~ Rapport de ZHPDiag v2015.4.13.38 - Nicolas Coolman (13/04/2015) ~ Lancé par betto (15/04/2015 20:08:35) ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ Adresse du Forum http://forum.nicolascoolman.fr ~ Traduit par Nicolas Coolman ~ Etat de la version : Version à jour. ~ Liste blanche : Désactivée par l'utilisateur ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Deactivate by program ---\\ Navigateurs Internet MSIE: Internet Explorer v9.0.8112.16421 ---\\ Informations sur les produits Windows ~ Langage: Français Windows Server License Manager Script : OK ~ Windows Operating System - Vista, OEM_SLP channel System Locked Preinstallation (OEM_SLP) : OK Windows ID Activation : OK ~ Windows Partial Key : 6CJ97 Windows License : OK Windows Automatic Updates : OK Windows Vista (TM) Home Premium, 64-bit Service Pack 2 (Build 6002) ---\\ Logiciels de protection du système Malwarebytes Anti-Malware version 2.0.4.1028 Microsoft Security Client v4.7.0205.0 Spybot - Search & Destroy v1.6.2 ---\\ Logiciels d'optimisation du système CCleaner v5.02 ---\\ Logiciels de partage PeerToPeer eMule µTorrent v3.3.0.29625 =>P2P.µTorrent ---\\ Surveillance de Logiciels Adobe Flash Player 17 NPAPI Adobe Reader 9.5.5 - Français ---\\ Informations sur le système ~ Processor: Intel64 Family 6 Model 26 Stepping 4, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 6134 MB (37% free) System Restore: Activé (Enable) System drive C: has 28 GB (6%) free of 458 GB ---\\ Mode de connexion au système ~ Computer Name: PC-DE-BETTO ~ User Name: betto ~ All Users Names: UpdatusUser, betto, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\betto\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\betto\AppData\Roaming\ ~ %Desktop% : C:\Users\betto\Desktop\ ~ %Favorites% : C:\Users\betto\Favorites\ ~ %LocalAppData% : C:\Users\betto\AppData\Local\ ~ %StartMenu% : C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 28 Go of 458 Go) D: Hard drive, Flash drive, Thumb drive (Free 47 Go of 458 Go) E: CD-ROM drive (Not Inserted) F: Floppy drive, Flash card reader, USB Key (Not Inserted) G: Floppy drive, Flash card reader, USB Key (Not Inserted) H: Floppy drive, Flash card reader, USB Key (Not Inserted) I: Floppy drive, Flash card reader, USB Key (Not Inserted) J: CD-ROM drive (Not Inserted) K: CD-ROM drive (Not Inserted) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date ~ Security Center: 47 Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.6B08E54A451B3F95E4109DBA7E594270] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 08:10:17.) -- C:\Windows\Explorer.exe [3079168] [MD5.117EA87DF785CA1B9D821F6F213DCE07] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:50:23.) -- C:\Windows\System32\Wininit.exe [123904] [MD5.E36CFB14E6C425C492630AD5392E031D] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/01/2015 - 03:49:35.) -- C:\Windows\System32\wininet.dll [1392128] [MD5.6D0773A3A65D28B663F334C90441D01A] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 08:11:08.) -- C:\Windows\System32\Winlogon.exe [405504] [MD5.E58A17E945593544C707423F9772EEA0] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 08:10:50.) -- C:\Windows\system32\Drivers\AFD.sys [404992] [MD5.E68D9B3A3905619732F7FE039466A623] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 08:15:00.) -- C:\Windows\system32\Drivers\atapi.sys [20952] [MD5.B4D787DB8D30793A4D4DF9FEED18F136] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:50:39.) -- C:\Windows\system32\Drivers\Cdfs.sys [90624] [MD5.C025AA69BE3D0D25C7A2E746EF6F94FC] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 06:34:39.) -- C:\Windows\system32\Drivers\Cdrom.sys [79872] [MD5.8B722BA35205C71E7951CDC4CDBADE19] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 16:14:19.) -- C:\Windows\system32\Drivers\DfsC.sys [97792] [MD5.F942C5820205F2FB453243EDFEC82A3D] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 06:39:41.) -- C:\Windows\system32\Drivers\HDAudBus.sys [948736] [MD5.CBB597659A2713CE0C9CC20C88C7591F] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:47:27.) -- C:\Windows\system32\Drivers\i8042prt.sys [64000] [MD5.B7E6212F581EA5F6AB0C3A6CEEEB89BE] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:48:45.) -- C:\Windows\system32\Drivers\IpNat.sys [115712] [MD5.1485811B320FF8C7EDAD1CAEBB1C6C2B] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:39:34.) -- C:\Windows\system32\Drivers\MRxSmb.sys [135680] [MD5.FC2C792EBDDC8E28DF939D6A92C83D61] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 06:42:33.) -- C:\Windows\system32\Drivers\netBT.sys [248320] [MD5.2ACCAA3C3C55370A32F17B3595E1A217] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.03/03/2013 - 20:13:14.) -- C:\Windows\system32\Drivers\ntfs.sys [1513320] [MD5.AECD57F94C887F58919F307C35498EA0] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 10:37:57.) -- C:\Windows\system32\Drivers\Parport.sys [96768] [MD5.AC7BC4D42A7E558718DFDEC599BBFC2C] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.11/04/2009 - 06:43:38.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928] [MD5.C045D1FB111C28DF0D1BE8D4BDA22C06] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:46:51.) -- C:\Windows\system32\Drivers\rdpdr.sys [314368] [MD5.290B6F6A0EC4FCDFC90F5CB6D7020473] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 06:42:19.) -- C:\Windows\system32\Drivers\smb.sys [88064] [MD5.458919C8C42E398DC4802178D5FFEE27] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 06:43:00.) -- C:\Windows\system32\Drivers\tdx.sys [94720] [MD5.582F710097B46140F5A89A19A6573D4B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/08/2012 - 12:50:57.) -- C:\Windows\system32\Drivers\volsnap.sys [267648] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/53 ~ Mes musiques (My Musics) : 3/8 ~ Mes Videos (My Videos) : 1/963 ~ Mes Favoris (My Favorites) : 1/22 ~ Mes Documents (My Documents) : 1/3171 ~ Mon Bureau (My Desktop) : 5/3837 ~ Menu demarrer (Programs) : 1/154 ~ Hidden Files: Scanned in 00mn 01s ---\\ Processus lancés [MD5.1E74C3EF30DB23A730751E0068E76ED4] - (.Winstep Software Technologies - NeXuS.) -- C:\Program Files (x86)\Winstep\Nexus.exe [16957056] [PID.2888] [MD5.14D6542607ACD4B2D1DDB1A36E0D8813] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744] [PID.3032] [MD5.1891EEF1A57520E272AF39A56C9C6CB5] - (.Egis inc. - MSN Hook Loader (32 bit).) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSMSNLoader32.exe [454704] [PID.5692] [MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\SysWOW64\conime.exe [69120] [PID.5784] [MD5.E74EBC53E5F501F6CB8899C1E952AF7D] - (...) -- C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\3\plugin.exe [477968] [PID.4904] [MD5.BB69268B5F4277A1CFC36A237E27FD87] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [376944] [PID.3724] [MD5.831F8FAE0BFFCF8BA05082E5C5DB8CB3] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [267888] [PID.5140] [MD5.66F6B3894132CC3D347CB85FBAE48D57] - (.Adobe Systems, Inc. - Adobe Flash Player 17.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe [1892528] [PID.600] [MD5.3446EFE5B35A7478CA26932084F2E1C6] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8197120] [PID.7584] [MD5.4B555106290BD117334E9A08761C035A] - (...) -- ysWOW64\rundll32.exe [0] [PID.2456] [MD5.83BB030C71C9727DCFB2737005772C4E] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe [232264] [PID.1872] [MD5.517D30057C726C797764BFD70A55D82A] - (.CyberLink - CLMSServer.) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [269448] [PID.2180] [MD5.62FF2C857C27683FEE84DDC368DFAD8F] - (.DC Corporation - Pas de description.) -- C:\Program Files (x86)\IGS\DCL.exe [2308280] [PID.2320] [MD5.B1F2503E23425B386DF0F3413B2596F3] - (.Egis Incorporated - Acer eDataSecurity Management Service.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [500784] [PID.2640] [MD5.D1AFCCBC2BC504F9F0C70B058EBE344B] - (.Infonaut - Infonaut Client Service.) -- C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe [278600] [PID.3532] =>PUP.Infonaut [MD5.6E5DAC168D1FF9843E84A59D51D31107] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [61440] [PID.3552] [MD5.7D2633295EB6FF2B938185874884059D] - (.Nero AG - Nero BackItUp.) -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [935208] [PID.3672] [MD5.58751F9248D50BCE1053976C9E2F0859] - (.