cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.10.16.150 Par Nicolas Coolman (2015/10/16)
~ Démarré par W7EVEN (Administrator) (2015/10/18 00:31:31)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\W7EVEN\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\W7EVEN\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows Se7en Titan, 64-bit (Build 7600)

---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v46.0.2490.71
MFIE: Mozilla Firefox 41.0.2 (x86 fr) v41.0.2
MSIE: Internet Explorer v8.0.7600.16385

---\\ Informations sur les produits Windows (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO

---\\ Logiciels de protection (2) - 2s
McAfee Internet Security v14.0.1029
Windows Defender W7 (Deactivate)

---\\ Surveillance de Logiciels (1) - 2s
Adobe Flash Player 19 ActiveX

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8331.712 MB (73% free)
~ System Restore: Activé (Enable)
~ System drive C: has 584 GB free of 953 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: W7EVEN-PC
~ User Name: W7EVEN
~ Logged in as Administrator

---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 584 GB free of 953 GB (System)

---\\ Etat du Centre de Sécurité Windows (14) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (26) - 1s
[MD5.B6E7FEE1CAE4895CC6C644F0244F7591] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2868224] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.E521F850ADDCEBDBF755819FA608D1FF] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [1194496] ©
[MD5.DA3E2A6FA9660CC75B471530CE88453A] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [389632] ©
[MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [231936] ©
[MD5.05A2D26ACF0939A4E97160315F1FA12E] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\Windows\System32\dnsapi.dll [356352] ©
[MD5.6D5A49D6479EB753C7879F73A4C35E0F] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\Windows\Syswow64\dnsapi.dll [269824] ©
[MD5.F2521C3173E6027B3FBD5E44272BDF6C] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] ©
[MD5.B9384E03479D2506BC924C16A3DB87BC] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [500224] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456] ©
[MD5.3F1DC527070ACB87E40AFE46EF6DA749] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.767A4C3BCF9410C286CED15A2DB17108] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [157696] ©
[MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [259072] ©
[MD5.356698A13C4630D5B31C37378D469196] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1659984] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [130048] ©
[MD5.9706B84DBABFC4B4CA46C5A82B14DFA3] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [165376] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [99840] ©
[MD5.58F82EED8CA24B461441F9C3E4F0BF5C] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [294992] ©

---\\ Processus lancés (31) - 1s
[MD5.606C8F129FE18D6E3EA2FD542D43D72D] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe [246784] [PID.1016] ©
[MD5.CC4356B8859E98ACC8E2A1E7FCAE8315] - (.AMD - AMD External Events Client Module.) -- C:\Windows\system32\atieclxx.exe [672768] [PID.1224] ©
[MD5.D86E67821C2197AB03964EEE7A69737E] - (...) -- C:\ProgramData\AppMgr1.95.3587003\AppMgr.exe [488648] [PID.1808]
[MD5.BBF8F831C7720DD5135D8C4C8325187A] - (...) -- C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728] [PID.1892]
[MD5.0466B91EE5767A769E9F8EDB8EF94DDB] - (.ASUSTeK Computer Inc. - .) -- C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936] [PID.2004] ©
[MD5.AD8947D621FDCA48F1F39F4624B60AA1] - (.ASUSTeK Computer Inc. - AsSysCtr Application.) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120] [PID.1212] ©
[MD5.D0B202843B8ADE504EB304DC1E889A3C] - (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) -- C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe [2005504] [PID.1348] ©
[MD5.0AE1B36A96093C72558C6F80F96D0587] - (...) -- C:\Windows\SysWOW64\bhctrl32.exe [130560] [PID.1776]
[MD5.5A2AB2E1A00EC16A843AD7D02FAA4EC0] - (.Copyright © 2015 - .) -- C:\Program Files\Concom\Concom.exe [379904] [PID.1836]
[MD5.0F86442B238F1C9CA69CB8D662DEB05B] - (...) -- C:\Users\W7EVEN\AppData\Local\Crsoft\crsvc.exe [185800] [PID.1972]
[MD5.C99F8E90DE4B8F0C7FE15BB1CBCD29DC] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [635104] [PID.1964] ©
[MD5.78ABBE558F57144047F10A0F50FE4B2F] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720] [PID.1756] ©
[MD5.38C25BC79FE3EAEDBB1B03796DB59BAB] - (.McAfee, Inc. - McAfee Management Service.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [373704] [PID.1640] ©
[MD5.E2082E1EF67506041CAD66D905494B43] - (.McAfee, Inc. - McAfee Process Validation Service.) -- C:\Windows\system32\mfevtps.exe [254792] [PID.2068] ©
[MD5.E2082E1EF67506041CAD66D905494B43] - (.McAfee, Inc. - McAfee Process Validation Service.) -- C:\Windows\system32\mfevtps.exe [254792] [PID.2100] ©
[MD5.A271A66ABF8CAC3606FB114D7E8C517B] - (...) -- C:\Users\W7EVEN\AppData\Roaming\NetService\netservice.exe [173088] [PID.2140]
[MD5.BC194C6EC7E047846767AE920B9B88E3] - (.McAfee, Inc. - McAfee Scanner service.) -- C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1162192] [PID.2172] ©
[MD5.D8D56FB34B9FC591E0AAC102B8E013DD] - (. - xrc.) -- C:\Users\W7EVEN\AppData\Local\Planetjob.exe [59392] [PID.2252]
[MD5.B080F4161DFC8B4555ADE5AEF8BEA10C] - (.McAfee, Inc. - McAfee Core Firewall Service.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [232656] [PID.2260] ©
[MD5.A85ABA4547E99D7FF985D564763D9E20] - (.McAfee, Inc. - McAfee Access Protection.) -- C:\Program Files\McAfee\MSC\McAPExe.exe [753768] [PID.3056] ©
[MD5.B080F4161DFC8B4555ADE5AEF8BEA10C] - (.McAfee, Inc. - McAfee Core Firewall Service.) -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [232656] [PID.2240] ©
[MD5.0E5107F7558414409BF027E3A09475C7] - (.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [340744] [PID.1612] ©
[MD5.9673485626808B1BB6B30D7F388A93FC] - (...) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Little transparency.exe [402263] [PID.1660]
[MD5.545462D0DBE24AF379BA869B7C185CCD] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13592] [PID.2712] ©
[MD5.2C24DC448DBE8DB9BE1441B824C57E79] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277824] [PID.3900] ©
[MD5.794E2A657BD4EC51771893346F6B9431] - (.McAfee, Inc. - McAfee CSP Service Host.) -- C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe [207344] [PID.2872] ©
[MD5.B29819926AD9A9F991E5927095262D1B] - (.McAfee, Inc. - McAfee.) -- C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [719272] [PID.4652] ©
[MD5.053EEEE1ABAE53F044F1E386E22AE525] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] [PID.600] ©
[MD5.119EDA9D849D4DE0F42A5BCF757D6CE0] - (.SafeIP - .) -- C:\Program Files (x86)\SafeIP\SafeIPS.exe [3860480] [PID.4468]
[MD5.14DCA74CB34502CA919966F31FBB8B0D] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [377000] [PID.5496] ©
[MD5.316FD62C35A211B696D5EFD879F8EB60] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\W7EVEN\ZHPDiag3.exe [1956352] [PID.5424] ©

---\\ Google Chrome, Démarrage,Recherche,Extensions (18) - 0s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://chrome.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients1.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.googleapis.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.gstatic.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh3.googleusercontent.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh4.googleusercontent.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.google-analytics.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [boldalmiclodlbjhnikjhggehihhjean] __MSG_application_title__
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ehihmefpkkchenckklpjmfaaobbfacij] Translate Language
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (7) - 0s
P2 - EXT FILE: (...) -- C:\Users\W7EVEN\AppData\Roaming\Mozilla\Firefox\Profiles\3d9xh737.default\extensions\adblockpopups@jessehakanen.net.xpi
P2 - EXT FILE: (...) -- C:\Users\W7EVEN\AppData\Roaming\Mozilla\Firefox\Profiles\3d9xh737.default\extensions\firefox@ghostery.com.xpi
P2 - EXT FILE: (...) -- C:\Users\W7EVEN\AppData\Roaming\Mozilla\Firefox\Profiles\3d9xh737.default\extensions\s3google@translator.xpi
P2 - EXT FILE: (...) -- C:\Users\W7EVEN\AppData\Roaming\Mozilla\Firefox\Profiles\3d9xh737.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
P2 - EXT FILE: (...) -- C:\Users\W7EVEN\AppData\Roaming\Mozilla\Firefox\Profiles\3d9xh737.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - FPN: [HKLM] [@mcafee.com/MSC,version=10] - (.McAfee Total Protection MIME Plugin.) -- c:\Program Files (x86)\McAfee\MSC\npmcsnffpl.dll ©

