Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.10.25.155 Par Nicolas Coolman (2015/10/25)
~ Démarré par nidal (Administrator) (2015/10/27 15:45:21)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\nidal\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\nidal\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 8.1 Pro, 32-bit (Build 9600)
---\\ Navigateurs Internet (2) - 0s
GCIE: Google Chrome v46.0.2490.80
MSIE: Internet Explorer v11.0.9600.18053
---\\ Informations sur les produits Windows (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ Logiciels de protection (1) - 9s
Windows Defender (Activate)
---\\ Surveillance de Logiciels (1) - 9s
Adobe Flash Player 19 PPAPI
---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 1046.164 MB (7% free)
~ System Restore: Activé (Enable)
~ System drive C: has 215 GB free of 238 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC
~ User Name: nidal
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 215 GB free of 238 GB (System)
---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (24) - 2s
[MD5.91E24273FCA076EA9E65DAFA98901225] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2207488] ©
[MD5.8BFE805555CDAF6387912A34D7978DAA] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [51200] ©
[MD5.DC02677945BDABD6B0C6A29914AA21EF] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [115712] ©
[MD5.D798AD4968F64AC7D80FFC1A7580ACD5] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2011136] ©
[MD5.E36FB29A2158B7D5DCA0F4E08DE75442] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [465408] ©
[MD5.BFB9E1202225113991F981D29BFB9029] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [438272] ©
[MD5.BD9C7A068C46053F8747CEA73B5930AB] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\Windows\System32\dnsapi.dll [498688] ©
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [19456] ©
[MD5.D75FB05E8DBF21FA0EF313C7503243F1] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [461312] ©
[MD5.72FCAE2CE6DFEAB2AB072435017F3417] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [23392] ©
[MD5.CE232BB0965C0C0B786C3F976CCBFB7D] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [73728] ©
[MD5.E2FC132D48EA4E8B04432C33EFB77801] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [124928] ©
[MD5.55758EBBC45E1628161121D7CFEAD4A1] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.7E0EDA9EE53E344D1604EB2A7E8DED47] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [69632] ©
[MD5.7A708934CC652100A94944EC808C3916] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [83456] ©
[MD5.FA6C94C754A566EA8A61D658932F32DE] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [126976] ©
[MD5.49EDA7967848465645E2D809384D0EBA] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\Windows\System32\drivers\MRxSmb.sys [328704] ©
[MD5.BC242922B0D08F61CF7C87FD08FAFA8B] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [218624] ©
[MD5.C52E578E3F8182C2EE6AAF0AC2B61C9B] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1689408] ©
[MD5.4F30970F15ADCC382544B31D5D7E368E] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [81408] ©
[MD5.C51AB62AB41A2E8560D12472B204CC00] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [81920] ©
[MD5.67E91843B0344411820A012063E876B2] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\Windows\System32\drivers\rdpdr.sys [143872] ©
[MD5.DB0C184142CF9FA1746F598A16EE92B2] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [87040] ©
[MD5.31A2AA48C1ECD390E2707E5C21B75DCE] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [264512] ©
---\\ Processus lancés (37) - 7s
[MD5.9AF133F51F7832ABAD3EEA362C84FE43] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) -- C:\Windows\System32\nvvsvc.exe [670536] [PID.768] ©
[MD5.A0BF3234CFFFBD1439757931B9BC57AA] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [409800] [PID.788] ©
[MD5.B6620D29FDC471DC09FE73C18F5FFA8A] - (...) -- C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\jnsm3747.tmp [222720] [PID.1592] =>PUP.Optional.CrossRider
[MD5.B1F245B531576BF378CF6C5539A33D22] - (.Copyright © 2015 - .) -- C:\Program Files\Concom\Concom.exe [379904] [PID.1612]
[MD5.E5FFE2F0C16B4F6C29613D6E7A64E81D] - (...) -- C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\hnss5205.tmp [845312] [PID.1696] =>PUP.Optional.CrossRider
[MD5.66AF0B382E050DD2521BCB5337410916] - (.NVIDIA Corporation - NVIDIA GeForce Experience Service.) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915600] [PID.1788] ©
[MD5.34393A9949B342A106FF634BEA158BC4] - (...) -- C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\knsq1B8B.tmpfs [255488] [PID.1820] =>PUP.Optional.CrossRider
[MD5.93C82F365F9C0A2058A211E305A5CCFA] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128] [PID.2016] ©
[MD5.206084ADC8C7A0D723C65573219600E4] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19775632] [PID.328] ©
[MD5.87A4F4B0F5BA103D580301FD7F4CAF15] - (.Cinema PlusV25.10 - CinemaPlus-3.2cV25.10 exe.) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6.exe [1389648] [PID.1220] =>PUP.Optional.CrossRider
[MD5.A0C0E56667208533554009EAF64046B7] - (.OB - SavePass 1.1 exe.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-6.exe [1542656] [PID.1668]
[MD5.E43EDFDA6DB9D6C5E46874BD93F8BEF8] - (.Cinema PlusV25.10 - CinemaPlus-3.2cV25.10 exe.) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6.exe [1516624] [PID.332] =>PUP.Optional.CrossRider
[MD5.37078411A77885F9DD65B5EFD9689DC7] - (.OB - SavePass 1.1 exe.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-1-6.exe [1613312] [PID.2108]
[MD5.206084ADC8C7A0D723C65573219600E4] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19775632] [PID.2408] ©
[MD5.A72BB48D9014A7D7C05F02F595F52D60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe [245576] [PID.2804] ©
[MD5.74F7E518FB12C2D10C9BCF9C8E72B885] - (.Disc Soft Ltd - Disc Soft Bus Service.) -- C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1034584] [PID.4268] ©
[MD5.364508A20BFF9632DC50B505B2D348CF] - (.MyBrowser 1.0.2V27.10 - MyBrowser 1.0.2V27.10 exe.) -- C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-6.exe [1401936] [PID.4352] =>PUP.Optional.CrossRider
[MD5.EF7F5B11E34855E65F712E25A2FEA713] - (.MyBrowser 1.0.2V27.10 - MyBrowser 1.0.2V27.10 exe.) -- C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-1-6.exe [1525328] [PID.4496] =>PUP.Optional.CrossRider
[MD5.D334597DB092B629F2ECF04579003374] - (.DTools LIMITED - DTools.) -- C:\ProgramData\QWMiniProQ\WMiniPro.exe [301704] [PID.4304] =>PUP.Optional.WpManager
[MD5.D7C9C9BE336CCA7681CCA83D3A744C7E] - (.TODO: <公司名> - TODO: <文件说明>.) -- C:\Program Files\SFK\SSFK.exe [173728] [PID.5956]
[MD5.8E82B3AA3DF1A8774A8A9162CBFC6913] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [938184] [PID.5220] ©
[MD5.9AF133F51F7832ABAD3EEA362C84FE43] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) -- C:\Windows\System32\nvvsvc.exe [670536] [PID.5544] ©
[MD5.E07895DEA6D8E017709ABA97569EDD4C] - (.MyBrowser 1.0.2V27.10 - MyBrowser 1.0.2V27.10 exe.) -- C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-10.exe [1481808] [PID.4468] =>PUP.Optional.CrossRider
[MD5.9EA6C20853AD72CACEB4C689B9E669BF] - (.Cinema PlusV25.10 - CinemaPlus-3.2cV25.10 exe.) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10.exe [1478736] [PID.4868] =>PUP.Optional.CrossRider
[MD5.BADF1C8F90769A00700D135531DD461A] - (.OB - SavePass 1.1 exe.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-10.exe [1545728] [PID.3336]
[MD5.85A5DB9C8DEFDDE941EC121ADB5B3175] - (.DT Soft Ltd - DAEMON Tools Shell Extensions Helper.) -- C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe [2744960] [PID.3660] ©
[MD5.059E588FDF6B7E83227D45D026D21874] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2585744] [PID.5000] ©
[MD5.72E53D65F690FA26447C5AF0D5379AF2] - (...) -- C:\Users\nidal\AppData\Roaming\cacaoweb\cacaoweb.exe [538928] [PID.492] =>PUP.Optional.CacaoWeb
[MD5.964288601804A3E8F55AF32619ED4B40] - (.Copyright © 2015 - .) -- C:\Program Files\Concom\packages\3a98cff1-97f6-4610-a250-ed47d76e2fbb\Stanron.exe [855040] [PID.3012]
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6524] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6532] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6616] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6500] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.1800] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6936] ©
[MD5.E4A6457741387E87F1EB38E067E8B52B] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [1818952] [PID.3168] ©
[MD5.E39F4186EC180D23F1CE16C683253B99] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\nidal\Downloads\ZHPDiag3.exe [1959936] [PID.8052] ©
---\\ Google Chrome, Démarrage,Recherche,Extensions (9) - 1s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
G2 - GCE: Preference [User Data\Default] [akaelkiagnbfcccfnmbimdbplecgbikh] SavePass 1.1 =>PUP.Optional.CrossRider
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gegdfeiahlfolhcfioipjlkombmgbakh] CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (2) - 1s
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
---\\ Opera, Démarrage,Recherche,Plugins (1) - 0s
B2 - EXT: [MyBrowser 1.0.2V27.10] C:\Users\nidal\AppData\Roaming\Opera Software\Opera Stable\Extensions\gegdfeiahlfolhcfioipjlkombmgbakh
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (10) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Applications lancées au démarrage du système (10) - 1s
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe ©
O4 - HKLM\..\Run: [ShadowPlay] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe ©
O4 - HKCU\..\Run: [cacaoweb] . (...) -- C:\Users\nidal\AppData\Roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe ©
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] . (.DT Soft Ltd - DAEMON Tools Pro Agent.) -- C:\Program Files\DAEMON Tools Pro\DTAgent.exe ©
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_206E6D97B977B5E743DE80B742C02DDE] . (.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - HKUS\S-1-5-21-2128081440-2508271290-3507871959-1001\..\Run: [cacaoweb] . (...) -- C:\Users\nidal\AppData\Roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O4 - HKUS\S-1-5-21-2128081440-2508271290-3507871959-1001\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe ©
O4 - HKUS\S-1-5-21-2128081440-2508271290-3507871959-1001\..\Run: [DAEMON Tools Pro Agent] . (.DT Soft Ltd - DAEMON Tools Pro Agent.) -- C:\Program Files\DAEMON Tools Pro\DTAgent.exe ©
O4 - HKUS\S-1-5-21-2128081440-2508271290-3507871959-1001\..\Run: [GoogleChromeAutoLaunch_206E6D97B977B5E743DE80B742C02DDE] . (.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
---\\ Raccourcis Global Startup (6) - 7s
O4 - GS\Quicklaunch [Administrateur]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Administrateur]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Quicklaunch [Invité]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Invité]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Quicklaunch [nidal]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [nidal]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
---\\ Protocole additionnel (17) - 0s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
---\\ Liste des services NT non Microsoft et non désactivés (14) - 1s
O23 - Service: Highlighted Magnetic Strip (bywijyhu) . (...) - C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\jnsm3747.tmp =>PUP.Optional.CrossRider
O23 - Service: Concom Service (Concom) . (.Copyright © 2015 - .) - C:\Program Files\Concom\Concom.exe =>PUP.Optional.Amonetize
O23 - Service: Task Advertisement (dijojyvi) . (...) - C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\hnss5205.tmp =>PUP.Optional.CrossRider
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce Experience Service.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe ©
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
O23 - Service: Photocopier Attachment (jikuqeki) . (...) - C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\knsq1B8B.tmpfs =>PUP.Optional.CrossRider
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe ©
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) - C:\Windows\System32\nvvsvc.exe ©
O23 - Service: SSFK (SSFK) . (.TODO: <公司名> - TODO: <文件说明>.) - C:\Program Files\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
O23 - Service: Ozerex (upaateproduct) . (. - xrc.) - C:\Users\nidal\AppData\Local\Lamtone.exe
O23 - Service: WdsManPro Service (WdsManPro) . (.DTools LIMITED - DTools.) - C:\ProgramData\QWMiniProQ\WMiniPro.exe =>PUP.Optional.WpManager
---\\ Tâches planifiées en automatique (63) - 10s
[MD5.E43EDFDA6DB9D6C5E46874BD93F8BEF8] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6] (.Cinema PlusV25.10.) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6.exe [1516624] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7] (...) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.9EA6C20853AD72CACEB4C689B9E669BF] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user] (.Cinema PlusV25.10.) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10.exe [1478736] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3] (...) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5] (...) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user] (...) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.87A4F4B0F5BA103D580301FD7F4CAF15] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6] (.Cinema PlusV25.10.) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6.exe [1389648] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7] (...) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.37078411A77885F9DD65B5EFD9689DC7] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-1-6] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-1-6.exe [1613312]
[MD5.575994CD44C8A9B117BDDE08FF5FB4F9] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-1-7] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-1-7.exe [1049600]
[MD5.BADF1C8F90769A00700D135531DD461A] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-10_user] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-10.exe [1545728]
[MD5.FCE695549FE559E1AB81FF8664000B33] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-3] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-3.exe [1352192]
[MD5.87AA3178BCB49F78A18AEB05CEF55244] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-5] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-5.exe [1228800]
[MD5.87AA3178BCB49F78A18AEB05CEF55244] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-5_user] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-5.exe [1228800]
[MD5.A0C0E56667208533554009EAF64046B7] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-6] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-6.exe [1542656]
[MD5.575994CD44C8A9B117BDDE08FF5FB4F9] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-7] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-7.exe [1049600]
[MD5.E190FDABCC7E823BA40931FD955D0C2B] [APT] [Adobe Flash Player PPAPI Notifier] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashUtil32_19_0_0_226_pepper.exe [1157320] ©
[MD5.C51D80C58CFE9104EFFF67DA31053A24] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.EF7F5B11E34855E65F712E25A2FEA713] [APT] [b5a118db-9bc9-4db1-ad7e-835691923108-1-6] (.MyBrowser 1.0.2V27.10.) -- C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-1-6.exe [1525328] =>PUP.Optional.CrossRider
[MD5.E6CDB0EA64567BB07BA9B5788A9B6B36] [APT] [b5a118db-9bc9-4db1-ad7e-835691923108-1-7] (.MyBrowser 1.0.2V27.10.) -- C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-1-7.exe [1094736] =>PUP.Optional.CrossRider
[MD5.E6CDB0EA64567BB07BA9B5788A9B6B36] [APT] [b5a118db-9bc9-4db1-ad7e-835691923108-10_user] (.MyBrowser 1.0.2V27.10.) -- C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-1-7.exe [1094736] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6 - (.Cinema PlusV25.10.) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6.job [3132] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7 - (...) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7.job [3132] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user - (.Cinema PlusV25.10.) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user.job [2106] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3 - (...) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3.job [4152] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5 - (...) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5.job [2440] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user - (...) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user.job [2440] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6 - (.Cinema PlusV25.10.) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6.job [5512] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7 - (...) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7.job [5176] =>PUP.Optional.CrossRider
