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/08/23 11:14:15 - [] D -- C:\Program Files (x86)\AIMP3
O43 - CFD: 2015/08/22 01:47:15 - [] D -- C:\Program Files (x86)\BlueStacks
O43 - CFD: 2015/08/23 11:16:00 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/07/22 03:16:26 - [] D -- C:\Program Files (x86)\Evaer
O43 - CFD: 2015/07/19 21:49:13 - [] D -- C:\Program Files (x86)\Foxit Software
O43 - CFD: 2015/08/02 14:56:33 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/08/19 19:33:04 - [] D -- C:\Program Files (x86)\HTC
O43 - CFD: 2015/08/02 14:32:02 - [0] D -- C:\Program Files (x86)\Imagenomic
O43 - CFD: 2015/07/19 21:01:03 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/07/19 20:57:51 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/08/23 11:43:03 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 2015/07/27 13:17:23 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/07/19 20:10:39 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2015/07/23 16:57:07 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/07/19 20:11:01 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2015/07/23 17:10:29 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 2015/07/23 16:51:29 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 2015/07/23 17:10:52 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2015/07/23 16:55:44 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/08/20 18:46:37 - [] D -- C:\Program Files (x86)\MiniLite =>PUP.Optional.AgentODR
O43 - CFD: 2015/08/21 23:37:31 - [] D -- C:\Program Files (x86)\Mobogenie3 =>PUP.Optional.Mobogenie
O43 - CFD: 2015/08/23 18:02:19 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/08/23 18:02:26 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2015/07/23 17:10:45 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/07/23 17:22:55 - [] D -- C:\Program Files (x86)\MSECache
O43 - CFD: 2015/07/19 22:17:59 - [] D -- C:\Program Files (x86)\My Company Name
O43 - CFD: 2015/07/19 20:08:57 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 2015/08/23 18:49:55 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 2015/07/19 21:04:11 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/08/02 13:53:39 - [] D -- C:\Program Files (x86)\SafeIP
O43 - CFD: 2015/08/21 19:39:54 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2015/08/02 13:22:00 - [] D -- C:\Program Files (x86)\Steganos Internet Anonym VPN
O43 - CFD: 2015/07/19 21:00:50 - [] D -- C:\Program Files (x86)\TOSHIBA
O43 - CFD: 2009/07/14 06:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2009/07/14 13:02:44 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/07/27 13:17:23 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/07/27 13:17:23 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/07/27 13:17:23 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/07/27 13:17:23 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2015/07/27 13:17:24 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015/07/21 15:54:11 - [] D -- C:\Program Files (x86)\WinZip
O43 - CFD: 2015/07/19 20:11:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2015/07/19 20:02:30 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/27 13:24:39 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/07/19 22:32:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6
O43 - CFD: 2015/08/20 19:31:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
O43 - CFD: 2015/07/19 22:06:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/07/19 21:49:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader 5.0
O43 - CFD: 2009/07/14 13:22:21 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/08/02 14:56:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/08/02 14:32:02 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Imagenomic
O43 - CFD: 2015/08/23 11:43:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2009/07/14 06:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/23 17:11:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2015/07/19 20:11:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/08/19 19:43:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobogenie3 =>PUP.Optional.Mobogenie