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (22) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://smartsputnik.ru/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.tohotweb.com?oem=sunadfrv3&uid=z1d9dcxk_003-1ch162&tm=1445080116
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://smartsputnik.ru/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.tohotweb.com?oem=sunadfrv3&uid=z1d9dcxk_003-1ch162&tm=1445080116
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.tohotweb.com?oem=sunadfrv3&uid=z1d9dcxk_003-1ch162&tm=1445080116
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R3 - URLSearchHook: (no name) - {0633EE93-D776-472f-A0FF-E1416B8B2E3D} Orphean
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 1s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (13532)

---\\ Applications lancées au démarrage du système (9) - 0s
O4 - HKLM\..\Wow6432Node\Run: [mbot_fr_014010117] (Orphean) =>PUP.Optional.CrossRider
O4 - HKLM\..\Wow6432Node\Run: [dply_en_017020117] (Orphean) =>PUP.Optional.CrossRider
O4 - HKLM\..\Wow6432Node\Run: [gmsd_fr_005010117] (Orphean) =>PUP.Optional.CrossRider
O4 - HKLM\..\Wow6432Node\Run: [ospd_us_013010117] (Orphean) =>PUP.Optional.CrossRider
O4 - HKLM\..\Wow6432Node\Run: [gmsd_fr_008010117] (Orphean) =>PUP.Optional.CrossRider
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©

---\\ Winsock hijacker (Layered Service Provider) (15) - 0s
O10 - WLSP:\Catalog_Entries\000000000001\Winsock LSP File . (...) -- C:\Windows\System32\SafeIPs.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000002\Winsock LSP File . (...) -- C:\Windows\System32\SafeIPs.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000003\Winsock LSP File . (...) -- C:\Windows\System32\SafeIPs.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000004\Winsock LSP File . (...) -- C:\Windows\System32\SafeIPs.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries\000000000015\Winsock LSP File . (...) -- C:\Windows\System32\SafeIPs.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000001\Winsock LSP File . (.SafeIP.) -- C:\Windows\system32\SafeIPs64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000002\Winsock LSP File . (.SafeIP.) -- C:\Windows\system32\SafeIPs64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000003\Winsock LSP File . (.SafeIP.) -- C:\Windows\system32\SafeIPs64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000004\Winsock LSP File . (.SafeIP.) -- C:\Windows\system32\SafeIPs64.dll =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000005\Winsock LSP File . (...) -- C:\Windows\system32\Nebuis64.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000006\Winsock LSP File . (...) -- C:\Windows\system32\Nebuis64.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000007\Winsock LSP File . (...) -- C:\Windows\system32\Nebuis64.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000008\Winsock LSP File . (...) -- C:\Windows\system32\Nebuis64.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000024\Winsock LSP File . (...) -- C:\Windows\system32\Nebuis64.dll (Not File) =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000025\Winsock LSP File . (.SafeIP.) -- C:\Windows\system32\SafeIPs64.dll =>Hijacker.Winsock

---\\ Modification Domaine/Adresses DNS (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254

---\\ Protocole additionnel (23) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-mfe-ipt [64Bits] - {3EF5086B-5478-4598-A054-786C45D75692} . (.McAfee, Inc. - McAfee MSC IE plugin DLL.) -- c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s
O20 - AppInit_DLLs: . (...) - C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC64Loader.dll C:\ProgramData\TomorrowGames\TomorrowGames64.dll (.not file.) =>PUP.Optional.TomorrowGames

---\\ Liste des services NT non Microsoft et non désactivés (31) - 0s
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe ©
O23 - Service: Application Manager 1.95.3587003 (AppMgr1.95.3587003) . (...) - C:\ProgramData\AppMgr1.95.3587003\AppMgr.exe
O23 - Service: ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) . (.ASUSTeK Computer Inc. - .) - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe ©
O23 - Service: ASUS System Control Service (AsSysCtrlService) . (.ASUSTeK Computer Inc. - AsSysCtr Application.) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe ©
O23 - Service: AsusFanControlService (AsusFanControlService) . (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe ©
O23 - Service: Bonjoiur Host Controller (Bonjoiur Host Controller) . (...) - C:\Windows\System32\bhctrl32.exe (.not file.)
O23 - Service: Pt Colon (boxekuty) . (...) - C:\Program Files (x86)\1D3ED560-1445076871-11DD-9DFE-AC220B853D5C\knsp8ED2.tmp (.not file.) =>PUP.Optional.CrossRider
O23 - Service: Search Protect Service (CltMngSvc) . (...) - C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe (.not file.) =>PUP.Optional.SearchProtect
O23 - Service: Concom Service (Concom) . (.Copyright © 2015 - .) - C:\Program Files\Concom\Concom.exe =>PUP.Optional.Amonetize
O23 - Service: Windows Crash Handler (Crashhd) . (...) - C:\Users\W7EVEN\AppData\Local\Crsoft\crsvc.exe
O23 - Service: Task Advertisement (dijojyvi) . (...) - C:\Program Files (x86)\1D3ED560-1445074050-11DD-9DFE-AC220B853D5C\hnsnA086.tmp (.not file.) =>PUP.Optional.CrossRider
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: McAfee Home Network (HomeNetSvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe ©
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe ©
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe ©
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe ©
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ©
O23 - Service: McAfee AP Service (McAPExe) . (.McAfee, Inc. - McAfee Access Protection.) - C:\Program Files\McAfee\MSC\McAPExe.exe ©
O23 - Service: McAfee CSP Service (mccspsvc) . (.McAfee, Inc. - McAfee CSP Service Host.) - C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe ©
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe ©
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe ©
O23 - Service: McAfee Platform Services (mcpltsvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe ©
O23 - Service: McAfee Proxy Service (McProxy) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe ©
O23 - Service: McAfee Service Controller (mfemms) . (.McAfee, Inc. - McAfee Management Service.) - C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ©
O23 - Service: McAfee Anti-Spam Service (MSK80Service) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe ©
O23 - Service: Right Button Cartridge (myqityze) . (...) - C:\Program Files (x86)\1D3ED560-1445074050-11DD-9DFE-AC220B853D5C\jnsx83D0.tmp (.not file.) =>PUP.Optional.CrossRider
O23 - Service: Net.Tcp Service Handler (NetTcpHandler) . (...) - C:\Users\W7EVEN\AppData\Roaming\NetService\netservice.exe =>PUP.Optional.NetService
O23 - Service: SafeIPS (SafeIPS) . (.SafeIP - .) - C:\Program Files (x86)\SafeIP\SafeIPS.exe
O23 - Service: Silkayzap (webdpwneob) . (. - xrc.) - C:\Users\W7EVEN\AppData\Local\Planetjob.exe
O23 - Service: Encryption Application (xivorydy) . (...) - C:\Program Files (x86)\1D3ED560-1445074050-11DD-9DFE-AC220B853D5C\knsx641A.tmpfs (.not file.) =>PUP.Optional.CrossRider