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-1-6 - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-1-6.job [3114]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-1-7 - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-1-7.job [3114]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-10_user - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-10_user.job [2088]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-3 - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-3.job [4134]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-5 - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-5.job [2422]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-5_user - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-5_user.job [2422]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-6 - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-6.job [5494]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-7 - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-7.job [5494]
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job [892] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] ©
O39 - APT: b5a118db-9bc9-4db1-ad7e-835691923108-1-6 - (.MyBrowser 1.0.2V27.10.) -- C:\Windows\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-6.job [3132] =>PUP.Optional.CrossRider
O39 - APT: b5a118db-9bc9-4db1-ad7e-835691923108-1-7 - (.MyBrowser 1.0.2V27.10.) -- C:\Windows\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-7.job [3132] =>PUP.Optional.CrossRider
O39 - APT: b5a118db-9bc9-4db1-ad7e-835691923108-10_user - (.MyBrowser 1.0.2V27.10.) -- C:\Windows\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-10_user.job [2106] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6 - (.Cinema PlusV25.10.) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6 [6136] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7 - (...) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7 [6136] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user - (.Cinema PlusV25.10.) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user [5094] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3 - (...) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3 [7156] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5 - (...) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5 [5444] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user - (...) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user [5428] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6 - (.Cinema PlusV25.10.) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6 [8516] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7 - (...) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7 [8180] =>PUP.Optional.CrossRider
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-1-6 - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-1-6 [6118]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-1-7 - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-1-7 [6118]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-10_user - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-10_user [5076]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-3 - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-3 [7138]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-5 - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-5 [5426]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-5_user - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-5_user [5410]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-6 - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-6 [8498]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-7 - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-7 [8498]
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier [3844] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3890] ©
O39 - APT: b5a118db-9bc9-4db1-ad7e-835691923108-1-6 - (.MyBrowser 1.0.2V27.10.) -- C:\Windows\System32\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-6 [6136] =>PUP.Optional.CrossRider
O39 - APT: b5a118db-9bc9-4db1-ad7e-835691923108-1-7 - (.MyBrowser 1.0.2V27.10.) -- C:\Windows\System32\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-7 [6136] =>PUP.Optional.CrossRider
O39 - APT: b5a118db-9bc9-4db1-ad7e-835691923108-10_user - (.MyBrowser 1.0.2V27.10.) -- C:\Windows\System32\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-10_user [5094] =>PUP.Optional.CrossRider
---\\ Logiciels installés (21) - 4s
O42 - Logiciel: Adobe Flash Player 19 PPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player PPAPI ©
O42 - Logiciel: CinemaPlus-3.2cV25.10 - (.Cinema PlusV25.10.) [HKLM] -- CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM] -- DAEMON Tools Lite ©
O42 - Logiciel: DAEMON Tools Pro - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Pro ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome ©
O42 - Logiciel: MyBrowser 1.0.2V27.10 - (.MyBrowser 1.0.2V27.10.) [HKLM] -- MyBrowser 1.0.2V27.10 =>PUP.Optional.MyBrowser
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIAStereo ©
O42 - Logiciel: SavePass 1.1 - (.OB.) [HKLM] -- SavePass 1.1 =>PUP.Optional.CrossRider
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player ©
O42 - Logiciel: Remote Desktop Access (VuuPC) - (.CMI Limited.) [HKLM] -- VOPackage =>PUP.Optional.Downware
O42 - Logiciel: WinRAR 5.21 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {80407BA7-7763-4395-AB98-5233F1B34E65} ©
O42 - Logiciel: globalupdate Helper - (.globalupdate Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.GlobalUpdate
O42 - Logiciel: NVIDIA Pilote 3D Vision 341.44 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision ©
O42 - Logiciel: NVIDIA Pilote graphique 341.44 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: NVIDIA GeForce Experience 2.2.2 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience ©
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 340.50 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB ©
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.13.1220 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX ©
O42 - Logiciel: Counter-Strike 1.6 [cswos.com] - (.CSWOS.COM.) [HKLM] -- {EE3AE3B8-8656-4C18-B60E-6EFC6C305B1B}_is1
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU] -- uTorrent
---\\ HKCU & HKLM Software Keys (84) - 4s
HKLM\SOFTWARE\0fbd8299-162a-4faa-9e08-3096f35dc288 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\6f70fa6a-97da-45b7-924a-f3e0497d88f2 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\718b4ab0-8822-4561-854a-32abfa881416 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\AGEIA Technologies
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV25.10-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV25.10-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Disc Soft
HKLM\SOFTWARE\downchecker =>PUP.Optional.DownChecker
HKLM\SOFTWARE\DT Soft
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\KasperskyLab
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\MyBrowser 1.0.2V27.10 =>PUP.Optional.MyBrowser
HKLM\SOFTWARE\MyBrowser 1.0.2V27.10-nv =>PUP.Optional.MyBrowser
HKLM\SOFTWARE\MyBrowser 1.0.2V27.10-nv-ie =>PUP.Optional.MyBrowser
HKLM\SOFTWARE\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\NVIDIA Corporation
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Opera Software
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\SavePass 1.1 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\SavePass 1.1-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\SavePass 1.1-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Uniblue =>PUP.Optional.Uniblue
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\cacaoweb =>PUP.Optional.CacaoWeb
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV25.10-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV25.10-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DT Soft
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\i7OR7EybE24hLdaXJFfMfx2Tl
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\KasperskyLabSetup
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\mFmnofBKLhzElhlG
HKCU\SOFTWARE\Mine
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MyBrowser 1.0.2V27.10 =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\MyBrowser 1.0.2V27.10-nv =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\MyBrowser 1.0.2V27.10-nv-ie =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\OB
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\PviTBlrXRRKHMACBzOT
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\SavePass 1.1 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
---\\ Contenu des dossiers Programmes (119) - 5s
O43 - CFD: 2015/10/27 13:35:36 - [] D -- C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253 =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/27 13:42:31 - [] D -- C:\Program Files\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/27 12:32:30 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2015/10/27 13:18:08 - [] D -- C:\Program Files\Concom =>PUP.Optional.Amonetize
O43 - CFD: 2015/10/27 12:26:08 - [] D -- C:\Program Files\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2015/07/08 18:21:31 - [] D -- C:\Program Files\DAEMON Tools Lite
O43 - CFD: 2015/07/08 19:01:05 - [] D -- C:\Program Files\DAEMON Tools Pro
O43 - CFD: 2015/06/05 15:36:54 - [0] SHD -- C:\Program Files\Fichiers communs
O43 - CFD: 2015/10/27 12:11:59 - [] D -- C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/06/05 15:50:49 - [] D -- C:\Program Files\Google
O43 - CFD: 2015/10/14 22:40:12 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2013/08/22 09:17:26 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2015/10/27 12:31:04 - [] D -- C:\Program Files\MyBrowser 1.0.2V27.10 =>PUP.Optional.CrossRider
O43 - CFD: 2015/06/05 18:41:39 - [] D -- C:\Program Files\NVIDIA Corporation
O43 - CFD: 2015/10/27 12:40:59 - [] D -- C:\Program Files\Opera
O43 - CFD: 2015/10/27 12:16:25 - [] D -- C:\Program Files\SavePass 1.1 =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/27 12:54:09 - [] D -- C:\Program Files\SFK =>PUP.Optional.MyWebSearch
O43 - CFD: 2015/10/27 13:01:08 - [] D -- C:\Program Files\Uniblue =>PUP.Optional.Uniblue
O43 - CFD: 2013/08/22 08:24:44 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2015/06/05 15:53:46 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 2015/08/12 16:34:50 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2015/09/14 19:28:25 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 2015/06/07 23:29:16 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2015/06/07 23:29:16 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2015/06/07 23:29:16 - [] D -- C:\Program Files\Windows Multimedia Platform
O43 - CFD: 2015/06/05 15:36:54 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2015/06/07 23:29:16 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 2015/06/07 23:29:16 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2013/08/22 09:17:26 - [] SHD -- C:\Program Files\Windows Sidebar
O43 - CFD: 2015/10/23 16:09:22 - [] HD -- C:\Program Files\WindowsApps
O43 - CFD: 2015/06/07 23:28:25 - [] D -- C:\Program Files\WindowsPowerShell
O43 - CFD: 2015/06/05 17:53:58 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 2015/06/07 23:29:23 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/06/07 23:29:23 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/06/10 19:19:58 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/07/08 23:37:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 [cswos.com v8.0]
O43 - CFD: 2015/10/27 12:27:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2015/07/08 18:20:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 2015/07/08 19:01:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro
O43 - CFD: 2015/10/27 12:26:09 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2013/08/22 09:17:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/06/05 18:45:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2013/08/22 09:17:27 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/06/07 23:29:23 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2014/03/18 08:38:18 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/06/05 15:53:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/06/05 17:54:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/08/11 19:09:09 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2015/08/11 16:05:24 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2013/08/22 08:23:42 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/06/05 15:36:54 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2015/10/27 12:25:22 - [] D -- C:\ProgramData\BWMiniProB
O43 - CFD: 2015/07/08 17:21:36 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2015/07/08 20:03:29 - [] D -- C:\ProgramData\DAEMON Tools Pro
O43 - CFD: 2013/08/22 08:23:42 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2013/08/22 08:23:42 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/08/12 14:11:56 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 2015/09/15 20:26:18 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files
O43 - CFD: 2015/06/05 15:36:54 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/10/25 12:26:45 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/06/05 15:36:54 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/10/27 12:21:01 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2015/06/05 18:45:31 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/10/27 12:55:05 - [] D -- C:\ProgramData\QWMiniProQ
O43 - CFD: 2015/06/07 23:28:30 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2013/08/22 08:23:42 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2013/08/22 08:23:42 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/06/07 23:28:22 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2013/08/22 09:17:35 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 2015/06/07 23:29:13 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 2015/06/05 15:38:44 - [] D -- C:\Users\nidal\AppData\Roaming\Adobe
O43 - CFD: 2015/08/11 16:06:51 - [] D -- C:\Users\nidal\AppData\Roaming\Apple Computer
O43 - CFD: 2015/10/27 14:29:55 - [] D -- C:\Users\nidal\AppData\Roaming\cacaoweb =>PUP.Optional.CacaoWeb
O43 - CFD: 2015/07/08 17:26:40 - [] D -- C:\Users\nidal\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2015/07/12 23:44:56 - [] D -- C:\Users\nidal\AppData\Roaming\DAEMON Tools Pro
O43 - CFD: 2015/06/08 13:38:24 - [] D -- C:\Users\nidal\AppData\Roaming\Identities
O43 - CFD: 2015/10/27 12:18:47 - [] D -- C:\Users\nidal\AppData\Roaming\istartsurf =>PUP.Optional.IsStart
O43 - CFD: 2015/06/05 15:42:04 - [] D -- C:\Users\nidal\AppData\Roaming\Macromedia
O43 - CFD: 2015/09/13 15:22:29 - [] SD -- C:\Users\nidal\AppData\Roaming\Microsoft
O43 - CFD: 2015/10/27 12:24:19 - [] D -- C:\Users\nidal\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
O43 - CFD: 2015/07/08 23:37:40 - [] D -- C:\Users\nidal\AppData\Roaming\NVIDIA
O43 - CFD: 2015/10/27 12:19:26 - [] D -- C:\Users\nidal\AppData\Roaming\Opera Software
O43 - CFD: 2015/10/27 13:01:08 - [] D -- C:\Users\nidal\AppData\Roaming\Uniblue =>PUP.Optional.Uniblue
O43 - CFD: 2015/10/27 12:19:57 - [] D -- C:\Users\nidal\AppData\Roaming\uTorrent
O43 - CFD: 2015/10/26 00:05:06 - [] D -- C:\Users\nidal\AppData\Roaming\vlc
O43 - CFD: 2015/06/05 17:54:20 - [] D -- C:\Users\nidal\AppData\Roaming\WinRAR
O43 - CFD: 2015/10/27 15:45:54 - [] D -- C:\Users\nidal\AppData\Roaming\ZHP
O43 - CFD: 2015/10/27 12:32:09 - [] D -- C:\Users\nidal\AppData\Local\4C4C4544-1445948045-4E10-8054-B5C04F343253
O43 - CFD: 2015/06/05 16:19:54 - [0] D -- C:\Users\nidal\AppData\Local\Adobe
O43 - CFD: 2015/08/11 16:04:07 - [] D -- C:\Users\nidal\AppData\Local\Apple
O43 - CFD: 2015/08/11 16:06:23 - [] D -- C:\Users\nidal\AppData\Local\Apple Computer
O43 - CFD: 2015/06/05 15:38:15 - [0] SHD -- C:\Users\nidal\AppData\Local\Application Data
O43 - CFD: 2015/10/27 12:27:21 - [] D -- C:\Users\nidal\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2015/10/27 13:44:48 - [] D -- C:\Users\nidal\AppData\Local\Diagnostics
O43 - CFD: 2015/07/08 17:23:53 - [] D -- C:\Users\nidal\AppData\Local\Disc_Soft_Ltd
O43 - CFD: 2015/10/25 13:02:46 - [] D -- C:\Users\nidal\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/07/05 15:30:15 - [0] SHD -- C:\Users\nidal\AppData\Local\EmieSiteList
O43 - CFD: 2015/07/05 15:30:15 - [0] SHD -- C:\Users\nidal\AppData\Local\EmieUserList