O43 - CFD: 2015/07/19 20:09:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox
O43 - CFD: 2015/08/10 15:22:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
O43 - CFD: 2015/07/19 20:08:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2015/07/23 18:52:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
O43 - CFD: 2015/08/24 09:39:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
O43 - CFD: 2015/07/19 23:14:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shark007 Codecs
O43 - CFD: 2015/08/21 19:39:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/08/24 09:13:56 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/08/02 13:10:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steganos Internet Anonym VPN
O43 - CFD: 2009/07/14 13:21:47 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/07/19 23:08:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2010/04/22 23:53:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows GT
O43 - CFD: 2015/07/21 15:54:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
O43 - CFD: 2015/07/20 18:20:32 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2015/07/19 22:25:51 - [0] D -- C:\ProgramData\ALM
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/08/20 19:31:16 - [] D -- C:\ProgramData\BlueStacks
O43 - CFD: 2015/08/22 01:55:25 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 2015/07/19 20:06:26 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/07/19 20:06:26 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2015/08/19 19:32:32 - [] D -- C:\ProgramData\HTC
O43 - CFD: 2015/08/02 04:16:54 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 2015/07/19 20:06:26 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/07/23 16:55:44 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/07/23 17:11:58 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2015/07/19 20:06:26 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/08/01 16:56:18 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/07/30 03:25:04 - [] D -- C:\ProgramData\SeriousBit
O43 - CFD: 2015/07/19 23:14:30 - [] D -- C:\ProgramData\Shark007
O43 - CFD: 2015/08/21 19:40:01 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/08/24 09:19:21 - [] D -- C:\ProgramData\TorchCrashHandler =>PUP.Optional.Torch
O43 - CFD: 2015/08/24 09:20:18 - [] D -- C:\ProgramData\update
O43 - CFD: 2015/08/20 18:46:38 - [] D -- C:\ProgramData\UWinManProU
O43 - CFD: 2015/07/19 21:01:02 - [] D -- C:\ProgramData\vista32
O43 - CFD: 2015/07/19 21:01:02 - [] D -- C:\ProgramData\vista64
O43 - CFD: 2015/08/24 09:39:26 - [] D -- C:\ProgramData\VS Revo Group
O43 - CFD: 2015/07/19 21:09:15 - [] D -- C:\ProgramData\win7_32
O43 - CFD: 2015/07/19 21:09:15 - [] D -- C:\ProgramData\win7_64
O43 - CFD: 2015/07/21 15:55:25 - [] D -- C:\ProgramData\WinZip
O43 - CFD: 2015/07/19 21:01:02 - [] D -- C:\ProgramData\xp
O43 - CFD: 2015/07/19 22:30:29 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2015/07/19 22:13:27 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2015/07/23 17:10:29 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2015/07/23 17:10:46 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2015/07/19 22:18:07 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/08/21 19:39:54 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2015/07/19 22:18:07 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2015/08/02 12:52:01 - [] D -- C:\Program Files (x86)\Common Files\Steganos
O43 - CFD: 2015/07/23 17:04:21 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/07/20 14:43:27 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Adobe
O43 - CFD: 2015/08/24 09:17:16 - [] D -- C:\Users\XVIRUS\AppData\Roaming\DMCache
O43 - CFD: 2015/08/01 04:28:11 - [] D -- C:\Users\XVIRUS\AppData\Roaming\dvdcss
O43 - CFD: 2015/07/22 23:20:46 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Evaer
O43 - CFD: 2015/07/29 16:10:24 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Foxit Software
O43 - CFD: 2015/07/19 20:54:07 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Identities
O43 - CFD: 2015/08/23 13:40:09 - [] D -- C:\Users\XVIRUS\AppData\Roaming\IDM