---\\ Logiciels installés (39) - 3s
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite ©
O42 - Logiciel: WRC 5 FIA World Rally Championship - (...) [HKLM][64Bits] -- V1JDNUZJQVdvcmxkUmFsbHlDaGFtcGlvbnNoaXA=_is1
O42 - Logiciel: WinRAR 5.21 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: AMD Media Foundation Decoders - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5AD2A7FD-38FA-F9DC-353D-9979C06AD922} ©
O42 - Logiciel: AMD Wireless Display v3.0 - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {630E5EF7-72F8-9E5D-BEF5-ED85B698E160} ©
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {7E5DC2C5-115A-322B-976C-219237FAED66} ©
O42 - Logiciel: KMSpico - (...) [HKLM][64Bits] -- {8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {9138BCE7-46AD-89C7-A18F-4BF309C57E99} ©
O42 - Logiciel: AMD Drag and Drop Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {CF84CD21-FC52-857E-AF41-9DEE9C76D245} ©
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B} ©
O42 - Logiciel: Adobe Flash Player 19 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Glary Utilities 5.36 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities 5 ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: Mozilla Firefox 41.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 41.0.2 (x86 fr) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: McAfee Internet Security - (.McAfee, Inc..) [HKLM][64Bits] -- MSC ©
O42 - Logiciel: GUILTY GEAR XX ACCENT CORE PLUS R - (...) [HKLM][64Bits] -- R1VJTFRZR0VBUlhYQUNDRU5UQ09SRVBMVVNS_is1
O42 - Logiciel: Raptr - (...) [HKLM][64Bits] -- Raptr
O42 - Logiciel: Real Boxing - (...) [HKLM][64Bits] -- Real Boxing_is1
O42 - Logiciel: SafeIP - (.SafeIP.) [HKLM][64Bits] -- SAFEIP_is1
O42 - Logiciel: Pro Evolution Soccer 2016 - (...) [HKLM][64Bits] -- UHJvRXZvbHV0aW9uU29jY2VyMjAxNg==_is1
O42 - Logiciel: The King Of Fighters XIII - (...) [HKLM][64Bits] -- VGhlS2luZ09mRmlnaHRlcnNYSUlJ_is1
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {11087D24-567D-7D88-69C6-D7A08B5F4C47} ©
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2} ©
O42 - Logiciel: Java 8 Update 60 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218060F0} ©
O42 - Logiciel: AI Suite II - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {34D3688E-A737-44C5-9E2A-FF73618728E1} ©
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} ©
O42 - Logiciel: Intel® Watchdog Timer Driver (Intel® WDT) - (.Intel Corporation.) [HKLM][64Bits] -- {3FD0C489-0F02-481a-A3E1-9754CD396761} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} ©
O42 - Logiciel: ASUS Ai Charger - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {7FB64E72-9B0E-4460-A821-040C341E414A} ©
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: ASUS PC Diagnostics - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {D709005F-D8DC-42A8-8435-5AE880ECAF82} ©
O42 - Logiciel: Realtek Ethernet Diagnostic Utility - (.Realtek.) [HKLM][64Bits] -- {DADC7AB0-E554-4705-9F6A-83EA82ED708E} ©
O42 - Logiciel: Rayman Origins - (.Ubisoft.) [HKLM][64Bits] -- {DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} ©
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys (130) - 3s
HKLM\SOFTWARE\Wow6432Node\8169Diag
HKLM\SOFTWARE\Wow6432Node\AMD
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\ASUS
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-3.2cV17.10 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-3.2cV17.10-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-3.2cV17.10-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-4.2vV16.10 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Crashhd
HKLM\SOFTWARE\Wow6432Node\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\downchecker =>PUP.Optional.DownChecker
HKLM\SOFTWARE\Wow6432Node\DT Soft
HKLM\SOFTWARE\Wow6432Node\Fast-Search =>PUP.Optional.FastSearch
HKLM\SOFTWARE\Wow6432Node\GlarySoft
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\ihpmserver
HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Lavasoft
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Mail.Ru
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\McAfee
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\MovieDea =>PUP.Optional.MovieDea
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MyBrowser
HKLM\SOFTWARE\Wow6432Node\NetTcpHandler =>PUP.Optional.NetService
HKLM\SOFTWARE\Wow6432Node\Network Associates
HKLM\SOFTWARE\Wow6432Node\NtSvcHandler =>PUP.Optional.NetService
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\Oasis Space =>PUP.Optional.OasisSpace
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Wow6432Node\PlayGem =>PUP.Optional.PlayGem
HKLM\SOFTWARE\Wow6432Node\PTE Patch 2016
HKLM\SOFTWARE\Wow6432Node\Raptr
HKLM\SOFTWARE\Wow6432Node\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\Software
HKLM\SOFTWARE\Wow6432Node\SpaceSondPro =>PUP.Optional.SpaceSoundPro
HKLM\SOFTWARE\Wow6432Node\SPPDCOM =>.Superfluous.PCSpeedUp
HKLM\SOFTWARE\Wow6432Node\SwiftSearch_1.10.0.25 =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\Torrent Search
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\Ubisoft
HKLM\SOFTWARE\Wow6432Node\Yahoo
HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\AMD
HKCU\SOFTWARE\Amigo
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CinemaPlus-3.2cV16.10-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV17.10 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV17.10-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV17.10-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-4.5vV17.10-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\DailyPcClean =>PUP.Optional.DailyPCClean
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DT Soft
HKCU\SOFTWARE\Glarysoft
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\IM
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\iWebar-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mail.Ru
HKCU\SOFTWARE\McAfee
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\mybestofferstoday =>PUP.Optional.MyBestOffersToday
HKCU\SOFTWARE\MyBrowser =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\Nico Mak Computing
HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
HKCU\SOFTWARE\Oasis Space =>PUP.Optional.OasisSpace
HKCU\SOFTWARE\OB
HKCU\SOFTWARE\Object Browser-nv-ie =>PUP.Optional.ObjectBrowser
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\PDFConvert
HKCU\SOFTWARE\Raptr
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RocketDock
HKCU\SOFTWARE\SafeIP
HKCU\SOFTWARE\SearchProtect =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\Store =>PUP.Optional.Generic
HKCU\SOFTWARE\Super Optimizer =>PUP.Optional.SuperOptimizer
HKCU\SOFTWARE\Torrent Search
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\Ultimate-Discounter
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\WTools
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\DailyWiki =>PUP.Optional.DailyWiki
HKCU\SOFTWARE\AppDataLow\Software\DynConIE =>PUP.Optional.DynConIE
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Mail.Ru
HKCU\SOFTWARE\AppDataLow\Software\SmartWeb =>PUP.Optional.SmartWebSearch