O43 - CFD: 2015/10/27 12:11:59 - [] D -- C:\Users\nidal\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/09/15 12:32:45 - [] D -- C:\Users\nidal\AppData\Local\Google
O43 - CFD: 2015/06/05 15:38:15 - [0] SHD -- C:\Users\nidal\AppData\Local\Historique
O43 - CFD: 2015/10/25 12:26:45 - [] D -- C:\Users\nidal\AppData\Local\Microsoft
O43 - CFD: 2015/06/05 18:44:26 - [] D -- C:\Users\nidal\AppData\Local\NVIDIA
O43 - CFD: 2015/06/05 18:45:31 - [] D -- C:\Users\nidal\AppData\Local\NVIDIA Corporation
O43 - CFD: 2015/10/27 12:19:27 - [] D -- C:\Users\nidal\AppData\Local\Opera Software
O43 - CFD: 2015/08/06 20:49:25 - [] D -- C:\Users\nidal\AppData\Local\Packages
O43 - CFD: 2015/10/27 12:58:33 - [] D -- C:\Users\nidal\AppData\Local\Programs
O43 - CFD: 2015/10/27 15:46:00 - [] D -- C:\Users\nidal\AppData\Local\Temp
O43 - CFD: 2015/06/05 15:38:15 - [0] SHD -- C:\Users\nidal\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/06/10 00:31:58 - [] D -- C:\Users\nidal\AppData\Local\VirtualStore
O43 - CFD: 2014/03/18 09:10:34 - [] RD -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2013/08/22 09:17:27 - [] RD -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/10/15 11:34:02 - [] RD -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/07/08 19:52:16 - [] D -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter Strike 1.6 - No Steam
O43 - CFD: 2013/08/22 09:17:27 - [] D -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/10/27 12:27:24 - [] RD -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/03/18 09:10:34 - [] RD -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/10/27 13:11:22 - [0] D -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>PUP.Optional.Downware
O43 - CFD: 2015/06/05 17:53:59 - [] D -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
---\\ Derniers fichiers créés dans Windows Prefetcher (12) - 17s
O45 - LFCP:[MD5.D5B7A8F564FA6F400FBCC5B55D9C8C4A] 2015/10/27 13:02:45 A -- C:\Windows\Prefetch\CACAOWEB.EXE-C83AEF3F.pf =>PUP.Optional.CacaoWeb
O45 - LFCP:[MD5.804E8DF24DF0F546882B9ED1E55F1B1F] 2015/10/27 14:03:04 A -- C:\Windows\Prefetch\CROSSBROWSE.EXE-F6F882CE.pf =>PUP.Optional.CrossBrowse
O45 - LFCP:[MD5.238716F75BE61F1E6003E01F607ED385] 2015/10/27 12:15:31 A -- C:\Windows\Prefetch\GLOBALUPDATE.EXE-4D07E485.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.99866BA0E178F892BF4296EDF8ACB58A] 2015/10/27 12:29:52 A -- C:\Windows\Prefetch\GLOBALUPDATE.EXE-6CC00CEB.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.D781A32573972C1ED2F255928A472AB2] 2015/10/27 12:12:09 A -- C:\Windows\Prefetch\GLOBALUPDATE.EXE-A474C9DD.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.ED9235FB867D18B48B294BC0E3106930] 2015/10/27 13:02:26 A -- C:\Windows\Prefetch\GLOBALUPDATE.EXE-B66D5BF9.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.A785A75221B6113AA9AA444E67F7B034] 2015/10/27 12:13:55 A -- C:\Windows\Prefetch\GLOBALUPDATE.EXE-CEFB8321.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.1B4AEE05235A3F532B64A21032758D73] 2015/10/27 12:34:03 A -- C:\Windows\Prefetch\GLOBALUPDATECRASHHANDLER.EXE-C9210A99.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.3A496240F6DC55126B6CB74C86F39FBA] 2015/10/27 13:01:11 A -- C:\Windows\Prefetch\SPEEDUPMYPC-STANDALONE-SETUP.-3D4CE614.pf =>PUP.Optional.SpeedUpMyPC
O45 - LFCP:[MD5.725C9EAE8EF20E55305DBB593BBEE6C2] 2015/10/27 13:01:09 A -- C:\Windows\Prefetch\SPEEDUPMYPC-STANDALONE-SETUP.-A116A4BA.pf =>PUP.Optional.SpeedUpMyPC
O45 - LFCP:[MD5.A54D4B50F8452BCC2A5FA16E34E5DCDC] 2015/10/27 12:54:04 A -- C:\Windows\Prefetch\WPM_V20.0.0.2304.EXE-1EAAA684.pf =>PUP.Optional.WpManager
O45 - LFCP:[MD5.F144B54FE1F912A0ED1B0B2DB7A16600] 2015/10/27 12:24:21 A -- C:\Windows\Prefetch\WPM_V20.0.0.2304.EXE-D72AB0CC.pf =>PUP.Optional.WpManager
---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\Windows\System32\cscui.dll ©
---\\ Liste des pilotes du système (33) - 7s
O58 - SDL:2013/08/22 06:33:26 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [86368] ©
O58 - SDL:2013/08/22 06:33:25 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [773472] ©
O58 - SDL:2013/08/22 06:33:25 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [72544] ©
O58 - SDL:2013/08/22 06:33:26 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [215392] ©
O58 - SDL:2013/08/22 06:33:24 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22880] ©
O58 - SDL:2013/08/22 06:33:26 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [101728] ©
O58 - SDL:2013/08/13 00:25:32 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [16088] ©
O58 - SDL:2015/07/08 17:21:59 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtlitescsibus.sys [25016] ©
O58 - SDL:2015/07/08 19:01:05 A . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [242240] ©
O58 - SDL:2013/08/22 06:33:29 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [56672] ©
O58 - SDL:2013/07/23 22:18:30 AC . (.Intel Corporation - Intel(R) Atom(TM) Processor GPIO Controller.) -- C:\Windows\System32\drivers\iaiogpio.sys [22016] ©
O58 - SDL:2013/07/23 22:18:30 AC . (.Intel Corporation - Intel(R) Atom(TM) Processor I2C Controller.) -- C:\Windows\System32\drivers\iaioi2c.sys [61936] ©
O58 - SDL:2013/08/10 01:39:44 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\Windows\System32\drivers\iaStorAV.sys [524784] ©
O58 - SDL:2013/08/22 06:33:29 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [333664] ©
O58 - SDL:2013/08/22 02:42:19 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetLink (TM).) -- C:\Windows\System32\drivers\k57nd60x.sys [377344] ©
O58 - SDL:2013/08/22 06:33:29 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [94048] ©
O58 - SDL:2013/08/22 06:33:30 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [79712] ©
O58 - SDL:2013/08/22 06:33:30 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3.sys [68960] ©
O58 - SDL:2013/08/22 06:33:29 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [69472] ©
O58 - SDL:2013/08/22 06:33:30 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [51552] ©
O58 - SDL:2013/08/22 06:33:29 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [464736] ©
O58 - SDL:2013/08/22 06:33:32 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [58208] ©
O58 - SDL:2015/02/04 04:35:16 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [10702664] ©
O58 - SDL:2013/08/22 06:33:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [120160] ©
O58 - SDL:2013/08/22 06:33:33 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [141664] ©
O58 - SDL:2014/11/22 11:46:30 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\drivers\nvvad32v.sys [32912] ©
O58 - SDL:2013/08/22 09:16:47 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2013/08/22 06:32:56 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [41312] ©
O58 - SDL:2013/08/22 06:32:57 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [79200] ©
O58 - SDL:2013/08/22 06:32:57 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [26976] ©
O58 - SDL:2013/08/22 06:33:00 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [18272] ©
O58 - SDL:2013/08/22 06:33:01 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\System32\drivers\vsmraid.sys [148832] ©
O58 - SDL:2013/08/22 06:33:01 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [276832] ©
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (39) - 105s
O61 - LFC: 2015/10/27 13:02:39 A . (..) -- C:\Users\nidal\Desktop\cacaoweb.exe [538928] =>PUP.Optional.CacaoWeb
O61 - LFC: 2015/10/25 14:00:09 A . (.BitTorrent Inc..) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe [1822048]
O61 - LFC: 2015/10/25 14:00:09 A . (.BitTorrent Inc..) -- C:\Users\nidal\AppData\Roaming\uTorrent\updates\3.4.5_41202.exe [1822048]
O61 - LFC: 2015/10/25 14:17:50 A . (.BitTorrent Inc..) -- C:\Users\nidal\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe [336896]
O61 - LFC: 2015/10/27 12:17:57 A . (..) -- C:\Users\nidal\AppData\Local\Lamtone.exe [46592]
O61 - LFC: 2015/10/26 14:00:54 A . (..) -- C:\Users\nidal\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [6021607]
O61 - LFC: 2015/10/27 11:19:47 A . (..) -- C:\Users\nidal\AppData\Local\NVIDIA\NvBackend\Packages\000081c7\DAO.20107302.exe [6721736]
O61 - LFC: 2015/10/27 11:19:24 A . (..) -- C:\Users\nidal\AppData\Local\NVIDIA\NvBackend\Packages\000081b6\CoProc update.20104193.exe [592216]
O61 - LFC: 2015/10/27 12:52:39 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\cmmdWriter[1].exe [43782]
O61 - LFC: 2015/10/27 12:09:19 A . (.OperaChecker.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\OperaChecker25-6[1].exe [50225] =>PUA.Optional.OperaChecker
O61 - LFC: 2015/10/27 12:13:43 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\PnLusvwPL[1].exe [845312]
O61 - LFC: 2015/10/27 12:53:48 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\policyname[1].exe [56503]
O61 - LFC: 2015/10/27 12:53:19 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\SearchUpdater[1].exe [234870]
O61 - LFC: 2015/10/27 12:13:47 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\SFSetup[1].exe [458033]
O61 - LFC: 2015/10/27 12:54:24 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\VuuPC_VO2_8907[1].exe [228613] =>PUP.Optional.VuuPC
O61 - LFC: 2015/10/27 12:09:35 A . (.© 2015.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\install[1].exe [372867]
O61 - LFC: 2015/10/27 12:52:52 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\J6vaPqjyS[1].exe [122298]
O61 - LFC: 2015/10/27 12:13:30 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\JOSrv[1].exe [222720]
O61 - LFC: 2015/10/27 13:33:56 A . (.KLDZC.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\Reimage[1].exe [434784] =>PUP.Optional.ReImageRepair
O61 - LFC: 2015/10/27 13:55:52 A . (.VEYKF.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\Reimage[2].exe [41984] =>PUP.Optional.ReImageRepair
O61 - LFC: 2015/10/27 12:53:35 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\setup_362[1].exe [254464]
O61 - LFC: 2015/10/27 12:14:11 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\Update_Notifier[1].exe [456192]
O61 - LFC: 2015/10/27 12:22:29 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\installer[1].exe [1965128]
O61 - LFC: 2015/10/27 12:28:52 A . (.MyBrowser 1.0.2V27.10.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\installer[2].exe [13613416] =>PUP.Optional.CrossRider
O61 - LFC: 2015/10/27 12:09:32 A . (.7th.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\obw_istartsurf[1].exe [361720] =>PUP.Optional.IsStart
O61 - LFC: 2015/10/27 12:13:16 A . (.Cinema PlusV25.10.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\setup[1].exe [13879552] =>PUP.Optional.CrossRider
O61 - LFC: 2015/10/27 12:13:26 A . (.OB.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\setup[2].exe [12113544]
O61 - LFC: 2015/10/27 13:00:58 A . (.Uniblue Systems Limited.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\SpeedUpMyPC-standalone-setup[1].exe [19136280] =>PUP.Optional.SpeedUpMyPC
O61 - LFC: 2015/10/27 12:14:13 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\SU_Srv[1].exe [153600]
O61 - LFC: 2015/10/27 12:22:50 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\4bbda52393b575e64d530bd478a6717b[1].exe [61371]
O61 - LFC: 2015/10/27 12:53:24 A . (.7th77777777777777777777777777777777777777777777777777.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\cmi_mystartsearch[1].exe [271480] =>PUP.Optional.StartSearch
O61 - LFC: 2015/10/27 12:29:07 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\FinalInstaller_dotnet4[1].exe [3030016]
O61 - LFC: 2015/10/27 12:14:08 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\runasu[1].exe [49664]
O61 - LFC: 2015/10/27 12:54:55 A . (.Copyright 2013.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\Validate[1].exe [61981]
O61 - LFC: 2015/10/27 12:09:46 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\VOPackage[1].exe [838041] =>PUP.Optional.Downware
O61 - LFC: 2015/10/27 15:27:33 A . (..) -- C:\Users\nidal\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
O61 - LFC: 2015/10/27 09:05:38 A . (..) -- C:\Users\nidal\AppData\Local\4C4C4544-1445948045-4E10-8054-B5C04F343253\pnsjE1F4.exe [111711]
O61 - LFC: 2015/10/27 12:14:08 A . (..) -- C:\Users\nidal\AppData\Local\4C4C4544-1445948045-4E10-8054-B5C04F343253\rnsjE1F2.exe [49664]
O61 - LFC: 2015/10/27 12:14:14 A . (..) -- C:\Users\nidal\AppData\Local\4C4C4544-1445948045-4E10-8054-B5C04F343253\Uninstall.exe [51031]
---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
---\\ Menu de démarrage Internet (12) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe http://www.mystartsearch.com/ =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/ ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.ex http://www.istartsurf.com/ =>PUP.Optional.IsStart
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
---\\ Recherche d'infection sur les navigateurs (1) - 0s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
---\\ Enumère les services démarrés par Svchost (36) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [161792] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [126976] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [126976] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [250368] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1212928] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [733696] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [822784] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [24064] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [89600] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [115712] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [93696] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1015808] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [185856] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [74752] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [108032] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [191488] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [296448] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [64512] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [75264] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [41984] ©
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1245184] ©
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [367104] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [297984] ©
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [167424] ©
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [142848] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [95232] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [461824] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [183296] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [58368] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [390144] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [254464] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3065856] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [734208] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [576512] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [155648] ©
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filt.) -- C:\Windows\System32\KeyboardFilterSvc.dll [76096] ©
---\\ Liste des exceptions du parefeu Windows (13) - 2s
O87 - FAEL: "{3B7D2D4D-0A0B-478D-827C-2A3E7A12467E}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{C545F1FF-8C0C-4A1B-8FAB-B544BC862648}" [Out-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{289DA431-315F-4E3F-A44E-AE7DE011EC2E}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{5856BD9C-1C8A-408E-B8B7-4BA092524890}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{22E8D4EB-D481-4440-8E3D-1E7A428C20D1}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{0E3A081F-4C45-4148-9195-F6769224FE83}" [Out-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "TCP Query User{2B02A6EE-9FB4-4AF7-A6E6-C4E86FC9FF6F}C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P6-TRUE] .(...) -- C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O87 - FAEL: "UDP Query User{15D8EE90-1D5A-426B-AB96-2610D8D9F0CC}C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P17-TRUE] .(...) -- C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O87 - FAEL: "TCP Query User{5B318167-762A-49F4-B66B-9494A248210D}C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P6-TRUE] .(...) -- C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O87 - FAEL: "UDP Query User{3317AB51-8FAB-46D4-927B-E0E54BCC9EFC}C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P17-TRUE] .(...) -- C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O87 - FAEL: "TCP Query User{C2379110-868E-455D-B743-7AB59CA7411C}C:\users\nidal\appdata\local\popcorn time\nw.exe" [In-None-P6-TRUE] .(...) -- C:\users\nidal\appdata\local\popcorn time\nw.exe (.not file.)
