~ ZHPDiag v2016.2.16.51 Par Nicolas Coolman (2016/02/16) ~ Démarré par Administrateur (Administrator) (2016/02/17 18:15:06) ~ Site: http://www.nicolascoolman.com ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Users\Administrateur\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\Administrateur\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Démarrage du système: Normal (Normal boot) Windows 7 Ultimate, 32-bit Service Pack 1 (Build 7601) ---\\ Navigateurs Internet (2) - 0s MFIE: Mozilla Firefox 39.0.3 (x86 fr) MSIE: Internet Explorer v10.0.9200.16660 ---\\ Informations sur les produits Windows (4) - 3s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ Logiciels de protection (2) - 12s Kaspersky Anti-Virus 6.0 for Windows Workstations v6.0.4.1424 Windows Defender W7 (Activate) ---\\ Logiciels d'optimisation (1) - 12s CCleaner v3.15 ---\\ Surveillance de Logiciels (1) - 12s Adobe Flash Player 20 PPAPI ---\\ Informations sur le système (6) - 0s ~ Operating System: x86 Family 6 Model 37 Stepping 5, GenuineIntel ~ Operating System: 32-bit ~ Boot mode: Normal (Normal boot) Total RAM: 3004.272 MB (18% free) System Restore: Activé (Enable) System drive C: has 15 GB () free of 79 GB =>Alerte espace disque inférieur à 20 Go ---\\ Mode de connexion au système (3) - 0s ~ Computer Name: HEREM-PC ~ User Name: Administrateur ~ Logged in as Administrator ---\\ Enumération des unités disques (2) - 0s ~ Drive C: has 15 GB free of 79 GB (System) ~ Drive D: has 137 GB free of 225 GB ---\\ Etat du Centre de Sécurité Windows (11) - 0s [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ---\\ Recherche particulière de fichiers génériques (25) - 1s [MD5.40D777B7A95E00593EB1568C68514493] - 20/11/2010 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2616320] =>.Microsoft Corporation [MD5.51138BEEA3E2C21EC44D0932C71762A8] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] =>.Microsoft Corporation [MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [96256] =>.Microsoft Corporation [MD5.DAA3903F06116AE9EE7AC1D1B93684A4] - 26/07/2013 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1767936] =>.Microsoft Corporation [MD5.6D13E1406F50C66E2A95D97F22C47560] - 20/11/2010 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [286720] =>.Microsoft Corporation [MD5.E3AE23569749DE12D45BA3B489A036AE] - 20/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [193536] =>.Microsoft Corporation [MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [270336] =>.Microsoft Corporation [MD5.129F80D7868E30DF3E3DE33A1D3132B4] - 20/11/2010 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation [MD5.9EBBBA55060F786F0FCAA3893BFA2806] - 25/04/2011 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [338944] =>.Microsoft Corporation [MD5.338C86357871C167A96AB976519BF59E] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584] =>.Microsoft Windows® [MD5.77EA11B065E0A8AB902D78145CA51E10] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656] =>.Microsoft Corporation [MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544] =>.Microsoft Corporation [MD5.F024449C97EC1E464AAFFDA18593DB88] - 20/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [78336] =>.Microsoft Corporation [MD5.9036377B8A6C15DC2EEC53E489D159B5] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544] =>.Microsoft Corporation [MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] =>.Microsoft Corporation [MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [101888] =>.Microsoft Corporation [MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - 27/04/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [123904] =>.Microsoft Corporation [MD5.280122DDCF04B378EDD1AD54D71C1E54] - 20/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [187904] =>.Microsoft Corporation [MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - 12/04/2013 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1211752] =>.Microsoft Windows® [MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [79360] =>.Microsoft Corporation [MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] =>.Microsoft Corporation [MD5.B973FCFC50DC1434E1970A146F7E3885] - 20/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133632] =>.Microsoft Corporation [MD5.3E21C083B8A01CB70BA1F09303010FCE] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] =>.Microsoft Corporation [MD5.B459575348C20E8121D6039DA063C704] - 20/11/2010 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74752] =>.Microsoft Corporation [MD5.F497F67932C6FA693D7DE2780631CFE7] - 20/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [245632] =>.Microsoft Windows® ---\\ Liste des services NT non Microsoft et non désactivés (10) - 2s O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) . (.Kaspersky Lab - Kaspersky Anti-Virus.) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe =>.Kaspersky Lab® O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe =>PUP.Optional.GlobalUpdate O23 - Service: Service Google Update (gupdate) (gupdate) . (...) - C:\Program Files\Google\Update\GoogleUpdate.exe (.not file.) O23 - Service: Network HTTP Support Service (NetHttpService) . (.(c) 2012-2014, All rights reserved. - .) - C:\Windows\System32\nethtsrv.exe =>PUP.Optional.Amonetize O23 - Service: Net Monitor for Employees Agent (NMEmployeesAgent) . (...) - C:\Windows\System32\nlnme\NLSAgentSvc.exe {00C6910D557A2D6EB49458799D35EABFAC} O23 - Service: PandoraService (PanService) . (.Pandora.TV - Pandora.TV service file.) - C:\Program Files\PANDORA.TV\PanService\KMPService.exe {2BF6AC6C0932526A56D17EB4F2C776C5} O23 - Service: Service Mgr DiscoverTreasure (Service Mgr DiscoverTreasure) . (...) - C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugincontainer.exe =>PUP.Optional.DiscoverTreasure O23 - Service: Network Support Service Updater (ServiceUpdater) . (.(c) 2012-2014, All rights reserved. - .) - C:\Windows\System32\netupdsrv.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe =>.Skype Software Sarl® O23 - Service: Update Mgr DiscoverTreasure (Update Mgr DiscoverTreasure) . (...) - C:\Program Files\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77\updater.exe =>PUP.Optional.DiscoverTreasure ---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (15) - 23s SS - Demand [13/02/2016] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated® SR - Auto [12/03/2010] [ 311680] Kaspersky Anti-Virus 6.0 (AVP) . (.Kaspersky Lab.) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe =>.Kaspersky Lab® SS - Auto [01/07/2015] [ 68608] globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate.) - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe =>PUP.Optional.GlobalUpdate SS - Demand [01/07/2015] [ 68608] globalUpdate Update Service (globalUpdatem) (globalUpdatem) . (.globalUpdate.) - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe =>PUP.Optional.GlobalUpdate SS - Demand [07/08/2015] [ 148136] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation® SR - Auto [30/07/2015] [ 350208] Network HTTP Support Service (NetHttpService) . (.(c) 2012-2014, All rights reserved..) - C:\Windows\System32\nethtsrv.exe =>PUP.Optional.Amonetize SR - Auto [02/07/2013] [ 1323648] Net Monitor for Employees Agent (NMEmployeesAgent) . (...) - C:\Windows\System32\nlnme\NLSAgentSvc.exe {00C6910D557A2D6EB49458799D35EABFAC} SR - Demand [16/02/2016] [ 2104840] Origin Client Service (Origin Client Service) . (.Electronic Arts.) - C:\Program Files\Origin\OriginClientService.exe =>.Electronic Arts, Inc.® SR - Auto [08/07/2013] [ 1922600] PandoraService (PanService) . (.Pandora.TV.) - C:\Program Files\PANDORA.TV\PanService\KMPService.exe {2BF6AC6C0932526A56D17EB4F2C776C5} SS - Demand [01/03/2013] [ 118520] Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (.Riverbed Technology, Inc..) - C:\Program Files\WinPcap\rpcapd.exe =>.Riverbed Technology, Inc.® SR - Auto [17/02/2016] [ 1416928] Service Mgr DiscoverTreasure (Service Mgr DiscoverTreasure) . (...) - C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugincontainer.exe =>PUP.Optional.DiscoverTreasure SR - Auto [30/07/2015] [ 190976] Network Support Service Updater (ServiceUpdater) . (.(c) 2012-2014, All rights reserved..) - C:\Windows\System32\netupdsrv.exe SS - Auto [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe =>.Skype Software Sarl® SR - Auto [17/02/2016] [ 1268960] Update Mgr DiscoverTreasure (Update Mgr DiscoverTreasure) . (...) - C:\Program Files\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77\updater.exe =>PUP.Optional.DiscoverTreasure ---\\ Tâches planifiées en automatique (59) - 6s [MD5.5925F7B74F6D668D1E390550D90FBA2F] [APT] [Adobe Flash Player PPAPI Notifier] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashUtil32_20_0_0_306_pepper.exe [1163968] =>.Adobe Systems Incorporated® [MD5.7FCC00F1AB44098D5FBDEDB2A9D5384A] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [269504] =>.Adobe Systems Incorporated® [MD5.877759FE37E2EED150C792006B342BC3] [APT] [BYAIAMUF] (.Cinema PlusV16.03.) -- C:\Users\Administrateur\AppData\Roaming\BYAIAMUF.exe [2035200] =>PUP.Optional.CrossRider [MD5.B23B61AF1349EAB73480714042C21518] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6] (.Cinema PlusV16.03.) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6.exe [1408512] =>PUP.Optional.CrossRider [MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7.exe (.not file.) [0] =>PUP.Optional.CrossRider [MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-10.exe (.not file.) [0] =>PUP.Optional.CrossRider [MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-3] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-3.exe (.not file.) [0] =>PUP.Optional.CrossRider [MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-4] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-4.exe (.not file.) [0] =>PUP.Optional.CrossRider [MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-5] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5.exe (.not file.) [0] =>PUP.Optional.CrossRider [MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5.exe (.not file.) [0] =>PUP.Optional.CrossRider [MD5.BA093B0EFDC06A2029E61123F8772AFA] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-6] (.Cinema PlusV16.03.) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6.exe [1474560] =>PUP.Optional.CrossRider [MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-7] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-7.exe (.not file.) [0] =>PUP.Optional.CrossRider [MD5.00000000000000000000000000000000] [APT] [Experience Comp] (...) -- C:\Users\Administrateur\AppData\Local\Experience Comp\Bin\ExperienceComp.dll (.not file.) [0] [MD5.D858BA2EE718B1DB1CED20646E641D08] [APT] [globalUpdateUpdateTaskMachineCore] (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608] =>PUP.Optional.GlobalUpdate [MD5.D858BA2EE718B1DB1CED20646E641D08] [APT] [globalUpdateUpdateTaskMachineUA] (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608] =>PUP.Optional.GlobalUpdate [MD5.1C7FF4BFACDDD04E3504DCB1BA5987ED] [APT] [GNOK] (.Cinema PlusV16.03.) -- C:\Users\Administrateur\AppData\Roaming\GNOK.exe [1380352] =>PUP.Optional.CrossRider [MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineCore] (...) -- C:\Program Files\Google\Update\GoogleUpdate.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineUA] (...) -- C:\Program Files\Google\Update\GoogleUpdate.