---\\ Contenu des dossiers Programmes (155) - 4s
O43 - CFD: 2015/10/17 21:36:23 - [] D -- C:\Program Files (x86)\1D3ED560-1445110582-11DD-9DFE-AC220B853D5C =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/17 21:44:28 - [] D -- C:\Program Files (x86)\1D3ED560-1445111067-11DD-9DFE-AC220B853D5C =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/07 22:11:19 - [] D -- C:\Program Files (x86)\AMD
O43 - CFD: 2015/10/10 12:05:06 - [] D -- C:\Program Files (x86)\AMD AVT
O43 - CFD: 2015/10/07 22:00:25 - [] D -- C:\Program Files (x86)\AMD_Catalyst_13.10_WHQL
O43 - CFD: 2015/10/07 20:42:47 - [] D -- C:\Program Files (x86)\ASUS
O43 - CFD: 2015/10/17 21:25:14 - [] D -- C:\Program Files (x86)\CinemaPlus-3.2cV17.10 =>PUP.Optional.CrossRider
O43 - CFD: 2015/10/17 21:16:41 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/10/13 21:22:44 - [] D -- C:\Program Files (x86)\FM 2015 game
O43 - CFD: 2015/10/17 21:31:27 - [] D -- C:\Program Files (x86)\Glary Utilities 5
O43 - CFD: 2015/10/17 22:23:20 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/10/09 20:35:46 - [] D -- C:\Program Files (x86)\GUILTY GEAR XX ACCENT CORE PLUS R
O43 - CFD: 2015/10/11 23:06:11 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/10/17 11:24:38 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/10/09 19:11:38 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2015/10/17 09:32:51 - [] D -- C:\Program Files (x86)\McAfee
O43 - CFD: 2015/10/08 20:31:37 - [] D -- C:\Program Files (x86)\McAfee.com
O43 - CFD: 2015/10/17 11:53:26 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2015/10/07 20:47:07 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/10/17 22:08:22 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/10/17 22:08:21 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/10/17 18:02:21 - [] D -- C:\Program Files (x86)\MyBrowser
O43 - CFD: 2015/10/17 21:43:23 - [0] D -- C:\Program Files (x86)\predm =>PUP.Optional.Downware
O43 - CFD: 2015/10/15 18:18:36 - [] D -- C:\Program Files (x86)\Pro Evolution Soccer 2016
O43 - CFD: 2015/10/07 22:12:47 - [] D -- C:\Program Files (x86)\Raptr
O43 - CFD: 2015/10/11 00:56:14 - [] D -- C:\Program Files (x86)\Real Boxing
O43 - CFD: 2015/10/11 21:45:48 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2010/12/15 14:25:14 - [] D -- C:\Program Files (x86)\RocketDock
O43 - CFD: 2015/10/17 23:40:12 - [] D -- C:\Program Files (x86)\SafeIP
O43 - CFD: 2015/10/11 00:50:43 - [] D -- C:\Program Files (x86)\The King Of Fighters XIII
O43 - CFD: 2015/10/11 00:40:16 - [] D -- C:\Program Files (x86)\Ubisoft
O43 - CFD: 2015/10/11 20:54:07 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2009/07/14 17:24:08 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2010/12/22 19:03:15 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2010/12/22 19:03:13 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2009/07/14 17:24:08 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2009/07/14 07:32:40 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2015/10/17 17:40:17 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015/08/07 03:39:13 - [] D -- C:\Program Files (x86)\zz
O43 - CFD: 2010/12/22 18:30:28 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2010/12/22 18:30:18 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/10/07 22:11:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
O43 - CFD: 2015/10/07 22:12:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
O43 - CFD: 2015/10/07 20:42:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 2015/10/09 17:30:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 2015/10/11 00:43:25 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/10/17 13:35:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
O43 - CFD: 2015/10/17 22:23:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/10/07 20:39:54 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 2015/10/09 19:11:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015/10/17 14:15:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
O43 - CFD: 2009/07/14 06:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/10/17 22:13:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
O43 - CFD: 2015/10/17 11:37:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/10/11 00:56:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real Boxing
O43 - CFD: 2015/10/07 20:43:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
O43 - CFD: 2010/12/15 14:35:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
O43 - CFD: 2015/10/17 23:40:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SafeIP
O43 - CFD: 2015/10/17 21:56:34 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2009/07/14 17:35:02 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2010/12/15 14:35:30 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Titan-Se7en™
O43 - CFD: 2015/10/07 20:14:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/10/17 12:37:33 - [] D -- C:\ProgramData\19a87fa1ec024bbcbb41931263354405
O43 - CFD: 2015/10/10 12:05:09 - [] D -- C:\ProgramData\AMD
O43 - CFD: 2015/10/17 21:21:06 - [] D -- C:\ProgramData\AppMgr1.95.3587003
O43 - CFD: 2015/10/07 20:16:22 - [] D -- C:\ProgramData\ASUS
O43 - CFD: 2015/10/07 22:25:46 - [] D -- C:\ProgramData\ATI
O43 - CFD: 2015/10/07 19:32:51 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2015/10/09 17:29:15 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2015/10/07 19:32:51 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/10/07 19:32:51 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2015/10/17 18:00:55 - [] D -- C:\ProgramData\GlarySoft
O43 - CFD: 2015/10/07 21:45:05 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2015/10/10 23:16:18 - [] D -- C:\ProgramData\KONAMI
O43 - CFD: 2015/10/10 04:51:16 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/10/07 19:32:51 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/10/07 19:34:09 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/10/11 21:37:10 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 2015/10/07 19:32:51 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/10/09 19:12:47 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2015/10/07 22:08:41 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/10/17 17:33:59 - [] D -- C:\ProgramData\TomorrowGames =>PUP.Optional.TomorrowGames
O43 - CFD: 2015/10/07 22:11:36 - [] D -- C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 2015/10/07 20:16:35 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2015/10/07 20:55:11 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 2015/10/09 19:12:14 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2015/10/08 20:31:37 - [] D -- C:\Program Files (x86)\Common Files\McAfee
O43 - CFD: 2015/10/07 20:43:18 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2015/10/07 20:42:10 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2009/07/14 17:24:08 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/10/07 21:26:15 - [] D -- C:\Users\W7EVEN\AppData\Roaming\Adobe
O43 - CFD: 2015/10/07 22:25:46 - [] D -- C:\Users\W7EVEN\AppData\Roaming\ATI
O43 - CFD: 2015/10/13 00:11:10 - [] D -- C:\Users\W7EVEN\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2015/10/08 22:50:26 - [] D -- C:\Users\W7EVEN\AppData\Roaming\DAEMON Tools Pro
O43 - CFD: 2015/10/17 12:03:14 - [0] D -- C:\Users\W7EVEN\AppData\Roaming\DiskDefrag
O43 - CFD: 2015/10/17 21:38:11 - [] D -- C:\Users\W7EVEN\AppData\Roaming\GlarySoft
O43 - CFD: 2015/10/07 19:33:22 - [] D -- C:\Users\W7EVEN\AppData\Roaming\Identities
O43 - CFD: 2015/10/07 20:38:44 - [] D -- C:\Users\W7EVEN\AppData\Roaming\InstallShield
O43 - CFD: 2015/10/07 21:23:55 - [] D -- C:\Users\W7EVEN\AppData\Roaming\Intel Corporation
O43 - CFD: 2015/10/07 22:12:34 - [] D -- C:\Users\W7EVEN\AppData\Roaming\library_dir
O43 - CFD: 2015/10/08 20:43:29 - [] D -- C:\Users\W7EVEN\AppData\Roaming\Macromedia
O43 - CFD: 2015/10/17 11:33:09 - [] D -- C:\Users\W7EVEN\AppData\Roaming\MailProducts
O43 - CFD: 2009/07/14 17:35:02 - [0] D -- C:\Users\W7EVEN\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/10/17 11:41:32 - [] SD -- C:\Users\W7EVEN\AppData\Roaming\Microsoft
O43 - CFD: 2015/10/17 22:08:37 - [] D -- C:\Users\W7EVEN\AppData\Roaming\Mozilla
O43 - CFD: 2015/10/17 12:31:47 - [] D -- C:\Users\W7EVEN\AppData\Roaming\NetService =>PUP.Optional.NetService
O43 - CFD: 2015/10/17 11:45:05 - [0] D -- C:\Users\W7EVEN\AppData\Roaming\Nosibay =>PUP.Optional.BubbleDock
O43 - CFD: 2015/10/17 12:08:51 - [0] D -- C:\Users\W7EVEN\AppData\Roaming\Opera Software
O43 - CFD: 2015/10/17 13:29:50 - [] D -- C:\Users\W7EVEN\AppData\Roaming\ortmp =>Hijacker.Jabuticaba
O43 - CFD: 2015/10/17 13:32:03 - [] D -- C:\Users\W7EVEN\AppData\Roaming\PlusN
O43 - CFD: 2015/10/07 22:26:25 - [] D -- C:\Users\W7EVEN\AppData\Roaming\Raptr
O43 - CFD: 2015/10/17 13:08:32 - [] D -- C:\Users\W7EVEN\AppData\Roaming\RunDir =>PUP.Optional.NetService
O43 - CFD: 2015/10/17 11:39:31 - [0] D -- C:\Users\W7EVEN\AppData\Roaming\Store =>PUP.Optional.Nosibay
O43 - CFD: 2015/10/09 19:12:06 - [] D -- C:\Users\W7EVEN\AppData\Roaming\Sun
O43 - CFD: 2015/10/17 11:32:15 - [] D -- C:\Users\W7EVEN\AppData\Roaming\TSearch
O43 - CFD: 2015/10/17 20:42:57 - [] D -- C:\Users\W7EVEN\AppData\Roaming\uTorrent
O43 - CFD: 2015/10/07 20:14:07 - [] D -- C:\Users\W7EVEN\AppData\Roaming\WinRAR
O43 - CFD: 2015/10/17 12:12:41 - [0] D -- C:\Users\W7EVEN\AppData\Roaming\WTools
O43 - CFD: 2015/10/18 00:31:41 - [] D -- C:\Users\W7EVEN\AppData\Roaming\ZHP
O43 - CFD: 2015/10/17 12:36:18 - [] D -- C:\Users\W7EVEN\AppData\Local\1D3ED560-1445081305-11DD-9DFE-AC220B853D5C
O43 - CFD: 2015/10/17 12:15:29 - [] D -- C:\Users\W7EVEN\AppData\Local\1D3ED560-1445084127-11DD-9DFE-AC220B853D5C
O43 - CFD: 2015/10/17 13:30:24 - [] D -- C:\Users\W7EVEN\AppData\Local\1D3ED560-1445088612-11DD-9DFE-AC220B853D5C
O43 - CFD: 2015/10/17 13:06:46 - [] D -- C:\Users\W7EVEN\AppData\Local\Apps
O43 - CFD: 2015/10/17 12:35:07 - [] D -- C:\Users\W7EVEN\AppData\Local\BrowserHelper =>PUP.Optional.BrowserHelper
O43 - CFD: 2015/10/17 15:20:16 - [] D -- C:\Users\W7EVEN\AppData\Local\bvxvexvbg
O43 - CFD: 2015/10/17 12:25:38 - [] D -- C:\Users\W7EVEN\AppData\Local\CrashRpt =>.Superfluous.CrashReports
O43 - CFD: 2015/10/17 13:08:37 - [] D -- C:\Users\W7EVEN\AppData\Local\Crsoft
O43 - CFD: 2015/10/17 13:32:01 - [] D -- C:\Users\W7EVEN\AppData\Local\cu
O43 - CFD: 2015/10/17 20:43:54 - [] D -- C:\Users\W7EVEN\AppData\Local\DailyWiki =>PUP.Optional.DailyWiki
O43 - CFD: 2015/10/17 22:06:49 - [0] D -- C:\Users\W7EVEN\AppData\Local\Deployment
O43 - CFD: 2015/10/17 21:56:49 - [] D -- C:\Users\W7EVEN\AppData\Local\Google
O43 - CFD: 2015/10/17 12:11:54 - [] D -- C:\Users\W7EVEN\AppData\Local\Image Logo
O43 - CFD: 2015/10/17 12:25:38 - [] D -- C:\Users\W7EVEN\AppData\Local\Installer =>PUP.Optional.InstallPedia
O43 - CFD: 2015/10/17 22:00:00 - [] D -- C:\Users\W7EVEN\AppData\Local\Microsoft
O43 - CFD: 2015/10/17 22:15:35 - [] D -- C:\Users\W7EVEN\AppData\Local\Mozilla
O43 - CFD: 2015/10/17 18:02:32 - [] D -- C:\Users\W7EVEN\AppData\Local\MyBrowser
O43 - CFD: 2015/10/17 12:08:51 - [0] D -- C:\Users\W7EVEN\AppData\Local\Opera Software
O43 - CFD: 2015/10/17 11:49:26 - [] D -- C:\Users\W7EVEN\AppData\Local\Programs
O43 - CFD: 2015/10/17 15:20:32 - [] D -- C:\Users\W7EVEN\AppData\Local\SearchProtect =>PUP.Optional.SearchProtect
O43 - CFD: 2015/10/17 12:58:15 - [] D -- C:\Users\W7EVEN\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
O43 - CFD: 2015/10/18 00:31:26 - [] D -- C:\Users\W7EVEN\AppData\Local\Temp
O43 - CFD: 2015/10/17 13:29:52 - [0] D -- C:\Users\W7EVEN\AppData\Local\Tempfolder
O43 - CFD: 2015/10/17 20:47:56 - [] D -- C:\Users\W7EVEN\AppData\Local\Windesk_Winsearch =>PUP.Optional.WindeskWinsearch
O43 - CFD: 2015/10/17 16:25:20 - [] D -- C:\Users\W7EVEN\AppData\Local\ZombieNews =>PUP.Optional.ZombieNews
O43 - CFD: 2009/07/14 06:54:32 - [] RD -- C:\Users\W7EVEN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/10/17 22:06:01 - [] RD -- C:\Users\W7EVEN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/10/17 23:36:55 - [] D -- C:\Users\W7EVEN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
O43 - CFD: 2015/10/17 23:39:28 - [0] D -- C:\Users\W7EVEN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2009/07/14 06:49:38 - [] RD -- C:\Users\W7EVEN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/10/17 22:06:01 - [] RD -- C:\Users\W7EVEN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/10/07 20:11:41 - [] D -- C:\Users\W7EVEN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll ©

