cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.8.23.124 Par Nicolas Coolman (2015/08/23)
~ Démarré par Quentin (Administrator) (2015/09/30 17:32:37)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Quentin\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Quentin\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Ultimate, 32-bit Service Pack 1 (Build 7601)

---\\ Navigateurs Internet (2) - 0s
OPIE: Opera 32.0.1948.69 v32.0.1948.69
MSIE: Internet Explorer v11.0.9600.18015

---\\ Informations sur les produits Windows (10) - 1s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows Operating System - Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : HYRR2
Windows License : OK
~ Windows Remaining Initializations Number : 3
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK

---\\ Logiciels de protection (3) - 1s
Microsoft Security Client v4.8.0204.0
Microsoft Security Essentials v4.8.204.0
Windows Defender W7 (Deactivate)

---\\ Logiciels d'optimisation (1) - 1s
CCleaner v3.21

---\\ Surveillance de Logiciels (2) - 1s
Adobe Flash Player 15 Pepper
Adobe Reader XI

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 16 Model 4 Stepping 2, AuthenticAMD
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2094.584 MB (13% free)
~ System Restore: Activé (Enable)
~ System drive C: has 84 GB free of 286 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: QUENTIN-PC
~ User Name: Quentin
~ Logged in as Administrator

---\\ Enumération des unités disques (1) - 6s
~ Drive C: has 84 GB free of 286 GB (System)

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (24) - 3s
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2616320]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [96256]
[MD5.A8C80A92549AFDD6891C8159D4C0A107] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [1951232]
[MD5.52449FD429D6053B78AE564DEF303870] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [304128]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [193536]
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480]
[MD5.D0B388DA1D111A34366E04EB4A5DD156] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [101888]
[MD5.BAF4E2BE25E8EDFDAA98AA17D92E3C35] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [124416]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [187904]
[MD5.C8DFF8D07755A66C7A4A738930F0FEAC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1212352]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [78848]
[MD5.B973FCFC50DC1434E1970A146F7E3885] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [133632]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [71168]
[MD5.7FE680A3DFA421C4A8E4879AE4C5AAB0] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [74752]
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [245632]

---\\ Processus lancés (37) - 5s
[MD5.E4284FCF99FEA13A7E1836F87AE356F6] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 311.0.) -- C:\Windows\System32\nvvsvc.exe [639776] [PID.772]
[MD5.5A19667A580B1CE886EAF968B9743F45] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [383264] [PID.800]
[MD5.8619BE54EC51A74A2C3F82B313AB445E] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [873248] [PID.1496]
[MD5.E4284FCF99FEA13A7E1836F87AE356F6] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 311.0.) -- C:\Windows\System32\nvvsvc.exe [639776] [PID.1504]
[MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.2044]
[MD5.DCD7487D00AA4DFFAEB4C8B086AF1134] - (...) -- C:\Program Files\GIGABYTE\EasySaver\essvr.exe [68136] [PID.560]
[MD5.485CBE0A862457BC1BCA099F16A96202] - (...) -- C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF\hnstF2F8.tmp [203776] [PID.1288] =>PUP.Optional.CrossRider
[MD5.2D517DCEBECBF12D1D49BBC71F3D752C] - (...) -- C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF\jnsjDD16.tmp [181760] [PID.1628] =>PUP.Optional.CrossRider
[MD5.77CB836CFD03A033B075E85B649D910F] - (.LogMeIn, Inc. - LMIGuardianSvc.) -- C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [411920] [PID.1884]
[MD5.CD421DDB5C6E5458CE52EDC36DE7DC5B] - (...) -- C:\Windows\System32\PnkBstrA.exe [76152] [PID.2084]
[MD5.F115AF58ABE5605D7D709CBFBD83F418] - (.© 2000-2005 Protexis Inc. - nTitles PSIService.) -- C:\Windows\System32\PSIService.exe [177704] [PID.2144]
[MD5.AC3073463BA11522CBC48EE18CCC39D2] - (.Search Module Ltd. - Search Module Update Service.) -- C:\Program Files\Common Files\Goobzo\GBUpdate\smu.exe [1858560] [PID.2500] =>PUP.Optional.Goobzo
[MD5.D5FB37BC0C0A09030310DBCF8D8553FE] - (.TODO: <公司名> - TODO: <文件说明>.) -- C:\Program Files\SFK\SSFK.exe [458400] [PID.2780]
[MD5.F9082B46869BB5DF3421027EDC558656] - (.DTools LIMITED - DTools.) -- C:\ProgramData\9WdsManPro9\WdsManPro.exe [442504] [PID.2980] =>PUP.Optional.WpManager
[MD5.E563002C689DF5A8F3CBF68450E52740] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [6711840] [PID.2996]
[MD5.D2AEADFD998706B4216315B2BD3FA79E] - (.InstallShield Software Corporation - InstallShield Update Service Scheduler.) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920] [PID.3012]
[MD5.29A4BD2A63017D4E4F5081598A8A19AB] - (.LogMeIn Inc. - Hamachi Client Application.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [5579624] [PID.3068]
[MD5.B2B46AF563C57A2020A2B6256E014340] - (.LogMeIn Inc. - Hamachi Client Tunneling Engine.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1878888] [PID.3508]
[MD5.B1D18AB827A9A6F74D7652F10328DD12] - (...) -- C:\Program Files\SFK\SFKEX.exe [111104] [PID.2420]
[MD5.13001914838576400EB9AFDE95AE71CE] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [3091296] [PID.4356]
[MD5.D87A04DD9C7C4D05031139BB0045EA93] - (.Nosibay - Selection Tools.) -- C:\Users\Quentin\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe [1530640] [PID.4736] =>PUP.Optional.Nosibay
[MD5.03E60E0BFA53ED15DC984FA34B44BB0F] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1260320] [PID.3940]
[MD5.25E8FAE159E9D28B490A936FD41C53D6] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [53729824] [PID.3524]
[MD5.C731C96456335BDAA2F58220AE25A202] - (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_40\bin\javaw.exe [191400] [PID.4052]
[MD5.C731C96456335BDAA2F58220AE25A202] - (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_40\bin\javaw.exe [191400] [PID.5160]
[MD5.A379B75A6FFE4DFD3184F35F0141CE91] - (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- c:\program files\common files\installshield\updateservice\ISUSPM.exe [221184] [PID.5320]
[MD5.B738C9EB50A94D22A0259B340A97B8A4] - (.InstallShield Software Corporation - InstallShield Update Service Agent.) -- C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe [581632] [PID.3248]
[MD5.5FE0011A84A6E69A9FF4A480B2375A6D] - (...) -- C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF\knszD83.tmp [323584] [PID.4464] =>PUP.Optional.CrossRider
[MD5.4AD3A0781947B429B08E99C2B5871DED] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\32.0.1948.69\opera.exe [901240] [PID.7840]
[MD5.68182A45592606ABB3069C9369FDA7EE] - (.Opera Software - Opera crash-reporter.) -- C:\Program Files\Opera\32.0.1948.69\opera_crashreporter.exe [507512] [PID.7888]
[MD5.4AD3A0781947B429B08E99C2B5871DED] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\32.0.1948.69\opera.exe [901240] [PID.8028]
[MD5.4AD3A0781947B429B08E99C2B5871DED] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\32.0.1948.69\opera.exe [901240] [PID.8128]
[MD5.4AD3A0781947B429B08E99C2B5871DED] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\32.0.1948.69\opera.exe [901240] [PID.8140]
[MD5.4AD3A0781947B429B08E99C2B5871DED] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\32.0.1948.69\opera.exe [901240] [PID.8152]
[MD5.4AD3A0781947B429B08E99C2B5871DED] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\32.0.1948.69\opera.exe [901240] [PID.5024]
[MD5.4AD3A0781947B429B08E99C2B5871DED] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\32.0.1948.69\opera.exe [901240] [PID.7296]
[MD5.84867350CFF4C8551E5F5A3D355D8CB3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Quentin\Downloads\ZHPDiag3.exe [1901056] [PID.6576]

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (13) - 4s
P2 - EXT FILE: (...) -- C:\Users\Quentin\AppData\Roaming\Mozilla\Firefox\Profiles\lkmp2ft3.default\searchplugins\bingcom.xml
P2 - EXT: (.DnsBasic.com - DnsBasic.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{650EED71-89E2-453B-8DCF-2AA1B4AE6EF3}
P2 - EXT: (.Corporate Inc - Pricora.) -- C:\Users\Quentin\AppData\Roaming\Mozilla\Firefox\Profiles\lkmp2ft3.default\extensions\94ae0976-89df-4347-9771-5371c6e203bf@3796dc63-d06d-4575-a997-9b5c935fe915.com =>PUP.Optional.CrossRider
P2 - EXT: (...) -- C:\Users\Quentin\AppData\Roaming\Mozilla\Firefox\Profiles\lkmp2ft3.default\extensions\staged
P2 - FPN: [HKCU] [ubisoft.com/uplaypc] - (...) -- C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_16_0_0_305.dll
P2 - FPN: [HKLM] [@esn/npbattlelog,version=2.5.1] - (.EA Digital Illusions CE AB.) -- C:\Program Files\Battlelog Web Plugins\2.5.1\npbattlelog.dll
P2 - FPN: [HKLM] [@esn/npbattlelog,version=2.6.2] - (.EA Digital Illusions CE AB.) -- C:\Program Files\Battlelog Web Plugins\2.6.2\npbattlelog.dll
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.8] - (.VideoLAN.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.2] - (.VideoLAN.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc..) -- C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

---\\ Opera, Démarrage,Recherche,Plugins (2) - 0s
B2 - EXT: [richtr] C:\Users\Quentin\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibnombjmjocaccigcefonnipcnlaeaed
B2 - EXT: [Opera Stable] C:\Users\Quentin\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (12) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www-searching.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (7) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object de navigateur (BHO) (1) - 0s
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} . (.SEIKO EPSON CORPORATION - EPSON Web-To-Page.) -- C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll

---\\ Internet Explorer, Barre d'outil (1) - 0s
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- (.not file.)

---\\ Applications lancées au démarrage du système (29) - 2s
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [JMB36X IDE Setup] . (...) -- C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [ISUSScheduler] . (.InstallShield Software Corporation - InstallShield Update Service Scheduler.) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] . (.LogMeIn Inc. - Hamachi Client Application.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
O4 - HKLM\..\Run: [mbot_fr_014010099] (Orphean) =>PUP.Optional.CrossRider
O4 - HKLM\..\Run: [dply_en_036020102] (Orphean)
O4 - HKLM\..\Run: [gmsd_fr_005010102] (Orphean) =>PUP.Optional.CrossRider
O4 - HKLM\..\RunOnce: [Update] C:\Users\Quentin\AppData\Roaming\ASPackage\ASPackage.exe (.not file.) =>PUP.Optional.ASPackage
O4 - HKCU\..\Run: [ISUSPM Startup] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
O4 - HKCU\..\Run: [ccleaner] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [RGSC] C:\Jeux\gta\Rockstar Games Social Club\RGSCLauncher.exe (.not file.)
O4 - HKCU\..\Run: [WindApp] C:\Users\Quentin\AppData\Roaming\Store\WindApp\WindApp.exe (.not file.) =>PUP.Optional.Nosibay
O4 - HKCU\..\Run: [Selection Tools] . (.Nosibay - Selection Tools.) -- C:\Users\Quentin\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe =>PUP.Optional.Nosibay
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files\Steam\Steam.exe =>PUP.Optional.Nosibay
O4 - HKCU\..\Run: [CrashService] C:\Users\Quentin\AppData\Local\BoBrowser\Application\crash_service.exe (.not file.) =>PUP.Optional.BoBrowser
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-1899036297-2991482638-444161371-1000\..\Run: [ISUSPM Startup] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
O4 - HKUS\S-1-5-21-1899036297-2991482638-444161371-1000\..\Run: [ccleaner] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe
O4 - HKUS\S-1-5-21-1899036297-2991482638-444161371-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-1899036297-2991482638-444161371-1000\..\Run: [RGSC] C:\Jeux\gta\Rockstar Games Social Club\RGSCLauncher.exe (.not file.)
O4 - HKUS\S-1-5-21-1899036297-2991482638-444161371-1000\..\Run: [WindApp] C:\Users\Quentin\AppData\Roaming\Store\WindApp\WindApp.exe (.not file.) =>PUP.Optional.Nosibay
O4 - HKUS\S-1-5-21-1899036297-2991482638-444161371-1000\..\Run: [Selection Tools] . (.Nosibay - Selection Tools.) -- C:\Users\Quentin\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe =>PUP.Optional.Nosibay
O4 - HKUS\S-1-5-21-1899036297-2991482638-444161371-1000\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files\Steam\Steam.exe =>PUP.Optional.Nosibay
O4 - HKUS\S-1-5-21-1899036297-2991482638-444161371-1000\..\Run: [CrashService] C:\Users\Quentin\AppData\Local\BoBrowser\Application\crash_service.exe (.not file.) =>PUP.Optional.BoBrowser

---\\ Raccourcis Global Startup (4) - 4s
O4 - GS\Quicklaunch [Administrateur]: Crossbrowse.lnk . (...) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Quicklaunch [Invité]: Crossbrowse.lnk . (...) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Quicklaunch [Quentin]: Crossbrowse.lnk . (...) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Quicklaunch [UpdatusUser]: Crossbrowse.lnk . (...) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse

---\\ Winsock hijacker (Layered Service Provider) (5) - 1s
O10 - WLSP:\Catalog_Entries\000000000001\Winsock LSP File . (...) -- C:\Windows\System32\Vaklilu.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000002\Winsock LSP File . (...) -- C:\Windows\System32\Vaklilu.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000003\Winsock LSP File . (...) -- C:\Windows\System32\Vaklilu.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000004\Winsock LSP File . (...) -- C:\Windows\System32\Vaklilu.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000023\Winsock LSP File . (...) -- C:\Windows\System32\Vaklilu.dll =>Hijacker.Winsock

---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Protocole additionnel (21) - 0s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype4COM.) -- C:\Program Files\Common Files\Skype\Skype4COM.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll

---\\ Liste des services NT non Microsoft et non désactivés (18) - 1s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ES lite Service for program management. (ES lite Service) . (...) - C:\Program Files\GIGABYTE\EasySaver\essvr.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
O23 - Service: CD Feature (gyvixodu) . (...) - C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF\hnstF2F8.tmp =>PUP.Optional.CrossRider
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) . (.LogMeIn Inc. - Hamachi Client Tunneling Engine.) - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Disk Low-res (lehicewu) . (...) - C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF\jnsjDD16.tmp =>PUP.Optional.CrossRider
O23 - Service: LMIGuardianSvc (LMIGuardianSvc) . (.LogMeIn, Inc. - LMIGuardianSvc.) - C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Network Server Counter-intuitive (mubejeto) . (...) - C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF\knszD83.tmp =>PUP.Optional.CrossRider
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 311.0.) - C:\Windows\System32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\System32\PnkBstrA.exe
O23 - Service: ProtexisLicensing (ProtexisLicensing) . (.© 2000-2005 Protexis Inc. - nTitles PSIService.) - C:\Windows\System32\PSIService.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Search Module Update (SMUpd) . (.Search Module Ltd. - Search Module Update Service.) - C:\Program Files\Common Files\Goobzo\GBUpdate\smu.exe =>PUP.Optional.YTDownloader
O23 - Service: SSFK (SSFK) . (.TODO: <公司名> - TODO: <文件说明>.) - C:\Program Files\SFK\SSFK.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Util Web Amplified (Util Web Amplified) . (...) - C:\Program Files\Web Amplified\bin\utilWebAmplified.exe (.not file.) =>PUP.Optional.WebAmplified*
O23 - Service: WdsManPro Service (WdsManPro) . (.DTools LIMITED - DTools.) - C:\ProgramData\9WdsManPro9\WdsManPro.exe =>PUP.Optional.WpManager

---\\ Tâches planifiées en automatique (64) - 5s
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\APSnotifierPP1.job [366] =>PUP.Optional.AnyProtect
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\APSnotifierPP2.job [364] =>PUP.Optional.AnyProtect
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\APSnotifierPP3.job [364] =>PUP.Optional.AnyProtect
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\Crossbrowse.job [1048] =>PUP.Optional.CrossBrowse
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job [974] =>PUP.Optional.GlobalUpdate
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job [978] =>PUP.Optional.GlobalUpdate
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\JzrA7Tt6oyrstTSItlc9wkvcZR.job [1032]
O39 - APT: Orphean - (...) -- C:\Windows\Tasks\uJxFYSteWpBcg.job [1006]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3874]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3914]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-Quentin-PC-Quentin [3498]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\APSnotifierPP1 [2820] =>PUP.Optional.AnyProtect
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\APSnotifierPP2 [2818] =>PUP.Optional.AnyProtect
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\APSnotifierPP3 [2818] =>PUP.Optional.AnyProtect
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\BoxSoftwareUpdate [3284] =>PUP.Optional.Boxore
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2776]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Crossbrowse [4082] =>PUP.Optional.CrossBrowse
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\DealPly [3522] =>PUP.Optional.Dealply
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\DealPlyUpdate [3358] =>PUP.Optional.Dealply
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Desk 365 RunAsStdUser [3380] =>PUP.Optional.22Find
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore [3722] =>PUP.Optional.GlobalUpdate
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA [3976] =>PUP.Optional.GlobalUpdate
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\gtaUpt [3624]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Inst_Rep [3512]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\JzrA7Tt6oyrstTSItlc9wkvcZR [4066]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\LaunchSignup [4010]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Omiga Plus RunAsStdUser [3404] =>PUP.Optional.OmigaPlus
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1421092079 [3842]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\PhraseProfessor Auto Updater 1.10.0.21 Core [4190]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\PhraseProfessor Auto Updater 1.10.0.21 Pending Update [4200]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Plus-HD-2.2-chromeinstaller [4916] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Plus-HD-2.2-codedownloader [4220] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Plus-HD-2.2-firefoxinstaller [4840] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Plus-HD-2.2-updater [5074] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Plus-HD-2.3-chromeinstaller [4912] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Plus-HD-2.3-codedownloader [4216] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Plus-HD-2.3-firefoxinstaller [4836] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Plus-HD-2.3-updater [5074] =>PUP.Optional.CrossRider
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\RunAsStdUser [3308]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Run_Bobby_Browser [3164]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\ShopperProJSUpd [3564] =>PUP.Optional.ShopperPro
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\SmartWeb Upgrade Trigger Task [4046] =>PUP.Optional.SmartWebSearch
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\SMupdate1 [3730]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\SMW_UpdateTask_Time_313034393036383437352d3437415a556c2a3223346c41 [4252]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\SPBIW_UpdateTask_Time_313034393036383437352d3437415a556c2a3223346c41 [4246]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\SPDriver [3490]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Test TimeTrigger [3690]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\uJxFYSteWpBcg [4040]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\upfs7235 [3090]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\WordWizard Auto Updater 1.10.0.24 Core [4160]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\WordWizard Auto Updater 1.10.0.24 Pending Update [4170]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\YTDownloader [3578] =>PUP.Optional.YTDownloader
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\YTDownloaderUpd [3568] =>PUP.Optional.YTDownloader
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{0932A7C0-23AD-4CA3-9B0A-80DEEDFB8368} [3154]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{0B8FDD91-9644-4F15-BBC2-06810A9C6987} [3086]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{337BA3A4-AC1E-4BDF-B1B2-AB859D660436} [3432]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{37A8D4BB-844D-483E-969A-24443A88873E} [3000]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{39C46C23-8778-4BEC-A831-2316626B0D7C} [3080]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{4140FA32-1EC2-4F50-8E99-FDCCDE4D10BD} [3040]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{B8C76E88-F377-43B8-A65B-A3CF02B3934C} [3040]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{E767E5CD-703A-443A-961A-7C2F56BDDF3F} [3104]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{ECBD0DF3-60F5-4BB0-AA30-B2F254145E56} [3128]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{F958F826-278D-4996-863E-9E28F787A978} [3006]

---\\ Logiciels installés (81) - 13s
O42 - Logiciel: Adobe Flash Player 19 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 16 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Flash Player 15 Pepper - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Pepper
O42 - Logiciel: Battlelog Web Plugins - (.EA Digital Illusions CE AB.) [HKLM] -- Battlelog Web Plugins
O42 - Logiciel: Castle Story v0.1.0.6f02 1.0 - (.Cat-A-Cat.) [HKLM] -- Castle Story v0.1.0.6f02 1.0
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: EPSON Logiciel imprimante - (...) [HKLM] -- EPSON Printer and Utilities
O42 - Logiciel: EPSON Scan - (...) [HKLM] -- EPSON Scanner
O42 - Logiciel: ESCX6600 Guide de réf. - (...) [HKLM] -- ESCX6600 Guide de réf.
O42 - Logiciel: ESCX6600 Guide des logiciels - (...) [HKLM] -- ESCX6600 Guide des logiciels
O42 - Logiciel: FormatFactory 3.1.1 - (.Free Time.) [HKLM] -- FormatFactory
O42 - Logiciel: SmartSound Quicktracks 5 - (.SmartSound Software Inc..) [HKLM] -- InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}
O42 - Logiciel: Update Manager B08.1027.1 - (.GIGABYTE.) [HKLM] -- InstallShield_{4E25C468-7745-4051-8B37-4A2C6635BA8B}
O42 - Logiciel: AION Free-To-Play - (.Gameforge.) [HKLM] -- InstallShield_{6A9EF6CF-7630-4E33-AE22-7D70F3AF4B05}
O42 - Logiciel: SmartSound Common Data - (.SmartSound Software Inc..) [HKLM] -- InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM] -- LogMeIn Hamachi
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client
O42 - Logiciel: Action! - (.Mirillis.) [HKLM] -- Mirillis Action!
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIAStereo
O42 - Logiciel: Opera Stable 32.0.1948.69 - (.Opera Software.) [HKLM] -- Opera 32.0.1948.69
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM] -- Origin
O42 - Logiciel: Pacman Bundle by SweetPacks - (.SweetPacks LTD.) [HKLM] -- Pacman Bundle by SweetPacks
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM] -- PunkBusterSvc
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM] -- Steam
O42 - Logiciel: XCOM: Enemy Unknown - (.Firaxis Games.) [HKLM] -- Steam App 200510
O42 - Logiciel: Unturned - (.Nelson Sexton.) [HKLM] -- Steam App 304930
O42 - Logiciel: WinRAR 4.20 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Software Update Helper - (.Boxore OU..) [HKLM] -- {006E6A46-8D55-4F10-BBA8-2C9653B4278B}
O42 - Logiciel: Les Sims 2 Académie - (...) [HKLM] -- {01521746-02A6-4A72-00BD-A285DF6B80C6}
O42 - Logiciel: EasySaver B9.0205.1 - (.Gigabyte.) [HKLM] -- {07300F01-89CA-4CF8-92BD-2A605EB83C95}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: EPSON PRINT Image Framer Tool2.1 - (...) [HKLM] -- {23B59ED4-C360-11D7-875B-0090CC005647}
O42 - Logiciel: Java 8 Update 40 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218040F0}
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM] -- {2E660A2A-A55F-43CD-9F73-CAD7382EEB78}
O42 - Logiciel: SmartSound Quicktracks 5 - (.SmartSound Software Inc..) [HKLM] -- {2F8BA3FD-1FA9-4279-B696-712ABB12F09F}
O42 - Logiciel: Gigabyte Raid Configurer - (.Gigabyte Technology Corp..) [HKLM] -- {3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}
O42 - Logiciel: Battlefield: Bad Company™ 2 - (.Electronic Arts.) [HKLM] -- {3AC8457C-0385-4BEA-A959-E095F05D6D67}
O42 - Logiciel: ANNO 1404 - Gold Edition - (.Ubisoft.) [HKLM] -- {3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}
O42 - Logiciel: Les Sims™ 2 Animaux & Cie - (...) [HKLM] -- {4817189D-1785-4627-A33C-39FD90919300}
O42 - Logiciel: Microsoft Games for Windows - LIVE - (.Microsoft Corporation.) [HKLM] -- {4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}
O42 - Logiciel: Battlefield 1942™ - (.Electronic Arts.) [HKLM] -- {5BE7BD06-512B-43bf-AD78-3BD2A5F5F7B3}
O42 - Logiciel: Plantes contre Zombies™ - (.Electronic Arts, Inc..) [HKLM] -- {5E6536C2-E79A-49CF-83EA-817AD81F9FC8}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
O42 - Logiciel: EPSON PhotoQuicker3.5 - (...) [HKLM] -- {65F5B7AF-3363-11D7-BB6B-00018021113F}
O42 - Logiciel: EPSON Copy Utility 3 - (...) [HKLM] -- {67EDD823-135A-4D59-87BD-950616D6E857}
O42 - Logiciel: Skype™ 7.8 - (.Skype Technologies S.A..) [HKLM] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19}
O42 - Logiciel: AION Free-To-Play - (.Gameforge.) [HKLM] -- {6A9EF6CF-7630-4E33-AE22-7D70F3AF4B05}
O42 - Logiciel: Les Sims 2 Fun en Famille Kit - (...) [HKLM] -- {6BDD9CE6-D0A6-478A-BAD3-BA6945E89EB0}
O42 - Logiciel: EPSON Smart Panel - (...) [HKLM] -- {6C11D561-620B-47DA-A693-4C597F3CDF40}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {6E3939AE-9996-4D07-9A30-14C78AE93576}
O42 - Logiciel: Adobe Photoshop CS6 - (.Adobe Systems Incorporated.) [HKLM] -- {74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}
O42 - Logiciel: Battlefield 3™ - (.Electronic Arts.) [HKLM] -- {76285C16-411A-488A-BCE3-C83CB933D8CF}
O42 - Logiciel: Les Sims 2 : La bonne affaire - (...) [HKLM] -- {7B3577F5-1D82-4C9B-008B-69D026FD8BCA}
O42 - Logiciel: Text-To-Speech-Runtime - (.Magix Development GmbH.) [HKLM] -- {7B3F0113-E63C-4D6D-AF19-111A3165CCA2}
O42 - Logiciel: PIF DESIGNER2.1 - (...) [HKLM] -- {7BD0A2D8-4EA0-43C6-BDF8-DDA87B8031C6}
O42 - Logiciel: EPSON Web-To-Page - (...) [HKLM] -- {7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}
O42 - Logiciel: AION Free-to-Play - (.Gameforge.) [HKLM] -- {82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: Ubisoft Game Launcher - (.UBISOFT.) [HKLM] -- {888F1505-C2B3-4FDE-835D-36353EBD4754}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: OpenOffice 4.0.1 - (.Apache Software Foundation.) [HKLM] -- {8D5D54B8-3D29-4AB4-8DA8-1868DAF941D8}
O42 - Logiciel: Fallout 3 - (.Bethesda Softworks.) [HKLM] -- {974C4B12-4D02-4879-85E0-61C95CC63E9E}
O42 - Logiciel: Les Sims™ 2 Deluxe - (...) [HKLM] -- {9C244239-ED8E-40f1-937F-51C706CD2160}
O42 - Logiciel: Gameforge Live 2.0.5 - (.Gameforge.) [HKLM] -- {9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1
O42 - Logiciel: Battlefield 4™ - (.Electronic Arts.) [HKLM] -- {ABADE36E-EC37-413B-8179-B432AD3FACE7}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824147215}
O42 - Logiciel: Adobe Reader XI (11.0.12) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: NVIDIA Pilote graphique 311.06 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {B83FC356-B7C0-441F-8A4D-D71E088E7974}
O42 - Logiciel: SmartSound Common Data - (.SmartSound Software Inc..) [HKLM] -- {B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM] -- {B8D84F70-0296-11E2-8DF5-F04DA23A5C58}
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM] -- {B8E7EF80-9719-4EEB-944D-E68D1F3DFA7B}
O42 - Logiciel: Pipix version 3.0.9.2 - (.Pixelife.) [HKLM] -- {C3894ED5-138E-43C9-92B6-47D228390FA3}_is1
O42 - Logiciel: LEGO® Le Seigneur des Anneaux™ - (.Warner Bros. Interactive Entertainment.) [HKLM] -- {C6F20FA7-342A-47A9-A3C8-EB36CABE6419}
O42 - Logiciel: Browser Configuration Utility - (.DeviceVM Inc..) [HKLM] -- {E8AEA11B-E60A-455E-B008-E4E763604612}
O42 - Logiciel: ScanToWeb - (...) [HKLM] -- {EBAE381B-60A6-4863-AA9F-FCAB755BC9E5}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: DMUninstaller - (...) [HKLM] -- DMUninstaller
O42 - Logiciel: DomaIQ - (.Tuguu SLU.) [HKLM] -- DomaIQ Uninstaller =>PUP.Optional.DomaIQ