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [LaunchApp] (...) -- C:\Program Files\MyPC Backup\MyPC Backup.exe (.not file.) [0] =>PUP.Optional.MyPCBackup [MD5.5B6373E3B8E810440A8E7D23BBC3A6B6] [APT] [Mart Form] (...) -- C:\Users\Administrateur\AppData\Local\Mart Form\{9F868A70-31AB-69EA-6BB8-5117F51B6A01}\MartForm.dll [26112] =>PUP.Optional.MartForm [MD5.94F90E031C6F89E2D6E598BE82DE939E] [APT] [Mart Form2] (...) -- C:\Users\Administrateur\AppData\Local\Mart Form\{9F868A70-31AB-69EA-6BB8-5117F51B6A01}\ebucl.dll [12800] =>PUP.Optional.MartForm O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job [1064] =>.Adobe Systems Incorporated® O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] =>.Adobe Systems Incorporated® O39 - APT: BYAIAMUF - (.Cinema PlusV16.03.) -- C:\Windows\Tasks\BYAIAMUF.job [1722] =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6 - (.Cinema PlusV16.03.) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6.job [3138] =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7 - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7.job [3474] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user.job [2112] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-3 - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-3.job [4494] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-4 - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-4.job [4494] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-5 - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5.job [2446] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user.job [2446] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-6 - (.Cinema PlusV16.03.) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6.job [5518] =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-7 - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-7.job [5182] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job [976] =>PUP.Optional.GlobalUpdate O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job [980] =>PUP.Optional.GlobalUpdate O39 - APT: GNOK - (.Cinema PlusV16.03.) -- C:\Windows\Tasks\GNOK.job [1370] =>PUP.Optional.CrossRider O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1054] (.Orphean.) =>.Superfluous.Orphean O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1058] (.Orphean.) =>.Superfluous.Orphean O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier [4076] =>.Adobe Systems Incorporated® O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3940] =>.Adobe Systems Incorporated® O39 - APT: BYAIAMUF - (.Cinema PlusV16.03.) -- C:\Windows\System32\Tasks\BYAIAMUF [4766] =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6 - (.Cinema PlusV16.03.) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6 [6166] =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7 - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7 [6504] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user [5154] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-3 - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-3 [7524] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-4 - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-4 [7524] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-5 - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5 [5476] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user [5490] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-6 - (.Cinema PlusV16.03.) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6 [8546] =>PUP.Optional.CrossRider O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-7 - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-7 [8212] (.Orphean.) =>PUP.Optional.CrossRider O39 - APT: Experience Comp - (...) -- C:\Windows\System32\Tasks\Experience Comp [3142] (.Orphean.) =>.Superfluous.Orphean O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore [3724] =>PUP.Optional.GlobalUpdate O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA [3978] =>PUP.Optional.GlobalUpdate O39 - APT: GNOK - (.Cinema PlusV16.03.) -- C:\Windows\System32\Tasks\GNOK [4414] =>PUP.Optional.CrossRider O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3802] (.Orphean.) =>.Superfluous.Orphean O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4054] (.Orphean.) =>.Superfluous.Orphean O39 - APT: LaunchApp - (...) -- C:\Windows\System32\Tasks\LaunchApp [4032] (.Orphean.) =>PUP.Optional.MyPCBackup O39 - APT: Mart Form - (...) -- C:\Windows\System32\Tasks\Mart Form [3188] =>PUP.Optional.MartForm O39 - APT: Mart Form2 - (...) -- C:\Windows\System32\Tasks\Mart Form2 [3182] =>PUP.Optional.MartForm ---\\ Processus lancés (32) - 5s [MD5.5E3F0AAEA4642BF184DEEA311C7201DE] - (.Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe [311680] [PID.1740] =>.Kaspersky Lab® [MD5.6B90DBE6DC14BA57A8CC9B7DDFA6476B] - (.(c) 2012-2014, All rights reserved. - .) -- C:\Windows\System32\nethtsrv.exe [350208] [PID.1816] [MD5.323FEA1A18612CAEC81D2977537161B8] - (...) -- C:\Windows\System32\nlnme\NLSAgentSvc.exe [1323648] [PID.1964] {00C6910D557A2D6EB49458799D35EABFAC} [MD5.836266D31F9B7920ED04C4775E401FBC] - (.Pandora.TV - Pandora.TV service file.) -- C:\Program Files\PANDORA.TV\PanService\KMPService.exe [1922600] [PID.2016] {2BF6AC6C0932526A56D17EB4F2C776C5} [MD5.E2F630433623924F5768EC161E47F09E] - (.(c) 2012-2014, All rights reserved. - .) -- C:\Windows\System32\netupdsrv.exe [190976] [PID.672] [MD5.544D66CE8C715EE5F18E2E4E7CAAE27E] - (.PandoraTV - .) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe [1798696] [PID.128] {2BF6AC6C0932526A56D17EB4F2C776C5} [MD5.B23B61AF1349EAB73480714042C21518] - (.Cinema PlusV16.03 - CinemaP-1.9cV16.03 exe.) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6.exe [1408512] [PID.496] =>PUP.Optional.CrossRider [MD5.BA093B0EFDC06A2029E61123F8772AFA] - (.Cinema PlusV16.03 - CinemaP-1.9cV16.03 exe.) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6.exe [1474560] [PID.3780] =>PUP.Optional.CrossRider [MD5.4A71EA7C184CB812D52244F862727AD7] - (...) -- C:\Program Files\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77\updater.exe [1268960] [PID.2612] =>PUP.Optional.DiscoverTreasure [MD5.1C2979206AB7AA51D0A1425491B9FA1C] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugincontainer.exe [1416928] [PID.3268] =>PUP.Optional.DiscoverTreasure [MD5.CC64C248D8A490BD1EDD7B190E6728DD] - (...) -- C:\Windows\System32\nlnme\NLSAgent.exe [1560704] [PID.2412] {00C6910D557A2D6EB49458799D35EABFAC} [MD5.FC63D9EBCEBE045A02E54D2CF5A06FBB] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8423968] [PID.3288] =>.Realtek Semiconductor Corp® [MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816] [PID.2712] =>.Oracle America, Inc.® [MD5.5E3F0AAEA4642BF184DEEA311C7201DE] - (.Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe [311680] [PID.1372] =>.Kaspersky Lab® [MD5.ADE3D7AD36CA238C6D58E5E93392D2F8] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3903056] [PID.2156] =>.Tonec Inc. [MD5.D497398A864B52B1418E61A91C6080A3] - (.Electronic Arts - Origin.) -- C:\Program Files\Origin\Origin.exe [3639280] [PID.3648] =>.Electronic Arts, Inc.® [MD5.B26B610E68F862777C491227B9616271] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe [275608] [PID.4424] =>.Tonec Inc.® [MD5.D967D4C44505B7BF3F6B1FEC299ABE11] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [50605696] [PID.5020] =>.Skype Software Sarl® [MD5.E27BA5D1959DE8AC15BC4F4337548BEC] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\3\Plugin.exe [791776] [PID.2168] =>PUP.Optional.DiscoverTreasure [MD5.87802073DC69FC6FF09F0D0567150862] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\10\Plugin.exe [508128] [PID.4248] =>PUP.Optional.DiscoverTreasure [MD5.4FD9F62A957AEB66A0E53AC476C3D32D] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\5\Plugin.exe [916704] [PID.1408] =>PUP.Optional.DiscoverTreasure [MD5.B0CF13A292BF8EE08D1FEED74C1A3CFE] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\8\Plugin.exe [1626336] [PID.4500] =>PUP.Optional.DiscoverTreasure [MD5.E27BA5D1959DE8AC15BC4F4337548BEC] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\3\Plugin.exe [791776] [PID.4920] =>PUP.Optional.DiscoverTreasure [MD5.D406CB2AC8E995D79E16A8155C1982E4] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\12\Plugin.exe [734944] [PID.1716] =>PUP.Optional.DiscoverTreasure [MD5.8070DD721E0F480A6609E114F1CE3EDA] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\2\Plugin.exe [1594080] [PID.5180] =>PUP.Optional.DiscoverTreasure [MD5.D406CB2AC8E995D79E16A8155C1982E4] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\12\Plugin.exe [734944] [PID.4176] =>PUP.Optional.DiscoverTreasure [MD5.42699118581F25F56FD89CE9DFC0C842] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\7\Plugin.exe [533728] [PID.2304] =>PUP.Optional.DiscoverTreasure [MD5.42699118581F25F56FD89CE9DFC0C842] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\7\Plugin.exe [533728] [PID.5576] =>PUP.Optional.DiscoverTreasure [MD5.A309633A4BA2DE3FC30468C3103E0BA5] - (.Electronic Arts - OriginClientService.) -- C:\Program Files\Origin\OriginClientService.exe [2104840] [PID.4276] =>.Electronic Arts, Inc.® [MD5.A2CB714DCF8F0E134F2429AF673C7C08] - (.Oracle Corporation - Java(TM) Update Checker.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe [506744] [PID.6576] =>.Oracle America, Inc.® [MD5.F7CEB1E5F0000FDEEE04B046BBDE1D4E] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [377000] [PID.3920] =>.Mozilla Corporation® [MD5.5AE930CBDC0E46B3FBFCE1F00A7A9B13] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Administrateur\AppData\Roaming\ZHP\ZHPDiag3.exe [2122752] [PID.7968] =>.Nicolas Coolman ---\\ Google Chrome, Démarrage,Recherche,Extensions (13) - 1s G0 - GCSP: Preferences [User Data\Default][HomePage] http://cdncache-a.akamaihd.net =>PUP.Optional.Browser G0 - GCSP: Preferences [User Data\Default][HomePage] http://esurf.biz G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.startimes.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://accounts.google.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://discovertreasure-a.akamaihd.net =>PUP.Optional.Browser G0 - GCSP: Preferences [User Data\Default][HomePage] http://fbcdn-profile-a.akamaihd.net =>PUP.Optional.Browser G0 - GCSP: Preferences [User Data\Default][HomePage] http://fbstatic-a.akamaihd.net =>PUP.Optional.Browser G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.facebook.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [npoppdbinhocdoppkfigckiikbefodei] [{"background":{"scripts":["background.js"]},"conte] {background:{scripts:[background.js]}content_scrip =>Hijacker.Browser ---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (26) - 2s M0 - MFSP: prefs.js [Administrateur - r9bzauj5.default] http://www.mysites123.com/?type=hp&ts=1450548918&z=51dad0a9101cc0a2fe9992eg5z8w5e5w3z5b3q9t6c&from=amt&uid=WDCXWD3200BPVT-00HXZT1_WD-WX31A61U8831U8831 =>PUP.Optional.Mysites123 P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\@B74A199FCFFB517BDAEBA52E99F303A3B74A.xpi P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\MUB-SAE@iacsearchandmedia.com.xpi =>PUP.Optional.IACSearchAndMedia P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\searchplugins\ask-search.xml P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\searchplugins\default.xml P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\amazon-france.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\bing.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\ddg.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\eBay-france.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\google.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\mysites123.xml =>PUP.Optional.Mysites123 P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yahoo-france.xml P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla P2 - EXT: (.Cinema Plus - Lights Cinema 1.5beta.) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\ccf7276c-d388-480f-8835-5b680025e1ca@gmail.com =>PUP.Optional.CrossRider P2 - EXT: (.lightningnewtab.com - FirefixTab.) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab P2 - EXT: (.roc - YahooToolsProtected .) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\yahooprotected@gmail.com P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate P2 - FPN: [HKLM] [@tools.dpliveupdate.com/DealPlyLive Update;version=3] - (.DealPly Technologies Ltd.) -- C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll =>PUP.Optional.Dealply P2 - FPN: [HKLM] [@tools.dpliveupdate.com/DealPlyLive Update;version=9] - (.DealPly Technologies Ltd.) -- C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll =>PUP.Optional.Dealply P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc..) -- C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll =>.Google Inc. P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc..) -- C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll =>.Google Inc. ---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (9) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/ =>PUP.Optional.Babylon R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://searchinterneat-a.akamaihd.net/ =>PUP.Optional.Browser R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer ---\\ Internet Explorer,Proxy Management (5) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation ---\\ Etude du fichier hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (21) ---\\ Browser Helper Object de navigateur (BHO) (9) - 0s O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.® O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe Acrobat IE Helper Version 6.0 for Act.) -- C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll =>.Adobe Systems, Incorporated® O2 - BHO: Speed Test 127 - {11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} . (.BestOffers - ScriptHost.) -- C:\Program Files\Speed Test 127\ScriptHost.dll =>PUP.Optional.ScriptHost O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll =>.Oracle America, Inc.® O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} . (...) -- C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll O2 - BHO: Discover Treasure - {bfa55139-82af-4663-a19b-e135dac8d043} . (...) -- C:\Program Files\Discover Treasure\Extensions\bfa55139-82af-4663-a19b-e135dac8d043.dll =>PUP.Optional.DiscoverTreasure O2 - BHO: Free Games 111 - {C45EC9F0-8333-465D-9728-074BD41985C9} . (.BestOffers - ScriptHost.) -- C:\Program Files\Free Games 111\ScriptHost.dll =>PUP.Optional.ScriptHost O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll =>.Oracle America, Inc.® O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} . (.DVDVideoSoft Ltd. - DVDVideoSoft IE Extension.) -- C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll =>.Digital Wave Ltd® ---\\ Internet Explorer, Barre d'outil (3) - 1s O3 - Toolbar: 0x39358347C5D025419FA80819E2EAAC93 - [HKCU]{47833539-D0C5-4125-9FA8-0819E2EAAC93} . (...) -- C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- (.not file.) O3 - Toolbar: 0x00 - [HKLM]{47833539-D0C5-4125-9FA8-0819E2EAAC93} . (...) -- C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll ---\\ Applications lancées au démarrage du système (13) - 0s O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe =>.Realtek Semiconductor Corp® O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.® O4 - HKLM\..\Run: [AVP] . (.Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe =>.Kaspersky Lab® O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe =>.Microsoft Corporation O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - HKCU\..\Run: [EADM] . (.Electronic Arts - Origin.) -- C:\Program Files\Origin\Origin.exe =>.Electronic Arts, Inc.® O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-1945330447-2877126342-2717384433-500\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-1945330447-2877126342-2717384433-500\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - HKUS\S-1-5-21-1945330447-2877126342-2717384433-500\..\Run: [EADM] . (.Electronic Arts - Origin.) -- C:\Program Files\Origin\Origin.exe =>.Electronic Arts, Inc.® ---\\ Raccourcis Global Startup (33) - 8s O4 - GS\Desktop [Administrateur]: Athan.lnk . (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) C:\Program Files\Athan\Athan.exe =>.www.IslamicFinder.org O4 - GS\Desktop [Administrateur]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd® O4 - GS\Desktop [Administrateur]: Drome Racers.lnk . (...) C:\Program Files\Drome Racers\Drome Racers.exe O4 - GS\Desktop [Administrateur]: Harley Davidson.lnk . (...) C:\Program Files\Harley Davidson\Harley3.exe O4 - GS\Desktop [Administrateur]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - GS\Desktop [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\Desktop [Administrateur]: MultiSkypeLauncher.lnk . (.IM-history - MultiSkypeLauncher.) C:\Program Files\MultiSkypeLauncher\MultiSkypeLauncher.exe =>.IM-history O4 - GS\Desktop [Administrateur]: Your Unin-staller!.lnk . (.URSoft,Inc - Your Uninstaller! - New way to uninstall pr.) C:\Program Files\Your Uninstaller! 7\urmain.exe {20D86DE3316D2F604A4A91753B51F566} O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrateur\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Administrateur]: jetAudio.lnk . (.JetAudio, Inc. - jetAudio.) C:\Program Files\JetAudio\JetAudio.exe O4 - GS\Quicklaunch [Administrateur]: jetCast.lnk . (.jetAudio - jetCast.) C:\Program Files\JetAudio\JetCast.exe O4 - GS\Quicklaunch [Administrateur]: QuickMediaConverter.lnk . (.Cocoon Software - Quick Media Converter Next Generation HD 4.) C:\Program Files\QuickMediaConverter\QuickMediaConverter.exe O4 - GS\Quicklaunch [Administrateur]: Viber.lnk . (...) C:\Users\Administrateur\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\sendTo [Administrateur]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files\Skype\Phone\Skype.exe =>.Skype Software Sarl® O4 - GS\TaskBar [Administrateur]: KMPlayer.lnk . (.KMP Media co.,Ltd - The KMPlayer.) C:\Program Files\The KMPlayer\KMPlayer.exe {66502206A0488141A898E4B41EE1FD92} O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\TaskBar [Administrateur]: Viber.lnk . (...) C:\Users\Administrateur\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\Startup [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\Startup [Administrateur]: MultiSkypeLauncher.lnk . (.IM-history - MultiSkypeLauncher.) C:\Program Files\MultiSkypeLauncher\MultiSkypeLauncher.exe =>.IM-history O4 - GS\CommonDesktop [Public]: CMS3.lnk . (...) C:\Program Files\CMS3.0\bin\CMS3.exe O4 - GS\CommonDesktop [Public]: DVDVideoSoft Free Studio.lnk . (.DVDVideoSoft Ltd. - Free Studio.) C:\Program Files\Common Files\DVDVideoSoft\FreeStudioManager.exe =>.Digital Wave Ltd® O4 - GS\CommonDesktop [Public]: Free YouTube Download.lnk . (.DVDVideoSoft Ltd. - FreeYouTubeDownload.) C:\Program Files\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.exe =>.Digital Wave Ltd® O4 - GS\CommonDesktop [Public]: jetAudio.lnk . (.JetAudio, Inc. - jetAudio.) C:\Program Files\JetAudio\JetAudio.exe O4 - GS\CommonDesktop [Public]: jetCast.lnk . (.jetAudio - jetCast.) C:\Program Files\JetAudio\JetCast.exe O4 - GS\CommonDesktop [Public]: Micro Madness.lnk . (.D6 Entertainment - Micro Madness.) C:\Program Files\Micro Madness\Micro Madness.exe O4 - GS\CommonDesktop [Public]: MX vs. ATV Unleashed.lnk . (...) C:\Program Files\THQ\MX vs ATV Unleashed\MXvsATV.exe O4 - GS\CommonDesktop [Public]: Origin.lnk . (.Electronic Arts - Origin.) C:\Program Files\Origin\Origin.exe =>.Electronic Arts, Inc.® O4 - GS\CommonDesktop [Public]: QuickMediaConverter.lnk . (.Cocoon Software - Quick Media Converter Next Generation HD 4.) C:\Program Files\QuickMediaConverter\QuickMediaConverter.exe O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{FC965A47-4839-40CA-B618-18F486F042C6}\SkypeIcon.exe O4 - GS\CommonDesktop [Public]: SprgFiles.lnk . (.New Unity Inc - SprgFiles Downloader Application.) C:\Program Files\SprgFiles\SprgFiles.exe O4 - GS\CommonDesktop [Public]: Unleashed Editor.lnk . (.Beenox Inc. - MX vs. ATV Unleashed Editor.) C:\Program Files\THQ\MX vs ATV Unleashed\Unleashed Editor.exe O4 - GS\Programs [Public]: Viber.lnk . (...) C:\Users\Administrateur\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc ---\\ Modification Domaine/Adresses DNS (4) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = crisnet.local O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2DF8E695-87F7-40BE-95B0-0EA3DC184E9A}: DhcpNameServer = 8.8.8.8 4.2.2.4 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BC9AE8A6-4200-4AFD-BEB4-9C7051FA3EF1}: DhcpNameServer = 192.168.1.1 0.0.0.0 ---\\ Protocole additionnel (22) - 1s O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation® O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation® ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s O20 - AppInit_DLLs: . (.Kaspersky Lab ZAO - Kaspersky OE plugin loader.) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\kloehk.dll ---\\ Logiciels installés (60) - 25s O42 - Logiciel: 7-Zip 9.38 beta - (...) [HKLM] -- 7-Zip O42 - Logiciel: Adobe Acrobat 6.0 Professional - (.Adobe Systems.) [HKLM] -- {AC76BA86-1033-0000-7760-000000000001} =>.Adobe Systems O42 - Logiciel: Adobe Flash Player 20 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Flash Player 20 PPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated® O42 - Logiciel: Athan Basic 4.5 - (...) [HKLM] -- Athan O42 - Logiciel: Canon LBP3010/LBP3018/LBP3050 - (...) [HKLM] -- Canon LBP3010/LBP3018/LBP3050 {2C1FCCF6E1684DBD4D3540B0D6C15EE5} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner =>.Piriform Ltd® O42 - Logiciel: CMS3.0 - (...) [HKLM] -- CMS3.01.0.0.13 O42 - Logiciel: Discover Treasure - (.Discover Treasure.) [HKLM] -- Discover Treasure =>PUP.Optional.DiscoverTreasure O42 - Logiciel: Download App - (.CBS Interactive.) [HKCU] -- Download App =>.CBS Interactive O42 - Logiciel: EaseUS Data Recovery Wizard 6.1 - (.EaseUS.) [HKLM] -- EaseUS Data Recovery Wizard 6.1_is1 =>.EaseUS O42 - Logiciel: Experience Comp - (.Browser Experience corp.) [HKCU] -- {9563BC59-9556-4805-8CD4-886781779D8D} O42 - Logiciel: ffdshow v1.2.4422 [2012-04-09] - (...) [HKLM] -- ffdshow_is1 O42 - Logiciel: Free Games 111 - (.BestOffers.) [HKLM] -- Free Games 111 O42 - Logiciel: Free YouTube Download version 3.2.59.616 - (.DVDVideoSoft Ltd..) [HKLM] -- Free YouTube Download_is1 =>.Digital Wave Ltd® O42 - Logiciel: Funmoods Packages - (...) [HKCU] -- Funmoods Packages O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc. O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc. O42 - Logiciel: GUPlayer (remove only) - (...) [HKCU] -- GUPlayer {42F3D522047C48CAD717BCB89F5219DE} =>PUP.Optional.GUPlayer O42 - Logiciel: Haali Media Splitter - (...) [HKLM] -- HaaliMkx O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation® O42 - Logiciel: Intel(R) Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E} =>.Intel Corporation® O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM] -- Internet Download Manager =>.Tonec Inc.