O87 - FAEL: "UDP Query User{1E6EA8DD-6759-4430-9F69-FB5B811E5122}C:\users\nidal\appdata\local\popcorn time\nw.exe" [In-None-P17-TRUE] .(...) -- C:\users\nidal\appdata\local\popcorn time\nw.exe (.not file.)
O87 - FAEL: "{F4A8EEBB-CDEC-4E40-8490-F58D3F96E474}" [In-None-P17-TRUE] .(.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
---\\ Enumère les codes produits des logiciels (1) - 0s
O90 - PUC: "93BAD29AC2E44034A96BCB446EB8552E" . (.globalupdate Helper.) =>PUP.Optional.GlobalUpdate
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (19) - 11s
SS - Demand [2015/10/21 14:58:02] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2015/10/27 12:13:30] [ 222720] Highlighted Magnetic Strip (bywijyhu) . (...) - C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\jnsm3747.tmp =>PUP.Optional.CrossRider
SR - Auto [2015/10/25 17:20:06] [ 379904] Concom Service (Concom) . (.Copyright © 2015.) - C:\Program Files\Concom\Concom.exe =>PUP.Optional.Amonetize
SR - Auto [2015/10/27 12:13:43] [ 845312] Task Advertisement (dijojyvi) . (...) - C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\hnss5205.tmp =>PUP.Optional.CrossRider
SR - Demand [2015/06/18 13:55:10] [ 1034584] Disc Soft Lite Bus Service (Disc Soft Lite Bus Service) . (.Disc Soft Ltd.) - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe ©
SR - Auto [2015/01/16 07:41:08] [ 915600] NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe ©
SS - Auto [2015/10/27 12:29:36] [ 68608] globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate.) - C:\Program Files\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
SS - Demand [2015/10/27 12:29:36] [ 68608] globalUpdate Update Service (globalUpdatem) (globalUpdatem) . (.globalUpdate.) - C:\Program Files\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
SS - Auto [2015/06/05 15:45:31] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/06/05 15:45:31] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SR - Auto [2015/10/27 11:22:30] [ 255488] Photocopier Attachment (jikuqeki) . (...) - C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\knsq1B8B.tmpfs =>PUP.Optional.CrossRider
SR - Auto [2015/01/16 07:41:08] [ 1706128] NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe ©
SR - Auto [2015/01/16 07:41:07] [19775632] NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe ©
SR - Auto [2015/02/04 03:05:53] [ 670536] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe ©
SR - Auto [2015/10/27 12:53:54] [ 173728] SSFK (SSFK) . (.TODO: <公司名>.) - C:\Program Files\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
SR - Auto [2015/02/04 00:57:21] [ 409800] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
SS - Auto [2015/10/27 12:17:57] [ 46592] Ozerex (upaateproduct) . (...) - C:\Users\nidal\AppData\Local\Lamtone.exe
SR - Auto [2015/10/27 12:53:53] [ 301704] WdsManPro Service (WdsManPro) . (.DTools LIMITED.) - C:\ProgramData\QWMiniProQ\WMiniPro.exe =>PUP.Optional.WpManager
---\\ Scan Additionnel (137) - 0s
C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\jnsm3747.tmp =>PUP.Optional.CrossRider
C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\hnss5205.tmp =>PUP.Optional.CrossRider
C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\knsq1B8B.tmpfs =>PUP.Optional.CrossRider
C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6.exe =>PUP.Optional.CrossRider
C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6.exe =>PUP.Optional.CrossRider
C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-6.exe =>PUP.Optional.CrossRider
C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-1-6.exe =>PUP.Optional.CrossRider
C:\ProgramData\QWMiniProQ\WMiniPro.exe =>PUP.Optional.WpManager
C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-10.exe =>PUP.Optional.CrossRider
C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10.exe =>PUP.Optional.CrossRider
C:\Users\nidal\AppData\Roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
C:\Users\nidal\AppData\Local\Google\Chrome\User Data\Default\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh
C:\Users\nidal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegdfeiahlfolhcfioipjlkombmgbakh
C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
HKLM\SYSTEM\CurrentControlSet\Services\bywijyhu =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\Concom =>PUP.Optional.Amonetize
C:\Program Files\Concom\Concom.exe =>PUP.Optional.Amonetize
HKLM\SYSTEM\CurrentControlSet\Services\dijojyvi =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\jikuqeki =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\SSFK =>PUP.Optional.MyWebSearch
C:\Program Files\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
HKLM\SYSTEM\CurrentControlSet\Services\WdsManPro =>PUP.Optional.WpManager
C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-1-7.exe =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-6.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-7.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-10_user.job =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-6 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-7 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-10_user =>PUP.Optional.CrossRider
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyBrowser 1.0.2V27.10 =>PUP.Optional.MyBrowser
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1 =>PUP.Optional.CrossRider
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage =>PUP.Optional.Downware
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\0fbd8299-162a-4faa-9e08-3096f35dc288 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\6f70fa6a-97da-45b7-924a-f3e0497d88f2 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\718b4ab0-8822-4561-854a-32abfa881416 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV25.10-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV25.10-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\downchecker =>PUP.Optional.DownChecker
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\MyBrowser 1.0.2V27.10 =>PUP.Optional.MyBrowser
HKLM\SOFTWARE\MyBrowser 1.0.2V27.10-nv =>PUP.Optional.MyBrowser
HKLM\SOFTWARE\MyBrowser 1.0.2V27.10-nv-ie =>PUP.Optional.MyBrowser
HKLM\SOFTWARE\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\SavePass 1.1 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\SavePass 1.1-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\SavePass 1.1-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Uniblue =>PUP.Optional.Uniblue
HKLM\SOFTWARE\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\cacaoweb =>PUP.Optional.CacaoWeb
HKCU\SOFTWARE\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV25.10-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV25.10-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\MyBrowser 1.0.2V27.10 =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\MyBrowser 1.0.2V27.10-nv =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\MyBrowser 1.0.2V27.10-nv-ie =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\SavePass 1.1 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253 =>PUP.Optional.CrossRider
C:\Program Files\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
C:\Program Files\Concom =>PUP.Optional.Amonetize
C:\Program Files\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\MyBrowser 1.0.2V27.10 =>PUP.Optional.CrossRider
C:\Program Files\SavePass 1.1 =>PUP.Optional.CrossRider
C:\Program Files\SFK =>PUP.Optional.MyWebSearch
C:\Program Files\Uniblue =>PUP.Optional.Uniblue
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Users\nidal\AppData\Roaming\cacaoweb =>PUP.Optional.CacaoWeb
C:\Users\nidal\AppData\Roaming\istartsurf =>PUP.Optional.IsStart
C:\Users\nidal\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
C:\Users\nidal\AppData\Roaming\Uniblue =>PUP.Optional.Uniblue
C:\Users\nidal\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Users\nidal\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>PUP.Optional.Downware
C:\Windows\Prefetch\CACAOWEB.EXE-C83AEF3F.pf =>PUP.Optional.CacaoWeb
C:\Windows\Prefetch\CROSSBROWSE.EXE-F6F882CE.pf =>PUP.Optional.CrossBrowse
C:\Windows\Prefetch\GLOBALUPDATE.EXE-4D07E485.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\GLOBALUPDATE.EXE-6CC00CEB.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\GLOBALUPDATE.EXE-A474C9DD.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\GLOBALUPDATE.EXE-B66D5BF9.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\GLOBALUPDATE.EXE-CEFB8321.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\GLOBALUPDATECRASHHANDLER.EXE-C9210A99.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\SPEEDUPMYPC-STANDALONE-SETUP.-3D4CE614.pf =>PUP.Optional.SpeedUpMyPC
C:\Windows\Prefetch\SPEEDUPMYPC-STANDALONE-SETUP.-A116A4BA.pf =>PUP.Optional.SpeedUpMyPC
C:\Windows\Prefetch\WPM_V20.0.0.2304.EXE-1EAAA684.pf =>PUP.Optional.WpManager
C:\Windows\Prefetch\WPM_V20.0.0.2304.EXE-D72AB0CC.pf =>PUP.Optional.WpManager
C:\Users\nidal\Desktop\cacaoweb.exe =>PUP.Optional.CacaoWeb
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\OperaChecker25-6[1].exe =>PUA.Optional.OperaChecker
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\VuuPC_VO2_8907[1].exe =>PUP.Optional.VuuPC
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\Reimage[1].exe =>PUP.Optional.ReImageRepair
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\Reimage[2].exe =>PUP.Optional.ReImageRepair
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\installer[2].exe =>PUP.Optional.CrossRider
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\obw_istartsurf[1].exe =>PUP.Optional.IsStart
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\setup[1].exe =>PUP.Optional.CrossRider
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\SpeedUpMyPC-standalone-setup[1].exe =>PUP.Optional.SpeedUpMyPC
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\cmi_mystartsearch[1].exe =>PUP.Optional.StartSearch
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\VOPackage[1].exe =>PUP.Optional.Downware
HKLM\Software\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E =>PUP.Optional.GlobalUpdate
HKLM\Software\Classes\Installer\Features\93BAD29AC2E44034A96BCB446EB8552E =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdatem =>PUP.Optional.GlobalUpdate
---\\ Récapitulatif des éléments trouvées sur votre station (20) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/pup-cacaoweb/ =>PUP.Optional.CacaoWeb
http://www.nicolascoolman.fr/pup-optional-startsearch/ =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowse
http://www.nicolascoolman.fr/pup-amonetize/ =>PUP.Optional.Amonetize
http://www.nicolascoolman.fr/adware-mywebsearch/ =>PUP.Optional.MyWebSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.MyBrowser
http://www.nicolascoolman.fr/adware-downware/ =>PUP.Optional.Downware
http://www.nicolascoolman.fr/blog =>PUP.Optional.DownChecker
http://www.nicolascoolman.fr/blog =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/blog =>PUP.Optional.Uniblue
http://www.nicolascoolman.fr/blog =>PUP.Optional.WdsManPro
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowser
http://www.nicolascoolman.fr/blog =>PUP.Optional.SpeedUpMyPC
http://www.nicolascoolman.fr/blog =>PUA.Optional.OperaChecker
http://www.nicolascoolman.fr/pup-vuupc/ =>PUP.Optional.VuuPC
http://www.nicolascoolman.fr/rogue-reimagerepair/ =>PUP.Optional.ReImageRepair
~ End of the scan, 10836 items in 293 seconds (829)(0)()
~ Démarré par nidal (Administrator) (2015/10/27 15:45:21)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\nidal\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\nidal\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 8.1 Pro, 32-bit (Build 9600)
---\\ Navigateurs Internet (2) - 0s
GCIE: Google Chrome v46.0.2490.80
MSIE: Internet Explorer v11.0.9600.18053
---\\ Informations sur les produits Windows (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ Logiciels de protection (1) - 9s
Windows Defender (Activate)
---\\ Surveillance de Logiciels (1) - 9s
Adobe Flash Player 19 PPAPI
---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 1046.164 MB (7% free)
~ System Restore: Activé (Enable)
~ System drive C: has 215 GB free of 238 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC
~ User Name: nidal
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 215 GB free of 238 GB (System)
---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (24) - 2s
[MD5.91E24273FCA076EA9E65DAFA98901225] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2207488] ©
[MD5.8BFE805555CDAF6387912A34D7978DAA] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [51200] ©
[MD5.DC02677945BDABD6B0C6A29914AA21EF] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [115712] ©
[MD5.D798AD4968F64AC7D80FFC1A7580ACD5] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2011136] ©
[MD5.E36FB29A2158B7D5DCA0F4E08DE75442] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [465408] ©
[MD5.BFB9E1202225113991F981D29BFB9029] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [438272] ©
[MD5.BD9C7A068C46053F8747CEA73B5930AB] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\Windows\System32\dnsapi.dll [498688] ©
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [19456] ©
[MD5.D75FB05E8DBF21FA0EF313C7503243F1] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [461312] ©
[MD5.72FCAE2CE6DFEAB2AB072435017F3417] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [23392] ©
[MD5.CE232BB0965C0C0B786C3F976CCBFB7D] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [73728] ©
[MD5.E2FC132D48EA4E8B04432C33EFB77801] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [124928] ©
[MD5.55758EBBC45E1628161121D7CFEAD4A1] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.7E0EDA9EE53E344D1604EB2A7E8DED47] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [69632] ©
[MD5.7A708934CC652100A94944EC808C3916] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [83456] ©
[MD5.FA6C94C754A566EA8A61D658932F32DE] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [126976] ©
[MD5.49EDA7967848465645E2D809384D0EBA] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\Windows\System32\drivers\MRxSmb.sys [328704] ©
[MD5.BC242922B0D08F61CF7C87FD08FAFA8B] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [218624] ©
[MD5.C52E578E3F8182C2EE6AAF0AC2B61C9B] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1689408] ©
[MD5.4F30970F15ADCC382544B31D5D7E368E] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [81408] ©
[MD5.C51AB62AB41A2E8560D12472B204CC00] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [81920] ©
[MD5.67E91843B0344411820A012063E876B2] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\Windows\System32\drivers\rdpdr.sys [143872] ©
[MD5.DB0C184142CF9FA1746F598A16EE92B2] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [87040] ©
[MD5.31A2AA48C1ECD390E2707E5C21B75DCE] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [264512] ©
---\\ Processus lancés (37) - 7s
[MD5.9AF133F51F7832ABAD3EEA362C84FE43] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) -- C:\Windows\System32\nvvsvc.exe [670536] [PID.768] ©
[MD5.A0BF3234CFFFBD1439757931B9BC57AA] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [409800] [PID.788] ©
[MD5.B6620D29FDC471DC09FE73C18F5FFA8A] - (...) -- C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\jnsm3747.tmp [222720] [PID.1592] =>PUP.Optional.CrossRider
[MD5.B1F245B531576BF378CF6C5539A33D22] - (.Copyright © 2015 - .) -- C:\Program Files\Concom\Concom.exe [379904] [PID.1612]