---\\ HKCU & HKLM Software Keys (235) - 13s
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\AdwCleaner
HKLM\SOFTWARE\AGEIA Technologies
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\AVAST Software
HKLM\SOFTWARE\Battlelog Web Plugins
HKLM\SOFTWARE\Bethesda Softworks
HKLM\SOFTWARE\Better Surf Plus =>PUP.Optional.BetterSurf
HKLM\SOFTWARE\Boxore =>PUP.Optional.Boxore
HKLM\SOFTWARE\Bunndle
HKLM\SOFTWARE\C07ft5Y
HKLM\SOFTWARE\Caphyon
HKLM\SOFTWARE\CBSTEST
HKLM\SOFTWARE\CDDB
HKLM\SOFTWARE\Chromium
HKLM\SOFTWARE\Clara =>PUP.Optional.SupTab
HKLM\SOFTWARE\Client
HKLM\SOFTWARE\Company Name
HKLM\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\DeviceVM Inc.
HKLM\SOFTWARE\DICE
HKLM\SOFTWARE\Disc Soft
HKLM\SOFTWARE\DT Soft
HKLM\SOFTWARE\EA Games
HKLM\SOFTWARE\ej-technologies
HKLM\SOFTWARE\Electronic Arts
HKLM\SOFTWARE\EPSON
HKLM\SOFTWARE\findSoftware
HKLM\SOFTWARE\Futuremark
HKLM\SOFTWARE\Gameforge
HKLM\SOFTWARE\Gameforge4d
HKLM\SOFTWARE\Gigabyte
HKLM\SOFTWARE\Gigabyte Technology Corp.
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\InstallShield
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\jawset visual computing
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\LogMeIn Hamachi
HKLM\SOFTWARE\LogMeIn, Inc.
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\MAGIX
HKLM\SOFTWARE\MaxPower
HKLM\SOFTWARE\MC4D
HKLM\SOFTWARE\MediaBuzzV1 =>PUP.Optional.MediaBuzz
HKLM\SOFTWARE\MediaBuzzV1mode578 =>PUP.Optional.MediaBuzz
HKLM\SOFTWARE\MediaPlayerV1
HKLM\SOFTWARE\MediaPlayerV1alpha576
HKLM\SOFTWARE\MediaViewerV1
HKLM\SOFTWARE\MediaViewerV1alpha818
HKLM\SOFTWARE\MediaViewV1 =>PUP.Optional.MediaViewer
HKLM\SOFTWARE\MediaViewV1alpha486 =>PUP.Optional.MediaViewer
HKLM\SOFTWARE\MediaViewV1alpha6303 =>PUP.Optional.MediaViewer
HKLM\SOFTWARE\MediaWatchV1
HKLM\SOFTWARE\MediaWatchV1home1811
HKLM\SOFTWARE\Metin2_FR
HKLM\SOFTWARE\Mindscape
HKLM\SOFTWARE\mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\MyBrowser
HKLM\SOFTWARE\NewSoft
HKLM\SOFTWARE\Nostale_FR
HKLM\SOFTWARE\NVIDIA Corporation
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\OpenOffice
HKLM\SOFTWARE\Opera Software
HKLM\SOFTWARE\Origin
HKLM\SOFTWARE\Origin Games
HKLM\SOFTWARE\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\PhraseProfessor_1.10.0.21 =>PUP.Optional.Generic
HKLM\SOFTWARE\Piriform
HKLM\SOFTWARE\PlayGem
HKLM\SOFTWARE\PopCap
HKLM\SOFTWARE\Protexis
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Reg
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\RichMediaViewV1 =>PUP.Optional.MediaViewer
HKLM\SOFTWARE\Runes of Magic
HKLM\SOFTWARE\SearchModule
HKLM\SOFTWARE\Sierra OnLine
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\Smart Panel
HKLM\SOFTWARE\SmartSound Software
HKLM\SOFTWARE\Software
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\Sony Creative Software
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\Supreme Savings Helper =>PUP.Optional.RewardsArcade
HKLM\SOFTWARE\Symantec
HKLM\SOFTWARE\TechSmith
HKLM\SOFTWARE\TrustMediaViewerV1
HKLM\SOFTWARE\TrustMediaViewerV1alpha1081
HKLM\SOFTWARE\Ttsmhjjupx
HKLM\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\UBISOFT
HKLM\SOFTWARE\Valve
HKLM\SOFTWARE\Volatile
HKLM\SOFTWARE\Warner Bros. Interactive Entertainment
HKLM\SOFTWARE\Waves Audio
HKLM\SOFTWARE\WdsManPro
HKLM\SOFTWARE\WebexpEnhancedV1 =>PUP.Optional.WebexpEnhanced
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\WNLT =>PUP.Optional.IncrediBar
HKLM\SOFTWARE\WordProser_1.10.0.5 =>PUP.Optional.WordProser
HKLM\SOFTWARE\WordWizard_1.10.0.24 =>PUP.Optional.Generic
HKLM\SOFTWARE\WOW6432Node
HKLM\SOFTWARE\Yahoo
HKLM\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Zemi Interactive
HKLM\SOFTWARE\Even Balance
HKCU\SOFTWARE\2.6.1095.52
HKCU\SOFTWARE\a288db
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Aion
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Battlefield 1942
HKCU\SOFTWARE\BoBrowser =>PUP.Optional.BoBrowser
HKCU\SOFTWARE\Boxore =>PUP.Optional.Boxore
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CinemaPlus-3.2cV27.09-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinePlus-1.44V30.09-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Corel
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\DailyPcClean =>PUP.Optional.DailyPCClean
HKCU\SOFTWARE\Digimarc
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DownloadCenter
HKCU\SOFTWARE\Drivers
HKCU\SOFTWARE\Dry Cactus
HKCU\SOFTWARE\DSS
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\EPSON
HKCU\SOFTWARE\Eric Haines
HKCU\SOFTWARE\Flash Player Pro
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\Gameforge4d
HKCU\SOFTWARE\GigaByte
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\IncrediMail
HKCU\SOFTWARE\Infernum
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\InstallShield
HKCU\SOFTWARE\InstallTools
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\InterVideo
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\jawset visual computing
HKCU\SOFTWARE\kde.org
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MAGIX
HKCU\SOFTWARE\MAGIX AG
HKCU\SOFTWARE\MainConcept
HKCU\SOFTWARE\MC4D
HKCU\SOFTWARE\MGinstall
HKCU\SOFTWARE\Mirillis
HKCU\SOFTWARE\mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MyBrowser
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NewBlue
HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\OpenOffice
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Payload
HKCU\SOFTWARE\Pipix
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Pixelife
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Reg
HKCU\SOFTWARE\Related Designs
HKCU\SOFTWARE\RLZer
HKCU\SOFTWARE\Sauropod Studio
HKCU\SOFTWARE\SecuROM
HKCU\SOFTWARE\SEIKO EPSON
HKCU\SOFTWARE\Setup
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Smartly Dressed Games
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\Sony Creative Software
HKCU\SOFTWARE\Store =>PUP.Optional.Generic
HKCU\SOFTWARE\System32
HKCU\SOFTWARE\TechSmith
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\Telltale Games
HKCU\SOFTWARE\teras games
HKCU\SOFTWARE\test
HKCU\SOFTWARE\tfdfu
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\Ttsmhjjupx
HKCU\SOFTWARE\Ubisoft
HKCU\SOFTWARE\uJxFYSteWpBcg
HKCU\SOFTWARE\Ulead Systems
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\Wargaming.net
HKCU\SOFTWARE\Warner Bros. Interactive Entertainment
HKCU\SOFTWARE\Win
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\WNLT =>PUP.Optional.IncrediBar
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\WTools
HKCU\SOFTWARE\Yahoo
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar

---\\ Contenu des dossiers Programmes (313) - 13s
O43 - CFD: 2015/09/30 16:54:46 - [] D -- C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF =>PUP.Optional.CrossRider
O43 - CFD: 2015/09/30 15:38:21 - [] D -- C:\Program Files\Adobe
O43 - CFD: 2015/03/08 19:47:12 - [] D -- C:\Program Files\AdviceAnimals Meme Strip
O43 - CFD: 2015/01/26 11:34:48 - [] D -- C:\Program Files\AGEIA Technologies
O43 - CFD: 2014/12/12 22:01:47 - [] D -- C:\Program Files\Battlelog Web Plugins
O43 - CFD: 2015/09/28 19:57:58 - [0] D -- C:\Program Files\Boxore =>PUP.Optional.Boxore
O43 - CFD: 2013/03/17 00:58:00 - [] D -- C:\Program Files\Browser Configuration Utility
O43 - CFD: 2014/10/17 20:41:05 - [] D -- C:\Program Files\CCleaner
O43 - CFD: 2015/09/30 15:27:04 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2014/12/01 12:01:14 - [] D -- C:\Program Files\Corel
O43 - CFD: 2013/08/07 20:49:23 - [] D -- C:\Program Files\directx
O43 - CFD: 2013/07/04 10:10:32 - [0] D -- C:\Program Files\dumps
O43 - CFD: 2011/02/14 01:37:40 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 2014/11/19 11:43:07 - [] D -- C:\Program Files\EA GAMES
O43 - CFD: 2015/09/19 14:38:41 - [] D -- C:\Program Files\epson
O43 - CFD: 2015/09/29 18:35:02 - [] D -- C:\Program Files\Exploremedia =>PUP.Optional.Generic
O43 - CFD: 2013/03/10 02:03:05 - [0] SHD -- C:\Program Files\Fichiers communs
O43 - CFD: 2013/09/23 17:18:18 - [] D -- C:\Program Files\FreeTime
O43 - CFD: 2014/11/17 18:05:31 - [] D -- C:\Program Files\GameforgeLive
O43 - CFD: 2015/09/26 13:45:06 - [] D -- C:\Program Files\GIGABYTE
O43 - CFD: 2015/09/29 18:25:03 - [] D -- C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/09/29 18:25:57 - [] D -- C:\Program Files\gmsd_fr_005010101 =>PUP.Optional.CrossRider
O43 - CFD: 2015/03/17 16:53:21 - [] D -- C:\Program Files\GNow Voice Search
O43 - CFD: 2015/09/30 15:51:48 - [] D -- C:\Program Files\Google
O43 - CFD: 2015/02/11 21:13:11 - [] D -- C:\Program Files\HMA IP Checker
O43 - CFD: 2013/10/13 19:51:37 - [] D -- C:\Program Files\Image Converter
O43 - CFD: 2015/09/30 17:00:34 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2015/09/18 22:20:15 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2015/03/08 11:25:54 - [] D -- C:\Program Files\Java
O43 - CFD: 2013/04/24 16:21:21 - [] D -- C:\Program Files\JDownloader
O43 - CFD: 2015/09/18 13:17:48 - [] D -- C:\Program Files\LogMeIn Hamachi
O43 - CFD: 2010/11/21 02:47:00 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 2013/11/19 20:05:48 - [] D -- C:\Program Files\Microsoft Games for Windows - LIVE
O43 - CFD: 2013/04/01 10:12:37 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2015/09/18 22:04:54 - [] D -- C:\Program Files\Microsoft Security Client
O43 - CFD: 2015/09/18 22:18:48 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 2013/03/11 19:25:16 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2014/11/25 11:50:40 - [] D -- C:\Program Files\Mirillis
O43 - CFD: 2015/01/12 21:53:07 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2009/07/14 06:52:30 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2013/04/01 10:08:24 - [] D -- C:\Program Files\MSECache
O43 - CFD: 2013/10/16 15:19:01 - [] D -- C:\Program Files\MSXML 4.0
O43 - CFD: 2013/04/15 12:42:50 - [] D -- C:\Program Files\NVIDIA Corporation
O43 - CFD: 2014/04/11 13:18:57 - [] D -- C:\Program Files\OpenOffice 4
O43 - CFD: 2015/09/30 17:04:56 - [] D -- C:\Program Files\Opera
O43 - CFD: 2015/04/02 14:58:52 - [] D -- C:\Program Files\Origin
O43 - CFD: 2014/05/10 20:36:09 - [] D -- C:\Program Files\Origin Games
O43 - CFD: 2015/03/17 17:21:36 - [] D -- C:\Program Files\Patr Pats Flickr App
O43 - CFD: 2014/10/09 16:45:17 - [] D -- C:\Program Files\Pipix
O43 - CFD: 2015/09/29 18:45:58 - [0] D -- C:\Program Files\predm =>PUP.Optional.Downware
O43 - CFD: 2013/03/17 00:58:18 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2009/07/14 06:52:30 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2015/09/29 18:24:54 - [] D -- C:\Program Files\SFK =>PUP.Optional.MyWebSearch
O43 - CFD: 2015/09/18 17:11:33 - [] RD -- C:\Program Files\Skype
O43 - CFD: 2015/09/23 12:07:09 - [] D -- C:\Program Files\Sm2y4ntu1zti5zgf
O43 - CFD: 2015/09/19 14:34:30 - [] D -- C:\Program Files\Smart Panel
O43 - CFD: 2013/12/16 23:00:24 - [] D -- C:\Program Files\SmartSound Software
O43 - CFD: 2015/09/20 19:47:01 - [] D -- C:\Program Files\soAvereboox =>PUP.Optional.Multiplug
O43 - CFD: 2015/09/29 17:54:07 - [] D -- C:\Program Files\Software =>PUP.Optional.Boxore
O43 - CFD: 2015/09/30 15:31:30 - [] D -- C:\Program Files\Steam
O43 - CFD: 2014/11/26 16:16:53 - [] D -- C:\Program Files\TechSmith
O43 - CFD: 2013/03/17 00:58:49 - [0] HD -- C:\Program Files\Temp
O43 - CFD: 2013/12/18 15:43:02 - [] D -- C:\Program Files\Ubisoft
O43 - CFD: 2015/01/23 19:10:11 - [] D -- C:\Program Files\Umza4yzvhztq5nwf
O43 - CFD: 2009/07/14 06:53:23 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2014/11/04 12:34:57 - [0] D -- C:\Program Files\VideoLAN
O43 - CFD: 2015/03/09 12:41:38 - [] D -- C:\Program Files\We Love Deals
O43 - CFD: 2013/07/11 09:56:36 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2015/09/18 22:20:23 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 2011/02/14 01:37:41 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2013/03/29 12:40:12 - [] D -- C:\Program Files\Windows Media Components
O43 - CFD: 2015/09/18 22:20:07 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2013/03/10 02:03:05 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2011/02/14 01:37:40 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 2010/11/20 23:33:48 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2011/02/14 01:37:41 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 2013/03/24 17:21:28 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 2015/09/24 14:45:45 - [0] D -- C:\Program Files\Yahoo!
O43 - CFD: 2015/03/08 19:32:51 - [] D -- C:\Program Files\YouTube Flags
O43 - CFD: 2013/04/22 11:15:23 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2013/03/10 01:57:22 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/02/15 18:15:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anno 1701
O43 - CFD: 2013/12/16 18:18:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camtech
O43 - CFD: 2013/05/05 18:34:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/01/07 19:33:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
O43 - CFD: 2015/09/19 14:39:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
O43 - CFD: 2015/09/19 14:38:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON PhotoQuicker
O43 - CFD: 2015/09/19 14:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Scan
O43 - CFD: 2015/09/19 14:34:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Scan to Web
O43 - CFD: 2015/09/19 14:34:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Smart Panel
O43 - CFD: 2015/09/19 14:31:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Utility Suite
O43 - CFD: 2014/04/09 15:00:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge
O43 - CFD: 2014/11/17 18:05:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
O43 - CFD: 2015/09/26 14:17:04 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2013/06/25 12:43:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gestio Airsoft
O43 - CFD: 2013/03/24 14:47:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
O43 - CFD: 2014/12/27 18:43:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
O43 - CFD: 2015/03/08 11:24:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015/09/18 13:17:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
O43 - CFD: 2009/07/14 06:42:30 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2013/11/19 20:05:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE
O43 - CFD: 2015/09/18 22:06:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2014/11/25 11:27:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
O43 - CFD: 2013/04/15 13:10:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2014/04/11 13:19:32 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.0.1
O43 - CFD: 2015/04/02 14:58:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
O43 - CFD: 2014/10/09 16:45:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pipix
O43 - CFD: 2015/09/18 17:11:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/01/18 18:07:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/09/28 20:10:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2010/11/21 02:46:50 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2013/03/24 17:21:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2014/11/15 21:21:08 - [0] D -- C:\ProgramData\2308189059
O43 - CFD: 2015/01/06 19:15:39 - [0] D -- C:\ProgramData\4001812108
O43 - CFD: 2015/09/17 10:40:21 - [0] D -- C:\ProgramData\658662426
O43 - CFD: 2015/09/29 18:24:30 - [] D -- C:\ProgramData\9WdsManPro9
O43 - CFD: 2013/08/15 15:13:49 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2015/03/08 11:41:19 - [] D -- C:\ProgramData\APoptoU =>PUP.Optional.Multiplug
O43 - CFD: 2014/12/01 11:16:56 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/10/19 14:20:32 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2015/09/28 19:57:38 - [0] D -- C:\ProgramData\Boxore =>PUP.Optional.Boxore
O43 - CFD: 2013/03/10 02:03:05 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2014/12/01 12:00:46 - [] D -- C:\ProgramData\Corel
O43 - CFD: 2013/10/14 17:00:31 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2015/09/20 19:48:59 - [] D -- C:\ProgramData\DDownloAd kaeeper =>PUP.Optional.Multiplug
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2015/09/20 19:47:51 - [] D -- C:\ProgramData\DigiSaeveR =>PUP.Optional.Multiplug
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/02/11 21:13:11 - [] D -- C:\ProgramData\doollarkeeeper =>PUP.Optional.Multiplug
O43 - CFD: 2015/09/24 16:06:10 - [] D -- C:\ProgramData\DowNleooad keeeper =>PUP.Optional.Multiplug
O43 - CFD: 2013/03/17 18:50:50 - [] D -- C:\ProgramData\EA Core
O43 - CFD: 2013/05/10 11:44:39 - [] D -- C:\ProgramData\EA Logs
O43 - CFD: 2015/09/24 16:06:10 - [] D -- C:\ProgramData\EixsetraCoaupoan =>PUP.Optional.Multiplug
O43 - CFD: 2013/03/17 18:50:54 - [] D -- C:\ProgramData\Electronic Arts
O43 - CFD: 2013/12/16 23:00:27 - [] D -- C:\ProgramData\eSellerate
O43 - CFD: 2015/09/20 19:48:51 - [] D -- C:\ProgramData\ExsotRaCoupon =>PUP.Optional.Multiplug
O43 - CFD: 2013/03/10 02:03:05 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2014/12/17 12:21:57 - [] D -- C:\ProgramData\GoldenCoupon
O43 - CFD: 2014/01/06 20:21:57 - [] D -- C:\ProgramData\Google
O43 - CFD: 2013/10/26 11:11:38 - [] D -- C:\ProgramData\InstallMate =>PUP.Optional.Tarma
O43 - CFD: 2013/03/24 14:47:16 - [] D -- C:\ProgramData\InstallShield
O43 - CFD: 2014/09/09 09:20:29 - [] D -- C:\ProgramData\JonniCouupono =>PUP.Optional.Multiplug
O43 - CFD: 2013/10/28 18:20:43 - [] D -- C:\ProgramData\LogMeIn
O43 - CFD: 2015/01/06 19:12:58 - [] D -- C:\ProgramData\MAGIX
O43 - CFD: 2013/08/10 10:10:09 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2013/03/10 02:03:05 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/09/25 18:32:39 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/09/24 16:06:09 - [] D -- C:\ProgramData\MinimumPrice =>PUP.Optional.Multiplug
O43 - CFD: 2014/11/25 11:32:56 - [] D -- C:\ProgramData\Mirillis
O43 - CFD: 2013/03/10 02:03:05 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2013/09/17 09:58:23 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/09/30 14:53:36 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2013/04/15 12:39:15 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/03/08 11:26:12 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2015/04/02 15:56:16 - [] D -- C:\ProgramData\Origin
O43 - CFD: 2014/12/01 11:07:52 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/09/29 18:30:44 - [] D -- C:\ProgramData\PlayGemConfig
O43 - CFD: 2014/05/10 21:28:20 - [] D -- C:\ProgramData\PopCap Games
O43 - CFD: 2013/12/16 23:30:03 - [] D -- C:\ProgramData\Protexis
O43 - CFD: 2014/12/17 12:21:55 - [] D -- C:\ProgramData\Red AdBlocker =>PUP.Optional.Adblocker
O43 - CFD: 2014/12/26 20:51:20 - [] D -- C:\ProgramData\ReegoularDeeAls =>PUP.Optional.Deeal
O43 - CFD: 2014/01/15 16:11:00 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 2015/09/24 16:06:02 - [] D -- C:\ProgramData\SaveNewaAppz =>PUP.Optional.Multiplug
O43 - CFD: 2015/09/20 19:49:58 - [] D -- C:\ProgramData\SaveREExTeensiOn =>PUP.Optional.Multiplug
O43 - CFD: 2015/09/30 14:52:04 - [] D -- C:\ProgramData\SearchModule
O43 - CFD: 2015/09/26 14:17:25 - [] SHD -- C:\ProgramData\SecuROM
O43 - CFD: 2015/09/18 17:12:03 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2013/12/16 23:00:33 - [] D -- C:\ProgramData\SmartSound Software Inc
O43 - CFD: 2014/01/23 17:11:31 - [0] D -- C:\ProgramData\Solid State Networks
O43 - CFD: 2015/01/01 16:16:04 - [] D -- C:\ProgramData\Solidshield
O43 - CFD: 2015/03/08 11:41:18 - [] D -- C:\ProgramData\SSMartCComparre =>PUP.Optional.Multiplug
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2013/03/24 15:59:51 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2015/02/07 15:41:34 - [] D -- C:\ProgramData\Supreme AdBlocker =>PUP.Optional.Adblocker
O43 - CFD: 2015/02/11 21:13:11 - [] D -- C:\ProgramData\takeOrleeave
O43 - CFD: 2014/10/30 21:20:17 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/09/19 14:36:06 - [] D -- C:\ProgramData\UDL
O43 - CFD: 2013/09/23 17:04:14 - [] D -- C:\ProgramData\Ulead Systems
O43 - CFD: 2015/09/24 16:05:54 - [] D -- C:\ProgramData\websaver =>PUP.Optional.Multiplug
O43 - CFD: 2014/10/23 10:12:37 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 2015/09/24 14:46:26 - [] D -- C:\Program Files\Common Files\Config
O43 - CFD: 2014/10/17 20:51:11 - [] HD -- C:\Program Files\Common Files\EAInstaller