® O42 - Logiciel: Java 7 Update 25 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217025FF} =>.Oracle O42 - Logiciel: Java Auto Updater - (.Sun Microsystems, Inc..) [HKLM] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Sun Microsystems, Inc. O42 - Logiciel: jetAudio - (.JetAudio, Inc..) [HKLM] -- {DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A} O42 - Logiciel: Kaspersky Anti-Virus 6.0 for Windows Workstations - (.Kaspersky Lab.) [HKLM] -- {8F023021-A7EB-45D3-9269-D65264C81729} =>.Kaspersky Lab O42 - Logiciel: KMP Service - (.KMP.) [HKLM] -- 4F6D5E84-5826-4394-9F40-3A9A19165651_is1 O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM] -- WinRAR archiver O42 - Logiciel: Mart Form - (.Rush Web corp.) [HKCU] -- {6643E13A-AF18-EB44-9527-A1CB97030F8D} =>PUP.Optional.MartForm* O42 - Logiciel: Mercedes CLC Dream Test Drive - (.Mercedes-Benz UK.) [HKLM] -- {6F33360D-E0FA-4691-8D67-76CD5061D621}_is1 O42 - Logiciel: Micro Application - Aménagez Votre Intérieur 3D - (...) [HKLM] -- 446227_R1 O42 - Logiciel: Micro Madness - (.Play sp. z o. o..) [HKLM] -- Micro Madness_is1 O42 - Logiciel: Mountain Bike Adrenaline - (.Nobilis.) [HKLM] -- Mountain Bike Adrenaline_is1 =>.Nobilis O42 - Logiciel: Mozilla Firefox 39.0.3 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 39.0.3 (x86 fr) =>.Mozilla Corporation® O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService =>.Mozilla O42 - Logiciel: MultiSkypeLauncher (remove only) - (.MultiSkypeLauncher.) [HKLM] -- MultiSkypeLauncher O42 - Logiciel: MX vs ATV Unleashed - (.THQ.) [HKLM] -- {BBE18EBD-CD44-4C51-8BC5-577ECCCEC68F} =>.THQ O42 - Logiciel: mysites123 uninstall - (.mysites123.) [HKLM] -- mysites123 uninstall =>PUP.Optional.Mysites123 O42 - Logiciel: OffersWizard Network System Driver - (...) [HKLM] -- inethnfd O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM] -- Origin =>.Electronic Arts, Inc. O42 - Logiciel: QuickMediaConverter - (...) [HKLM] -- QUICKMEDIACONVERTERQuickMediaConverter 64bits O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp® O42 - Logiciel: Skype™ 7.18 - (.Skype Technologies S.A..) [HKLM] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A. O42 - Logiciel: Sony Sound Forge 8.0 - (.Sony.) [HKLM] -- {767572FD-4D01-4FA3-B0A6-4B09FB2CFC37} =>.Sony O42 - Logiciel: Speed Test 127 - (.Speed Analysis.) [HKLM] -- Speed Test 127 O42 - Logiciel: SprgFiles - (.https://www.www.springfile.biz.) [HKCU] -- SprgFiles O42 - Logiciel: SuperCopier2 - (...) [HKLM] -- SuperCopier2 O42 - Logiciel: SurveillancePlugin - (.Synology.) [HKLM] -- {380CB8DE-234B-47C2-86B2-3FEC620D9E18} =>.Synology O42 - Logiciel: The KMPlayer (remove only) - (.KMP Media co., Ltd.) [HKLM] -- The KMPlayer O42 - Logiciel: The Rise of Atlantis 1.0 - (...) [HKLM] -- The Rise of Atlantis_is1 O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU] -- UnityWebPlayer =>.Unity Technologies ApS O42 - Logiciel: Viber - (.Viber Media Inc.) [HKCU] -- Viber =>.Viber Media S.a.r.l® O42 - Logiciel: Video Performer - (.PerformerSoft LLC.) [HKLM] -- Video Performer =>PUP.Optional.PerformerSoft O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM] -- VLC media player =>.VideoLAN O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) - (.Broadcom.) [HKLM] -- A6A8668C0A13640CA28FE2A7D9654BE4AE478B13 =>.Microsoft Windows Component Publisher® O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (09/11/2009 6.2.0.9500) - (.Broadcom.) [HKLM] -- B2216CF97AA58CAC0B4B870FAC75CAC7C65F7087 =>.Microsoft Windows Component Publisher® O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM] -- BF20603967CFDCB2BBF91950E8A56DFBC5C833FE =>.Microsoft Windows Component Publisher® O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM] -- WinPcapInst =>.Riverbed Technology, Inc. O42 - Logiciel: Your Uninstaller! 7 - (.URSoft, Inc..) [HKLM] -- YU2010_is1 {2D52C7CF5E69A633AC3AED0E78F988DC} ---\\ HKCU & HKLM Software Keys (157) - 26s HKLM\SOFTWARE\156eacdc-6be3-484e-958c-b1950c01381c =>PUP.Optional.CrossRider HKLM\SOFTWARE\40882d6a-0c6a-479b-917d-dd9bf7ea5963 =>PUP.Optional.CrossRider HKLM\SOFTWARE\7-Zip HKLM\SOFTWARE\99 HKLM\SOFTWARE\Adobe HKLM\SOFTWARE\AppDataLow HKLM\SOFTWARE\ATI Technologies HKLM\SOFTWARE\AVG HKLM\SOFTWARE\Babylon =>PUP.Optional.Babylon HKLM\SOFTWARE\BabylonToolbar =>PUP.Optional.Babylon HKLM\SOFTWARE\callas software gmbh HKLM\SOFTWARE\CANON HKLM\SOFTWARE\CBS Interactive HKLM\SOFTWARE\CinemaP-1.9cV16.03 =>PUP.Optional.CrossRider HKLM\SOFTWARE\CinemaP-1.9cV16.03-nv =>PUP.Optional.CrossRider HKLM\SOFTWARE\CinemaP-1.9cV16.03-nv-ie =>PUP.Optional.CrossRider HKLM\SOFTWARE\Client HKLM\SOFTWARE\COWON HKLM\SOFTWARE\DATA BECKER HKLM\SOFTWARE\DealPlyLive =>PUP.Optional.Dealply HKLM\SOFTWARE\DiscoverTreasure HKLM\SOFTWARE\DVDVideoSoft HKLM\SOFTWARE\EASEUS HKLM\SOFTWARE\Electronic Arts HKLM\SOFTWARE\EPSON HKLM\SOFTWARE\FFPluginHp =>PUP.Optional.SweetSearch HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate HKLM\SOFTWARE\GNU HKLM\SOFTWARE\Google HKLM\SOFTWARE\GS-Enabler =>PUP.Optional.GSBooster HKLM\SOFTWARE\HaaliMkx HKLM\SOFTWARE\HighCriteria HKLM\SOFTWARE\IM Providers HKLM\SOFTWARE\InstallCore =>Adware.InstallCore HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions HKLM\SOFTWARE\Intel HKLM\SOFTWARE\Internet Download Manager HKLM\SOFTWARE\InterVideo HKLM\SOFTWARE\JavaSoft HKLM\SOFTWARE\JetAudio, Inc. HKLM\SOFTWARE\JreMetrics HKLM\SOFTWARE\KasperskyLab HKLM\SOFTWARE\KMPlayer HKLM\SOFTWARE\LEGO Interactive HKLM\SOFTWARE\Licenses HKLM\SOFTWARE\Macromedia HKLM\SOFTWARE\MAXSOFT-OCRON HKLM\SOFTWARE\McAfee.com HKLM\SOFTWARE\Micro Application HKLM\SOFTWARE\Mozilla HKLM\SOFTWARE\mozilla.org HKLM\SOFTWARE\MozillaPlugins HKLM\SOFTWARE\mysites123Software =>PUP.Optional.Mysites123 HKLM\SOFTWARE\ODBC HKLM\SOFTWARE\Opera Software HKLM\SOFTWARE\Origin HKLM\SOFTWARE\Pandora.TV HKLM\SOFTWARE\Piriform HKLM\SOFTWARE\Realtek HKLM\SOFTWARE\RegisteredApplications HKLM\SOFTWARE\Skype HKLM\SOFTWARE\Sonic HKLM\SOFTWARE\Sony Corporation HKLM\SOFTWARE\Sony Media Software HKLM\SOFTWARE\SP Global =>PUP.Optional.AdvancedSystemProtector HKLM\SOFTWARE\SprgFiles HKLM\SOFTWARE\SProtector =>PUP.Optional.MocaFlix HKLM\SOFTWARE\SRS Labs HKLM\SOFTWARE\Synology HKLM\SOFTWARE\Systweak =>.Superfluous.Systweak HKLM\SOFTWARE\THQ HKLM\SOFTWARE\TuneUp HKLM\SOFTWARE\v7slicldr HKLM\SOFTWARE\VideoLAN HKLM\SOFTWARE\Volatile HKLM\SOFTWARE\Waves Audio HKLM\SOFTWARE\WinPcap HKLM\SOFTWARE\WinRAR HKCU\SOFTWARE\7-Zip HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\ASCII HKCU\SOFTWARE\AVG HKCU\SOFTWARE\AWIND HKCU\SOFTWARE\BYAIAMUF HKCU\SOFTWARE\C120DLUSB HKCU\SOFTWARE\Canon HKCU\SOFTWARE\CBS Interactive HKCU\SOFTWARE\Chromium HKCU\SOFTWARE\CinemaP-1.9cV16.03 =>PUP.Optional.CrossRider HKCU\SOFTWARE\CinemaP-1.9cV16.03-nv =>PUP.Optional.CrossRider HKCU\SOFTWARE\CinemaP-1.9cV16.03-nv-ie =>PUP.Optional.CrossRider HKCU\SOFTWARE\Cocoon Software HKCU\SOFTWARE\COWON HKCU\SOFTWARE\DATA BECKER HKCU\SOFTWARE\DealPlyLive =>PUP.Optional.Dealply HKCU\SOFTWARE\DirectShow HKCU\SOFTWARE\DownloadManager HKCU\SOFTWARE\DVDVideoSoft HKCU\SOFTWARE\funmoods =>PUP.Optional.Funmoods HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate HKCU\SOFTWARE\GNOK =>PUP.Optional.CrossRider HKCU\SOFTWARE\GNU HKCU\SOFTWARE\Google HKCU\SOFTWARE\Haali HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\InstallCore =>Adware.InstallCore HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions HKCU\SOFTWARE\InstallPath HKCU\SOFTWARE\Intel HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\KasperskyLab HKCU\SOFTWARE\KMPlayer HKCU\SOFTWARE\LAV HKCU\SOFTWARE\Licenses HKCU\SOFTWARE\LiveSupport HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\MainConcept HKCU\SOFTWARE\mb Software AG HKCU\SOFTWARE\MCAFEE HKCU\SOFTWARE\MediaChance HKCU\SOFTWARE\Micro Application HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\Nobilis HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\OffersWizard HKCU\SOFTWARE\Opera Software HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro HKCU\SOFTWARE\OXXOgames HKCU\SOFTWARE\PC SOFT HKCU\SOFTWARE\PerformerSoft LLC =>PUP.Optional.PerformerSoft HKCU\SOFTWARE\Piriform HKCU\SOFTWARE\Realtek HKCU\SOFTWARE\RegisteredApplicationsEx =>PUP.Optional.SfKpCouponApp HKCU\SOFTWARE\SecuROM HKCU\SOFTWARE\SFX TEAM HKCU\SOFTWARE\Skype HKCU\SOFTWARE\Softonic =>.Superfluous.Softonic HKCU\SOFTWARE\Sony Media Software HKCU\SOFTWARE\SprgFiles HKCU\SOFTWARE\Systweak =>.Superfluous.Systweak HKCU\SOFTWARE\THQ HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\Unity HKCU\SOFTWARE\URSoft HKCU\SOFTWARE\Valve HKCU\SOFTWARE\Viber HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\SProtector =>PUP.Optional.MocaFlix HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider HKCU\SOFTWARE\AppDataLow\Software\JavaSoft HKCU\SOFTWARE\AppDataLow\Software\Unity ---\\ Contenu des dossiers Programmes (296) - 31s O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\69dc8177-a574-4dff-8461-b3267b078dcf =>PUP.Optional.CrossRider O43 - CFD: 19/12/2015 - [] D -- C:\Program Files\7-Zip O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Adobe O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\Athan O43 - CFD: 23/09/2015 - [] D -- C:\Program Files\Atlantis Quest O43 - CFD: 21/10/2013 - [] D -- C:\Program Files\Canon {2C1FCCF6E1684DBD4D3540B0D6C15EE5} O43 - CFD: 12/05/2014 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd® O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\CinemaP-1.9cV16.03 =>PUP.Optional.CrossRider O43 - CFD: 23/10/2015 - [0] D -- C:\Program Files\City Interactive O43 - CFD: 10/03/2014 - [] D -- C:\Program Files\CMS3.0 O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\Common Files O43 - CFD: 23/09/2015 - [] D -- C:\Program Files\Counter-Strike 1.6 O43 - CFD: 19/03/2015 - [] D -- C:\Program Files\DIFX =>.Microsoft Windows Component Publisher® O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\Discover Treasure =>PUP.Optional.DiscoverTreasure O43 - CFD: 02/11/2015 - [] D -- C:\Program Files\Drome Racers O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\DVD Maker O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\DVDVideoSoft =>.Digital Wave Ltd® O43 - CFD: 29/03/2014 - [] D -- C:\Program Files\EaseUS O43 - CFD: 04/11/2013 - [] D -- C:\Program Files\ffdshow O43 - CFD: 12/08/2013 - [0] SHD -- C:\Program Files\Fichiers communs O43 - CFD: 08/03/2014 - [] D -- C:\Program Files\Free Games 111 =>PUP.Optional.ScriptHost O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\FreeCodecPack O43 - CFD: 08/04/2014 - [] D -- C:\Program Files\Funmoods O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate O43 - CFD: 30/12/2013 - [0] D -- C:\Program Files\GS-Enabler O43 - CFD: 02/03/2015 - [] D -- C:\Program Files\GSAutoClicker3 O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\GUPlayer =>PUP.Optional.GUPlayer O43 - CFD: 04/11/2013 - [] D -- C:\Program Files\Haali O43 - CFD: 03/02/2016 - [] D -- C:\Program Files\Harley Davidson O43 - CFD: 27/06/2015 - [] HD -- C:\Program Files\InstallShield Installation Information =>.InstallShield Software Corporation® O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Intel =>.Intel Corporation® O43 - CFD: 15/02/2016 - [] D -- C:\Program Files\Internet Download Manager O43 - CFD: 20/08/2013 - [] D -- C:\Program Files\Internet Explorer O43 - CFD: 19/08/2013 - [] D -- C:\Program Files\Java =>.Oracle America, Inc.® O43 - CFD: 27/06/2015 - [] D -- C:\Program Files\JetAudio O43 - CFD: 01/02/2015 - [] D -- C:\Program Files\Kaspersky Lab =>.Kaspersky Lab® O43 - CFD: 01/01/2014 - [0] D -- C:\Program Files\LiveSupport =>PUP.Optional.LiveSupport O43 - CFD: 23/10/2015 - [] D -- C:\Program Files\Mercedes CLC O43 - CFD: 04/04/2014 - [] D -- C:\Program Files\Micro Application O43 - CFD: 23/10/2015 - [] D -- C:\Program Files\Micro Madness O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Microsoft Games O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation® O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Microsoft Visual Studio O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Microsoft Visual Studio 8 O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Microsoft Works O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Microsoft.NET O43 - CFD: 16/12/2015 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla Corporation® O43 - CFD: 08/08/2015 - [] D -- C:\Program Files\Mozilla Maintenance Service =>.Mozilla Corporation® O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\MSBuild O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\MSECache O43 - CFD: 13/11/2015 - [] D -- C:\Program Files\MultiSkypeLauncher O43 - CFD: 23/10/2015 - [] D -- C:\Program Files\Nobilis O43 - CFD: 09/10/2015 - [] D -- C:\Program Files\Opera O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\Origin =>.Electronic Arts, Inc.