[MD5.E5FFE2F0C16B4F6C29613D6E7A64E81D] - (...) -- C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\hnss5205.tmp [845312] [PID.1696] =>PUP.Optional.CrossRider
[MD5.66AF0B382E050DD2521BCB5337410916] - (.NVIDIA Corporation - NVIDIA GeForce Experience Service.) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915600] [PID.1788] ©
[MD5.34393A9949B342A106FF634BEA158BC4] - (...) -- C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\knsq1B8B.tmpfs [255488] [PID.1820] =>PUP.Optional.CrossRider
[MD5.93C82F365F9C0A2058A211E305A5CCFA] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128] [PID.2016] ©
[MD5.206084ADC8C7A0D723C65573219600E4] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19775632] [PID.328] ©
[MD5.87A4F4B0F5BA103D580301FD7F4CAF15] - (.Cinema PlusV25.10 - CinemaPlus-3.2cV25.10 exe.) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6.exe [1389648] [PID.1220] =>PUP.Optional.CrossRider
[MD5.A0C0E56667208533554009EAF64046B7] - (.OB - SavePass 1.1 exe.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-6.exe [1542656] [PID.1668]
[MD5.E43EDFDA6DB9D6C5E46874BD93F8BEF8] - (.Cinema PlusV25.10 - CinemaPlus-3.2cV25.10 exe.) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6.exe [1516624] [PID.332] =>PUP.Optional.CrossRider
[MD5.37078411A77885F9DD65B5EFD9689DC7] - (.OB - SavePass 1.1 exe.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-1-6.exe [1613312] [PID.2108]
[MD5.206084ADC8C7A0D723C65573219600E4] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19775632] [PID.2408] ©
[MD5.A72BB48D9014A7D7C05F02F595F52D60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe [245576] [PID.2804] ©
[MD5.74F7E518FB12C2D10C9BCF9C8E72B885] - (.Disc Soft Ltd - Disc Soft Bus Service.) -- C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1034584] [PID.4268] ©
[MD5.364508A20BFF9632DC50B505B2D348CF] - (.MyBrowser 1.0.2V27.10 - MyBrowser 1.0.2V27.10 exe.) -- C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-6.exe [1401936] [PID.4352] =>PUP.Optional.CrossRider
[MD5.EF7F5B11E34855E65F712E25A2FEA713] - (.MyBrowser 1.0.2V27.10 - MyBrowser 1.0.2V27.10 exe.) -- C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-1-6.exe [1525328] [PID.4496] =>PUP.Optional.CrossRider
[MD5.D334597DB092B629F2ECF04579003374] - (.DTools LIMITED - DTools.) -- C:\ProgramData\QWMiniProQ\WMiniPro.exe [301704] [PID.4304] =>PUP.Optional.WpManager
[MD5.D7C9C9BE336CCA7681CCA83D3A744C7E] - (.TODO: <公司名> - TODO: <文件说明>.) -- C:\Program Files\SFK\SSFK.exe [173728] [PID.5956]
[MD5.8E82B3AA3DF1A8774A8A9162CBFC6913] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [938184] [PID.5220] ©
[MD5.9AF133F51F7832ABAD3EEA362C84FE43] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) -- C:\Windows\System32\nvvsvc.exe [670536] [PID.5544] ©
[MD5.E07895DEA6D8E017709ABA97569EDD4C] - (.MyBrowser 1.0.2V27.10 - MyBrowser 1.0.2V27.10 exe.) -- C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-10.exe [1481808] [PID.4468] =>PUP.Optional.CrossRider
[MD5.9EA6C20853AD72CACEB4C689B9E669BF] - (.Cinema PlusV25.10 - CinemaPlus-3.2cV25.10 exe.) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10.exe [1478736] [PID.4868] =>PUP.Optional.CrossRider
[MD5.BADF1C8F90769A00700D135531DD461A] - (.OB - SavePass 1.1 exe.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-10.exe [1545728] [PID.3336]
[MD5.85A5DB9C8DEFDDE941EC121ADB5B3175] - (.DT Soft Ltd - DAEMON Tools Shell Extensions Helper.) -- C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe [2744960] [PID.3660] ©
[MD5.059E588FDF6B7E83227D45D026D21874] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2585744] [PID.5000] ©
[MD5.72E53D65F690FA26447C5AF0D5379AF2] - (...) -- C:\Users\nidal\AppData\Roaming\cacaoweb\cacaoweb.exe [538928] [PID.492] =>PUP.Optional.CacaoWeb
[MD5.964288601804A3E8F55AF32619ED4B40] - (.Copyright © 2015 - .) -- C:\Program Files\Concom\packages\3a98cff1-97f6-4610-a250-ed47d76e2fbb\Stanron.exe [855040] [PID.3012]
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6524] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6532] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6616] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6500] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.1800] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6936] ©
[MD5.E4A6457741387E87F1EB38E067E8B52B] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [1818952] [PID.3168] ©
[MD5.E39F4186EC180D23F1CE16C683253B99] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\nidal\Downloads\ZHPDiag3.exe [1959936] [PID.8052] ©
---\\ Google Chrome, Démarrage,Recherche,Extensions (9) - 1s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.mystartsearch.com/ =>PUP.Optional.StartSearch
G2 - GCE: Preference [User Data\Default] [akaelkiagnbfcccfnmbimdbplecgbikh] SavePass 1.1 =>PUP.Optional.CrossRider
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gegdfeiahlfolhcfioipjlkombmgbakh] CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (2) - 1s
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
---\\ Opera, Démarrage,Recherche,Plugins (1) - 0s
B2 - EXT: [MyBrowser 1.0.2V27.10] C:\Users\nidal\AppData\Roaming\Opera Software\Opera Stable\Extensions\gegdfeiahlfolhcfioipjlkombmgbakh
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (10) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Applications lancées au démarrage du système (10) - 1s
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe ©
O4 - HKLM\..\Run: [ShadowPlay] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe ©
O4 - HKCU\..\Run: [cacaoweb] . (...) -- C:\Users\nidal\AppData\Roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe ©
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] . (.DT Soft Ltd - DAEMON Tools Pro Agent.) -- C:\Program Files\DAEMON Tools Pro\DTAgent.exe ©
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_206E6D97B977B5E743DE80B742C02DDE] . (.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - HKUS\S-1-5-21-2128081440-2508271290-3507871959-1001\..\Run: [cacaoweb] . (...) -- C:\Users\nidal\AppData\Roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O4 - HKUS\S-1-5-21-2128081440-2508271290-3507871959-1001\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe ©
O4 - HKUS\S-1-5-21-2128081440-2508271290-3507871959-1001\..\Run: [DAEMON Tools Pro Agent] . (.DT Soft Ltd - DAEMON Tools Pro Agent.) -- C:\Program Files\DAEMON Tools Pro\DTAgent.exe ©
O4 - HKUS\S-1-5-21-2128081440-2508271290-3507871959-1001\..\Run: [GoogleChromeAutoLaunch_206E6D97B977B5E743DE80B742C02DDE] . (.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
---\\ Raccourcis Global Startup (6) - 7s
O4 - GS\Quicklaunch [Administrateur]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Administrateur]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Quicklaunch [Invité]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Invité]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Quicklaunch [nidal]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [nidal]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
---\\ Protocole additionnel (17) - 0s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
---\\ Liste des services NT non Microsoft et non désactivés (14) - 1s
O23 - Service: Highlighted Magnetic Strip (bywijyhu) . (...) - C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\jnsm3747.tmp =>PUP.Optional.CrossRider
O23 - Service: Concom Service (Concom) . (.Copyright © 2015 - .) - C:\Program Files\Concom\Concom.exe =>PUP.Optional.Amonetize
O23 - Service: Task Advertisement (dijojyvi) . (...) - C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\hnss5205.tmp =>PUP.Optional.CrossRider
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce Experience Service.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe ©
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
O23 - Service: Photocopier Attachment (jikuqeki) . (...) - C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\knsq1B8B.tmpfs =>PUP.Optional.CrossRider
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe ©
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.4.) - C:\Windows\System32\nvvsvc.exe ©
O23 - Service: SSFK (SSFK) . (.TODO: <公司名> - TODO: <文件说明>.) - C:\Program Files\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
O23 - Service: Ozerex (upaateproduct) . (. - xrc.) - C:\Users\nidal\AppData\Local\Lamtone.exe
O23 - Service: WdsManPro Service (WdsManPro) . (.DTools LIMITED - DTools.) - C:\ProgramData\QWMiniProQ\WMiniPro.exe =>PUP.Optional.WpManager
---\\ Tâches planifiées en automatique (63) - 10s
[MD5.E43EDFDA6DB9D6C5E46874BD93F8BEF8] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6] (.Cinema PlusV25.10.) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6.exe [1516624] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7] (...) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.9EA6C20853AD72CACEB4C689B9E669BF] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user] (.Cinema PlusV25.10.) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10.exe [1478736] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3] (...) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5] (...) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user] (...) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.87A4F4B0F5BA103D580301FD7F4CAF15] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6] (.Cinema PlusV25.10.) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6.exe [1389648] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7] (...) -- C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.37078411A77885F9DD65B5EFD9689DC7] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-1-6] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-1-6.exe [1613312]
[MD5.575994CD44C8A9B117BDDE08FF5FB4F9] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-1-7] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-1-7.exe [1049600]
[MD5.BADF1C8F90769A00700D135531DD461A] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-10_user] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-10.exe [1545728]
[MD5.FCE695549FE559E1AB81FF8664000B33] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-3] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-3.exe [1352192]
[MD5.87AA3178BCB49F78A18AEB05CEF55244] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-5] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-5.exe [1228800]
[MD5.87AA3178BCB49F78A18AEB05CEF55244] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-5_user] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-5.exe [1228800]
[MD5.A0C0E56667208533554009EAF64046B7] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-6] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-6.exe [1542656]
[MD5.575994CD44C8A9B117BDDE08FF5FB4F9] [APT] [56c42360-9efd-4c43-9336-ecb73143c02a-7] (.OB.) -- C:\Program Files\SavePass 1.1\56c42360-9efd-4c43-9336-ecb73143c02a-7.exe [1049600]
[MD5.E190FDABCC7E823BA40931FD955D0C2B] [APT] [Adobe Flash Player PPAPI Notifier] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashUtil32_19_0_0_226_pepper.exe [1157320] ©
[MD5.C51D80C58CFE9104EFFF67DA31053A24] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.EF7F5B11E34855E65F712E25A2FEA713] [APT] [b5a118db-9bc9-4db1-ad7e-835691923108-1-6] (.MyBrowser 1.0.2V27.10.) -- C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-1-6.exe [1525328] =>PUP.Optional.CrossRider
[MD5.E6CDB0EA64567BB07BA9B5788A9B6B36] [APT] [b5a118db-9bc9-4db1-ad7e-835691923108-1-7] (.MyBrowser 1.0.2V27.10.) -- C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-1-7.exe [1094736] =>PUP.Optional.CrossRider
[MD5.E6CDB0EA64567BB07BA9B5788A9B6B36] [APT] [b5a118db-9bc9-4db1-ad7e-835691923108-10_user] (.MyBrowser 1.0.2V27.10.) -- C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-1-7.exe [1094736] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6 - (.Cinema PlusV25.10.) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6.job [3132] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7 - (...) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7.job [3132] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user - (.Cinema PlusV25.10.) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user.job [2106] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3 - (...) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3.job [4152] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5 - (...) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5.job [2440] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user - (...) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user.job [2440] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6 - (.Cinema PlusV25.10.) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6.job [5512] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7 - (...) -- C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7.job [5176] =>PUP.Optional.CrossRider
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-1-6 - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-1-6.job [3114]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-1-7 - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-1-7.job [3114]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-10_user - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-10_user.job [2088]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-3 - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-3.job [4134]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-5 - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-5.job [2422]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-5_user - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-5_user.job [2422]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-6 - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-6.job [5494]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-7 - (.OB.) -- C:\Windows\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-7.job [5494]
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job [892] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] ©
O39 - APT: b5a118db-9bc9-4db1-ad7e-835691923108-1-6 - (.MyBrowser 1.0.2V27.10.) -- C:\Windows\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-6.job [3132] =>PUP.Optional.CrossRider
O39 - APT: b5a118db-9bc9-4db1-ad7e-835691923108-1-7 - (.MyBrowser 1.0.2V27.10.) -- C:\Windows\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-7.job [3132] =>PUP.Optional.CrossRider
O39 - APT: b5a118db-9bc9-4db1-ad7e-835691923108-10_user - (.MyBrowser 1.0.2V27.10.) -- C:\Windows\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-10_user.job [2106] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6 - (.Cinema PlusV25.10.) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6 [6136] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7 - (...) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7 [6136] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user - (.Cinema PlusV25.10.) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user [5094] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3 - (...) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3 [7156] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5 - (...) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5 [5444] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user - (...) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user [5428] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6 - (.Cinema PlusV25.10.) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6 [8516] =>PUP.Optional.CrossRider