O43 - CFD: 2013/05/21 18:53:07 - [] D -- C:\Program Files\Common Files\EasyInfo
O43 - CFD: 2015/09/30 14:51:56 - [] D -- C:\Program Files\Common Files\Goobzo =>PUP.Optional.Goobzo
O43 - CFD: 2015/09/19 14:29:28 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 2015/03/08 11:25:21 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 2015/01/06 19:17:42 - [] D -- C:\Program Files\Common Files\MAGIX Services
O43 - CFD: 2013/10/16 15:19:07 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2009/07/14 04:37:05 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 2015/09/18 17:11:33 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 2009/07/14 04:37:05 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 2015/09/28 20:31:44 - [] D -- C:\Program Files\Common Files\Steam
O43 - CFD: 2015/09/24 14:46:26 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 2013/03/17 00:48:14 - [] D -- C:\Program Files\Common Files\Wise Installation Wizard
O43 - CFD: 2013/11/08 19:56:38 - [] D -- C:\Users\Quentin\AppData\Roaming\.aethericcrusade
O43 - CFD: 2015/09/30 16:45:11 - [] D -- C:\Users\Quentin\AppData\Roaming\.minecraft
O43 - CFD: 2015/09/17 10:46:21 - [] D -- C:\Users\Quentin\AppData\Roaming\Adobe
O43 - CFD: 2015/09/29 18:27:07 - [] SHD -- C:\Users\Quentin\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
O43 - CFD: 2014/12/02 14:48:13 - [] D -- C:\Users\Quentin\AppData\Roaming\Apple Computer
O43 - CFD: 2014/05/10 20:10:07 - [0] D -- C:\Users\Quentin\AppData\Roaming\BitTorrent
O43 - CFD: 2014/12/01 12:00:48 - [] D -- C:\Users\Quentin\AppData\Roaming\Corel
O43 - CFD: 2014/01/08 12:02:47 - [] D -- C:\Users\Quentin\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2014/01/02 15:06:36 - [] D -- C:\Users\Quentin\AppData\Roaming\Google
O43 - CFD: 2013/03/10 02:03:32 - [] D -- C:\Users\Quentin\AppData\Roaming\Identities
O43 - CFD: 2013/03/29 11:49:06 - [] D -- C:\Users\Quentin\AppData\Roaming\InstallShield
O43 - CFD: 2015/09/17 11:37:25 - [] D -- C:\Users\Quentin\AppData\Roaming\java
O43 - CFD: 2014/01/14 23:06:09 - [] D -- C:\Users\Quentin\AppData\Roaming\jawset
O43 - CFD: 2013/03/17 12:47:06 - [] D -- C:\Users\Quentin\AppData\Roaming\Macromedia
O43 - CFD: 2014/12/12 21:31:42 - [] D -- C:\Users\Quentin\AppData\Roaming\MAGIX
O43 - CFD: 2013/12/20 15:57:28 - [] D -- C:\Users\Quentin\AppData\Roaming\MAXON
O43 - CFD: 2010/11/21 02:46:50 - [0] D -- C:\Users\Quentin\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/09/26 13:45:06 - [] SD -- C:\Users\Quentin\AppData\Roaming\Microsoft
O43 - CFD: 2014/11/25 11:32:55 - [] D -- C:\Users\Quentin\AppData\Roaming\Mirillis
O43 - CFD: 2015/09/19 16:40:48 - [0] D -- C:\Users\Quentin\AppData\Roaming\MMFApplications
O43 - CFD: 2013/09/16 18:22:09 - [] D -- C:\Users\Quentin\AppData\Roaming\Mozilla
O43 - CFD: 2015/09/29 18:24:25 - [] D -- C:\Users\Quentin\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
O43 - CFD: 2013/05/03 18:57:08 - [] D -- C:\Users\Quentin\AppData\Roaming\Namco
O43 - CFD: 2015/09/28 19:56:14 - [0] D -- C:\Users\Quentin\AppData\Roaming\Nosibay =>PUP.Optional.BubbleDock
O43 - CFD: 2013/12/16 23:30:11 - [] D -- C:\Users\Quentin\AppData\Roaming\NVIDIA
O43 - CFD: 2014/04/11 13:19:40 - [] D -- C:\Users\Quentin\AppData\Roaming\OpenOffice
O43 - CFD: 2013/11/28 13:22:42 - [] D -- C:\Users\Quentin\AppData\Roaming\Opera Software
O43 - CFD: 2013/10/08 16:21:46 - [] D -- C:\Users\Quentin\AppData\Roaming\Origin
O43 - CFD: 2015/09/29 18:24:59 - [] D -- C:\Users\Quentin\AppData\Roaming\ortmp
O43 - CFD: 2013/07/04 10:11:42 - [] D -- C:\Users\Quentin\AppData\Roaming\player
O43 - CFD: 2013/03/10 21:28:41 - [] RHD -- C:\Users\Quentin\AppData\Roaming\SecuROM
O43 - CFD: 2015/09/30 17:19:56 - [] D -- C:\Users\Quentin\AppData\Roaming\Skype
O43 - CFD: 2013/10/16 15:44:48 - [] D -- C:\Users\Quentin\AppData\Roaming\Sony
O43 - CFD: 2013/07/26 14:59:21 - [] D -- C:\Users\Quentin\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 2015/09/18 20:53:32 - [] D -- C:\Users\Quentin\AppData\Roaming\Steam
O43 - CFD: 2015/09/29 18:44:46 - [0] D -- C:\Users\Quentin\AppData\Roaming\Store =>PUP.Optional.Nosibay
O43 - CFD: 2014/11/26 16:28:17 - [] D -- C:\Users\Quentin\AppData\Roaming\TechSmith
O43 - CFD: 2013/09/16 15:59:10 - [] D -- C:\Users\Quentin\AppData\Roaming\Thinstall
O43 - CFD: 2015/01/04 15:07:57 - [] D -- C:\Users\Quentin\AppData\Roaming\Ubisoft
O43 - CFD: 2014/12/01 11:40:19 - [] D -- C:\Users\Quentin\AppData\Roaming\Ulead Systems
O43 - CFD: 2014/05/12 11:51:56 - [] D -- C:\Users\Quentin\AppData\Roaming\Wargaming.net
O43 - CFD: 2013/08/28 10:35:25 - [] D -- C:\Users\Quentin\AppData\Roaming\Warner Bros. Interactive Entertainment
O43 - CFD: 2013/03/24 17:21:36 - [] D -- C:\Users\Quentin\AppData\Roaming\WinRAR
O43 - CFD: 2015/09/28 19:43:47 - [] D -- C:\Users\Quentin\AppData\Roaming\WTools
O43 - CFD: 2015/09/30 17:32:57 - [] D -- C:\Users\Quentin\AppData\Roaming\ZHP
O43 - CFD: 2014/10/17 20:41:06 - [] D -- C:\Users\Quentin\AppData\Local\15680
O43 - CFD: 2014/09/22 18:17:36 - [] D -- C:\Users\Quentin\AppData\Local\31420
O43 - CFD: 2015/09/29 17:55:37 - [] D -- C:\Users\Quentin\AppData\Local\34323030-1443469920-4537-3636-3331FFFFFFFF
O43 - CFD: 2015/09/22 10:18:14 - [] D -- C:\Users\Quentin\AppData\Local\Adobe
O43 - CFD: 2013/03/10 02:03:25 - [0] SHD -- C:\Users\Quentin\AppData\Local\Application Data
O43 - CFD: 2013/03/10 20:07:21 - [] D -- C:\Users\Quentin\AppData\Local\Apps
O43 - CFD: 2013/10/03 19:47:58 - [] D -- C:\Users\Quentin\AppData\Local\avgchrome
O43 - CFD: 2015/09/28 19:50:43 - [] D -- C:\Users\Quentin\AppData\Local\Boxore =>PUP.Optional.Boxore
O43 - CFD: 2014/02/24 10:14:45 - [] D -- C:\Users\Quentin\AppData\Local\cache
O43 - CFD: 2014/01/02 09:56:45 - [] D -- C:\Users\Quentin\AppData\Local\Castle Story Prototype
O43 - CFD: 2015/09/18 14:38:42 - [] D -- C:\Users\Quentin\AppData\Local\CEF
O43 - CFD: 2013/03/30 10:05:29 - [] D -- C:\Users\Quentin\AppData\Local\Chromium
O43 - CFD: 2015/01/06 19:00:31 - [] D -- C:\Users\Quentin\AppData\Local\com =>PUP.Optional.Generic
O43 - CFD: 2013/04/24 11:09:10 - [] D -- C:\Users\Quentin\AppData\Local\Corel
O43 - CFD: 2014/12/27 22:26:33 - [0] D -- C:\Users\Quentin\AppData\Local\CrashDumps
O43 - CFD: 2014/10/20 09:41:40 - [] D -- C:\Users\Quentin\AppData\Local\CrashRpt =>.Legitimate.CrashReports
O43 - CFD: 2013/03/24 15:55:05 - [] D -- C:\Users\Quentin\AppData\Local\CRE
O43 - CFD: 2015/09/30 15:29:33 - [] D -- C:\Users\Quentin\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2013/10/27 11:22:49 - [0] D -- C:\Users\Quentin\AppData\Local\Deployment
O43 - CFD: 2015/09/24 15:21:17 - [] D -- C:\Users\Quentin\AppData\Local\Diagnostics
O43 - CFD: 2014/04/06 19:09:00 - [] D -- C:\Users\Quentin\AppData\Local\Electronic Arts
O43 - CFD: 2015/09/22 10:18:36 - [0] SHD -- C:\Users\Quentin\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/09/22 10:18:36 - [0] SHD -- C:\Users\Quentin\AppData\Local\EmieSiteList
O43 - CFD: 2015/09/22 10:18:36 - [0] SHD -- C:\Users\Quentin\AppData\Local\EmieUserList
O43 - CFD: 2013/03/17 18:52:12 - [] D -- C:\Users\Quentin\AppData\Local\ESN
O43 - CFD: 2013/05/17 22:06:59 - [] D -- C:\Users\Quentin\AppData\Local\ESN Sonar
O43 - CFD: 2014/02/04 16:07:57 - [] D -- C:\Users\Quentin\AppData\Local\Fallout3
O43 - CFD: 2014/04/09 17:47:16 - [] D -- C:\Users\Quentin\AppData\Local\Gameforge4d
O43 - CFD: 2015/09/29 18:25:03 - [] D -- C:\Users\Quentin\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/09/29 18:25:54 - [] D -- C:\Users\Quentin\AppData\Local\gmsd_fr_005010101 =>PUP.Optional.CrossRider
O43 - CFD: 2015/09/30 15:49:22 - [] D -- C:\Users\Quentin\AppData\Local\Google
O43 - CFD: 2013/03/10 02:03:25 - [0] SHD -- C:\Users\Quentin\AppData\Local\Historique
O43 - CFD: 2015/09/30 14:51:35 - [] D -- C:\Users\Quentin\AppData\Local\Installer =>PUP.Optional.InstallPedia
O43 - CFD: 2013/10/05 09:49:09 - [] D -- C:\Users\Quentin\AppData\Local\LogMeIn
O43 - CFD: 2015/09/30 15:31:29 - [] D -- C:\Users\Quentin\AppData\Local\LogMeIn Hamachi
O43 - CFD: 2013/09/17 11:56:43 - [] D -- C:\Users\Quentin\AppData\Local\Macromedia
O43 - CFD: 2015/09/19 09:28:09 - [] D -- C:\Users\Quentin\AppData\Local\Microsoft
O43 - CFD: 2015/09/22 11:24:56 - [] D -- C:\Users\Quentin\AppData\Local\Microsoft Games
O43 - CFD: 2014/11/25 11:32:56 - [] D -- C:\Users\Quentin\AppData\Local\Mirillis
O43 - CFD: 2013/10/03 19:47:19 - [] D -- C:\Users\Quentin\AppData\Local\Mozilla
O43 - CFD: 2014/07/29 19:36:32 - [] D -- C:\Users\Quentin\AppData\Local\Opera Software
O43 - CFD: 2013/07/30 10:59:17 - [] D -- C:\Users\Quentin\AppData\Local\Origin
O43 - CFD: 2013/11/27 18:36:07 - [] D -- C:\Users\Quentin\AppData\Local\Pipix-3
O43 - CFD: 2013/05/25 10:39:02 - [] D -- C:\Users\Quentin\AppData\Local\Programs
O43 - CFD: 2013/11/02 19:13:49 - [] D -- C:\Users\Quentin\AppData\Local\PunkBuster
O43 - CFD: 2014/02/28 10:42:25 - [] D -- C:\Users\Quentin\AppData\Local\Skype
O43 - CFD: 2015/09/30 15:48:42 - [] D -- C:\Users\Quentin\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
O43 - CFD: 2015/09/28 19:49:17 - [] D -- C:\Users\Quentin\AppData\Local\Software =>PUP.Optional.Boxore
O43 - CFD: 2013/11/16 10:53:03 - [] D -- C:\Users\Quentin\AppData\Local\Sony
O43 - CFD: 2014/10/28 10:23:33 - [0] D -- C:\Users\Quentin\AppData\Local\Sparta
O43 - CFD: 2015/03/08 17:11:50 - [] D -- C:\Users\Quentin\AppData\Local\Steam
O43 - CFD: 2015/03/04 14:39:44 - [] D -- C:\Users\Quentin\AppData\Local\SWDS
O43 - CFD: 2014/11/26 16:19:46 - [] D -- C:\Users\Quentin\AppData\Local\TechSmith
O43 - CFD: 2015/09/30 17:32:08 - [] D -- C:\Users\Quentin\AppData\Local\Temp
O43 - CFD: 2015/09/29 18:25:01 - [0] D -- C:\Users\Quentin\AppData\Local\Tempfolder
O43 - CFD: 2013/03/10 02:03:25 - [0] SHD -- C:\Users\Quentin\AppData\Local\Temporary Internet Files
O43 - CFD: 2013/09/16 15:59:10 - [] D -- C:\Users\Quentin\AppData\Local\Thinstall
O43 - CFD: 2015/09/19 01:06:20 - [] D -- C:\Users\Quentin\AppData\Local\TurmoilSteam
O43 - CFD: 2014/01/07 15:49:54 - [] D -- C:\Users\Quentin\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 2013/08/05 20:32:34 - [] D -- C:\Users\Quentin\AppData\Local\Updater32912
O43 - CFD: 2015/09/19 14:24:59 - [] D -- C:\Users\Quentin\AppData\Local\VirtualStore
O43 - CFD: 2013/03/24 16:23:23 - [] RD -- C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/09/29 17:51:02 - [] RD -- C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/01/02 09:55:50 - [] D -- C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Castle Story v0.1.0.6f02 1.0
O43 - CFD: 2013/09/23 17:18:39 - [] D -- C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 2014/11/19 12:45:39 - [] D -- C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2013/06/25 12:43:16 - [0] D -- C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gestio Airsoft
O43 - CFD: 2009/07/14 06:37:42 - [] RD -- C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/09/30 16:38:38 - [] RD -- C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/01/15 10:46:33 - [] D -- C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2013/03/24 17:21:28 - [] D -- C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Derniers fichiers créés dans Windows Prefetcher (17) - 9s
O45 - LFCP:[MD5.073DA69A7E10D38CD3486BF4041A7D31] 2015/09/22 18:22:47 A -- C:\Windows\Prefetch\BOXORE.EXE-8CFABEF1.pf =>PUP.Optional.Boxore
O45 - LFCP:[MD5.FDAB755C9934F51FEC23449E74098F9F] 2015/09/24 14:17:51 A -- C:\Windows\Prefetch\CONVERTAD.EXE-2F0269CE.pf =>PUP.Optional.Pirrit
O45 - LFCP:[MD5.07346188D8A84153BCB9B32A06DBABFA] 2015/09/24 14:39:43 A -- C:\Windows\Prefetch\COUPONSUPPORT.EXE-6BC7823C.pf =>PUP.Optional.CouponSupport
O45 - LFCP:[MD5.A80A27C7809AD0BAB2067356F5A9C502] 2015/09/22 12:06:17 A -- C:\Windows\Prefetch\PICEXA.EXE-C2D72995.pf =>PUP.Optional.Picexa
O45 - LFCP:[MD5.5A19C2969166C415B0A3F6039232EA2D] 2015/09/23 16:45:45 A -- C:\Windows\Prefetch\PICEXASVC.EXE-C076FDF9.pf =>PUP.Optional.Picexa
O45 - LFCP:[MD5.597625E74876648F3ADBE29A88824D5F] 2015/09/22 18:22:22 A -- C:\Windows\Prefetch\PLUS-HD-2.2-CHROMEINSTALLER.E-DE3CDAA6.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.CD3ADC625985914471F97B1FD9D3DEF3] 2015/09/22 18:22:22 A -- C:\Windows\Prefetch\PLUS-HD-2.2-CODEDOWNLOADER.EX-3973B294.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.D70EC53896182CFC779F5F2D49FB4B5F] 2015/09/21 19:43:02 A -- C:\Windows\Prefetch\PLUS-HD-2.2-FIREFOXINSTALLER.-BE63ABBF.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.9410F726340A4B807E3C1EAF2750F809] 2015/09/21 19:44:00 A -- C:\Windows\Prefetch\PLUS-HD-2.2-UPDATER.EXE-531B065B.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.7325397156B341FC428853F59ECD5C70] 2015/09/22 18:22:22 A -- C:\Windows\Prefetch\PLUS-HD-2.3-CHROMEINSTALLER.E-4D97C9D0.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.C25FF8E1460F87996573334F966D8A3F] 2015/09/22 18:22:22 A -- C:\Windows\Prefetch\PLUS-HD-2.3-CODEDOWNLOADER.EX-2FFF13CE.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.89EAAAF3A09EA024DA8B87A82A9377B6] 2015/09/22 13:52:01 A -- C:\Windows\Prefetch\PLUS-HD-2.3-FIREFOXINSTALLER.-3BACA359.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.CFDD7062F4A703112E708C1F6F0214B0] 2015/09/22 13:52:00 A -- C:\Windows\Prefetch\PLUS-HD-2.3-UPDATER.EXE-8246FC05.pf =>PUP.Optional.CrossRider
O45 - LFCP:[MD5.4D00A201369228F801B25CBD5426013D] 2015/09/23 17:19:01 A -- C:\Windows\Prefetch\PRICORA-CODEDOWNLOADER.EXE-569746EC.pf =>PUP.Optional.Pricora
O45 - LFCP:[MD5.90B9997610C659044576159E1FF51A6D] 2015/09/23 17:19:02 A -- C:\Windows\Prefetch\PRICORA-FIREFOXINSTALLER.EXE-86969297.pf =>PUP.Optional.Pricora
O45 - LFCP:[MD5.983FE25D97FA2B5CAEF2C7BDCD7E4B67] 2015/09/23 17:19:01 A -- C:\Windows\Prefetch\PRICORA-UPDATER.EXE-B7D086F3.pf =>PUP.Optional.Pricora
O45 - LFCP:[MD5.105F86B7CFFA6D41454536D3B9F5CBF9] 2015/09/24 14:16:41 A -- C:\Windows\Prefetch\YONTOODESKTOP.EXE-EF1B4E66.pf =>PUP.Optional.Yontoo