---\\ Enumération des clés StartupReg (12) - 0s
O53 - SMSR:HKLM\...\startupreg\ASUS Ai Charger [Key] . (.ASUSTek Computer Inc. - AiChargerAP MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe ©
O53 - SMSR:HKLM\...\startupreg\Bienvenue [Key] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe ©
O53 - SMSR:HKLM\...\startupreg\C [Key] . (...) -- cmd /c copy/b/y C:\Windows\system32\GroupPolicy\Machine\R C:\Windows\system32\GroupPolicy\Machine\Registry.pol >nul (.not file.)
O53 - SMSR:HKLM\...\startupreg\gmsd_fr_008010117 [Key] . (...) -- C:\Program Files (x86)\gmsd_fr_008010117\gmsd_fr_008010117.exe (.not file.) =>PUP.Optional.CrossRider
O53 - SMSR:HKLM\...\startupreg\GoogleChromeAutoLaunch_5E88E0BC9B74FFD4FA7191A01E22D6A2 [Key] . (.MyBrowser - MyBrowser.) -- C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe
O53 - SMSR:HKLM\...\startupreg\GUDelayStartup [Key] . (.Glarysoft Ltd - Glary Utilities StartupManager.) -- C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe ©
O53 - SMSR:HKLM\...\startupreg\IAStorIcon [Key] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe ©
O53 - SMSR:HKLM\...\startupreg\mcpltui_exe [Key] . (.McAfee, Inc. - McAfee.) -- C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe ©
O53 - SMSR:HKLM\...\startupreg\Raptr [Key] . (.Raptr, Inc - Raptr Desktop App.) -- C:\Program Files (x86)\Raptr\raptrstub.exe ©
O53 - SMSR:HKLM\...\startupreg\RTHDVCPL [Key] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe ©
O53 - SMSR:HKLM\...\startupreg\StartCCC [Key] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe ©
O53 - SMSR:HKLM\...\startupreg\USB3MON [Key] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe ©