O39 - APT: 08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7 - (...) -- C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7 [8180] =>PUP.Optional.CrossRider
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-1-6 - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-1-6 [6118]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-1-7 - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-1-7 [6118]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-10_user - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-10_user [5076]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-3 - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-3 [7138]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-5 - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-5 [5426]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-5_user - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-5_user [5410]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-6 - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-6 [8498]
O39 - APT: 56c42360-9efd-4c43-9336-ecb73143c02a-7 - (.OB.) -- C:\Windows\System32\Tasks\56c42360-9efd-4c43-9336-ecb73143c02a-7 [8498]
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier [3844] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3890] ©
O39 - APT: b5a118db-9bc9-4db1-ad7e-835691923108-1-6 - (.MyBrowser 1.0.2V27.10.) -- C:\Windows\System32\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-6 [6136] =>PUP.Optional.CrossRider
O39 - APT: b5a118db-9bc9-4db1-ad7e-835691923108-1-7 - (.MyBrowser 1.0.2V27.10.) -- C:\Windows\System32\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-7 [6136] =>PUP.Optional.CrossRider
O39 - APT: b5a118db-9bc9-4db1-ad7e-835691923108-10_user - (.MyBrowser 1.0.2V27.10.) -- C:\Windows\System32\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-10_user [5094] =>PUP.Optional.CrossRider
---\\ Logiciels installés (21) - 4s
O42 - Logiciel: Adobe Flash Player 19 PPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player PPAPI ©
O42 - Logiciel: CinemaPlus-3.2cV25.10 - (.Cinema PlusV25.10.) [HKLM] -- CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM] -- DAEMON Tools Lite ©
O42 - Logiciel: DAEMON Tools Pro - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Pro ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome ©
O42 - Logiciel: MyBrowser 1.0.2V27.10 - (.MyBrowser 1.0.2V27.10.) [HKLM] -- MyBrowser 1.0.2V27.10 =>PUP.Optional.MyBrowser
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIAStereo ©
O42 - Logiciel: SavePass 1.1 - (.OB.) [HKLM] -- SavePass 1.1 =>PUP.Optional.CrossRider
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player ©
O42 - Logiciel: Remote Desktop Access (VuuPC) - (.CMI Limited.) [HKLM] -- VOPackage =>PUP.Optional.Downware
O42 - Logiciel: WinRAR 5.21 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {80407BA7-7763-4395-AB98-5233F1B34E65} ©
O42 - Logiciel: globalupdate Helper - (.globalupdate Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.GlobalUpdate
O42 - Logiciel: NVIDIA Pilote 3D Vision 341.44 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision ©
O42 - Logiciel: NVIDIA Pilote graphique 341.44 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: NVIDIA GeForce Experience 2.2.2 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience ©
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 340.50 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB ©
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.13.1220 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX ©
O42 - Logiciel: Counter-Strike 1.6 [cswos.com] - (.CSWOS.COM.) [HKLM] -- {EE3AE3B8-8656-4C18-B60E-6EFC6C305B1B}_is1
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU] -- uTorrent
---\\ HKCU & HKLM Software Keys (84) - 4s
HKLM\SOFTWARE\0fbd8299-162a-4faa-9e08-3096f35dc288 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\6f70fa6a-97da-45b7-924a-f3e0497d88f2 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\718b4ab0-8822-4561-854a-32abfa881416 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\AGEIA Technologies
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV25.10-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV25.10-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Disc Soft
HKLM\SOFTWARE\downchecker =>PUP.Optional.DownChecker
HKLM\SOFTWARE\DT Soft
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\KasperskyLab
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\MyBrowser 1.0.2V27.10 =>PUP.Optional.MyBrowser
HKLM\SOFTWARE\MyBrowser 1.0.2V27.10-nv =>PUP.Optional.MyBrowser
HKLM\SOFTWARE\MyBrowser 1.0.2V27.10-nv-ie =>PUP.Optional.MyBrowser
HKLM\SOFTWARE\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\NVIDIA Corporation
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Opera Software
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\SavePass 1.1 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\SavePass 1.1-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\SavePass 1.1-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Uniblue =>PUP.Optional.Uniblue
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\cacaoweb =>PUP.Optional.CacaoWeb
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV25.10-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV25.10-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DT Soft
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\i7OR7EybE24hLdaXJFfMfx2Tl
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\KasperskyLabSetup
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\mFmnofBKLhzElhlG
HKCU\SOFTWARE\Mine
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MyBrowser 1.0.2V27.10 =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\MyBrowser 1.0.2V27.10-nv =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\MyBrowser 1.0.2V27.10-nv-ie =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\OB
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\PviTBlrXRRKHMACBzOT
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\SavePass 1.1 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
---\\ Contenu des dossiers Programmes (119) - 5s
O43 - CFD: 2015/10/27 13:35:36 - [] D -- C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253 =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/27 13:42:31 - [] D -- C:\Program Files\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/27 12:32:30 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2015/10/27 13:18:08 - [] D -- C:\Program Files\Concom =>PUP.Optional.Amonetize
O43 - CFD: 2015/10/27 12:26:08 - [] D -- C:\Program Files\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2015/07/08 18:21:31 - [] D -- C:\Program Files\DAEMON Tools Lite
O43 - CFD: 2015/07/08 19:01:05 - [] D -- C:\Program Files\DAEMON Tools Pro
O43 - CFD: 2015/06/05 15:36:54 - [0] SHD -- C:\Program Files\Fichiers communs
O43 - CFD: 2015/10/27 12:11:59 - [] D -- C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/06/05 15:50:49 - [] D -- C:\Program Files\Google
O43 - CFD: 2015/10/14 22:40:12 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2013/08/22 09:17:26 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2015/10/27 12:31:04 - [] D -- C:\Program Files\MyBrowser 1.0.2V27.10 =>PUP.Optional.CrossRider
O43 - CFD: 2015/06/05 18:41:39 - [] D -- C:\Program Files\NVIDIA Corporation
O43 - CFD: 2015/10/27 12:40:59 - [] D -- C:\Program Files\Opera
O43 - CFD: 2015/10/27 12:16:25 - [] D -- C:\Program Files\SavePass 1.1 =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/27 12:54:09 - [] D -- C:\Program Files\SFK =>PUP.Optional.MyWebSearch
O43 - CFD: 2015/10/27 13:01:08 - [] D -- C:\Program Files\Uniblue =>PUP.Optional.Uniblue
O43 - CFD: 2013/08/22 08:24:44 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2015/06/05 15:53:46 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 2015/08/12 16:34:50 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2015/09/14 19:28:25 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 2015/06/07 23:29:16 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2015/06/07 23:29:16 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2015/06/07 23:29:16 - [] D -- C:\Program Files\Windows Multimedia Platform
O43 - CFD: 2015/06/05 15:36:54 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2015/06/07 23:29:16 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 2015/06/07 23:29:16 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2013/08/22 09:17:26 - [] SHD -- C:\Program Files\Windows Sidebar
O43 - CFD: 2015/10/23 16:09:22 - [] HD -- C:\Program Files\WindowsApps
O43 - CFD: 2015/06/07 23:28:25 - [] D -- C:\Program Files\WindowsPowerShell
O43 - CFD: 2015/06/05 17:53:58 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 2015/06/07 23:29:23 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/06/07 23:29:23 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/06/10 19:19:58 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/07/08 23:37:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 [cswos.com v8.0]
O43 - CFD: 2015/10/27 12:27:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2015/07/08 18:20:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 2015/07/08 19:01:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro
O43 - CFD: 2015/10/27 12:26:09 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2013/08/22 09:17:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/06/05 18:45:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2013/08/22 09:17:27 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/06/07 23:29:23 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2014/03/18 08:38:18 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/06/05 15:53:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/06/05 17:54:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/08/11 19:09:09 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2015/08/11 16:05:24 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2013/08/22 08:23:42 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/06/05 15:36:54 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2015/10/27 12:25:22 - [] D -- C:\ProgramData\BWMiniProB
O43 - CFD: 2015/07/08 17:21:36 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2015/07/08 20:03:29 - [] D -- C:\ProgramData\DAEMON Tools Pro
O43 - CFD: 2013/08/22 08:23:42 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2013/08/22 08:23:42 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/08/12 14:11:56 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 2015/09/15 20:26:18 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files
O43 - CFD: 2015/06/05 15:36:54 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/10/25 12:26:45 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/06/05 15:36:54 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/10/27 12:21:01 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2015/06/05 18:45:31 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2015/10/27 12:55:05 - [] D -- C:\ProgramData\QWMiniProQ
O43 - CFD: 2015/06/07 23:28:30 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2013/08/22 08:23:42 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2013/08/22 08:23:42 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/06/07 23:28:22 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2013/08/22 09:17:35 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 2015/06/07 23:29:13 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 2015/06/05 15:38:44 - [] D -- C:\Users\nidal\AppData\Roaming\Adobe
O43 - CFD: 2015/08/11 16:06:51 - [] D -- C:\Users\nidal\AppData\Roaming\Apple Computer
O43 - CFD: 2015/10/27 14:29:55 - [] D -- C:\Users\nidal\AppData\Roaming\cacaoweb =>PUP.Optional.CacaoWeb
O43 - CFD: 2015/07/08 17:26:40 - [] D -- C:\Users\nidal\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2015/07/12 23:44:56 - [] D -- C:\Users\nidal\AppData\Roaming\DAEMON Tools Pro
O43 - CFD: 2015/06/08 13:38:24 - [] D -- C:\Users\nidal\AppData\Roaming\Identities
O43 - CFD: 2015/10/27 12:18:47 - [] D -- C:\Users\nidal\AppData\Roaming\istartsurf =>PUP.Optional.IsStart
O43 - CFD: 2015/06/05 15:42:04 - [] D -- C:\Users\nidal\AppData\Roaming\Macromedia
O43 - CFD: 2015/09/13 15:22:29 - [] SD -- C:\Users\nidal\AppData\Roaming\Microsoft
O43 - CFD: 2015/10/27 12:24:19 - [] D -- C:\Users\nidal\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
O43 - CFD: 2015/07/08 23:37:40 - [] D -- C:\Users\nidal\AppData\Roaming\NVIDIA
O43 - CFD: 2015/10/27 12:19:26 - [] D -- C:\Users\nidal\AppData\Roaming\Opera Software
O43 - CFD: 2015/10/27 13:01:08 - [] D -- C:\Users\nidal\AppData\Roaming\Uniblue =>PUP.Optional.Uniblue
O43 - CFD: 2015/10/27 12:19:57 - [] D -- C:\Users\nidal\AppData\Roaming\uTorrent
O43 - CFD: 2015/10/26 00:05:06 - [] D -- C:\Users\nidal\AppData\Roaming\vlc
O43 - CFD: 2015/06/05 17:54:20 - [] D -- C:\Users\nidal\AppData\Roaming\WinRAR
O43 - CFD: 2015/10/27 15:45:54 - [] D -- C:\Users\nidal\AppData\Roaming\ZHP
O43 - CFD: 2015/10/27 12:32:09 - [] D -- C:\Users\nidal\AppData\Local\4C4C4544-1445948045-4E10-8054-B5C04F343253
O43 - CFD: 2015/06/05 16:19:54 - [0] D -- C:\Users\nidal\AppData\Local\Adobe
O43 - CFD: 2015/08/11 16:04:07 - [] D -- C:\Users\nidal\AppData\Local\Apple
O43 - CFD: 2015/08/11 16:06:23 - [] D -- C:\Users\nidal\AppData\Local\Apple Computer
O43 - CFD: 2015/06/05 15:38:15 - [0] SHD -- C:\Users\nidal\AppData\Local\Application Data
O43 - CFD: 2015/10/27 12:27:21 - [] D -- C:\Users\nidal\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2015/10/27 13:44:48 - [] D -- C:\Users\nidal\AppData\Local\Diagnostics
O43 - CFD: 2015/07/08 17:23:53 - [] D -- C:\Users\nidal\AppData\Local\Disc_Soft_Ltd
O43 - CFD: 2015/10/25 13:02:46 - [] D -- C:\Users\nidal\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/07/05 15:30:15 - [0] SHD -- C:\Users\nidal\AppData\Local\EmieSiteList
O43 - CFD: 2015/07/05 15:30:15 - [0] SHD -- C:\Users\nidal\AppData\Local\EmieUserList
O43 - CFD: 2015/10/27 12:11:59 - [] D -- C:\Users\nidal\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/09/15 12:32:45 - [] D -- C:\Users\nidal\AppData\Local\Google
O43 - CFD: 2015/06/05 15:38:15 - [0] SHD -- C:\Users\nidal\AppData\Local\Historique
O43 - CFD: 2015/10/25 12:26:45 - [] D -- C:\Users\nidal\AppData\Local\Microsoft
O43 - CFD: 2015/06/05 18:44:26 - [] D -- C:\Users\nidal\AppData\Local\NVIDIA
O43 - CFD: 2015/06/05 18:45:31 - [] D -- C:\Users\nidal\AppData\Local\NVIDIA Corporation
O43 - CFD: 2015/10/27 12:19:27 - [] D -- C:\Users\nidal\AppData\Local\Opera Software
O43 - CFD: 2015/08/06 20:49:25 - [] D -- C:\Users\nidal\AppData\Local\Packages
O43 - CFD: 2015/10/27 12:58:33 - [] D -- C:\Users\nidal\AppData\Local\Programs
O43 - CFD: 2015/10/27 15:46:00 - [] D -- C:\Users\nidal\AppData\Local\Temp
O43 - CFD: 2015/06/05 15:38:15 - [0] SHD -- C:\Users\nidal\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/06/10 00:31:58 - [] D -- C:\Users\nidal\AppData\Local\VirtualStore
O43 - CFD: 2014/03/18 09:10:34 - [] RD -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2013/08/22 09:17:27 - [] RD -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/10/15 11:34:02 - [] RD -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/07/08 19:52:16 - [] D -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter Strike 1.6 - No Steam