---\\ Liste des pilotes du système (70) - 6s
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976]
O58 - SDL:2009/07/14 03:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552]
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512]
O58 - SDL:2009/07/14 03:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400]
O58 - SDL:2011/03/11 07:38:37 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [80256]
O58 - SDL:2009/07/14 03:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312]
O58 - SDL:2011/03/11 07:38:37 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22400]
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368]
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608]
O58 - SDL:2014/02/15 18:15:43 A . (...) -- C:\Windows\System32\drivers\atksgt.sys [271360]
O58 - SDL:2009/07/14 00:02:49 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gi.) -- C:\Windows\System32\drivers\b57nd60x.sys [229888]
O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568]
O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248]
O58 - SDL:2009/07/14 02:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128]
O58 - SDL:2009/07/14 00:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336]
O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904]
O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080]
O58 - SDL:2009/07/14 03:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952]
O58 - SDL:2009/07/14 03:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720]
O58 - SDL:2009/07/14 03:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712]
O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160]
O58 - SDL:2009/03/18 18:35:40 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\drivers\hamachi.sys [26176]
O58 - SDL:2009/07/14 00:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624]
O58 - SDL:2009/07/14 03:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152]
O58 - SDL:2011/03/11 07:38:51 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332160]
O58 - SDL:2009/07/14 03:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040]
O58 - SDL:2008/11/04 04:21:04 A . (.JMicron Technology Corp. - JMicron JMB36X RAID Driver.) -- C:\Windows\System32\drivers\jraid.sys [83296]
O58 - SDL:2014/02/15 18:12:27 A . (...) -- C:\Windows\System32\drivers\lirsgt.sys [18048]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95824]
O58 - SDL:2009/07/14 03:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89168]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848]
O58 - SDL:2015/09/23 06:35:18 A . (.Windows (R) Win 7 DDK provider - NetFilter SDK WFP Driver (WPP).) -- C:\Windows\System32\drivers\m2i4mzv2zxm5bgf.sys [42840]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584]
O58 - SDL:2014/05/22 19:05:08 A . (.NT Kernel Resources - NDISRD helper driver.) -- C:\Windows\System32\drivers\ncdevice.sys [35616]
O58 - SDL:2009/07/14 03:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624]
O58 - SDL:2013/02/26 00:22:06 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [8939296]
O58 - SDL:2011/03/11 07:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117120]
O58 - SDL:2011/03/11 07:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [143744]
O58 - SDL:2015/04/02 15:19:51 A . (...) -- C:\Windows\System32\drivers\PnkBstrK.sys [139888]
O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488]
O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064]
O58 - SDL:2009/07/14 00:02:52 A . (.Realtek Corporation - Realtek 8101E/8168/8169 NDIS 6.20 32-bit Dr.) -- C:\Windows\System32\drivers\Rt86win7.sys [139776]
O58 - SDL:2009/01/20 08:10:52 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [2317536]
O58 - SDL:2009/07/13 22:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480]
O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016]
O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888]
O58 - SDL:2009/07/14 03:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072]
O58 - SDL:2009/07/14 03:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976]
O58 - SDL:2009/07/14 03:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904]
O58 - SDL:2013/04/24 11:05:49 RASH . (...) -- C:\Windows\System32\0E89D67120.sys [88]
O58 - SDL:2009/07/13 23:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:2009/07/13 23:40:44 A . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:2015/07/14 11:44:38 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys [26176]
O58 - SDL:2009/07/13 23:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2013/04/24 11:05:49 ASH . (...) -- C:\Windows\System32\KGyGaAvL.sys [2828]
O58 - SDL:2009/07/13 23:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:2009/07/13 23:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2009/07/13 23:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2009/07/13 23:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2009/07/13 23:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2009/07/13 23:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:2009/07/13 23:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:2009/07/13 23:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:2009/07/13 23:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:2009/07/13 23:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (23) - 80s
O61 - LFC: 2015/09/30 14:36:22 A . (..) -- C:\Users\Quentin\Desktop\TerraTech by Nicomouk9\announcements.bin [35440]
O61 - LFC: 2015/09/29 10:19:38 A . (..) -- C:\Users\Quentin\AppData\Roaming\ortmp\uninstaller.exe [233408]
O61 - LFC: 2015/09/30 17:03:22 A . (.The Chromium Authors.) -- C:\Users\Quentin\AppData\Roaming\Opera Software\Opera Stable\WidevineCDM\1.4.8.824\_platform_specific\win_x86\widevinecdmadapter.dll [208504]
O61 - LFC: 2015/09/23 19:06:06 A . (..) -- C:\Users\Quentin\AppData\Roaming\NVIDIA\GLCache\104242e0c758f56573e8c1ab2acdc243\3a36bfdfc06abc19\82bd674ac494837f.bin [193568]
O61 - LFC: 2015/09/30 16:45:17 A . (..) -- C:\Users\Quentin\AppData\Roaming\.minecraft\versions\1.8.1\1.8.1-natives-6726734457325\avutil-ttv-51.dll [246332]
O61 - LFC: 2015/09/30 16:45:17 A . (..) -- C:\Users\Quentin\AppData\Roaming\.minecraft\versions\1.8.1\1.8.1-natives-6726734457325\jinput-dx8.dll [61952]
O61 - LFC: 2015/09/30 16:45:17 A . (..) -- C:\Users\Quentin\AppData\Roaming\.minecraft\versions\1.8.1\1.8.1-natives-6726734457325\jinput-dx8_64.dll [65024]
O61 - LFC: 2015/09/30 16:45:17 A . (..) -- C:\Users\Quentin\AppData\Roaming\.minecraft\versions\1.8.1\1.8.1-natives-6726734457325\jinput-raw.dll [59392]
O61 - LFC: 2015/09/30 16:45:17 A . (..) -- C:\Users\Quentin\AppData\Roaming\.minecraft\versions\1.8.1\1.8.1-natives-6726734457325\jinput-raw_64.dll [62464]
O61 - LFC: 2015/09/30 16:45:17 A . (..) -- C:\Users\Quentin\AppData\Roaming\.minecraft\versions\1.8.1\1.8.1-natives-6726734457325\jinput-wintab.dll [56832]
O61 - LFC: 2015/09/30 16:45:17 A . (..) -- C:\Users\Quentin\AppData\Roaming\.minecraft\versions\1.8.1\1.8.1-natives-6726734457325\libmp3lame-ttv.dll [394810]
O61 - LFC: 2015/09/30 16:45:17 A . (..) -- C:\Users\Quentin\AppData\Roaming\.minecraft\versions\1.8.1\1.8.1-natives-6726734457325\lwjgl.dll [298496]
O61 - LFC: 2015/09/30 16:45:17 A . (..) -- C:\Users\Quentin\AppData\Roaming\.minecraft\versions\1.8.1\1.8.1-natives-6726734457325\lwjgl64.dll [310272]
O61 - LFC: 2015/09/30 16:45:16 A . (..) -- C:\Users\Quentin\AppData\Roaming\.minecraft\versions\1.8.1\1.8.1-natives-6726734457325\OpenAL32.dll [390144]
O61 - LFC: 2015/09/30 16:45:17 A . (..) -- C:\Users\Quentin\AppData\Roaming\.minecraft\versions\1.8.1\1.8.1-natives-6726734457325\OpenAL64.dll [382464]
O61 - LFC: 2015/09/30 16:45:17 A . (..) -- C:\Users\Quentin\AppData\Roaming\.minecraft\versions\1.8.1\1.8.1-natives-6726734457325\swresample-ttv-0.dll [113171]
O61 - LFC: 2015/09/30 16:45:17 A . (..) -- C:\Users\Quentin\AppData\Roaming\.minecraft\versions\1.8.1\1.8.1-natives-6726734457325\twitchsdk.dll [1145344]
O61 - LFC: 2015/09/24 14:46:31 A . (..) -- C:\Users\Quentin\AppData\LocalLow\SkwConfig.bin [18688]
O61 - LFC: 2015/09/23 18:22:22 A . (..) -- C:\Users\Quentin\AppData\Local\SWDS\SWDS.bin [4928]
O61 - LFC: 2015/09/30 14:51:17 A . (.SoftBrain Technologies Ltd..) -- C:\Users\Quentin\AppData\Local\SmartWeb\__u.exe [172673] =>PUP.Optional.SmartWebSearch
O61 - LFC: 2015/09/29 13:56:13 A . (..) -- C:\Users\Quentin\AppData\Local\gmsd_fr_005010101\upgmsd_fr_005010101.exe [3322000] =>PUP.Optional.CrossRider
O61 - LFC: 2015/09/28 19:52:04 A . (..) -- C:\Users\Quentin\AppData\Local\34323030-1443469920-4537-3636-3331FFFFFFFF\rnsz6E22.exe [161792]
O61 - LFC: 2015/09/28 19:52:10 A . (..) -- C:\Users\Quentin\AppData\Local\34323030-1443469920-4537-3636-3331FFFFFFFF\Uninstall.exe [50461]