---\\ Liste des pilotes du système (74) - 3s
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] ©
O58 - SDL:2015/08/04 08:25:44 A . (.Advanced Micro Devices - AMD ACP Binaries.) -- C:\Windows\System32\drivers\amdacpksd.sys [297672] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [106576] ©
O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [28752] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] ©
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] ©
O58 - SDL:2015/07/15 12:20:32 A . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\AtihdW76.sys [96256] ©
O58 - SDL:2015/08/04 08:23:28 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [21622784] ©
O58 - SDL:2015/08/04 03:42:28 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\drivers\atikmpag.sys [665088] ©
O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] ©
O58 - SDL:2009/06/10 22:34:38 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL664.SYS [1311232] ©
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] ©
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] ©
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] ©
O58 - SDL:2015/10/17 13:32:49 A . (.Copyright (c) 2012 - .) -- C:\Windows\System32\drivers\bsdriver.sys [34720] =>PUP.Optional.Shopperz
O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] ©
O58 - SDL:2015/02/17 14:38:12 A . (.McAfee, Inc. - McAfee Personal Firewall IDS Plugin.) -- C:\Windows\System32\drivers\cfwids.sys [68784] ©
O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] ©
O58 - SDL:2015/10/09 17:30:26 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtlitescsibus.sys [30264] ©
O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] ©
O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] ©
O58 - SDL:2015/10/17 13:34:58 A . (.Glarysoft Ltd - The driver for the Startup Manager tool.) -- C:\Windows\System32\drivers\GUBootStartup.sys [20160] ©
O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] ©
O58 - SDL:2012/07/02 15:16:02 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [62784] ©
O58 - SDL:2013/09/23 13:49:22 A . (.McAfee, Inc. - McAfee HIP IPS Driver.) -- C:\Windows\System32\drivers\HipShieldK.sys [197704] ©
O58 - SDL:2009/07/14 03:47:48 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [77888] ©
O58 - SDL:2012/02/01 16:16:40 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [568600] ©
O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410688] ©
O58 - SDL:2012/05/17 18:57:06 A . (.Intel Corporation - Intel(R) Watchdog Timer Driver (Intel(R) WD.) -- C:\Windows\System32\drivers\ICCWDT.sys [26136] ©
O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] ©
O58 - SDL:2012/05/21 00:25:32 A . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\drivers\iusb3hcs.sys [19264] ©
O58 - SDL:2012/05/21 00:25:32 A . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\iusb3hub.sys [357184] ©
O58 - SDL:2012/05/21 00:25:32 A . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\drivers\iusb3xhc.sys [789824] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] ©
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] ©
O58 - SDL:2015/07/02 15:33:00 A . (.McAfee, Inc. - McAfee Arbitrary Access Control Driver.) -- C:\Windows\System32\drivers\mfeaack.sys [412440] ©
O58 - SDL:2015/07/02 15:33:00 A . (.McAfee, Inc. - Anti-Virus File System Filter Driver.) -- C:\Windows\System32\drivers\mfeavfk.sys [347800] ©
O58 - SDL:2015/01/16 00:49:06 A . (.McAfee, Inc. - McAfee Driver Cleaning Driver.) -- C:\Windows\System32\drivers\mfeclnrk.sys [11720] ©
O58 - SDL:2015/02/17 14:39:52 A . (.McAfee, Inc. - McAfee Disk Filter Driver.) -- C:\Windows\System32\drivers\mfedisk.sys [101872] ©
O58 - SDL:2015/02/17 14:33:54 A . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\Windows\System32\drivers\mfefirek.sys [488000] ©
O58 - SDL:2015/07/02 15:33:00 A . (.McAfee, Inc. - McAfee Link Driver.) -- C:\Windows\System32\drivers\mfehidk.sys [875928] ©
O58 - SDL:2015/01/16 00:48:02 A . (.McAfee, Inc. - Event Driver.) -- C:\Windows\System32\drivers\mfencbdc.sys [482600] ©
O58 - SDL:2015/01/16 00:48:08 A . (.McAfee, Inc. - Detection driver.) -- C:\Windows\System32\drivers\mfencrk.sys [100720] ©
O58 - SDL:2015/02/17 14:36:18 A . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) -- C:\Windows\System32\drivers\mfewfpk.sys [340448] ©
O58 - SDL:2012/05/31 11:06:14 A . (.NT Kernel Resources - NDISRD helper driver.) -- C:\Windows\System32\drivers\ndisrd.sys [32400] ©
O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] ©
O58 - SDL:2009/07/14 03:48:27 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [149056] ©
O58 - SDL:2009/07/14 03:45:45 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [167488] ©
O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] ©
O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] ©
O58 - SDL:2012/12/26 19:26:12 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [805088] ©
O58 - SDL:2014/09/30 14:12:26 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4234456] ©
O58 - SDL:2011/06/15 21:11:20 A . (.Realtek - Realtek NDIS Protocol Driver.) -- C:\Windows\System32\drivers\RtNdPt60.sys [32544] ©
O58 - SDL:2012/07/03 20:32:00 A . (.Realtek Corporation - Realtek NDIS 6.2 Intermediate Miniport Driv.) -- C:\Windows\System32\drivers\RtTeam620.sys [58512] ©
O58 - SDL:2012/09/01 07:00:02 A . (.Realtek Corporation - Realtek Virtual Miniport Driver for VLAN (N.) -- C:\Windows\System32\drivers\RtVlan620.sys [32400] ©
O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2015/06/04 03:33:50 A . (...) -- C:\Windows\System32\drivers\semav6msr64.sys [21984]
O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] ©
O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] ©
O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] ©
O58 - SDL:2013/08/22 14:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\tap0901.sys [40664] ©
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] ©
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ©

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (21) - 21s
O61 - LFC: 2015/10/17 13:33:58 A . (..) -- C:\Users\W7EVEN\Downloads\Glary_Utilities_v5.36.0.56.exe [15316104]
O61 - LFC: 2015/10/17 11:12:01 A . (.BitTorrent Inc..) -- C:\Users\W7EVEN\AppData\Roaming\uTorrent\uTorrent.exe [1822048]
O61 - LFC: 2015/10/17 11:12:01 A . (.BitTorrent Inc..) -- C:\Users\W7EVEN\AppData\Roaming\uTorrent\updates\3.4.5_41202.exe [1822048]
O61 - LFC: 2015/10/17 14:23:34 A . (.BitTorrent Inc..) -- C:\Users\W7EVEN\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe [336896]
O61 - LFC: 2015/10/13 08:05:38 A . (..) -- C:\Users\W7EVEN\AppData\Roaming\RunDir\ccec.exe [129992]
O61 - LFC: 2015/10/13 03:42:11 A . (..) -- C:\Users\W7EVEN\AppData\Roaming\RunDir\rbt.exe [140232]
O61 - LFC: 2015/10/13 03:42:15 A . (..) -- C:\Users\W7EVEN\AppData\Roaming\RunDir\temp\bd.dll [402376]
O61 - LFC: 2015/10/13 08:05:38 A . (..) -- C:\Users\W7EVEN\AppData\Roaming\RunDir\temp\ccec.exe [129992]
O61 - LFC: 2015/10/13 03:42:11 A . (..) -- C:\Users\W7EVEN\AppData\Roaming\RunDir\temp\rbt.exe [140232]
O61 - LFC: 2015/10/17 13:01:48 A . (..) -- C:\Users\W7EVEN\AppData\Roaming\ortmp\uninstaller.exe [233408] =>Hijacker.Jabuticaba
O61 - LFC: 2015/10/17 21:32:06 A . (..) -- C:\Users\W7EVEN\AppData\Local\Planetjob.exe [59392]
O61 - LFC: 2015/10/17 12:02:48 A . (..) -- C:\Users\W7EVEN\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [331781]
O61 - LFC: 2015/10/17 12:25:37 A . (.Copyright (C) 2014.) -- C:\Users\W7EVEN\AppData\Local\Installer\Install_16668\YTDownloader.exe [1802752] =>PUP.Optional.YTDownloader
O61 - LFC: 2015/10/17 12:10:55 A . (..) -- C:\Users\W7EVEN\AppData\Local\Image Logo\xBin\ImageLogo.dll [32768]
O61 - LFC: 2015/10/18 00:22:34 A . (..) -- C:\Users\W7EVEN\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
O61 - LFC: 2015/10/15 13:20:48 A . (..) -- C:\Users\W7EVEN\AppData\Local\Google\Chrome\User Data\PepperFlash\19.0.0.226\pepflashplayer.dll [16493256]
O61 - LFC: 2015/10/17 13:06:56 N . (..) -- C:\Users\W7EVEN\AppData\Local\Apps\2.0\NP36YOAJ.48D\BVTE5035.NZG\prog...app_86fd5b6b43e66935_0001.0003_5cb14937c086ca58\clickonce_bootstrap.exe [11080]
O61 - LFC: 2015/10/17 13:30:24 A . (..) -- C:\Users\W7EVEN\AppData\Local\1D3ED560-1445088612-11DD-9DFE-AC220B853D5C\Uninstall.exe [51069]
O61 - LFC: 2015/10/16 18:56:40 A . (..) -- C:\Users\W7EVEN\AppData\Local\1D3ED560-1445084127-11DD-9DFE-AC220B853D5C\pnsa7ACF.exe [131061]
O61 - LFC: 2015/10/17 12:15:28 A . (..) -- C:\Users\W7EVEN\AppData\Local\1D3ED560-1445084127-11DD-9DFE-AC220B853D5C\rnsk7ABD.exe [182784]
O61 - LFC: 2015/10/17 12:15:29 A . (..) -- C:\Users\W7EVEN\AppData\Local\1D3ED560-1445084127-11DD-9DFE-AC220B853D5C\Uninstall.exe [50272]