O43 - CFD: 2013/08/22 09:17:27 - [] D -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/10/27 12:27:24 - [] RD -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/03/18 09:10:34 - [] RD -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/10/27 13:11:22 - [0] D -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>PUP.Optional.Downware
O43 - CFD: 2015/06/05 17:53:59 - [] D -- C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
---\\ Derniers fichiers créés dans Windows Prefetcher (12) - 17s
O45 - LFCP:[MD5.D5B7A8F564FA6F400FBCC5B55D9C8C4A] 2015/10/27 13:02:45 A -- C:\Windows\Prefetch\CACAOWEB.EXE-C83AEF3F.pf =>PUP.Optional.CacaoWeb
O45 - LFCP:[MD5.804E8DF24DF0F546882B9ED1E55F1B1F] 2015/10/27 14:03:04 A -- C:\Windows\Prefetch\CROSSBROWSE.EXE-F6F882CE.pf =>PUP.Optional.CrossBrowse
O45 - LFCP:[MD5.238716F75BE61F1E6003E01F607ED385] 2015/10/27 12:15:31 A -- C:\Windows\Prefetch\GLOBALUPDATE.EXE-4D07E485.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.99866BA0E178F892BF4296EDF8ACB58A] 2015/10/27 12:29:52 A -- C:\Windows\Prefetch\GLOBALUPDATE.EXE-6CC00CEB.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.D781A32573972C1ED2F255928A472AB2] 2015/10/27 12:12:09 A -- C:\Windows\Prefetch\GLOBALUPDATE.EXE-A474C9DD.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.ED9235FB867D18B48B294BC0E3106930] 2015/10/27 13:02:26 A -- C:\Windows\Prefetch\GLOBALUPDATE.EXE-B66D5BF9.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.A785A75221B6113AA9AA444E67F7B034] 2015/10/27 12:13:55 A -- C:\Windows\Prefetch\GLOBALUPDATE.EXE-CEFB8321.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.1B4AEE05235A3F532B64A21032758D73] 2015/10/27 12:34:03 A -- C:\Windows\Prefetch\GLOBALUPDATECRASHHANDLER.EXE-C9210A99.pf =>PUP.Optional.GlobalUpdate
O45 - LFCP:[MD5.3A496240F6DC55126B6CB74C86F39FBA] 2015/10/27 13:01:11 A -- C:\Windows\Prefetch\SPEEDUPMYPC-STANDALONE-SETUP.-3D4CE614.pf =>PUP.Optional.SpeedUpMyPC
O45 - LFCP:[MD5.725C9EAE8EF20E55305DBB593BBEE6C2] 2015/10/27 13:01:09 A -- C:\Windows\Prefetch\SPEEDUPMYPC-STANDALONE-SETUP.-A116A4BA.pf =>PUP.Optional.SpeedUpMyPC
O45 - LFCP:[MD5.A54D4B50F8452BCC2A5FA16E34E5DCDC] 2015/10/27 12:54:04 A -- C:\Windows\Prefetch\WPM_V20.0.0.2304.EXE-1EAAA684.pf =>PUP.Optional.WpManager
O45 - LFCP:[MD5.F144B54FE1F912A0ED1B0B2DB7A16600] 2015/10/27 12:24:21 A -- C:\Windows\Prefetch\WPM_V20.0.0.2304.EXE-D72AB0CC.pf =>PUP.Optional.WpManager
---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\Windows\System32\cscui.dll ©
---\\ Liste des pilotes du système (33) - 7s
O58 - SDL:2013/08/22 06:33:26 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [86368] ©
O58 - SDL:2013/08/22 06:33:25 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [773472] ©
O58 - SDL:2013/08/22 06:33:25 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [72544] ©
O58 - SDL:2013/08/22 06:33:26 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [215392] ©
O58 - SDL:2013/08/22 06:33:24 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22880] ©
O58 - SDL:2013/08/22 06:33:26 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [101728] ©
O58 - SDL:2013/08/13 00:25:32 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [16088] ©
O58 - SDL:2015/07/08 17:21:59 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtlitescsibus.sys [25016] ©
O58 - SDL:2015/07/08 19:01:05 A . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [242240] ©
O58 - SDL:2013/08/22 06:33:29 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [56672] ©
O58 - SDL:2013/07/23 22:18:30 AC . (.Intel Corporation - Intel(R) Atom(TM) Processor GPIO Controller.) -- C:\Windows\System32\drivers\iaiogpio.sys [22016] ©
O58 - SDL:2013/07/23 22:18:30 AC . (.Intel Corporation - Intel(R) Atom(TM) Processor I2C Controller.) -- C:\Windows\System32\drivers\iaioi2c.sys [61936] ©
O58 - SDL:2013/08/10 01:39:44 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\Windows\System32\drivers\iaStorAV.sys [524784] ©
O58 - SDL:2013/08/22 06:33:29 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [333664] ©
O58 - SDL:2013/08/22 02:42:19 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetLink (TM).) -- C:\Windows\System32\drivers\k57nd60x.sys [377344] ©
O58 - SDL:2013/08/22 06:33:29 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [94048] ©
O58 - SDL:2013/08/22 06:33:30 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [79712] ©
O58 - SDL:2013/08/22 06:33:30 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3.sys [68960] ©
O58 - SDL:2013/08/22 06:33:29 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [69472] ©
O58 - SDL:2013/08/22 06:33:30 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [51552] ©
O58 - SDL:2013/08/22 06:33:29 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [464736] ©
O58 - SDL:2013/08/22 06:33:32 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [58208] ©
O58 - SDL:2015/02/04 04:35:16 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [10702664] ©
O58 - SDL:2013/08/22 06:33:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [120160] ©
O58 - SDL:2013/08/22 06:33:33 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [141664] ©
O58 - SDL:2014/11/22 11:46:30 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\drivers\nvvad32v.sys [32912] ©
O58 - SDL:2013/08/22 09:16:47 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2013/08/22 06:32:56 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [41312] ©
O58 - SDL:2013/08/22 06:32:57 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [79200] ©
O58 - SDL:2013/08/22 06:32:57 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [26976] ©
O58 - SDL:2013/08/22 06:33:00 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [18272] ©
O58 - SDL:2013/08/22 06:33:01 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\System32\drivers\vsmraid.sys [148832] ©
O58 - SDL:2013/08/22 06:33:01 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [276832] ©
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (39) - 105s
O61 - LFC: 2015/10/27 13:02:39 A . (..) -- C:\Users\nidal\Desktop\cacaoweb.exe [538928] =>PUP.Optional.CacaoWeb
O61 - LFC: 2015/10/25 14:00:09 A . (.BitTorrent Inc..) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe [1822048]
O61 - LFC: 2015/10/25 14:00:09 A . (.BitTorrent Inc..) -- C:\Users\nidal\AppData\Roaming\uTorrent\updates\3.4.5_41202.exe [1822048]
O61 - LFC: 2015/10/25 14:17:50 A . (.BitTorrent Inc..) -- C:\Users\nidal\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe [336896]
O61 - LFC: 2015/10/27 12:17:57 A . (..) -- C:\Users\nidal\AppData\Local\Lamtone.exe [46592]
O61 - LFC: 2015/10/26 14:00:54 A . (..) -- C:\Users\nidal\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [6021607]
O61 - LFC: 2015/10/27 11:19:47 A . (..) -- C:\Users\nidal\AppData\Local\NVIDIA\NvBackend\Packages\000081c7\DAO.20107302.exe [6721736]
O61 - LFC: 2015/10/27 11:19:24 A . (..) -- C:\Users\nidal\AppData\Local\NVIDIA\NvBackend\Packages\000081b6\CoProc update.20104193.exe [592216]
O61 - LFC: 2015/10/27 12:52:39 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\cmmdWriter[1].exe [43782]
O61 - LFC: 2015/10/27 12:09:19 A . (.OperaChecker.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\OperaChecker25-6[1].exe [50225] =>PUA.Optional.OperaChecker
O61 - LFC: 2015/10/27 12:13:43 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\PnLusvwPL[1].exe [845312]
O61 - LFC: 2015/10/27 12:53:48 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\policyname[1].exe [56503]
O61 - LFC: 2015/10/27 12:53:19 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\SearchUpdater[1].exe [234870]
O61 - LFC: 2015/10/27 12:13:47 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\SFSetup[1].exe [458033]
O61 - LFC: 2015/10/27 12:54:24 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\VuuPC_VO2_8907[1].exe [228613] =>PUP.Optional.VuuPC
O61 - LFC: 2015/10/27 12:09:35 A . (.© 2015.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\install[1].exe [372867]
O61 - LFC: 2015/10/27 12:52:52 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\J6vaPqjyS[1].exe [122298]
O61 - LFC: 2015/10/27 12:13:30 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\JOSrv[1].exe [222720]
O61 - LFC: 2015/10/27 13:33:56 A . (.KLDZC.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\Reimage[1].exe [434784] =>PUP.Optional.ReImageRepair
O61 - LFC: 2015/10/27 13:55:52 A . (.VEYKF.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\Reimage[2].exe [41984] =>PUP.Optional.ReImageRepair
O61 - LFC: 2015/10/27 12:53:35 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\setup_362[1].exe [254464]
O61 - LFC: 2015/10/27 12:14:11 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\Update_Notifier[1].exe [456192]
O61 - LFC: 2015/10/27 12:22:29 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\installer[1].exe [1965128]
O61 - LFC: 2015/10/27 12:28:52 A . (.MyBrowser 1.0.2V27.10.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\installer[2].exe [13613416] =>PUP.Optional.CrossRider
O61 - LFC: 2015/10/27 12:09:32 A . (.7th.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\obw_istartsurf[1].exe [361720] =>PUP.Optional.IsStart
O61 - LFC: 2015/10/27 12:13:16 A . (.Cinema PlusV25.10.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\setup[1].exe [13879552] =>PUP.Optional.CrossRider
O61 - LFC: 2015/10/27 12:13:26 A . (.OB.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\setup[2].exe [12113544]
O61 - LFC: 2015/10/27 13:00:58 A . (.Uniblue Systems Limited.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\SpeedUpMyPC-standalone-setup[1].exe [19136280] =>PUP.Optional.SpeedUpMyPC
O61 - LFC: 2015/10/27 12:14:13 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\SU_Srv[1].exe [153600]
O61 - LFC: 2015/10/27 12:22:50 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\4bbda52393b575e64d530bd478a6717b[1].exe [61371]
O61 - LFC: 2015/10/27 12:53:24 A . (.7th77777777777777777777777777777777777777777777777777.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\cmi_mystartsearch[1].exe [271480] =>PUP.Optional.StartSearch
O61 - LFC: 2015/10/27 12:29:07 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\FinalInstaller_dotnet4[1].exe [3030016]
O61 - LFC: 2015/10/27 12:14:08 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\runasu[1].exe [49664]
O61 - LFC: 2015/10/27 12:54:55 A . (.Copyright 2013.) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\Validate[1].exe [61981]
O61 - LFC: 2015/10/27 12:09:46 A . (..) -- C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\VOPackage[1].exe [838041] =>PUP.Optional.Downware
O61 - LFC: 2015/10/27 15:27:33 A . (..) -- C:\Users\nidal\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
O61 - LFC: 2015/10/27 09:05:38 A . (..) -- C:\Users\nidal\AppData\Local\4C4C4544-1445948045-4E10-8054-B5C04F343253\pnsjE1F4.exe [111711]
O61 - LFC: 2015/10/27 12:14:08 A . (..) -- C:\Users\nidal\AppData\Local\4C4C4544-1445948045-4E10-8054-B5C04F343253\rnsjE1F2.exe [49664]
O61 - LFC: 2015/10/27 12:14:14 A . (..) -- C:\Users\nidal\AppData\Local\4C4C4544-1445948045-4E10-8054-B5C04F343253\Uninstall.exe [51031]
---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
---\\ Menu de démarrage Internet (12) - 1s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Recherche d'infection sur les navigateurs (1) - 0s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
---\\ Enumère les services démarrés par Svchost (36) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [161792] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [126976] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [126976] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [250368] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1212928] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [733696] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [822784] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [24064] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [89600] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [115712] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [93696] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1015808] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [185856] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [74752] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [108032] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [191488] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [296448] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [64512] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [75264] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [41984] ©
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1245184] ©
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [367104] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [297984] ©
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [167424] ©
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [142848] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [95232] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [461824] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [183296] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [58368] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [390144] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [254464] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3065856] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [734208] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [576512] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [155648] ©
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filt.) -- C:\Windows\System32\KeyboardFilterSvc.dll [76096] ©
---\\ Liste des exceptions du parefeu Windows (13) - 2s
O87 - FAEL: "{3B7D2D4D-0A0B-478D-827C-2A3E7A12467E}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{C545F1FF-8C0C-4A1B-8FAB-B544BC862648}" [Out-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{289DA431-315F-4E3F-A44E-AE7DE011EC2E}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{5856BD9C-1C8A-408E-B8B7-4BA092524890}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{22E8D4EB-D481-4440-8E3D-1E7A428C20D1}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{0E3A081F-4C45-4148-9195-F6769224FE83}" [Out-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\nidal\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "TCP Query User{2B02A6EE-9FB4-4AF7-A6E6-C4E86FC9FF6F}C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P6-TRUE] .(...) -- C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O87 - FAEL: "UDP Query User{15D8EE90-1D5A-426B-AB96-2610D8D9F0CC}C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P17-TRUE] .(...) -- C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O87 - FAEL: "TCP Query User{5B318167-762A-49F4-B66B-9494A248210D}C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P6-TRUE] .(...) -- C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O87 - FAEL: "UDP Query User{3317AB51-8FAB-46D4-927B-E0E54BCC9EFC}C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P17-TRUE] .(...) -- C:\users\nidal\appdata\roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O87 - FAEL: "TCP Query User{C2379110-868E-455D-B743-7AB59CA7411C}C:\users\nidal\appdata\local\popcorn time\nw.exe" [In-None-P6-TRUE] .(...) -- C:\users\nidal\appdata\local\popcorn time\nw.exe (.not file.)