O43 - CFD: 2015/07/21 00:47:48 - [] D -- C:\Users\XVIRUS\AppData\Roaming\LockHunter
O43 - CFD: 2015/07/19 21:54:07 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Macromedia
O43 - CFD: 2009/07/14 13:21:47 - [0] D -- C:\Users\XVIRUS\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/08/23 00:42:44 - [] SD -- C:\Users\XVIRUS\AppData\Roaming\Microsoft
O43 - CFD: 2015/08/20 00:55:21 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Mobogenie =>PUP.Optional.Mobogenie
O43 - CFD: 2015/07/24 00:08:11 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Mozilla
O43 - CFD: 2015/08/10 15:25:16 - [] D -- C:\Users\XVIRUS\AppData\Roaming\MPC-HC
O43 - CFD: 2015/07/19 21:49:54 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Notepad++
O43 - CFD: 2015/08/20 18:53:37 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Opera Software
O43 - CFD: 2015/07/19 23:14:30 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Shark007
O43 - CFD: 2015/08/20 18:49:46 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Shortcut
O43 - CFD: 2015/08/24 09:40:46 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Skype
O43 - CFD: 2015/07/20 14:43:27 - [] D -- C:\Users\XVIRUS\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 2015/08/02 14:04:51 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Steganos
O43 - CFD: 2015/08/24 09:38:57 - [] D -- C:\Users\XVIRUS\AppData\Roaming\uTorrent
O43 - CFD: 2015/08/23 03:58:22 - [] D -- C:\Users\XVIRUS\AppData\Roaming\vlc
O43 - CFD: 2015/07/19 20:57:33 - [] D -- C:\Users\XVIRUS\AppData\Roaming\WinBatch
O43 - CFD: 2015/08/24 09:41:52 - [] D -- C:\Users\XVIRUS\AppData\Roaming\ZHP
O43 - CFD: 2015/08/23 03:26:26 - [] D -- C:\Users\XVIRUS\AppData\Local\Adobe
O43 - CFD: 2015/07/19 20:53:41 - [0] SHD -- C:\Users\XVIRUS\AppData\Local\Application Data
O43 - CFD: 2015/08/20 19:30:09 - [] D -- C:\Users\XVIRUS\AppData\Local\Bluestacks
O43 - CFD: 2015/07/22 04:13:32 - [] D -- C:\Users\XVIRUS\AppData\Local\CrashRpt =>.Legitimate.CrashReports
O43 - CFD: 2015/08/23 13:06:59 - [] D -- C:\Users\XVIRUS\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/08/21 20:06:28 - [] D -- C:\Users\XVIRUS\AppData\Local\Google
O43 - CFD: 2015/07/19 20:53:41 - [0] SHD -- C:\Users\XVIRUS\AppData\Local\Historique
O43 - CFD: 2015/07/30 03:33:54 - [] D -- C:\Users\XVIRUS\AppData\Local\IsolatedStorage
O43 - CFD: 2015/08/01 17:23:11 - [] D -- C:\Users\XVIRUS\AppData\Local\Macromedia
O43 - CFD: 2015/07/27 21:12:45 - [] D -- C:\Users\XVIRUS\AppData\Local\Microsoft
O43 - CFD: 2015/07/23 16:50:26 - [0] D -- C:\Users\XVIRUS\AppData\Local\Microsoft Help
O43 - CFD: 2015/08/19 20:57:37 - [] D -- C:\Users\XVIRUS\AppData\Local\Mobogenie =>PUP.Optional.Mobogenie
O43 - CFD: 2015/08/01 17:07:28 - [] D -- C:\Users\XVIRUS\AppData\Local\Mozilla
O43 - CFD: 2015/08/20 18:53:37 - [] D -- C:\Users\XVIRUS\AppData\Local\Opera Software
O43 - CFD: 2015/07/23 18:39:33 - [] D -- C:\Users\XVIRUS\AppData\Local\Programs
O43 - CFD: 2015/07/19 22:59:44 - [] D -- C:\Users\XVIRUS\AppData\Local\Skype
O43 - CFD: 2015/08/24 09:42:10 - [] D -- C:\Users\XVIRUS\AppData\Local\Temp
O43 - CFD: 2015/07/19 20:53:41 - [0] SHD -- C:\Users\XVIRUS\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/08/04 05:27:11 - [] D -- C:\Users\XVIRUS\AppData\Local\Torch =>PUP.Optional.Torch
O43 - CFD: 2015/08/24 09:39:31 - [] D -- C:\Users\XVIRUS\AppData\Local\VS Revo Group
O43 - CFD: 2015/07/21 15:54:41 - [] D -- C:\Users\XVIRUS\AppData\Local\WinZip
O43 - CFD: 2009/07/14 06:54:32 - [] RD -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/27 16:25:01 - [] RD -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/07/22 03:16:26 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Evaer
O43 - CFD: 2015/08/23 11:43:00 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2009/07/14 06:49:38 - [] RD -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/30 03:37:32 - [] RD -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/08/03 15:10:26 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch =>PUP.Optional.Torch
O43 - CFD: 2015/07/19 21:01:03 - [] D -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2009/07/14 06:57:06 - [0] D -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2015/08/24 10:01:14 - [] D -- C:\Program Files (x86)\ZHPFix