---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\Launcher.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\launcher.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\launcher.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\launcher.exe

---\\ Recherche d'infection sur les navigateurs (17) - 19s
O69 - SBI: prefs.js [Quentin - lkmp2ft3.default] user_pref("extensions.a7125a2857e6847aa9d72e81874f4d47ed3fcdb92135d4a8a8cf611e3b57c5fdacom33426.33426.name", "Plus-HD-2.3"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [Quentin - lkmp2ft3.default] user_pref("extensions.a92f62b97e4e94505ab9dbd29c855bdfegmailcom62002.62002.internaldb.monetization_plugin_bundledUrls.expiration",[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Quentin - lkmp2ft3.default] user_pref("extensions.a92f62b97e4e94505ab9dbd29c855bdfegmailcom62002.62002.internaldb.monetization_plugin_bundledWithHash.expirati[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Quentin - lkmp2ft3.default] user_pref("extensions.a92f62b97e4e94505ab9dbd29c855bdfegmailcom62002.62002.internaldb.monetization_plugin_bundledWithHash.value", [...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Quentin - lkmp2ft3.default] user_pref("extensions.a92f62b97e4e94505ab9dbd29c855bdfegmailcom62002.62002.internaldb.monetization_plugin_notBundledArr_.expiratio[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Quentin - lkmp2ft3.default] user_pref("extensions.a92f62b97e4e94505ab9dbd29c855bdfegmailcom62002.62002.internaldb.monetization_plugin_notBundledArr_.value", "[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Quentin - lkmp2ft3.default] user_pref("extensions.a92f62b97e4e94505ab9dbd29c855bdfegmailcom62002.62002.internaldb.monetization_plugin_regBundledWithSoftware.e[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Quentin - lkmp2ft3.default] user_pref("extensions.a92f62b97e4e94505ab9dbd29c855bdfegmailcom62002.62002.internaldb.monetization_plugin_regBundledWithSoftware.v[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Quentin - lkmp2ft3.default] user_pref("extensions.a92f62b97e4e94505ab9dbd29c855bdfegmailcom62002.62002.name", "Plus-HD-2.3c"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [Quentin - lkmp2ft3.default] user_pref("extensions.a92f62b97e4e94505ab9dbd29c855bdfegmailcom62002.62002.plugins.plugin_102.name", "dealply_m"); =>PUP.Optional.Dealply
O69 - SBI: prefs.js [Quentin - lkmp2ft3.default] user_pref("extensions.a92f62b97e4e94505ab9dbd29c855bdfegmailcom62002.62002.plugins.plugin_195.name", "icm_convertmedia_m"); =>PUP.Optional.ConVertME
O69 - SBI: prefs.js [Quentin - lkmp2ft3.default] user_pref("extensions.a92f62b97e4e94505ab9dbd29c855bdfegmailcom62002.62002.plugins.plugin_93.name", "superfish_no_coupons_m"); =>PUP.Optional.SpecialSavings
O69 - SBI: prefs.js [Quentin - lkmp2ft3.default] user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"SpecialSavings@SpecialSavings.com\":{\"descri[...] =>PUP.Optional.SpecialSavings
O69 - SBI: SearchScopes [HKCU] {0F395144-C7F0-4F74-9500-C915AE5BE0A8} [DefaultScope] - (Search Module) - http://www-searching.com/
O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {3EA90226-586F-4D70-BA6A-D04F79C605FB} - (Bing.com) - http://www.trovi.com/ =>PUP.Optional.Trovigo
O69 - SBI: SearchScopes [HKCU] {7F4EFF06-7032-458e-AE16-1C1D8255C28A} - (Search Module) - http://www-searching.com/

---\\ Enumère les fichiers Crack & Keygen (1) - 133s
O82 - LFC: 2013/02/25 21:40:46 A . (.Fixed by Megalan, keygen by UNLEASHED.) -- C:\Users\Quentin\Desktop\Steam Master Patch\ArcenKeygen.exe [24576] =>.Crack,Keygen

---\\ Enumère les services démarrés par Svchost (33) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [593408]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [679424]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [475136]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [286208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [242176]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [523776]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2061824]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [585728]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [499712]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [47104]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164864]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [751104]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [113664]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102912]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [149504]

---\\ Liste des exceptions du parefeu Windows (5) - 2s
O87 - FAEL: "{41E1AF78-3FAB-4639-8CCD-EE8D03FB1BED}" [In-None-P6-TRUE] .(...) -- C:\Jeux\gta\EFLC\LaunchEFLC.exe (.not file.)
O87 - FAEL: "{518CA0B2-756C-467F-BA52-74552D7BDCE5}" [In-None-P17-TRUE] .(...) -- C:\Jeux\gta\EFLC\LaunchEFLC.exe (.not file.)
O87 - FAEL: "{5BF41F6A-7F9F-4316-9B39-69610FE811A8}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe
O87 - FAEL: "{6A30CF20-3930-46A3-AA66-94845251A396}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Steam\SteamApps\common\Unturned\Unturned.exe
O87 - FAEL: "{99BBAF16-416B-4F08-92F5-405119CB3343}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Max Driver Updater\maxdu.exe (.not file.) =>PUP.Optional.MaxDriverUpdater

---\\ Recherche des packages WindowsInstaller (2) - 5s
[MD5.] [WIS][2013/04/30 23:23:38] (.SweetIM Technologies Ltd. - InstallShield® 2008 - Professional Edition.) -- C:\Windows\Installer\6bc151.msi [3760128] =>PUP.Optional.SweetIM
[MD5.] [WIS][2013/08/16 17:36:03] (.Boxore OU - Windows Installer XML (3.6.3303.0).) -- C:\Windows\Installer\e69fe.msi [1974272] =>PUP.Optional.Boxore

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (13) - 20s
SR - Auto [2009/02/05 14:43:26] [ 68136] ES lite Service for program management. (ES lite Service) . (...) - C:\Program Files\GIGABYTE\EasySaver\essvr.exe
SS - Auto [2015/09/30 15:26:40] [ 68608] globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate.) - C:\Program Files\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
SS - Demand [2015/09/30 15:26:40] [ 68608] globalUpdate Update Service (globalUpdatem) (globalUpdatem) . (.globalUpdate.) - C:\Program Files\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
SR - Auto [2015/09/28 19:51:35] [ 203776] CD Feature (gyvixodu) . (...) - C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF\hnstF2F8.tmp =>PUP.Optional.CrossRider
SR - Auto [2015/07/14 11:55:14] [ 1878888] LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) . (.LogMeIn Inc..) - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
SR - Auto [2015/09/28 19:51:30] [ 181760] Disk Low-res (lehicewu) . (...) - C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF\jnsjDD16.tmp =>PUP.Optional.CrossRider
SR - Auto [2015/07/14 11:45:20] [ 411920] LMIGuardianSvc (LMIGuardianSvc) . (.LogMeIn, Inc..) - C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
SR - Auto [2015/09/30 16:31:18] [ 323584] Network Server Counter-intuitive (mubejeto) . (...) - C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF\knszD83.tmp =>PUP.Optional.CrossRider
SR - Auto [2014/06/29 15:49:36] [ 76152] PnkBstrA (PnkBstrA) . (...) - C:\Windows\System32\PnkBstrA.exe
SStart Pending - Auto [2007/06/05 14:20:32] [ 177704] ProtexisLicensing (ProtexisLicensing) . (.© 2000-2005 Protexis Inc..) - C:\Windows\System32\PSIService.exe
SR - Auto [2015/09/30 09:02:42] [ 1858560] Search Module Update (SMUpd) . (.Search Module Ltd..) - C:\Program Files\Common Files\Goobzo\GBUpdate\smu.exe =>PUP.Optional.YTDownloader
SR - Auto [2015/09/29 18:24:28] [ 458400] SSFK (SSFK) . (.TODO: <公司名>.) - C:\Program Files\SFK\SSFK.exe
SR - Auto [2015/09/29 18:24:26] [ 442504] WdsManPro Service (WdsManPro) . (.DTools LIMITED.) - C:\ProgramData\9WdsManPro9\WdsManPro.exe =>PUP.Optional.WpManager

---\\ Recherche de clés de registre Tracing (34) - 3s
HKLM\SOFTWARE\Microsoft\Tracing\boxore_RASAPI32 =>PUP.Optional.Boxore
HKLM\SOFTWARE\Microsoft\Tracing\boxore_RASMANCS =>PUP.Optional.Boxore
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock BSetup_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock BSetup_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubbledock_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubbledock_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\distro-amzn-ironsource-rs_RASAPI32 =>PUP.Optional.Ironsource
HKLM\SOFTWARE\Microsoft\Tracing\distro-amzn-ironsource-rs_RASMANCS =>PUP.Optional.Ironsource
HKLM\SOFTWARE\Microsoft\Tracing\dnsbasic_RASAPI32 =>PUP.Optional.BasicScan
HKLM\SOFTWARE\Microsoft\Tracing\dnsbasic_RASMANCS =>PUP.Optional.BasicScan
HKLM\SOFTWARE\Microsoft\Tracing\DomaIQ10_RASAPI32 =>PUP.Optional.DomaIQ
HKLM\SOFTWARE\Microsoft\Tracing\DomaIQ10_RASMANCS =>PUP.Optional.DomaIQ
HKLM\SOFTWARE\Microsoft\Tracing\FastPlayer_RASAPI32 =>PUP.Optional.FastPlayer
HKLM\SOFTWARE\Microsoft\Tracing\FastPlayer_RASMANCS =>PUP.Optional.FastPlayer
HKLM\SOFTWARE\Microsoft\Tracing\iminent_nonsearch_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\iminent_nonsearch_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\LollipopInstaller_2203-14906630_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\LollipopInstaller_2203-14906630_RASMANCS =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\LollipopInstaller_amonetize_14633_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\LollipopInstaller_amonetize_14633_RASMANCS =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_04121624_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_04121624_RASMANCS =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_04271202_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_04271202_RASMANCS =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_05021614_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_05021614_RASMANCS =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_05031651_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_05031651_RASMANCS =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\Lollipop_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\Lollipop_RASMANCS =>PUP.Optional.Lollipop