O87 - FAEL: "UDP Query User{1E6EA8DD-6759-4430-9F69-FB5B811E5122}C:\users\nidal\appdata\local\popcorn time\nw.exe" [In-None-P17-TRUE] .(...) -- C:\users\nidal\appdata\local\popcorn time\nw.exe (.not file.)
O87 - FAEL: "{F4A8EEBB-CDEC-4E40-8490-F58D3F96E474}" [In-None-P17-TRUE] .(.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
---\\ Enumère les codes produits des logiciels (1) - 0s
O90 - PUC: "93BAD29AC2E44034A96BCB446EB8552E" . (.globalupdate Helper.) =>PUP.Optional.GlobalUpdate
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (19) - 11s
SS - Demand [2015/10/21 14:58:02] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2015/10/27 12:13:30] [ 222720] Highlighted Magnetic Strip (bywijyhu) . (...) - C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\jnsm3747.tmp =>PUP.Optional.CrossRider
SR - Auto [2015/10/25 17:20:06] [ 379904] Concom Service (Concom) . (.Copyright © 2015.) - C:\Program Files\Concom\Concom.exe =>PUP.Optional.Amonetize
SR - Auto [2015/10/27 12:13:43] [ 845312] Task Advertisement (dijojyvi) . (...) - C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\hnss5205.tmp =>PUP.Optional.CrossRider
SR - Demand [2015/06/18 13:55:10] [ 1034584] Disc Soft Lite Bus Service (Disc Soft Lite Bus Service) . (.Disc Soft Ltd.) - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe ©
SR - Auto [2015/01/16 07:41:08] [ 915600] NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe ©
SS - Auto [2015/10/27 12:29:36] [ 68608] globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate.) - C:\Program Files\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
SS - Demand [2015/10/27 12:29:36] [ 68608] globalUpdate Update Service (globalUpdatem) (globalUpdatem) . (.globalUpdate.) - C:\Program Files\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
SS - Auto [2015/06/05 15:45:31] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/06/05 15:45:31] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SR - Auto [2015/10/27 11:22:30] [ 255488] Photocopier Attachment (jikuqeki) . (...) - C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\knsq1B8B.tmpfs =>PUP.Optional.CrossRider
SR - Auto [2015/01/16 07:41:08] [ 1706128] NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe ©
SR - Auto [2015/01/16 07:41:07] [19775632] NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe ©
SR - Auto [2015/02/04 03:05:53] [ 670536] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe ©
SR - Auto [2015/10/27 12:53:54] [ 173728] SSFK (SSFK) . (.TODO: <公司名>.) - C:\Program Files\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
SR - Auto [2015/02/04 00:57:21] [ 409800] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ©
SS - Auto [2015/10/27 12:17:57] [ 46592] Ozerex (upaateproduct) . (...) - C:\Users\nidal\AppData\Local\Lamtone.exe
SR - Auto [2015/10/27 12:53:53] [ 301704] WdsManPro Service (WdsManPro) . (.DTools LIMITED.) - C:\ProgramData\QWMiniProQ\WMiniPro.exe =>PUP.Optional.WpManager
---\\ Scan Additionnel (137) - 0s
C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\jnsm3747.tmp =>PUP.Optional.CrossRider
C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\hnss5205.tmp =>PUP.Optional.CrossRider
C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253\knsq1B8B.tmpfs =>PUP.Optional.CrossRider
C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6.exe =>PUP.Optional.CrossRider
C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6.exe =>PUP.Optional.CrossRider
C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-6.exe =>PUP.Optional.CrossRider
C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-1-6.exe =>PUP.Optional.CrossRider
C:\ProgramData\QWMiniProQ\WMiniPro.exe =>PUP.Optional.WpManager
C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-10.exe =>PUP.Optional.CrossRider
C:\Program Files\CinemaPlus-3.2cV25.10\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10.exe =>PUP.Optional.CrossRider
C:\Users\nidal\AppData\Roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
C:\Users\nidal\AppData\Local\Google\Chrome\User Data\Default\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh
C:\Users\nidal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegdfeiahlfolhcfioipjlkombmgbakh
C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
HKLM\SYSTEM\CurrentControlSet\Services\bywijyhu =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\Concom =>PUP.Optional.Amonetize
C:\Program Files\Concom\Concom.exe =>PUP.Optional.Amonetize
HKLM\SYSTEM\CurrentControlSet\Services\dijojyvi =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\jikuqeki =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\SSFK =>PUP.Optional.MyWebSearch
C:\Program Files\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
HKLM\SYSTEM\CurrentControlSet\Services\WdsManPro =>PUP.Optional.WpManager
C:\Program Files\MyBrowser 1.0.2V27.10\b5a118db-9bc9-4db1-ad7e-835691923108-1-7.exe =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-6.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-7.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-10_user.job =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-6 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-1-7 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-10_user =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-3 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-5_user =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-6 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\08d47c20-5df0-42b6-a3b0-f77cb968d1a2-7 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-6 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-1-7 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\b5a118db-9bc9-4db1-ad7e-835691923108-10_user =>PUP.Optional.CrossRider
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyBrowser 1.0.2V27.10 =>PUP.Optional.MyBrowser
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SavePass 1.1 =>PUP.Optional.CrossRider
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage =>PUP.Optional.Downware
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\0fbd8299-162a-4faa-9e08-3096f35dc288 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\6f70fa6a-97da-45b7-924a-f3e0497d88f2 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\718b4ab0-8822-4561-854a-32abfa881416 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV25.10-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV25.10-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\downchecker =>PUP.Optional.DownChecker
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\MyBrowser 1.0.2V27.10 =>PUP.Optional.MyBrowser
HKLM\SOFTWARE\MyBrowser 1.0.2V27.10-nv =>PUP.Optional.MyBrowser
HKLM\SOFTWARE\MyBrowser 1.0.2V27.10-nv-ie =>PUP.Optional.MyBrowser
HKLM\SOFTWARE\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\SavePass 1.1 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\SavePass 1.1-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\SavePass 1.1-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Uniblue =>PUP.Optional.Uniblue
HKLM\SOFTWARE\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\cacaoweb =>PUP.Optional.CacaoWeb
HKCU\SOFTWARE\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV25.10-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV25.10-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\MyBrowser 1.0.2V27.10 =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\MyBrowser 1.0.2V27.10-nv =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\MyBrowser 1.0.2V27.10-nv-ie =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\SavePass 1.1 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SavePass 1.1-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
C:\Program Files\4C4C4544-1445944383-4E10-8054-B5C04F343253 =>PUP.Optional.CrossRider
C:\Program Files\CinemaPlus-3.2cV25.10 =>PUP.Optional.CrossRider
C:\Program Files\Concom =>PUP.Optional.Amonetize
C:\Program Files\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\MyBrowser 1.0.2V27.10 =>PUP.Optional.CrossRider
C:\Program Files\SavePass 1.1 =>PUP.Optional.CrossRider
C:\Program Files\SFK =>PUP.Optional.MyWebSearch
C:\Program Files\Uniblue =>PUP.Optional.Uniblue
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Users\nidal\AppData\Roaming\cacaoweb =>PUP.Optional.CacaoWeb
C:\Users\nidal\AppData\Roaming\istartsurf =>PUP.Optional.IsStart
C:\Users\nidal\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
C:\Users\nidal\AppData\Roaming\Uniblue =>PUP.Optional.Uniblue
C:\Users\nidal\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
C:\Users\nidal\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Users\nidal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>PUP.Optional.Downware
C:\Windows\Prefetch\CACAOWEB.EXE-C83AEF3F.pf =>PUP.Optional.CacaoWeb
C:\Windows\Prefetch\CROSSBROWSE.EXE-F6F882CE.pf =>PUP.Optional.CrossBrowse
C:\Windows\Prefetch\GLOBALUPDATE.EXE-4D07E485.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\GLOBALUPDATE.EXE-6CC00CEB.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\GLOBALUPDATE.EXE-A474C9DD.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\GLOBALUPDATE.EXE-B66D5BF9.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\GLOBALUPDATE.EXE-CEFB8321.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\GLOBALUPDATECRASHHANDLER.EXE-C9210A99.pf =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\SPEEDUPMYPC-STANDALONE-SETUP.-3D4CE614.pf =>PUP.Optional.SpeedUpMyPC
C:\Windows\Prefetch\SPEEDUPMYPC-STANDALONE-SETUP.-A116A4BA.pf =>PUP.Optional.SpeedUpMyPC
C:\Windows\Prefetch\WPM_V20.0.0.2304.EXE-1EAAA684.pf =>PUP.Optional.WpManager
C:\Windows\Prefetch\WPM_V20.0.0.2304.EXE-D72AB0CC.pf =>PUP.Optional.WpManager
C:\Users\nidal\Desktop\cacaoweb.exe =>PUP.Optional.CacaoWeb
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\OperaChecker25-6[1].exe =>PUA.Optional.OperaChecker
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\ZH5SVQGB\VuuPC_VO2_8907[1].exe =>PUP.Optional.VuuPC
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\Reimage[1].exe =>PUP.Optional.ReImageRepair
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\WQW8TFFD\Reimage[2].exe =>PUP.Optional.ReImageRepair
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\installer[2].exe =>PUP.Optional.CrossRider
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\obw_istartsurf[1].exe =>PUP.Optional.IsStart
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\setup[1].exe =>PUP.Optional.CrossRider
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\F2VLUJL0\SpeedUpMyPC-standalone-setup[1].exe =>PUP.Optional.SpeedUpMyPC
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\cmi_mystartsearch[1].exe =>PUP.Optional.StartSearch
C:\Users\nidal\AppData\Local\Microsoft\Windows\INetCache\IE\7T6F0CP0\VOPackage[1].exe =>PUP.Optional.Downware
HKLM\Software\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E =>PUP.Optional.GlobalUpdate
HKLM\Software\Classes\Installer\Features\93BAD29AC2E44034A96BCB446EB8552E =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdatem =>PUP.Optional.GlobalUpdate
---\\ Récapitulatif des éléments trouvées sur votre station (20) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/pup-cacaoweb/ =>PUP.Optional.CacaoWeb
http://www.nicolascoolman.fr/pup-optional-startsearch/ =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowse
http://www.nicolascoolman.fr/pup-amonetize/ =>PUP.Optional.Amonetize
http://www.nicolascoolman.fr/adware-mywebsearch/ =>PUP.Optional.MyWebSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.MyBrowser
http://www.nicolascoolman.fr/adware-downware/ =>PUP.Optional.Downware
http://www.nicolascoolman.fr/blog =>PUP.Optional.DownChecker
http://www.nicolascoolman.fr/blog =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/blog =>PUP.Optional.Uniblue
http://www.nicolascoolman.fr/blog =>PUP.Optional.WdsManPro
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowser
http://www.nicolascoolman.fr/blog =>PUP.Optional.SpeedUpMyPC
http://www.nicolascoolman.fr/blog =>PUA.Optional.OperaChecker
http://www.nicolascoolman.fr/pup-vuupc/ =>PUP.Optional.VuuPC
http://www.nicolascoolman.fr/rogue-reimagerepair/ =>PUP.Optional.ReImageRepair
~ End of the scan, 10836 items in 293 seconds (829)(0)()