O43 - CFD: 2015/08/24 09:58:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
O43 - CFD: 2015/08/24 10:00:55 - [] D -- C:\Users\XVIRUS\AppData\Roaming\Skype
O43 - CFD: 2015/08/24 10:12:14 - [] D -- C:\Users\XVIRUS\AppData\Roaming\uTorrent
O43 - CFD: 2015/08/24 10:12:47 - [] D -- C:\Users\XVIRUS\AppData\Roaming\ZHP
O43 - CFD: 2015/08/24 10:13:16 - [] D -- C:\Users\XVIRUS\AppData\Local\Temp
---\\ Liste des pilotes du système (61) - 8s
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864]
O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440]
O58 - SDL:2010/11/20 15:32:46 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904]
O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128]
O58 - SDL:2010/11/20 15:32:47 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008]
O58 - SDL:2009/11/02 12:16:50 A . (.HTC, Corporation - ADB Interface.) -- C:\Windows\System32\drivers\ANDROIDUSB.sys [33736]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856]
O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848]
O58 - SDL:2015/07/19 21:05:03 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL664.SYS [3058168]
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432]
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704]
O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480]
O58 - SDL:2011/10/17 03:00:00 N . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\Windows\System32\drivers\cdr4_xp.sys [10224]
O58 - SDL:2011/10/17 03:00:00 N . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\Windows\System32\drivers\cdralw2k.sys [10224]
O58 - SDL:2015/07/19 21:00:28 A . (.Compal Electronics, INC. - CeKbFilter.) -- C:\Windows\System32\drivers\CeKbFilter.sys [20592]
O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488]
O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496]
O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016]
O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232]
O58 - SDL:2010/11/20 15:33:35 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720]
O58 - SDL:2013/10/17 15:27:02 A . (.Windows (R) Win 7 DDK provider - RawPacket NDIS Protocol Driver.) -- C:\Windows\System32\drivers\htcnprot.sys [36928]
O58 - SDL:2010/03/08 22:08:36 A . (.QUALCOMM Incorporated - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\HtcVComV64.sys [121800]
O58 - SDL:2010/11/20 15:33:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496]
O58 - SDL:2014/11/29 02:37:06 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [180648]
O58 - SDL:2010/07/29 05:10:42 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [10610400]
O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112]
O58 - SDL:2010/02/27 07:32:14 A . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\System32\drivers\Impcd.sys [158976]
O58 - SDL:2010/03/22 10:55:20 A . (.COMPAL ELECTRONIC INC. - LPCFilter.) -- C:\Windows\System32\drivers\LPCFilter.sys [46192]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736]
O58 - SDL:2015/06/30 09:28:28 A . (.SeriousBit - nbdrv helper driver.) -- C:\Windows\System32\drivers\nbdrv.sys [40976]
O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264]
O58 - SDL:2010/11/20 15:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352]
O58 - SDL:2010/11/20 15:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272]
O58 - SDL:2011/11/03 03:01:00 N . (.Rovi Corporation - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\System32\drivers\PxHlpa64.sys [56208]
O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816]
O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592]
O58 - SDL:2009/12/30 11:21:26 A . (.VS Revo Group - Revo Uninstaller Minifilter.) -- C:\Windows\System32\drivers\revoflt.sys [31800]
O58 - SDL:2010/09/24 15:11:18 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [349800]
O58 - SDL:2010/01/07 09:05:46 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\drivers\RtsUStor.sys [232992]
O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584]
O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464]
O58 - SDL:2015/07/19 20:11:34 A . (...) -- C:\Windows\System32\drivers\sptd.sys [828912]