---\\ Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.MyBrowser - MyBrowser.) -- C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ©

---\\ Menu de démarrage Internet (17) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Users\W7EVEN\AppData\Local\Amigo\Application\amigo.exe =>PUP.Optional.Amigo
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.MyBrowser - MyBrowser.) -- C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.MyBrowser - MyBrowser.) -- C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.MyBrowser - MyBrowser.) -- C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.MyBrowser - MyBrowser.) -- C:\Program Files (x86)\MyBrowser\MyBrowser\Application\mybrowser.exe

---\\ Recherche d'infection sur les navigateurs (1) - 3s
O69 - SBI: SearchScopes [HKCU] {FFEBBF0A-C22C-4172-89FF-45215A135AC7} [DefaultScope] - (Поиск@Mail.Ru) - http://go.mail.ru/

---\\ Enumère les fichiers Crack & Keygen (1) - 7s
O82 - LFC: 2015/10/17 11:11:12 A . (...) -- C:\Users\W7EVEN\Downloads\FIFA 16 (PC) Cracked.rar [35589] =>.Crack,Keygen

---\\ Enumère les services démarrés par Svchost (33) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [776192] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [845824] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [676864] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [343552] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316416] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [706560] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2418176] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [848384] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [369664] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [565760] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [104960] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136192] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1114624] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [208384] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536] ©

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (34) - 13s

SS - Demand [2015/10/17 14:18:14] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2015/08/04 04:06:32] [ 246784] (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe ©
SR - Auto [2015/10/17 14:24:07] [ 488648] Application Manager 1.95.3587003 (AppMgr1.95.3587003) . (...) - C:\ProgramData\AppMgr1.95.3587003\AppMgr.exe
SR - Auto [2013/06/04 17:41:00] [ 936728] ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
SR - Auto [2015/10/07 20:16:16] [ 951936] ASUS HM Com Service (asHmComSvc) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe ©
SR - Auto [2015/10/07 20:16:16] [ 149120] ASUS System Control Service (AsSysCtrlService) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe ©
SR - Auto [2015/10/07 20:35:16] [ 2005504] AsusFanControlService (AsusFanControlService) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe ©
SR - Auto [2015/09/24 09:29:56] [ 379904] Concom Service (Concom) . (.Copyright © 2015.) - C:\Program Files\Concom\Concom.exe =>PUP.Optional.Amonetize
SR - Auto [2015/10/08 05:36:50] [ 185800] Windows Crash Handler (Crashhd) . (...) - C:\Users\W7EVEN\AppData\Local\Crsoft\crsvc.exe
SS - Demand [2015/06/18 14:57:18] [ 1268568] Disc Soft Lite Bus Service (Disc Soft Lite Bus Service) . (.Disc Soft Ltd.) - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe ©
SS - Auto [2015/10/17 22:20:58] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/10/17 22:20:58] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SR - Auto [2015/04/02 15:07:12] [ 340744] McAfee Home Network (HomeNetSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe ©
SR - Auto [2012/02/01 16:29:58] [ 13592] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe ©
SS - Demand [2011/05/27 11:07:36] [ 160768] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe ©
SR - Auto [2012/04/20 14:16:12] [ 635104] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe ©
SR - Auto [2012/06/25 10:57:14] [ 166720] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe ©
SR - Auto [2012/07/17 14:57:20] [ 277824] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ©
SR - Auto [2015/04/07 11:55:18] [ 753768] McAfee AP Service (McAPExe) . (.McAfee, Inc..) - C:\Program Files\McAfee\MSC\McAPExe.exe ©
SR - Auto [2015/06/04 12:45:26] [ 207344] McAfee CSP Service (mccspsvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe ©
SS - Auto [2015/04/02 15:07:12] [ 340744] McAfee Personal Firewall Service (McMPFSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe ©
SR - Auto [2015/04/02 15:07:12] [ 340744] McAfee VirusScan Announcer (McNaiAnn) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe ©
SS - Demand [2015/04/09 16:01:22] [ 612688] McAfee Scanner (McODS) . (.McAfee, Inc..) - C:\Program Files\McAfee\VirusScan\mcods.exe ©
SR - Auto [2015/04/02 15:07:12] [ 340744] McAfee Platform Services (mcpltsvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe ©
SR - Auto [2015/04/02 15:07:12] [ 340744] McAfee Proxy Service (McProxy) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe ©
SR - Demand [2015/02/17 14:33:46] [ 232656] McAfee Firewall Core Service (mfefire) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe ©
SR - Auto [2015/07/15 14:00:52] [ 373704] McAfee Service Controller (mfemms) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ©
SR - Demand [2015/06/29 10:03:32] [ 254792] McAfee Validation Trust Protection Service (mfevtp) . (.McAfee, Inc..) - C:\Windows\system32\mfevtps.exe ©
SS - Demand [2015/10/15 03:14:39] [ 147624] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
SR - Auto [2015/04/02 15:07:12] [ 340744] McAfee Anti-Spam Service (MSK80Service) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe ©
SR - Auto [2015/07/09 03:26:02] [ 173088] Net.Tcp Service Handler (NetTcpHandler) . (...) - C:\Users\W7EVEN\AppData\Roaming\NetService\netservice.exe =>PUP.Optional.NetService
SR - Auto [2013/06/29 00:20:48] [ 3860480] SafeIPS (SafeIPS) . (.SafeIP.) - C:\Program Files (x86)\SafeIP\SafeIPS.exe
SR - Auto [2015/10/17 21:32:06] [ 59392] Silkayzap (webdpwneob) . (...) - C:\Users\W7EVEN\AppData\Local\Planetjob.exe

---\\ Recherche de clés de registre Tracing (14) - 2s
HKLM\SOFTWARE\Microsoft\Tracing\TomorrowGames_RASAPI32 =>PUP.Optional.TomorrowGames
HKLM\SOFTWARE\Microsoft\Tracing\TomorrowGames_RASMANCS =>PUP.Optional.TomorrowGames
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_oursurfing_RASAPI32 =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_oursurfing_RASMANCS =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bubble Dock BSetup_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bubble Dock BSetup_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bubble Dock Uninstall_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bubble Dock Uninstall_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bubble Dock_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bubble Dock_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DailyPCClean_RASAPI32 =>PUP.Optional.DailyPCClean
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DailyPCClean_RASMANCS =>PUP.Optional.DailyPCClean
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Install_BubbleDock_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Install_BubbleDock_RASMANCS =>PUP.Optional.BubbleDock