® O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\Origin Games O43 - CFD: 20/08/2013 - [] D -- C:\Program Files\PANDORA.TV O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\QuickMediaConverter O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Realtek =>.Andrea Electronics® O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies O43 - CFD: 12/12/2015 - [] RD -- C:\Program Files\Skype =>.Skype Software Sarl® O43 - CFD: 30/01/2014 - [] D -- C:\Program Files\Sony O43 - CFD: 08/03/2014 - [] D -- C:\Program Files\Speed Test 127 =>PUP.Optional.ScriptHost O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\SprgFiles O43 - CFD: 12/05/2014 - [] D -- C:\Program Files\SuperCopier2 O43 - CFD: 28/06/2014 - [] D -- C:\Program Files\Synology O43 - CFD: 22/10/2015 - [] D -- C:\Program Files\Team6 game studios O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\The KMPlayer O43 - CFD: 27/06/2015 - [] D -- C:\Program Files\The Rise of Atlantis O43 - CFD: 23/10/2015 - [] D -- C:\Program Files\THQ O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information O43 - CFD: 08/03/2014 - [] D -- C:\Program Files\Video Performer O43 - CFD: 20/08/2013 - [] D -- C:\Program Files\VideoLAN O43 - CFD: 30/01/2014 - [0] D -- C:\Program Files\VSTplugins O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Defender O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Journal O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Mail O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Media Player O43 - CFD: 12/08/2013 - [] D -- C:\Program Files\Windows NT O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation® O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Portable Devices O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Sidebar O43 - CFD: 10/03/2014 - [] D -- C:\Program Files\WinPcap =>.Riverbed Technology, Inc.® O43 - CFD: 13/11/2015 - [] D -- C:\Program Files\WinRAR O43 - CFD: 11/10/2015 - [] D -- C:\Program Files\Your Uninstaller! 7 O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip O43 - CFD: 19/03/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 12/08/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 01/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Athan O43 - CFD: 21/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon LBP3010 LBP3018 LBP3050 O43 - CFD: 13/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\City Interactive O43 - CFD: 10/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CMS3.0 O43 - CFD: 23/09/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 O43 - CFD: 01/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft O43 - CFD: 29/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Data Recovery Wizard 6.1 O43 - CFD: 27/05/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON O43 - CFD: 04/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow O43 - CFD: 12/08/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 04/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter O43 - CFD: 15/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 27/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\jetAudio O43 - CFD: 01/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4 O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mercedes CLC Dream Test Drive O43 - CFD: 04/04/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Micro Application O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Micro Madness O43 - CFD: 13/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nobilis O43 - CFD: 16/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin O43 - CFD: 20/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PANDORATV O43 - CFD: 13/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrintMe Internet Printing O43 - CFD: 21/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programme de désinstallation de l'imprimante Canon O43 - CFD: 01/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickMediaConverter O43 - CFD: 12/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype O43 - CFD: 30/01/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony O43 - CFD: 12/05/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 14/07/2009 - [0] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 27/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Rise of Atlantis O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\THQ O43 - CFD: 10/07/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN O43 - CFD: 10/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap O43 - CFD: 13/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 11/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7 O43 - CFD: 23/09/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zelda Mystery of Solarus O43 - CFD: 26/12/2013 - [] D -- C:\ProgramData\14aad33b547053db O43 - CFD: 17/02/2016 - [] D -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77 O43 - CFD: 13/08/2013 - [] D -- C:\ProgramData\Adobe O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 27/07/2015 - [] D -- C:\ProgramData\AVG O43 - CFD: 11/10/2015 - [0] D -- C:\ProgramData\Babylon =>PUP.Optional.Babylon O43 - CFD: 16/02/2016 - [] D -- C:\ProgramData\boost_interprocess O43 - CFD: 12/08/2013 - [0] SHD -- C:\ProgramData\Bureau O43 - CFD: 21/10/2013 - [] D -- C:\ProgramData\Canon O43 - CFD: 27/07/2015 - [] HD -- C:\ProgramData\Common Files O43 - CFD: 08/04/2014 - [] D -- C:\ProgramData\DealPlyLive =>PUP.Optional.Dealply O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 16/02/2016 - [] D -- C:\ProgramData\Electronic Arts O43 - CFD: 27/05/2014 - [] D -- C:\ProgramData\EPSON O43 - CFD: 12/08/2013 - [0] SHD -- C:\ProgramData\Favoris O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites O43 - CFD: 04/11/2013 - [] D -- C:\ProgramData\IBUpdaterService =>PUP.Optional.InstallBrain O43 - CFD: 19/08/2013 - [0] D -- C:\ProgramData\IDM O43 - CFD: 26/12/2013 - [] D -- C:\ProgramData\InstallMate =>.Superfluous.Tarma O43 - CFD: 17/02/2016 - [] D -- C:\ProgramData\Kaspersky Lab O43 - CFD: 18/02/2014 - [] D -- C:\ProgramData\McAfee O43 - CFD: 12/08/2013 - [0] SHD -- C:\ProgramData\Menu Démarrer O43 - CFD: 30/04/2014 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 08/03/2015 - [] D -- C:\ProgramData\Microsoft Help O43 - CFD: 12/08/2013 - [0] SHD -- C:\ProgramData\Modèles O43 - CFD: 12/05/2014 - [] D -- C:\ProgramData\Mozilla O43 - CFD: 17/02/2016 - [] D -- C:\ProgramData\Origin O43 - CFD: 16/02/2016 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 26/12/2013 - [] D -- C:\ProgramData\QuickSet =>PUP.Optional.SurfAndKeep O43 - CFD: 15/02/2016 - [] D -- C:\ProgramData\Skype O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 12/12/2015 - [] D -- C:\ProgramData\suarf anD keep =>PUP.Optional.SurfAndKeep O43 - CFD: 12/12/2015 - [] D -- C:\ProgramData\sUirf And keEp =>PUP.Optional.SurfAndKeep O43 - CFD: 17/08/2013 - [] D -- C:\ProgramData\Sun O43 - CFD: 16/02/2016 - [0] AD -- C:\ProgramData\TEMP O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 27/06/2015 - [] D -- C:\ProgramData\TERMINAL Studio O43 - CFD: 12/12/2015 - [] D -- C:\ProgramData\YoutubeAdblocker =>PUP.Optional.Multiplug O43 - CFD: 17/02/2016 - [] D -- C:\Program Files\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77 O43 - CFD: 14/08/2013 - [] D -- C:\Program Files\Common Files\Adobe O43 - CFD: 20/10/2015 - [] D -- C:\Program Files\Common Files\Config O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Common Files\DESIGNER O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\Common Files\DVDVideoSoft O43 - CFD: 27/05/2014 - [] D -- C:\Program Files\Common Files\EPSON O43 - CFD: 27/06/2015 - [] D -- C:\Program Files\Common Files\InstallShield O43 - CFD: 17/08/2013 - [] D -- C:\Program Files\Common Files\Java O43 - CFD: 13/02/2014 - [] D -- C:\Program Files\Common Files\microsoft shared O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\Services O43 - CFD: 12/12/2015 - [] D -- C:\Program Files\Common Files\Skype O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Common Files\System O43 - CFD: 12/03/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\.mono O43 - CFD: 08/04/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\0F2Y1G1H1F1F1Q1B0C =>Adware.InstallCore O43 - CFD: 14/12/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\Adobe O43 - CFD: 14/08/2013 - [0] D -- C:\Users\Administrateur\AppData\Roaming\AdobeUM O43 - CFD: 27/07/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\AVG O43 - CFD: 11/10/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\Babylon =>PUP.Optional.Babylon O43 - CFD: 13/02/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\CBS Interactive O43 - CFD: 01/07/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\Cocoon Software O43 - CFD: 27/06/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\COWON O43 - CFD: 08/04/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Dealply =>PUP.Optional.Dealply O43 - CFD: 17/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\DMCache O43 - CFD: 01/07/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\DVDVideoSoft O43 - CFD: 04/11/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\freegames4357 =>PUP.Optional.ScriptHost O43 - CFD: 08/04/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Funmoods O43 - CFD: 16/08/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\Google O43 - CFD: 13/08/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\Identities O43 - CFD: 16/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\IDM O43 - CFD: 17/08/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\Macromedia O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Media Center Programs O43 - CFD: 08/12/2015 - [] SD -- C:\Users\Administrateur\AppData\Roaming\Microsoft O43 - CFD: 12/05/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Mozilla O43 - CFD: 13/11/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\MultiSkypeLauncher O43 - CFD: 19/12/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\mysites123 =>PUP.Optional.Mysites123 O43 - CFD: 27/07/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy O43 - CFD: 09/10/2015 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Opera Software O43 - CFD: 17/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\Origin O43 - CFD: 10/03/2014 - [0] D -- C:\Users\Administrateur\AppData\Roaming\PerformerSoft =>PUP.Optional.PerformerSoft O43 - CFD: 30/01/2014 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Publish Providers O43 - CFD: 23/10/2015 - [] RHD -- C:\Users\Administrateur\AppData\Roaming\SecuROM O43 - CFD: 17/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\Skype O43 - CFD: 30/01/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Sony O43 - CFD: 04/11/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\speedtest4354 =>PUP.Optional.ScriptHost O43 - CFD: 16/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\SpringFiles O43 - CFD: 13/02/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Systweak =>.Superfluous.Systweak O43 - CFD: 24/02/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Unity O43 - CFD: 11/10/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\URSoft O43 - CFD: 23/09/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\uTorrent O43 - CFD: 15/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\ViberPC O43 - CFD: 10/06/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\vlc O43 - CFD: 13/11/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\WinRAR O43 - CFD: 17/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\ZHP O43 - CFD: 19/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\13310 