O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656]
O58 - SDL:2013/08/22 14:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\tap0901.sys [40664]
O58 - SDL:2015/06/04 01:04:50 A . (.Anchorfree Inc. - Anchorfree HSS VPN Adapter.) -- C:\Windows\System32\drivers\taphss6.sys [42088]
O58 - SDL:2007/11/09 05:00:30 A . (.TOSHIBA Corporation - TOSHIBA ACPI-Based Value Added Logical and.) -- C:\Windows\System32\drivers\TVALZ_O.SYS [26968]
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488]
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872]
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (14) - 21s
O61 - LFC: 2015/08/20 19:29:52 A . (.BlueStack Systems Inc..) -- C:\Users\XVIRUS\Downloads\BlueStacks-ThinInstaller.exe [14246072]
O61 - LFC: 2015/08/20 19:10:18 RA . (..) -- C:\Users\XVIRUS\Downloads\BlueStacksAppPlayer_0.9.30.4239_by_AJacobs_Rooted_BSEasy.exe [265996156]
O61 - LFC: 2015/08/23 11:04:10 A . (..) -- C:\Users\XVIRUS\Downloads\FaceHacker Telecharger GRATUITEMENT Sans Code 1 .exe [187449344]
O61 - LFC: 2015/08/20 19:42:56 A . (.Windroy, Inc..) -- C:\Users\XVIRUS\Downloads\windroy_20140113.exe [83252212]
O61 - LFC: 2015/08/23 18:01:48 A . (..) -- C:\Users\XVIRUS\Downloads\Programs\Firefox Setup 40.0.2.exe [42088312]
O61 - LFC: 2015/08/19 19:41:50 A . (.Copyright (c) 2014 Gamease Age Digital Technology Co..) -- C:\Users\XVIRUS\Downloads\Programs\Mobogenie_Setup_3.3.7_10002.exe [36250840] =>PUP.Optional.Mobogenie
O61 - LFC: 2015/08/20 16:42:34 N . (.Software Program.) -- C:\Users\XVIRUS\Downloads\installer_whatsapp_for_pc_2_11_506_French\installer_whatsapp_for_pc_2_11_506_French\installer_whatsapp_for_pc_2_11_506_French.exe [909928]
O61 - LFC: 2015/08/23 00:21:58 A . (..) -- C:\Users\XVIRUS\Downloads\Compressed\FaceHacker Telecharger GRATUIT Downloader__3687_i1595211823.exe\FaceHacker Telecharger GRATUIT Downloader__3687_i1595211823.exe [761360]
O61 - LFC: 2015/08/20 19:10:18 A . (..) -- C:\Users\XVIRUS\Downloads\BlueStacksAppPlayer_0.9.30.4239_by_AJacobs_Rooted_BSEasy\$PLUGINSDIR\$PLUGINSDIR\NSISdl.dll [14848]
O61 - LFC: 2015/08/20 19:10:18 A . (..) -- C:\Users\XVIRUS\Downloads\BlueStacksAppPlayer_0.9.30.4239_by_AJacobs_Rooted_BSEasy\$PLUGINSDIR\$PLUGINSDIR\System.dll [11264]
O61 - LFC: 2015/08/23 00:44:34 N . (.Software Generic.) -- C:\Users\XVIRUS\Downloads\adobe_flash_player\adobe_flash_player\adobe_flash_player.exe [861592]
O61 - LFC: 2015/08/23 13:00:56 A . (..) -- C:\Users\XVIRUS\AppData\Local\Torch\User Data\ev_hashes_whitelist.bin [1113849] =>PUP.Optional.Torch
O61 - LFC: 2015/08/23 12:38:52 A . (..) -- C:\Users\XVIRUS\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2015/08/18 07:23:54 A . (.Google Inc..) -- C:\Users\XVIRUS\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll [189256]
---\\ Associations Shell Spawning (11) - 1s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Menu de démarrage Internet (24) - 1s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Recherche d'infection sur les navigateurs (2) - 3s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {471EBB6C-6DAD-47E6-AEE4-820C3EFFC804} [DefaultScope] - (Google) - http://www.google.com/
---\\ Enumère les fichiers Crack & Keygen (16) - 42s
O82 - LFC: 2014/09/25 00:12:34 A . (...) -- C:\Users\XVIRUS\Downloads\EaseUS Data Recovery Wizard 8.5\EaseUS Data Recovery Wizard 8.5\Keygen.exe [97280] =>.Crack,Keygen
O82 - LFC: 2015/08/10 21:39:21 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Prophet.V.VSTi.RTAS.v2.0.Incl.Keygen-AiR\arturia_prophetv_v2.x_keygen.exe [7548928] =>.Crack,Keygen
O82 - LFC: 2015/08/13 16:12:34 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Prophet.V.VSTi.RTAS.v2.0.Incl.Keygen-AiR\Prophet_V_2_0_setup.exe [52823459] =>.Crack,Keygen
O82 - LFC: 2015/08/13 16:12:34 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Moog.Modular.V.VSTi.RTAS.v2.5.Incl.Keygen-AiR\arturia_moog_modularv_v2.x_keyen.exe [7515648] =>.Crack,Keygen
O82 - LFC: 2015/08/11 19:47:42 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Moog.Modular.V.VSTi.RTAS.v2.5.Incl.Keygen-AiR\Moog_Modular_V_2_5_setup.exe [49779922] =>.Crack,Keygen