---\\ Scan Additionnel (186) - 0s
C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF\hnstF2F8.tmp =>PUP.Optional.CrossRider
C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF\jnsjDD16.tmp =>PUP.Optional.CrossRider
C:\Program Files\Common Files\Goobzo\GBUpdate\smu.exe =>PUP.Optional.Goobzo
C:\ProgramData\9WdsManPro9\WdsManPro.exe =>PUP.Optional.WpManager
C:\Users\Quentin\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe =>PUP.Optional.Nosibay
C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF\knszD83.tmp =>PUP.Optional.CrossRider
C:\Users\Quentin\AppData\Roaming\Mozilla\Firefox\Profiles\lkmp2ft3.default\extensions\94ae0976-89df-4347-9771-5371c6e203bf@3796dc63-d06d-4575-a997-9b5c935fe915.com =>PUP.Optional.CrossRider
C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
C:\Program Files\Steam\Steam.exe =>PUP.Optional.Nosibay
C:\Windows\System32\Vaklilu.dll =>Hijacker.Winsock
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\gyvixodu =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\lehicewu =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\mubejeto =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\SMUpd =>PUP.Optional.YTDownloader
C:\Program Files\Common Files\Goobzo\GBUpdate\smu.exe =>PUP.Optional.YTDownloader
HKLM\SYSTEM\CurrentControlSet\Services\Util Web Amplified =>PUP.Optional.WebAmplified*
HKLM\SYSTEM\CurrentControlSet\Services\WdsManPro =>PUP.Optional.WpManager
C:\Windows\Tasks\APSnotifierPP1.job =>PUP.Optional.AnyProtect
C:\Windows\Tasks\APSnotifierPP2.job =>PUP.Optional.AnyProtect
C:\Windows\Tasks\APSnotifierPP3.job =>PUP.Optional.AnyProtect
C:\Windows\Tasks\Crossbrowse.job =>PUP.Optional.CrossBrowse
C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job =>PUP.Optional.GlobalUpdate
C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job =>PUP.Optional.GlobalUpdate
C:\Windows\System32\Tasks\APSnotifierPP1 =>PUP.Optional.AnyProtect
C:\Windows\System32\Tasks\APSnotifierPP2 =>PUP.Optional.AnyProtect
C:\Windows\System32\Tasks\APSnotifierPP3 =>PUP.Optional.AnyProtect
C:\Windows\System32\Tasks\BoxSoftwareUpdate =>PUP.Optional.Boxore
C:\Windows\System32\Tasks\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Windows\System32\Tasks\DealPly =>PUP.Optional.Dealply
C:\Windows\System32\Tasks\DealPlyUpdate =>PUP.Optional.Dealply
C:\Windows\System32\Tasks\Desk 365 RunAsStdUser =>PUP.Optional.22Find
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore =>PUP.Optional.GlobalUpdate
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA =>PUP.Optional.GlobalUpdate
C:\Windows\System32\Tasks\Omiga Plus RunAsStdUser =>PUP.Optional.OmigaPlus
C:\Windows\System32\Tasks\Plus-HD-2.2-chromeinstaller =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\Plus-HD-2.2-codedownloader =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\Plus-HD-2.2-firefoxinstaller =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\Plus-HD-2.2-updater =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\Plus-HD-2.3-chromeinstaller =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\Plus-HD-2.3-codedownloader =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\Plus-HD-2.3-firefoxinstaller =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\Plus-HD-2.3-updater =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\ShopperProJSUpd =>PUP.Optional.ShopperPro
C:\Windows\System32\Tasks\SmartWeb Upgrade Trigger Task =>PUP.Optional.SmartWebSearch
C:\Windows\System32\Tasks\YTDownloader =>PUP.Optional.YTDownloader
C:\Windows\System32\Tasks\YTDownloaderUpd =>PUP.Optional.YTDownloader
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DomaIQ Uninstaller =>PUP.Optional.DomaIQ
HKLM\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Better Surf Plus =>PUP.Optional.BetterSurf
HKLM\SOFTWARE\Boxore =>PUP.Optional.Boxore
HKLM\SOFTWARE\Clara =>PUP.Optional.SupTab
HKLM\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\MediaBuzzV1 =>PUP.Optional.MediaBuzz
HKLM\SOFTWARE\MediaBuzzV1mode578 =>PUP.Optional.MediaBuzz
HKLM\SOFTWARE\MediaViewV1 =>PUP.Optional.MediaViewer
HKLM\SOFTWARE\MediaViewV1alpha486 =>PUP.Optional.MediaViewer
HKLM\SOFTWARE\MediaViewV1alpha6303 =>PUP.Optional.MediaViewer
HKLM\SOFTWARE\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\PhraseProfessor_1.10.0.21 =>PUP.Optional.Generic
HKLM\SOFTWARE\RichMediaViewV1 =>PUP.Optional.MediaViewer
HKLM\SOFTWARE\Supreme Savings Helper =>PUP.Optional.RewardsArcade
HKLM\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\WebexpEnhancedV1 =>PUP.Optional.WebexpEnhanced
HKLM\SOFTWARE\WNLT =>PUP.Optional.IncrediBar
HKLM\SOFTWARE\WordProser_1.10.0.5 =>PUP.Optional.WordProser
HKLM\SOFTWARE\WordWizard_1.10.0.24 =>PUP.Optional.Generic
HKLM\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\BoBrowser =>PUP.Optional.BoBrowser
HKCU\SOFTWARE\Boxore =>PUP.Optional.Boxore
HKCU\SOFTWARE\CinemaPlus-3.2cV27.09-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinePlus-1.44V30.09-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\DailyPcClean =>PUP.Optional.DailyPCClean
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
HKCU\SOFTWARE\Store =>PUP.Optional.Generic
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\WNLT =>PUP.Optional.IncrediBar
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar
C:\Program Files\34323030-1443462672-4537-3636-3331FFFFFFFF =>PUP.Optional.CrossRider
C:\Program Files\Boxore =>PUP.Optional.Boxore
C:\Program Files\Exploremedia =>PUP.Optional.Generic
C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\gmsd_fr_005010101 =>PUP.Optional.CrossRider
C:\Program Files\predm =>PUP.Optional.Downware
C:\Program Files\SFK =>PUP.Optional.MyWebSearch
C:\Program Files\soAvereboox =>PUP.Optional.Multiplug
C:\Program Files\Software =>PUP.Optional.Boxore
C:\ProgramData\APoptoU =>PUP.Optional.Multiplug
C:\ProgramData\Boxore =>PUP.Optional.Boxore
C:\ProgramData\DDownloAd kaeeper =>PUP.Optional.Multiplug
C:\ProgramData\DigiSaeveR =>PUP.Optional.Multiplug
C:\ProgramData\doollarkeeeper =>PUP.Optional.Multiplug
C:\ProgramData\DowNleooad keeeper =>PUP.Optional.Multiplug
C:\ProgramData\EixsetraCoaupoan =>PUP.Optional.Multiplug
C:\ProgramData\ExsotRaCoupon =>PUP.Optional.Multiplug
C:\ProgramData\InstallMate =>PUP.Optional.Tarma
C:\ProgramData\JonniCouupono =>PUP.Optional.Multiplug
C:\ProgramData\MinimumPrice =>PUP.Optional.Multiplug
C:\ProgramData\Red AdBlocker =>PUP.Optional.Adblocker
C:\ProgramData\ReegoularDeeAls =>PUP.Optional.Deeal
C:\ProgramData\SaveNewaAppz =>PUP.Optional.Multiplug
C:\ProgramData\SaveREExTeensiOn =>PUP.Optional.Multiplug
C:\ProgramData\SSMartCComparre =>PUP.Optional.Multiplug
C:\ProgramData\Supreme AdBlocker =>PUP.Optional.Adblocker
C:\ProgramData\websaver =>PUP.Optional.Multiplug
C:\Program Files\Common Files\Goobzo =>PUP.Optional.Goobzo
C:\Users\Quentin\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
C:\Users\Quentin\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
C:\Users\Quentin\AppData\Roaming\Nosibay =>PUP.Optional.BubbleDock
C:\Users\Quentin\AppData\Roaming\Store =>PUP.Optional.Nosibay
C:\Users\Quentin\AppData\Local\Boxore =>PUP.Optional.Boxore
C:\Users\Quentin\AppData\Local\com =>PUP.Optional.Generic
C:\Users\Quentin\AppData\Local\CrashRpt =>.Legitimate.CrashReports
C:\Users\Quentin\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Users\Quentin\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Users\Quentin\AppData\Local\gmsd_fr_005010101 =>PUP.Optional.CrossRider
C:\Users\Quentin\AppData\Local\Installer =>PUP.Optional.InstallPedia
C:\Users\Quentin\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
C:\Users\Quentin\AppData\Local\Software =>PUP.Optional.Boxore
C:\Windows\Prefetch\BOXORE.EXE-8CFABEF1.pf =>PUP.Optional.Boxore
C:\Windows\Prefetch\CONVERTAD.EXE-2F0269CE.pf =>PUP.Optional.Pirrit
C:\Windows\Prefetch\COUPONSUPPORT.EXE-6BC7823C.pf =>PUP.Optional.CouponSupport
C:\Windows\Prefetch\PICEXA.EXE-C2D72995.pf =>PUP.Optional.Picexa
C:\Windows\Prefetch\PICEXASVC.EXE-C076FDF9.pf =>PUP.Optional.Picexa
C:\Windows\Prefetch\PLUS-HD-2.2-CHROMEINSTALLER.E-DE3CDAA6.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\PLUS-HD-2.2-CODEDOWNLOADER.EX-3973B294.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\PLUS-HD-2.2-FIREFOXINSTALLER.-BE63ABBF.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\PLUS-HD-2.2-UPDATER.EXE-531B065B.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\PLUS-HD-2.3-CHROMEINSTALLER.E-4D97C9D0.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\PLUS-HD-2.3-CODEDOWNLOADER.EX-2FFF13CE.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\PLUS-HD-2.3-FIREFOXINSTALLER.-3BACA359.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\PLUS-HD-2.3-UPDATER.EXE-8246FC05.pf =>PUP.Optional.CrossRider
C:\Windows\Prefetch\PRICORA-CODEDOWNLOADER.EXE-569746EC.pf =>PUP.Optional.Pricora
C:\Windows\Prefetch\PRICORA-FIREFOXINSTALLER.EXE-86969297.pf =>PUP.Optional.Pricora
C:\Windows\Prefetch\PRICORA-UPDATER.EXE-B7D086F3.pf =>PUP.Optional.Pricora
C:\Windows\Prefetch\YONTOODESKTOP.EXE-EF1B4E66.pf =>PUP.Optional.Yontoo
C:\Users\Quentin\AppData\Local\SmartWeb\__u.exe =>PUP.Optional.SmartWebSearch
C:\Users\Quentin\AppData\Local\gmsd_fr_005010101\upgmsd_fr_005010101.exe =>PUP.Optional.CrossRider
C:\Windows\Installer\6bc151.msi =>PUP.Optional.SweetIM
C:\Windows\Installer\e69fe.msi =>PUP.Optional.Boxore
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdatem =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Microsoft\Tracing\boxore_RASAPI32 =>PUP.Optional.Boxore
HKLM\SOFTWARE\Microsoft\Tracing\boxore_RASMANCS =>PUP.Optional.Boxore
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock BSetup_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock BSetup_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubble Dock_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubbledock_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\Bubbledock_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Microsoft\Tracing\distro-amzn-ironsource-rs_RASAPI32 =>PUP.Optional.Ironsource
HKLM\SOFTWARE\Microsoft\Tracing\distro-amzn-ironsource-rs_RASMANCS =>PUP.Optional.Ironsource
HKLM\SOFTWARE\Microsoft\Tracing\dnsbasic_RASAPI32 =>PUP.Optional.BasicScan
HKLM\SOFTWARE\Microsoft\Tracing\dnsbasic_RASMANCS =>PUP.Optional.BasicScan
HKLM\SOFTWARE\Microsoft\Tracing\DomaIQ10_RASAPI32 =>PUP.Optional.DomaIQ
HKLM\SOFTWARE\Microsoft\Tracing\DomaIQ10_RASMANCS =>PUP.Optional.DomaIQ
HKLM\SOFTWARE\Microsoft\Tracing\FastPlayer_RASAPI32 =>PUP.Optional.FastPlayer
HKLM\SOFTWARE\Microsoft\Tracing\FastPlayer_RASMANCS =>PUP.Optional.FastPlayer
HKLM\SOFTWARE\Microsoft\Tracing\iminent_nonsearch_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\iminent_nonsearch_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\LollipopInstaller_2203-14906630_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\LollipopInstaller_2203-14906630_RASMANCS =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\LollipopInstaller_amonetize_14633_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\LollipopInstaller_amonetize_14633_RASMANCS =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_04121624_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_04121624_RASMANCS =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_04271202_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_04271202_RASMANCS =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_05021614_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_05021614_RASMANCS =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_05031651_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\lollipop_05031651_RASMANCS =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\Lollipop_RASAPI32 =>PUP.Optional.Lollipop
HKLM\SOFTWARE\Microsoft\Tracing\Lollipop_RASMANCS =>PUP.Optional.Lollipop

---\\ Récapitulatif des éléments trouvées sur votre station (60) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/pup-goobzo/ =>PUP.Optional.Goobzo
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/blog =>PUP.Optional.Nosibay
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/blog =>PUP.Optional.OurSurfing
http://www.nicolascoolman.fr/blog =>PUP.Optional.ASPackage
http://www.nicolascoolman.fr/blog =>PUP.Optional.BoBrowser
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowse
http://www.nicolascoolman.fr/pup-ytdownloader/ =>PUP.Optional.YTDownloader
http://www.nicolascoolman.fr/blog =>PUP.Optional.WebAmplified*
http://www.nicolascoolman.fr/pup-anyprotect/ =>PUP.Optional.AnyProtect
http://www.nicolascoolman.fr/adware-boxore/ =>PUP.Optional.Boxore
http://www.nicolascoolman.fr/pup-dealply/ =>PUP.Optional.Dealply
http://www.nicolascoolman.fr/hijacker-22find/ =>PUP.Optional.22Find
http://www.nicolascoolman.fr/hijacker-omigaplus/ =>PUP.Optional.OmigaPlus
http://www.nicolascoolman.fr/pup-shopperpro/ =>PUP.Optional.ShopperPro
http://www.nicolascoolman.fr/pup-smartwebsearch/ =>PUP.Optional.SmartWebSearch
http://www.nicolascoolman.fr/adware-domaiq/ =>PUP.Optional.DomaIQ
http://www.nicolascoolman.fr/pup-bettersurf/ =>PUP.Optional.BetterSurf
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/pup-mediabuzz/ =>PUP.Optional.MediaBuzz
http://www.nicolascoolman.fr/blog =>PUP.Optional.MediaViewer
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic
http://www.nicolascoolman.fr/pup-rewardsarcade/ =>PUP.Optional.RewardsArcade
http://www.nicolascoolman.fr/spyware-agenceexclusive/ =>PUP.Optional.AgenceExclusive
http://www.nicolascoolman.fr/pup-webexpenhanced/ =>PUP.Optional.WebexpEnhanced
http://www.nicolascoolman.fr/adware-incredibar/ =>PUP.Optional.IncrediBar
http://www.nicolascoolman.fr/blog =>PUP.Optional.WordProser
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowser
http://www.nicolascoolman.fr/pup-optional-dailypcclean/ =>PUP.Optional.DailyPCClean
http://www.nicolascoolman.fr/adware-spointer/ =>PUP.Optional.SPointer
http://www.nicolascoolman.fr/blog =>PUP.Optional.MaxComputerCleaner
http://www.nicolascoolman.fr/hijacker-smartbar/ =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/adware-downware/ =>PUP.Optional.Downware
http://www.nicolascoolman.fr/adware-mywebsearch/ =>PUP.Optional.MyWebSearch
http://www.nicolascoolman.fr/pup-mutiplug/ =>PUP.Optional.Multiplug
http://www.nicolascoolman.fr/pup-tarma/ =>PUP.Optional.Tarma
http://www.nicolascoolman.fr/blog =>PUP.Optional.Adblocker
http://www.nicolascoolman.fr/blog =>PUP.Optional.Deeal
http://www.nicolascoolman.fr/pup-optional-startsearch/ =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/pup-bubbledock/ =>PUP.Optional.BubbleDock
http://www.nicolascoolman.fr/blog =>.Legitimate.CrashReports
http://www.nicolascoolman.fr/adware-installpedia/ =>PUP.Optional.InstallPedia
http://www.nicolascoolman.fr/pup-pirritsuggestor/ =>PUP.Optional.Pirrit
http://www.nicolascoolman.fr/blog =>PUP.Optional.CouponSupport
http://www.nicolascoolman.fr/blog =>PUP.Optional.Picexa
http://www.nicolascoolman.fr/adware-pricora/ =>PUP.Optional.Pricora
http://www.nicolascoolman.fr/adware-yontoo/ =>PUP.Optional.Yontoo
http://www.nicolascoolman.fr/blog =>PUP.Optional.Monetization
http://www.nicolascoolman.fr/pup-convertme/ =>PUP.Optional.ConVertME
http://www.nicolascoolman.fr/pup-specialsavings/ =>PUP.Optional.SpecialSavings
http://www.nicolascoolman.fr/hijacker-trovigo/ =>PUP.Optional.Trovigo
http://www.nicolascoolman.fr/blog =>PUP.Optional.MaxDriverUpdater
http://www.nicolascoolman.fr/pup-sweetim/ =>PUP.Optional.SweetIM
http://www.nicolascoolman.fr/blog =>PUP.Optional.Ironsource
http://www.nicolascoolman.fr/adware-basicscan/ =>PUP.Optional.BasicScan
http://www.nicolascoolman.fr/blog =>PUP.Optional.FastPlayer
http://www.nicolascoolman.fr/adware-imbooster/ =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/adware-lollipop/ =>PUP.Optional.Lollipop

~ End of the scan, 21921 items in 338 seconds (1435)(1)()

Publicité


Signaler le contenu de ce document

Publicité