O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\155 O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\aahjlonapdfppdkdijlamekhmfgmjbag O43 - CFD: 19/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Adobe O43 - CFD: 13/08/2013 - [0] SHD -- C:\Users\Administrateur\AppData\Local\Application Data O43 - CFD: 27/07/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Avg O43 - CFD: 11/10/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Babylon =>PUP.Optional.Babylon O43 - CFD: 27/07/2015 - [0] D -- C:\Users\Administrateur\AppData\Local\Call Extension O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ceabhglmhoaheldinfkfejcfnfcbikfg O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\cfiflanfnecgmoccidoeflmigdkmmkoc O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\cgildhlbeacndjeenenobgadpfhnfodj O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\cognihjmfdabcllcfedkhfbdcgnioepj O43 - CFD: 26/12/2013 - [] D -- C:\Users\Administrateur\AppData\Local\Comodo O43 - CFD: 08/04/2014 - [] D -- C:\Users\Administrateur\AppData\Local\DealPlyLive =>PUP.Optional.Dealply O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\dkggpfgdjaclbknbimpopbejjhcjicgm O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\eghefhkldhkmgigcabeakbmemgdakeak O43 - CFD: 23/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Experience Comp O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\fjiaeajmeljmihejaijppjplkefkbion O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\fpdjkmkohkkeaodohigddmljioeglhgh O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\gcgidlomgkpgjgdcbalnmnkkbbpgminh O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\gfgabaceahhpmeghkkfhebbjfboidiie O43 - CFD: 01/07/2015 - [] D -- C:\Users\Administrateur\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate O43 - CFD: 16/02/2016 - [] D -- C:\Users\Administrateur\AppData\Local\Google O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\hecedgdbakhejfcphfngflenojajnhne O43 - CFD: 13/08/2013 - [0] SHD -- C:\Users\Administrateur\AppData\Local\Historique O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ibcakjlajdkaldfhbeiaegdhjncifocd O43 - CFD: 05/02/2014 - [0] D -- C:\Users\Administrateur\AppData\Local\igaliffjpkffjppbcjgoibcakaimfeml O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ilcnjaopkmppdnaojinbeiioojamnlee O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\innjnjfhmkicdbdakjimobnnlidpmcpa O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\jbbdpjcgnphkhkgoaoibkbmhmkkahgae O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\jcmnfhhoiniakehfaabbcljjjdlfmhkp O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\kbjbbogikkonlkihijacgiginjfgbcmn O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\kcbgbdginlpmflnommepmloplioopfme O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\kdpppmohopkflfjigbfpeilokdefloon O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\kejihfonakglnpifcldpkiiplbfmnilp O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\kfmiplchdnnglmoambjfojhgienfbedg O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\kknfjjmlnmiopcindalpecciicmaibib O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ladmgnmkfdemoiiccnndheihdcmdkaoe O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\lebhjkcangmoapkpkgkpfpcbmbacieii O43 - CFD: 12/05/2014 - [] D -- C:\Users\Administrateur\AppData\Local\Macromedia O43 - CFD: 16/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Mart Form =>PUP.Optional.MartForm O43 - CFD: 25/03/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Microsoft O43 - CFD: 30/03/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Microsoft Games O43 - CFD: 13/08/2013 - [0] D -- C:\Users\Administrateur\AppData\Local\Microsoft Help O43 - CFD: 11/08/2014 - [] D -- C:\Users\Administrateur\AppData\Local\Mozilla O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\nbpomaaefibighjfhfcigmmbclpogbld O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ncnbbicbdoccfaimheflmeplijelnekl O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\nihoedikpjdeajmbgmlgenmmmkglagdp O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\nohnbpeccgobdfldjigckbbkmaghfmej O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ohhjbbogpcnilfbkfajgbnmlbfjeijee O43 - CFD: 13/02/2014 - [0] D -- C:\Users\Administrateur\AppData\Local\okpahfebfehjbjheoljdejhgjcfofhka O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ooigpnmhkefijjpcenjgfehehejkcibp O43 - CFD: 09/10/2015 - [0] D -- C:\Users\Administrateur\AppData\Local\Opera Software O43 - CFD: 16/02/2016 - [] D -- C:\Users\Administrateur\AppData\Local\Origin O43 - CFD: 26/12/2013 - [] D -- C:\Users\Administrateur\AppData\Local\Programs O43 - CFD: 12/12/2015 - [0] D -- C:\Users\Administrateur\AppData\Local\Skype O43 - CFD: 17/02/2016 - [] D -- C:\Users\Administrateur\AppData\Local\Temp O43 - CFD: 13/08/2013 - [0] SHD -- C:\Users\Administrateur\AppData\Local\Temporary Internet Files O43 - CFD: 26/12/2013 - [] D -- C:\Users\Administrateur\AppData\Local\Torch =>.Superfluous.Torch O43 - CFD: 03/11/2015 - [0] D -- C:\Users\Administrateur\AppData\Local\Unity O43 - CFD: 15/02/2016 - [] D -- C:\Users\Administrateur\AppData\Local\Viber O43 - CFD: 01/07/2015 - [] D -- C:\Users\Administrateur\AppData\Local\WDSetup O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\{287F6F3A-0DF0-4AE7-BB81-026C8D6A7B0A} O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\{AC8E9D3F-24AA-4F18-9AA5-16F083DDFF4D} O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\{CE2C3444-F41F-4072-9701-2C0D7FD4B6F2} O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 18/08/2013 - [] RD -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 13/02/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Download App O43 - CFD: 23/10/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 01/07/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GUPlayer =>PUP.Optional.GUPlayer O43 - CFD: 04/11/2013 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter O43 - CFD: 15/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 13/11/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MultiSkypeLauncher O43 - CFD: 13/11/2015 - [] RD -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 12/05/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SuperCopier2 O43 - CFD: 20/08/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer O43 - CFD: 08/03/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Video Performer O43 - CFD: 13/11/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ---\\ ShellIconOverlayIdentifiers (SIOI) (4) - 0s O106 - SIOI: IDM Shell Extension [ IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files\Internet Download Manager\IDMShellExt.dll =>.Tonec Inc.® O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\Windows\System32\cscui.dll =>.Microsoft Corporation O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation ---\\ Enumération des clés StartupReg (9) - 1s O53 - SMSR:HKLM\...\startupreg\Athan [Key] . (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files\Athan\Athan.exe =>.www.IslamicFinder.org O53 - SMSR:HKLM\...\startupreg\AVP [Key] . (.Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe =>.Kaspersky Lab O53 - SMSR:HKLM\...\startupreg\ccleaner [Key] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd O53 - SMSR:HKLM\...\startupreg\CNAP2 Launcher [Key] . (.CANON INC. - Canon Advanced Printing Technology Printer.) -- C:\Windows\System32\spool\drivers\w32x86\3\CNAP2LAK.EXE =>.CANON INC. O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (...) -- C:\Users\Administrateur\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe =>.Intel Corporation O53 - SMSR:HKLM\...\startupreg\IgfxTray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe =>.Intel Corporation O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe =>.Intel Corporation O53 - SMSR:HKLM\...\startupreg\SuperCopier2.exe [Key] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files\SuperCopier2\SuperCopier2.exe =>.SFX TEAM ---\\ Liste des pilotes du système (73) - 10s O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400] =>.Microsoft Windows® O58 - SDL:2010/11/20 13:29:13 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [80256] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312] =>.Microsoft Windows® O58 - SDL:2010/11/20 13:29:15 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22400] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608] =>.Microsoft Windows® O58 - SDL:2009/07/13 23:02:49 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gi.) -- C:\Windows\System32\drivers\b57nd60x.sys [229888] =>.Broadcom Corporation O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568] =>.Brother Industries, Ltd. O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248] =>.Brother Industries, Ltd. O58 - SDL:2009/07/14 01:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128] =>.Brother Industries Ltd. O58 - SDL:2009/07/13 23:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336] =>.Brother Industries Ltd. O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160] =>.Brother Industries Ltd. O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904] =>.Brother Industries Ltd. O58 - SDL:2009/07/01 05:46:20 A . (.Broadcom Corporation. - Widcomm Bluetooth USB Filter for Windows XP.) -- C:\Windows\System32\drivers\btusbflt.sys [43944] =>.Broadcom Corporation® O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080] =>.Broadcom Corporation O58 - SDL:2009/07/14 02:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712] =>.Microsoft Windows® O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160] =>.Broadcom Corporation O58 - SDL:2009/07/13 23:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624] =>.Hauppauge Computer Works, Inc. O58 - SDL:2009/09/17 05:54:14 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECI.sys [41088] =>.Intel Corporation O58 - SDL:2009/07/14 02:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152] =>.Microsoft Windows® O58 - SDL:2010/11/20 13:29:54 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332160] =>.Microsoft Windows® O58 - SDL:2016/01/28 10:20:10 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [134248] =>.Tonec Inc.® O58 - SDL:2010/02/20 17:18:09 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys [8726528] =>.Intel Corporation O58 - SDL:2009/07/14 02:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040] =>.Microsoft Windows® O58 - SDL:2010/02/11 00:01:10 A . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\System32\drivers\Impcd.sys [132352] =>.Intel Corporation O58 - SDL:2009/11/12 17:49:02 A . (.Kaspersky Lab - Kaspersky Unified Driver.) -- C:\Windows\System32\drivers\kl1.sys [126480] =>.Kaspersky Lab® O58 - SDL:2009/09/03 15:24:40 A . (.Kaspersky Lab - KLFLTDEV Pnp device filterfre_wxp_x86.) -- C:\Windows\System32\drivers\klfltdev.sys [24848] =>.Kaspersky Lab® O58 - SDL:2015/02/08 12:39:13 A . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x86].) -- C:\Windows\System32\drivers\klif.sys [233560] =>.Kaspersky Lab® O58 - SDL:2015/02/08 12:39:13 A . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) -- C:\Windows\System32\drivers\klim6.sys [22104] =>.Kaspersky Lab® O58 - SDL:2009/07/13 23:02:47 A . (.Atheros Communications, Inc. - Atheros L1c PCI-E Gigabit Ethernet Controll.) -- C:\Windows\System32\drivers\L1C62x86.sys [50688] =>.Atheros Communications, Inc. O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95824] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89168] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584] =>.Microsoft Windows® O58 - SDL:2015/07/30 11:30:52 A . (.nethfdrv - nethfdrv.) -- C:\Windows\System32\drivers\nethfdrv.sys [40528] {2B7DF4C242BFBB654DA05B78A86926AA} =>PUP.Optional.Amonetize O58 - SDL:2009/07/13 23:02:53 A . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\System32\drivers\netr28u.sys [657408] =>.Ralink Technology Corp. O58 - SDL:2009/07/14 02:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624] =>.Microsoft Windows® O58 - SDL:2013/03/01 02:48:42 A . (.Riverbed Technology, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) -- C:\Windows\System32\drivers\npf.sys [36600] =>.Riverbed Technology, Inc.® O58 - SDL:2010/11/20 13:30:06 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117120] =>.Microsoft Windows® O58 - SDL:2010/11/20 13:30:06 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [143744] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064] =>.Microsoft Windows® O58 - SDL:2010/01/12 11:13:02 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [2988640] =>.Realtek Semiconductor Corp® O58 - SDL:2009/08/21 01:29:32 A . (.Realtek Semiconductor Corporation - Realtek RTL81892SE NDIS Driverr.) -- C:\Windows\System32\drivers\rtl8192se.sys [508928] =>.Realtek Semiconductor Corporation O58 - SDL:2009/07/13 21:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] =>.Macrovision Corporation, Macrovision Europe Limited, O58 - SDL:2009/07/14 00:45:33 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\serial.sys [83456] =>.Brother Industries Ltd. O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904] =>.Microsoft Windows® O58 - SDL:2009/07/13 22:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029] O58 - SDL:2009/07/13 22:40:44 A . (...) -- C:\Windows\System32\country.sys [27097] O58 - SDL:2009/07/13 22:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768] O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809] O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537] O58 - SDL:2009/07/13 22:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866] O58 - SDL:2009/07/13 22:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146] O58 - SDL:2009/07/13 22:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370] O58 - SDL:2009/07/13 22:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274] O58 - SDL:2009/07/13 22:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146] O58 - SDL:2009/07/13 22:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952] O58 - SDL:2009/07/13 22:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672] O58 - SDL:2009/07/13 22:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776] O58 - SDL:2009/07/13 22:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536] O58 - SDL:2009/07/13 22:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672] ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (2) - 27s O61 - LFC: 2016/02/17 11:46:53 A . (..) -- C:\Users\Administrateur\JEUX\Need for Speed Carbon - Collector's Edition (2006) PC [РУС ENG] Repack by MOP030B от Zlofenix\setup.exe [924386] O61 - LFC: 2016/02/16 15:03:16 A . (.CityFly Inc.) -- C:\Users\Administrateur\Downloads\Programs\telecharger_jeux_taxi_2_pc_gratuit_downloader.exe [3838888] ---\\ Associations Shell Spawning (10) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ---\\ Menu de démarrage Internet (8) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe http://www.mysites123.com/ =>.Mozilla Corporation® O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.ex http://www.mysites123.com/ =>PUP.Optional.Mysites123 O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation ---\\ Recherche d'infection sur les navigateurs (30) - 24s O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("browser.search.searchengine.alias", "mysites123"); =>PUP.Optional.Mysites123 O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("browser.search.searchengine.iconURL", "http://mysites123.com/favicon.ico"); =>PUP.Optional.Mysites123 O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("browser.search.searchengine.name", "mysites123"); =>PUP.Optional.Mysites123 O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("browser.search.searchengine.url", "http://mysites123.com/web?type=ds&ts=1450548918&z=51dad0a9101cc0a2fe9992eg5z8w5e5w3z[...] =>PUP.Optional.Mysites123 O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("browser.startup.homepage", "http://www.mysites123.com/?type=hp&ts=1450548918&z=51dad0a9101cc0a2fe9992eg5z8w5e5w3z5b3q9t[...] =>PUP.Optional.Mysites123 O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.GreatFind.cg", "9e2baa60-7ea3-4227-9878-050b1f9e110c"); =>PUP.Optional.GreatFind O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.MUB-SAE.newTabSearchURL", "\"http://dts.search.ask.com/sr?gct=hp&o=APN11773A&sysid=539&qrsc=2871&l=dis&sver=[...] =>PUP.Optional.Bandoo O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.MUB-SAE.searchURL", "\"http://dts.search.ask.com/sr?gct=ds&o=APN11773&sysid=539&qrsc=2871&l=dis&sver=3&t_typ[...] =>PUP.Optional.Bandoo O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_bundledUrls.expiration",[...] =>PUP.Optional.Monetization O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_bundledUrls.value", "%7B[...] =>PUP.Optional.Monetization O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_bundledWithHash.expirati[...] =>PUP.Optional.Monetization O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_bundledWithHash.value", [...] =>PUP.Optional.Monetization O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_last_executable_request.[...] =>PUP.Optional.Monetization O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_notBundledArr_.expiratio[...] =>PUP.Optional.Monetization O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_notBundledArr_.value", "[...] =>PUP.Optional.Monetization O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_regBundledWithSoftware.e[...] =>PUP.Optional.Monetization O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_regBundledWithSoftware.v[...] =>PUP.Optional.Monetization O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.publisher", "Cinema Plus"); =>PUP.Optional.CrossRider O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.crossrider.bic", "14e4b6649a0c58cf2edd11f2bbd0fb7d"); =>PUP.Optional.CrossRider O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.enabledAddons", "yahooprotected%40gmail.com:1.0.1.1042,deskCutv2%40gmail.com:0.1.13,MUB-SAE%40iacsearchandme[...] =>PUP.Optional.DeskCut O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("keyword.URL", "http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQBdU1sQQAMTbQ5dAApcFQcRdxQBWQ5JDAUWcFsJBwAUE[...] =>PUP.Optional.Browser O69 - SBI: SearchScopes [HKCU] OldSearch - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Default) - http://searchinterneat-a.akamaihd.net/ =>PUP.Optional.Browser O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com/ =>PUP.Optional.Babylon O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKLM] OldSearch - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://www.bing.com/ O69 - SBI: SearchScopes [HKLM] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Default) - http://searchinterneat-a.akamaihd.net/ =>PUP.Optional.Browser ---\\ Enumère les services démarrés par Svchost (33) - 1s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464] =>.Microsoft Corporation O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [593408] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [674304] =>.Microsoft Corporation O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [473600] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [286208] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [242176] =>.Microsoft Corporation O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [521216] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [1933848] =>.Microsoft Windows Component Publisher® O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [585728] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [499712] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [47104] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688] =>.Microsoft Corporation O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164352] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [750592] =>.Microsoft Corporation O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [113664] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102912] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800] =>.Microsoft Corporation O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [149504] =>.Microsoft Corporation ---\\ Liste des exceptions du parefeu Windows (15) - 3s O87 - FAEL: "TCP Query User{D9558500-5A70-4041-A22F-42DD349679D2}C:\program files\cms3.0\bin\cms3.exe" [In-None-P6-TRUE] .(...) -- C:\program files\cms3.0\bin\cms3.exe O87 - FAEL: "UDP Query User{B97CB837-F5AB-4B58-B84B-BDD4265B357B}C:\program files\cms3.0\bin\cms3.exe" [In-None-P17-TRUE] .(...) -- C:\program files\cms3.0\bin\cms3.exe O87 - FAEL: "TCP Query User{68C447D1-B1CD-4BB3-A175-1B3AF6F03A58}C:\program files\cms3.0\bin\cms3.exe" [In-None-P6-TRUE] .(...) -- C:\program files\cms3.0\bin\cms3.exe O87 - FAEL: "UDP Query User{269E4EFB-706D-4B75-9C25-9F05BCD5820F}C:\program files\cms3.0\bin\cms3.exe" [In-None-P17-TRUE] .(...) -- C:\program files\cms3.0\bin\cms3.exe O87 - FAEL: "{39F4283E-7ED5-45CD-ADE5-B287432D74E7}" [In-None-P6-TRUE] .(...) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe {2BF6AC6C0932526A56D17EB4F2C776C5} O87 - FAEL: "{D85D3F4F-3BC0-4B9A-A698-B28E35859937}" [In-None-P17-TRUE] .(...) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe {2BF6AC6C0932526A56D17EB4F2C776C5} O87 - FAEL: "{70C0F266-4AA7-4BE2-8D44-A855F8E60D38}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.) O87 - FAEL: "{7EDAE109-9BCE-4531-A663-D6274DDA9519}" [In-None-P6-TRUE] .(...) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe {2BF6AC6C0932526A56D17EB4F2C776C5} O87 - FAEL: "{C95AD675-2300-4ECE-8C9B-C6F29C3DE623}" [In-None-P17-TRUE] .(...) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe {2BF6AC6C0932526A56D17EB4F2C776C5} O87 - FAEL: "{56E83EF9-36C1-47E8-9E6B-625AC208140D}" [In-None-P6-TRUE] .(.New Unity Inc - SprgFiles Downloader Application.) -- C:\Program Files\SprgFiles\SprgFiles.exe O87 - FAEL: "{0EFA2D94-214A-4ED8-B2EB-D9313D4F582D}" [In-None-P17-TRUE] .(.New Unity Inc - SprgFiles Downloader Application.) -- C:\Program Files\SprgFiles\SprgFiles.exe O87 - FAEL: "{C56C8459-A132-4B8D-9ED0-C13DE98878BB}" [In-None-P6-TRUE] .(.New Unity Inc - SprgFiles Downloader Application.) -- C:\Program Files\SprgFiles\downloader.exe O87 - FAEL: "{051A0270-149D-40AC-BAC0-B321AD3D28AA}" [In-None-P17-TRUE] .(.New Unity Inc - SprgFiles Downloader Application.) -- C:\Program Files\SprgFiles\downloader.exe O87 - FAEL: "{DA7466B3-9D95-4426-A270-34CC6DC36769}" [In-None-P6-TRUE] .(...) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe {2BF6AC6C0932526A56D17EB4F2C776C5} O87 - FAEL: "{97F99720-F867-429C-8969-DBCA3AF18E40}" [In-None-P17-TRUE] .(...) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe {2BF6AC6C0932526A56D17EB4F2C776C5} ---\\ Recherche de clés de registre Tracing (4) - 2s HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.Optional.MyPCBackup HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASAPI32 =>PUP.Optional.MyPCBackup HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASMANCS =>PUP.Optional.MyPCBackup ---\\ Scan Additionnel (131) - 0s C:\Users\Administrateur\AppData\Local\Mart Form\{9F868A70-31AB-69EA-6BB8-5117F51B6A01}\MartForm.dll =>PUP.Optional.MartForm* HKLM\SYSTEM\CurrentControlSet\Services\globalUpdate =>PUP.Optional.GlobalUpdate C:\Program Files\globalUpdate\Update\GoogleUpdate.exe =>PUP.Optional.GlobalUpdate HKLM\SYSTEM\CurrentControlSet\Services\NetHttpService =>PUP.Optional.Amonetize C:\Windows\System32\nethtsrv.exe =>PUP.Optional.Amonetize HKLM\SYSTEM\CurrentControlSet\Services\globalUpdatem =>PUP.Optional.GlobalUpdate C:\Users\Administrateur\AppData\Roaming\BYAIAMUF.exe =>PUP.Optional.CrossRider C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6.exe =>PUP.Optional.CrossRider C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6.exe =>PUP.Optional.CrossRider C:\Users\Administrateur\AppData\Roaming\GNOK.exe =>PUP.Optional.CrossRider C:\Users\Administrateur\AppData\Local\Mart Form\{9F868A70-31AB-69EA-6BB8-5117F51B6A01}\MartForm.dll =>PUP.Optional.MartForm C:\Users\Administrateur\AppData\Local\Mart Form\{9F868A70-31AB-69EA-6BB8-5117F51B6A01}\ebucl.dll =>PUP.Optional.MartForm C:\Windows\Tasks\BYAIAMUF.job =>PUP.Optional.CrossRider C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6.job =>PUP.Optional.CrossRider C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7.job =>PUP.Optional.CrossRider C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user.job =>PUP.Optional.CrossRider C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-3.job =>PUP.Optional.CrossRider C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-4.job =>PUP.Optional.CrossRider C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5.job =>PUP.Optional.CrossRider C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user.job =>PUP.Optional.CrossRider C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6.job =>PUP.Optional.CrossRider C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-7.job =>PUP.Optional.CrossRider C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job =>PUP.Optional.GlobalUpdate C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job =>PUP.Optional.GlobalUpdate C:\Windows\Tasks\GNOK.job =>PUP.Optional.CrossRider C:\Windows\System32\Tasks\BYAIAMUF =>PUP.Optional.CrossRider C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6 =>PUP.Optional.CrossRider C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7 =>PUP.Optional.CrossRider C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user =>PUP.Optional.CrossRider C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-3 =>PUP.Optional.CrossRider C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-4 =>PUP.Optional.CrossRider C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5 =>PUP.Optional.CrossRider C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user =>PUP.Optional.CrossRider C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6 =>PUP.Optional.CrossRider C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-7 =>PUP.Optional.CrossRider C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore =>PUP.Optional.GlobalUpdate C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA =>PUP.Optional.GlobalUpdate C:\Windows\System32\Tasks\GNOK =>PUP.Optional.CrossRider C:\Windows\System32\Tasks\LaunchApp =>PUP.Optional.MyPCBackup C:\Windows\System32\Tasks\Mart Form =>PUP.Optional.MartForm C:\Windows\System32\Tasks\Mart Form2 =>PUP.Optional.MartForm C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\npoppdbinhocdoppkfigckiikbefodei =>Hijacker.Browser C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\npoppdbinhocdoppkfigckiikbefodei =>Hijacker.Browser C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\MUB-SAE@iacsearchandmedia.com.xpi =>PUP.Optional.IACSearchAndMedia C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo C:\Program Files\Mozilla Firefox\browser\searchplugins\mysites123.xml =>PUP.Optional.Mysites123 C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\ccf7276c-d388-480f-8835-5b680025e1ca@gmail.com =>PUP.Optional.CrossRider C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate C:\Program Files\Speed Test 127\ScriptHost.dll =>PUP.Optional.ScriptHost HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} =>PUP.Optional.ScriptHost C:\Program Files\Free Games 111\ScriptHost.dll =>PUP.Optional.ScriptHost HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C45EC9F0-8333-465D-9728-074BD41985C9} =>PUP.Optional.ScriptHost HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mysites123 uninstall =>PUP.Optional.Mysites123 HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Video Performer =>PUP.Optional.PerformerSoft HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mysites123 uninstall =>PUP.Optional.Mysites123 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Video Performer =>PUP.Optional.PerformerSoft HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GUPlayer =>PUP.Optional.GUPlayer HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6643E13A-AF18-EB44-9527-A1CB97030F8D} =>PUP.Optional.MartForm* HKLM\SOFTWARE\156eacdc-6be3-484e-958c-b1950c01381c =>PUP.Optional.CrossRider HKLM\SOFTWARE\40882d6a-0c6a-479b-917d-dd9bf7ea5963 =>PUP.Optional.CrossRider HKLM\SOFTWARE\Babylon =>PUP.Optional.Babylon HKLM\SOFTWARE\BabylonToolbar =>PUP.Optional.Babylon HKLM\SOFTWARE\CinemaP-1.9cV16.03 =>PUP.Optional.CrossRider HKLM\SOFTWARE\CinemaP-1.9cV16.03-nv =>PUP.Optional.CrossRider HKLM\SOFTWARE\CinemaP-1.9cV16.03-nv-ie =>PUP.Optional.CrossRider HKLM\SOFTWARE\DealPlyLive =>PUP.Optional.Dealply HKLM\SOFTWARE\FFPluginHp =>PUP.Optional.SweetSearch HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate HKLM\SOFTWARE\GS-Enabler =>PUP.Optional.GSBooster HKLM\SOFTWARE\InstallCore =>Adware.InstallCore HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions HKLM\SOFTWARE\mysites123Software =>PUP.Optional.Mysites123 HKLM\SOFTWARE\SP Global =>PUP.Optional.AdvancedSystemProtector HKLM\SOFTWARE\SProtector =>PUP.Optional.MocaFlix HKLM\SOFTWARE\Systweak =>.Superfluous.Systweak HKCU\SOFTWARE\CinemaP-1.9cV16.03 =>PUP.Optional.CrossRider HKCU\SOFTWARE\CinemaP-1.9cV16.03-nv =>PUP.Optional.CrossRider HKCU\SOFTWARE\CinemaP-1.9cV16.03-nv-ie =>PUP.Optional.CrossRider HKCU\SOFTWARE\DealPlyLive =>PUP.Optional.Dealply HKCU\SOFTWARE\funmoods =>PUP.Optional.Funmoods HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate HKCU\SOFTWARE\GNOK =>PUP.Optional.CrossRider HKCU\SOFTWARE\InstallCore =>Adware.InstallCore HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro HKCU\SOFTWARE\PerformerSoft LLC =>PUP.Optional.PerformerSoft HKCU\SOFTWARE\RegisteredApplicationsEx =>PUP.Optional.SfKpCouponApp HKCU\SOFTWARE\Softonic =>.Superfluous.Softonic HKCU\SOFTWARE\Systweak =>.Superfluous.Systweak HKCU\SOFTWARE\AppDataLow\SProtector =>PUP.Optional.MocaFlix HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider C:\Program Files\69dc8177-a574-4dff-8461-b3267b078dcf =>PUP.Optional.CrossRider C:\Program Files\CinemaP-1.9cV16.03 =>PUP.Optional.CrossRider C:\Program Files\Discover Treasure =>PUP.Optional.DiscoverTreasure C:\Program Files\Free Games 111 =>PUP.Optional.ScriptHost C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate C:\Program Files\GUPlayer =>PUP.Optional.GUPlayer C:\Program Files\LiveSupport =>PUP.Optional.LiveSupport C:\Program Files\Speed Test 127 =>PUP.Optional.ScriptHost C:\ProgramData\Babylon =>PUP.Optional.Babylon C:\ProgramData\DealPlyLive =>PUP.Optional.Dealply C:\ProgramData\IBUpdaterService =>PUP.Optional.InstallBrain C:\ProgramData\InstallMate =>.Superfluous.Tarma C:\ProgramData\QuickSet =>PUP.Optional.SurfAndKeep C:\ProgramData\suarf anD keep =>PUP.Optional.SurfAndKeep C:\ProgramData\sUirf And keEp =>PUP.Optional.SurfAndKeep C:\ProgramData\YoutubeAdblocker =>PUP.Optional.Multiplug C:\Users\Administrateur\AppData\Roaming\0F2Y1G1H1F1F1Q1B0C =>Adware.InstallCore C:\Users\Administrateur\AppData\Roaming\Babylon =>PUP.Optional.Babylon C:\Users\Administrateur\AppData\Roaming\Dealply =>PUP.Optional.Dealply C:\Users\Administrateur\AppData\Roaming\freegames4357 =>PUP.Optional.ScriptHost C:\Users\Administrateur\AppData\Roaming\mysites123 =>PUP.Optional.Mysites123 C:\Users\Administrateur\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy C:\Users\Administrateur\AppData\Roaming\PerformerSoft =>PUP.Optional.PerformerSoft C:\Users\Administrateur\AppData\Roaming\speedtest4354 =>PUP.Optional.ScriptHost C:\Users\Administrateur\AppData\Roaming\Systweak =>.Superfluous.Systweak C:\Users\Administrateur\AppData\Local\Babylon =>PUP.Optional.Babylon C:\Users\Administrateur\AppData\Local\DealPlyLive =>PUP.Optional.Dealply C:\Users\Administrateur\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate C:\Users\Administrateur\AppData\Local\Mart Form =>PUP.Optional.MartForm C:\Users\Administrateur\AppData\Local\Torch =>.Superfluous.Torch C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GUPlayer =>PUP.Optional.GUPlayer C:\Windows\System32\drivers\nethfdrv.sys =>PUP.Optional.Amonetize HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} =>PUP.Optional.Browser HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} =>PUP.Optional.Babylon HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} =>PUP.Optional.Browser HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.Optional.MyPCBackup HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASAPI32 =>PUP.Optional.MyPCBackup HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASMANCS =>PUP.Optional.MyPCBackup ---\\ Récapitulatif des éléments trouvés sur votre station (41) - 0s http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.MartForm* http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate http://www.nicolascoolman.fr/pup-amonetize/ =>PUP.Optional.Amonetize http://www.nicolascoolman.fr/?p=180 =>PUP.Optional.CrossRider http://www.nicolascoolman.fr/?p=316 =>PUP.Optional.MyPCBackup http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.MartForm http://www.nicolascoolman.fr/?p=546 =>PUP.Optional.Browser http://www.nicolascoolman.fr/hijacker-browser/ =>Hijacker.Browser http://www.nicolascoolman.fr/pup-optional-mysites123 =>PUP.Optional.Mysites123 http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.IACSearchAndMedia http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BDYahoo http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.LightningNewTab http://www.nicolascoolman.fr/?p=203 =>PUP.Optional.Dealply http://www.nicolascoolman.fr/?p=170 =>PUP.Optional.Babylon http://www.nicolascoolman.fr/?p=1120 =>PUP.Optional.ScriptHost http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.PerformerSoft http://www.nicolascoolman.fr/pup-optional-guplayer =>PUP.Optional.GUPlayer http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SweetSearch http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.GSBooster http://www.nicolascoolman.fr/?p=279 =>Adware.InstallCore http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BrowserExtensions http://www.nicolascoolman.fr/?p=336 =>PUP.Optional.AdvancedSystemProtector http://www.nicolascoolman.fr/?p=1344 =>PUP.Optional.MocaFlix http://www.nicolascoolman.fr/pup-systweak/ =>.Superfluous.Systweak http://www.nicolascoolman.fr/?p=362 =>PUP.Optional.Funmoods http://www.nicolascoolman.fr/?p=324 =>PUP.Optional.OptimizerPro http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SfKpCouponApp http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.Softonic http://www.nicolascoolman.fr/link-661/ =>PUP.Optional.DiscoverTreasure http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.LiveSupport http://www.nicolascoolman.fr/?p=600 =>PUP.Optional.InstallBrain http://www.nicolascoolman.fr/?p=259 =>.Superfluous.Tarma http://www.nicolascoolman.fr/?p=1113 =>PUP.Optional.SurfAndKeep http://www.nicolascoolman.fr/?p=1402 =>PUP.Optional.Multiplug http://www.nicolascoolman.fr/?p=197 =>PUP.Optional.OpenCandy http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.Torch http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.GreatFind http://www.nicolascoolman.fr/?p=237 =>PUP.Optional.Bandoo http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Monetization http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.DeskCut http://www.nicolascoolman.fr/?p=666 =>PUP.Optional.QuickStart ~ End of the scan, 15818 items in 00h08mn03s (1230)(0)