O82 - LFC: 2015/08/11 00:57:26 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Minimoog.V.VSTi.RTAS.v2.0.1.Incl.Keygen-AiR\arturia_minimoogv_v2.x_keygen.exe [7471104] =>.Crack,Keygen
O82 - LFC: 2015/08/11 19:47:42 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Minimoog.V.VSTi.RTAS.v2.0.1.Incl.Keygen-AiR\eLicenserControlSetup.exe [15674808] =>.Crack,Keygen
O82 - LFC: 2015/08/11 00:57:26 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Jupiter8.V.VSTi.RTAS.v2.0.Incl.Keygen-AiR\arturia_jupiter8v_v2.x_keygen.exe [7161344] =>.Crack,Keygen
O82 - LFC: 2015/08/13 16:12:34 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Jupiter8.V.VSTi.RTAS.v2.0.Incl.Keygen-AiR\Jupiter-8V_2_0_setup.exe [66609032] =>.Crack,Keygen
O82 - LFC: 2015/08/11 19:47:42 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Brass.VSTi.RTAS.v2.0.5.Incl.Keygen-AiR\arturia_brass_v2.x_keygen.exe [7529984] =>.Crack,Keygen
O82 - LFC: 2015/08/11 19:47:42 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Brass.VSTi.RTAS.v2.0.5.Incl.Keygen-AiR\Brass_2_0_5_setup.exe [111500730] =>.Crack,Keygen
O82 - LFC: 2015/08/11 19:47:42 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Arp2600.V.VSTi.RTAS.v2.0.Incl.Keygen-AiR\ARP2600_V_2.0_Setup.exe [51983377] =>.Crack,Keygen
O82 - LFC: 2015/08/10 22:55:50 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Arp2600.V.VSTi.RTAS.v2.0.Incl.Keygen-AiR\arturia_arp2600v_v2.x_keygen.exe [7603200] =>.Crack,Keygen
O82 - LFC: 2015/08/11 19:07:36 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia.Analog.Factory.VSTi.RTAS.v2.5\arturia_analog_factory_v2.x_keygen.exe [7493120] =>.Crack,Keygen
O82 - LFC: 2015/08/11 01:02:26 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia CS80 V VSTi RTAS v2.0.Incl.Keygen-AiR\arturia_cs80v_v2.x_keygen.exe [7570432] =>.Crack,Keygen
O82 - LFC: 2015/08/11 00:57:26 A . (...) -- C:\Users\XVIRUS\Downloads\Arturia.V.Collection.2010.v2.0+Presets.Incl.Keygen-AiR\Arturia CS80 V VSTi RTAS v2.0.Incl.Keygen-AiR\cs80v_2_0_setup.exe [49448395] =>.Crack,Keygen
---\\ Enumère les services démarrés par Svchost (33) - 2s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2477536]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136192]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536]
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (10) - 15s
SS - Demand [2015/06/16 22:33:14] [ 433784] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Service.exe
SR - Auto [2015/06/16 22:33:36] [ 413304] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
SR - Auto [2015/07/21 20:23:32] [ 831096] BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
SS - Auto [2015/08/02 14:56:02] [ 107848] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2015/08/02 14:56:02] [ 107848] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - Auto [2010/08/27 17:20:14] [ 1811456] IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
SR - Auto [2015/08/20 03:51:36] [ 129688] IHProtect Service (IHProtect Service) . (.XTab system.) - C:\Program Files (x86)\MiniLite\ProtectService.exe =>PUP.Optional.AgentODR
SR - Auto [2015/05/28 04:20:02] [ 127680] MobogenieService (MobogenieService) . (.Mobogenie.com.) - C:\Program Files (x86)\Mobogenie3\MobogenieService.exe =>PUP.Optional.Mobogenie
SR - Auto [2013/10/17 15:27:02] [ 166912] Internet Pass-Through Service (PassThru Service) . (.Copyright (C) 2012.) - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
SR - Auto [2015/07/16 10:13:40] [ 1217032] Torch Crash Handler (TorchCrashHandler) . (.TorchMedia Inc..) - C:\Users\XVIRUS\AppData\Local\Torch\Update\TorchCrashHandler.exe =>PUP.Optional.Torch
---\\ Recherche de clés de registre Tracing (16) - 3s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\4516_cor_istartsurf_RASAPI32 =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\4516_cor_istartsurf_RASMANCS =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MobogenieService_RASAPI32 =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MobogenieService_RASMANCS =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Mobogenie_Setup_3_RASAPI32 =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Mobogenie_Setup_3_RASMANCS =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup-r9-n-bc_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup-r9-n-bc_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetupFull-r28-n-bc_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetupFull-r28-n-bc_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_33-0-06969_fr_418134_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_33-0-06969_fr_418134_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_RASMANCS =>PUP.Optional.Torch