---\\ Scan Additionnel (98) - 0s
C:\Windows\system32\SafeIPs64.dll =>Hijacker.Winsock
HKLM\SYSTEM\CurrentControlSet\Services\boxekuty =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\CltMngSvc =>PUP.Optional.SearchProtect
HKLM\SYSTEM\CurrentControlSet\Services\Concom =>PUP.Optional.Amonetize
C:\Program Files\Concom\Concom.exe =>PUP.Optional.Amonetize
HKLM\SYSTEM\CurrentControlSet\Services\dijojyvi =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\myqityze =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\NetTcpHandler =>PUP.Optional.NetService
C:\Users\W7EVEN\AppData\Roaming\NetService\netservice.exe =>PUP.Optional.NetService
HKLM\SYSTEM\CurrentControlSet\Services\xivorydy =>PUP.Optional.CrossRider
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
HKLM\SOFTWARE\Wow6432Node\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-3.2cV17.10 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-3.2cV17.10-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-3.2cV17.10-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-4.2vV16.10 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\Wow6432Node\downchecker =>PUP.Optional.DownChecker
HKLM\SOFTWARE\Wow6432Node\Fast-Search =>PUP.Optional.FastSearch
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Wow6432Node\MovieDea =>PUP.Optional.MovieDea
HKLM\SOFTWARE\Wow6432Node\NetTcpHandler =>PUP.Optional.NetService
HKLM\SOFTWARE\Wow6432Node\NtSvcHandler =>PUP.Optional.NetService
HKLM\SOFTWARE\Wow6432Node\Oasis Space =>PUP.Optional.OasisSpace
HKLM\SOFTWARE\Wow6432Node\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Wow6432Node\PlayGem =>PUP.Optional.PlayGem
HKLM\SOFTWARE\Wow6432Node\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\SpaceSondPro =>PUP.Optional.SpaceSoundPro
HKLM\SOFTWARE\Wow6432Node\SPPDCOM =>.Superfluous.PCSpeedUp
HKLM\SOFTWARE\Wow6432Node\SwiftSearch_1.10.0.25 =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV16.10-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV17.10 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV17.10-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV17.10-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-4.5vV17.10-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\DailyPcClean =>PUP.Optional.DailyPCClean
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\iWebar-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\mybestofferstoday =>PUP.Optional.MyBestOffersToday
HKCU\SOFTWARE\MyBrowser =>PUP.Optional.MyBrowser
HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
HKCU\SOFTWARE\Oasis Space =>PUP.Optional.OasisSpace
HKCU\SOFTWARE\Object Browser-nv-ie =>PUP.Optional.ObjectBrowser
HKCU\SOFTWARE\SearchProtect =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\Store =>PUP.Optional.Generic
HKCU\SOFTWARE\Super Optimizer =>PUP.Optional.SuperOptimizer
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\DailyWiki =>PUP.Optional.DailyWiki
HKCU\SOFTWARE\AppDataLow\Software\DynConIE =>PUP.Optional.DynConIE
HKCU\SOFTWARE\AppDataLow\Software\SmartWeb =>PUP.Optional.SmartWebSearch
C:\Program Files (x86)\1D3ED560-1445110582-11DD-9DFE-AC220B853D5C =>PUP.Optional.CrossRider
C:\Program Files (x86)\1D3ED560-1445111067-11DD-9DFE-AC220B853D5C =>PUP.Optional.CrossRider
C:\Program Files (x86)\CinemaPlus-3.2cV17.10 =>PUP.Optional.CrossRider
C:\Program Files (x86)\predm =>PUP.Optional.Downware
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\ProgramData\TomorrowGames =>PUP.Optional.TomorrowGames
C:\Users\W7EVEN\AppData\Roaming\NetService =>PUP.Optional.NetService
C:\Users\W7EVEN\AppData\Roaming\Nosibay =>PUP.Optional.BubbleDock
C:\Users\W7EVEN\AppData\Roaming\ortmp =>Hijacker.Jabuticaba
C:\Users\W7EVEN\AppData\Roaming\RunDir =>PUP.Optional.NetService
C:\Users\W7EVEN\AppData\Roaming\Store =>PUP.Optional.Nosibay
C:\Users\W7EVEN\AppData\Local\BrowserHelper =>PUP.Optional.BrowserHelper
C:\Users\W7EVEN\AppData\Local\CrashRpt =>.Superfluous.CrashReports
C:\Users\W7EVEN\AppData\Local\DailyWiki =>PUP.Optional.DailyWiki
C:\Users\W7EVEN\AppData\Local\Installer =>PUP.Optional.InstallPedia
C:\Users\W7EVEN\AppData\Local\SearchProtect =>PUP.Optional.SearchProtect
C:\Users\W7EVEN\AppData\Local\SmartWeb =>PUP.Optional.SmartWebSearch
C:\Users\W7EVEN\AppData\Local\Windesk_Winsearch =>PUP.Optional.WindeskWinsearch
C:\Users\W7EVEN\AppData\Local\ZombieNews =>PUP.Optional.ZombieNews
C:\Windows\System32\drivers\bsdriver.sys =>PUP.Optional.Shopperz
C:\Users\W7EVEN\AppData\Roaming\ortmp\uninstaller.exe =>Hijacker.Jabuticaba
C:\Users\W7EVEN\AppData\Local\Installer\Install_16668\YTDownloader.exe =>PUP.Optional.YTDownloader
HKLM64\SOFTWARE\Microsoft\Tracing\TomorrowGames_RASAPI32 =>PUP.Optional.TomorrowGames
HKLM64\SOFTWARE\Microsoft\Tracing\TomorrowGames_RASMANCS =>PUP.Optional.TomorrowGames
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_oursurfing_RASAPI32 =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_oursurfing_RASMANCS =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bubble Dock BSetup_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bubble Dock BSetup_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bubble Dock Uninstall_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bubble Dock Uninstall_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bubble Dock_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Bubble Dock_RASMANCS =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DailyPCClean_RASAPI32 =>PUP.Optional.DailyPCClean
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DailyPCClean_RASMANCS =>PUP.Optional.DailyPCClean
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Install_BubbleDock_RASAPI32 =>PUP.Optional.BubbleDock
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Install_BubbleDock_RASMANCS =>PUP.Optional.BubbleDock

---\\ Récapitulatif des éléments trouvées sur votre station (43) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.OurSurfing
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/blog =>PUP.Optional.TomorrowGames
http://www.nicolascoolman.fr/pup-searchprotect/ =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/pup-amonetize/ =>PUP.Optional.Amonetize
http://www.nicolascoolman.fr/blog =>PUP.Optional.NetService
http://www.nicolascoolman.fr/pup-kmspico/ =>HackTool.KMSpico
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowse
http://www.nicolascoolman.fr/blog =>PUP.Optional.DownChecker
http://www.nicolascoolman.fr/blog =>PUP.Optional.FastSearch
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/blog =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/blog =>PUP.Optional.MovieDea
http://www.nicolascoolman.fr/blog =>PUP.Optional.OasisSpace
http://www.nicolascoolman.fr/blog =>PUP.Optional.PlayGem
http://www.nicolascoolman.fr/blog =>PUP.Optional.SpaceSoundPro
http://www.nicolascoolman.fr/rogue-pcspeedup/ =>.Superfluous.PCSpeedUp
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic
http://www.nicolascoolman.fr/spyware-agenceexclusive/ =>PUP.Optional.AgenceExclusive
http://www.nicolascoolman.fr/blog =>PUP.Optional.CrossBrowser
http://www.nicolascoolman.fr/pup-optional-dailypcclean/ =>PUP.Optional.DailyPCClean
http://www.nicolascoolman.fr/blog =>PUP.Optional.MyBestOffersToday
http://www.nicolascoolman.fr/blog =>PUP.Optional.MyBrowser
http://www.nicolascoolman.fr/adware-spointer/ =>PUP.Optional.SPointer
http://www.nicolascoolman.fr/pup-objectbrowser/ =>PUP.Optional.ObjectBrowser
http://www.nicolascoolman.fr/blog =>PUP.Optional.SuperOptimizer
http://www.nicolascoolman.fr/blog =>PUP.Optional.MaxComputerCleaner
http://www.nicolascoolman.fr/blog =>PUP.Optional.DailyWiki
http://www.nicolascoolman.fr/blog =>PUP.Optional.DynConIE
http://www.nicolascoolman.fr/pup-smartwebsearch/ =>PUP.Optional.SmartWebSearch
http://www.nicolascoolman.fr/adware-downware/ =>PUP.Optional.Downware
http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS
http://www.nicolascoolman.fr/pup-bubbledock/ =>PUP.Optional.BubbleDock
http://www.nicolascoolman.fr/blog =>Hijacker.Jabuticaba
http://www.nicolascoolman.fr/blog =>PUP.Optional.Nosibay
http://www.nicolascoolman.fr/blog =>PUP.Optional.BrowserHelper
http://www.nicolascoolman.fr/blog =>.Superfluous.CrashReports
http://www.nicolascoolman.fr/adware-installpedia/ =>PUP.Optional.InstallPedia
http://www.nicolascoolman.fr/blog =>PUP.Optional.WindeskWinsearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.ZombieNews
http://www.nicolascoolman.fr/blog =>PUP.Optional.Shopperz
http://www.nicolascoolman.fr/pup-ytdownloader/ =>PUP.Optional.YTDownloader
http://www.nicolascoolman.fr/blog =>PUP.Optional.Amigo

~ End of the scan, 18147 items in 75 seconds (953)(1)()

Publicité


Signaler le contenu de ce document

Publicité