---\\ Scan Additionnel (47) - 0s
C:\Program Files (x86)\MiniLite\ProtectService.exe =>PUP.Optional.AgentODR
C:\Program Files (x86)\Mobogenie3\MobogenieService.exe =>PUP.Optional.Mobogenie
C:\Users\XVIRUS\AppData\Local\Torch\Update\TorchCrashHandler.exe =>PUP.Optional.Torch
C:\Program Files (x86)\Mobogenie3\MoboGenieHelper.exe =>PUP.Optional.Mobogenie
C:\Users\XVIRUS\AppData\Local\Torch\Application\torch.exe =>PUP.Optional.Torch
C:\Users\XVIRUS\AppData\Local\Torch\Update\42.0.0.9895\TorchUpdate.exe =>PUP.Optional.Torch
HKLM\SYSTEM\CurrentControlSet\Services\IHProtect Service =>PUP.Optional.AgentODR
HKLM\SYSTEM\CurrentControlSet\Services\MobogenieService =>PUP.Optional.Mobogenie
HKLM\SYSTEM\CurrentControlSet\Services\TorchCrashHandler =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie3 =>PUP.Optional.Mobogenie
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Torch =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\Mobogenie3 =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Torch =>PUP.Optional.Torch
HKCU\SOFTWARE\ICSW1.14 =>PUP.Optional.InstallCore
HKCU\SOFTWARE\Mobogenie =>PUP.Optional.Mobogenie
HKCU\SOFTWARE\Mobogenie3 =>PUP.Optional.Mobogenie
HKCU\SOFTWARE\ProductSetup =>PUP.Optional.InstallCore
HKCU\SOFTWARE\Torch =>PUP.Optional.Torch
C:\Program Files (x86)\MiniLite =>PUP.Optional.AgentODR
C:\Program Files (x86)\Mobogenie3 =>PUP.Optional.Mobogenie
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobogenie3 =>PUP.Optional.Mobogenie
C:\ProgramData\TorchCrashHandler =>PUP.Optional.Torch
C:\Users\XVIRUS\AppData\Roaming\Mobogenie =>PUP.Optional.Mobogenie
C:\Users\XVIRUS\AppData\Local\CrashRpt =>.Legitimate.CrashReports
C:\Users\XVIRUS\AppData\Local\Mobogenie =>PUP.Optional.Mobogenie
C:\Users\XVIRUS\AppData\Local\Torch =>PUP.Optional.Torch
C:\Users\XVIRUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch =>PUP.Optional.Torch
C:\Users\XVIRUS\Downloads\Programs\Mobogenie_Setup_3.3.7_10002.exe =>PUP.Optional.Mobogenie
C:\Users\XVIRUS\AppData\Local\Torch\User Data\ev_hashes_whitelist.bin =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\4516_cor_istartsurf_RASAPI32 =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\4516_cor_istartsurf_RASMANCS =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MobogenieService_RASAPI32 =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MobogenieService_RASMANCS =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Mobogenie_Setup_3_RASAPI32 =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Mobogenie_Setup_3_RASMANCS =>PUP.Optional.Mobogenie
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup-r9-n-bc_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup-r9-n-bc_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetupFull-r28-n-bc_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetupFull-r28-n-bc_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\TorchSetup_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_33-0-06969_fr_418134_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_33-0-06969_fr_418134_RASMANCS =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_RASAPI32 =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\torch_RASMANCS =>PUP.Optional.Torch
---\\ Récapitulatif des éléments trouvées sur votre station (7) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.AgentODR
http://www.nicolascoolman.fr/pup-mobogenie/ =>PUP.Optional.Mobogenie
http://www.nicolascoolman.fr/blog =>PUP.Optional.Torch
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/adware-installcore/ =>PUP.Optional.InstallCore
http://www.nicolascoolman.fr/blog =>.Legitimate.CrashReports
http://www.nicolascoolman.fr/blog =>PUP.Optional.Torch*
~ End of the scan, 40290 items in 157 seconds (863)(32)()