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144632] [PID.3760] [MD5.005E474630A7AA05A617C574B702FEED] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2155296] [PID.3876] [MD5.1A3D38CF98DE73A61A489DE21D8FA115] - (...) -- C:\Users\betto\AppData\Roaming\VOPackage\VOsrv.exe [142848] [PID.3044] =>Adware.Downware [MD5.3120A421ED14B0186675E295219D441C] - (.PacketVideo - TwonkyMedia Server watchdog.) -- C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe [501336] [PID.4100] [MD5.A4A2C025A8A2DFEACA3DFEA3A3AB6CC1] - (...) -- C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugincontainer.exe [641296] [PID.4168] [MD5.2748912E0E656AE1FB74C4BFDF7BC470] - (...) -- C:\Program Files (x86)\Serveur Media\TwonkyMediaServer.exe [1451608] [PID.4244] [MD5.6CE2C1334A7E0423F4F14B69020940E3] - (.Weather Protector LLC - SW Updater Service.) -- C:\Program Files (x86)\StormWatch\SWUpdaterSvc.exe [17584] [PID.4680] =>PUP.StormWatch [MD5.E37995D742607DAB8FAFA6ADC17FD568] - (...) -- C:\Program Files (x86)\Common Files\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\updater.exe [561424] [PID.4048] [MD5.91CEA4780943F57113594E02AC1A6837] - (...) -- C:\Program Files (x86)\WaNetworkEnhance\WaNetworkEnhance Internet Enhancer\InternetEnhancerService.exe [686592] [PID.1556] [MD5.87F79BBE778B586F0FE74C8216E40502] - (.Winstep Software Technologies - Winstep Xtreme Helper Service.) -- C:\Program Files (x86)\Winstep\WsxService.exe [377344] [PID.4300] [MD5.E7C2C8E09808B821B5D946F42C5BB946] - (...) -- C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\2\plugin.exe [1227024] [PID.4904] [MD5.9AC21D138B437C09A68BF5704527B9C8] - (...) -- C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\4\plugin.exe [421648] [PID.4904] [MD5.103CC05A1621B568B867CEE922E4DC55] - (...) -- C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugins\5\plugin.exe [565520] [PID.4904] [MD5.64BBB1E6808D21C3DFC334FF665D97C5] - (...) -- C:\Program Files (x86)\WaNetworkEnhance\WaNetworkEnhance Internet Enhancer\InternetEnhancer.exe [275968] [PID.3688] [MD5.F5AEA5C2D683A3B5C92E1911886E9AC9] - (...) -- C:\Program Files (x86)\StormWatch\StormWatchSrv.exe [586264] [PID.4596] =>PUP.StormWatch ~ Processes Running: Scanned in 00mn 00s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Preferences ---\\ Liste des dossiers d'extension Google Chrome G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd [__MSG_appName__] G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [__MSG_appName__] G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdkjifoifglkpcdffkenpinlbjgephlo [__MSG_name__] G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [AdBlock] G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [Chrome Hotword Shared Module] G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmkbjdibokaljcdpfagdcplpifjldken [Chrome Hotword Shared Module] G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [__MSG_APP_NAME__] G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk [__MSG_themeName__] G2 - EXT: C:\Users\betto\AppData\Local\Google\Chrome\User Data\Default\Extensions\papbadoldddalgcjcicnikcfenodpghp [Cinema PlusV14.04] =>PUP.CrossRider ~ Google Lines Browser: 18 Scanned in 00mn 06s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\9zgyi6yv.default\prefs.js M3 - MFPP: Plugins - [betto] -- C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\9zgyi6yv.default\searchplugins\luckysearches.xml =>Hijacker.LuckySearches M3 - MFPP: Plugins - [betto] -- C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\9zgyi6yv.default\searchplugins\sweet-page.xml =>PUP.SweetPage M3 - MFPP: Plugins - [betto] -- C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\9zgyi6yv.default\searchplugins\trovi.xml M2 - MFEP: RegExtension {58102098-601E-13CE-331B-C1AEDE02FD33} . (...) -- C:\Program Files (x86)\version36BlockAndSurf\192.xpi =>PUP.BlockAndSurf M0 - MFSP: prefs.js [betto - 9zgyi6yv.default] http://www.google.fr M2 - MFEP: prefs.js [betto - 9zgyi6yv.default\fr-dicollecte@dictionaries.addons.mozilla.org] [] Dictionnaires français v5.3 (..) M2 - MFEP: prefs.js [betto - 9zgyi6yv.default\istart_ffnt@gmail.com] [] Istart v5.3 (..) =>PUP.Istart M2 - MFEP: prefs.js [betto - 9zgyi6yv.default\quick_searchff@gmail.com] [] QuickSearch v5.3 (..) M2 - MFEP: prefs.js [betto - 9zgyi6yv.default\searchengine@gmail.com] [] Search Enginer v1.0.0.1028 (..) =>PUP.SearchEngine M2 - MFEP: Extension [betto - 9zgyi6yv.default] {a6472983-82c2-48e2-af83-11b7750b32b5}.xpi M2 - MFEP: Extension [betto - 9zgyi6yv.default] {b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi M2 - MFEP: Extension [betto - 9zgyi6yv.default] {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi =>.Adblock Plus Extension Mozilla Firefox P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.5".) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.Zylom - Zylom Plugin.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npzylomgamesplayer.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.7] - (.VideoLAN - VLC media player Web Plugin 2.0.6.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN P2 - FPN: [HKLM] [adobe.com/AdobeAAMDetect] - (.Adobe Systems - A plugin to detect whether the Adobe Application Manager is installed.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 4.3.5f1.) -- C:\Users\betto\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll ~ Firefox Browser: 22 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.luckysearches.com =>Hijacker.LuckySearches R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.luckysearches.com =>Hijacker.LuckySearches R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.luckysearches.com =>Hijacker.LuckySearches R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.luckysearches.com =>Hijacker.LuckySearches R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.luckysearches.com =>Hijacker.LuckySearches R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.luckysearches.com =>Hijacker.LuckySearches R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.luckysearches.com =>Hijacker.LuckySearches R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.luckysearches.com =>Hijacker.LuckySearches R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.luckysearches.com =>Hijacker.LuckySearches R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.luckysearches.com =>Hijacker.LuckySearches R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk ~ IE Browser: 19 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback> =>Hijacker.Proxy R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:54105;https=127.0.0.1:54105 =>Hijacker.Proxy R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) O1 - Hosts: 95.211.18.55 gks.gs O1 - Hosts: 95.211.18.55 tk.gks.gs ~ Nombre lignes détournées 2/14514 (Hosts file redirected) ~ Hosts File: Scanned in 00mn 06s ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: ShowBarObj Class [64Bits] - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} . (.Egis - ActiveToolBand Module.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\ActiveToolBand.dll O2 - BHO: BlockAndSurf [64Bits] - {8E65ED4A-DA5A-3D2F-EA44-34A830EADAAB} . (...) -- C:\Program Files (x86)\version36BlockAndSurf\192_x64.dll =>PUP.BlockAndSurf O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll ~ BHO: 6 Scanned in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Acer eDataSecurity Management - [HKLM]{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} . (.Egis Incorporated. - Acer eDataSecurity Management Explorer Tool.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDStoolbar.dll O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline ~ Toolbar: Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\QuickLaunch [betto]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\betto\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent ~ Global Startup: 1 Scanned in 00mn 01s ---\\ Applications lancées au démarrage du système (O4) O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RAVCpl64.exe =>.Realtek Semiconductor Corp O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] . (...) -- C:\Program Files\Acer\Empowering Technology\SysMonitor.exe O4 - HKLM\..\Run: [EmpoweringTechnology] . (.Pas de propriétaire - Acer Empowering Technology Framework Launch.) -- C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe O4 - HKLM\..\Run: [eDataSecurity Loader] . (.Egis Incorporated - Acer eDataSecurity Management Loader.) -- C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\eDSloader.exe O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe O4 - HKCU\..\Run: [AdobeBridge] Clé orpheline O4 - HKCU\..\Run: [NeXuS] . (.Winstep Software Technologies - NeXuS.) -- C:\Program Files (x86)\Winstep\Nexus.exe O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent O4 - HKLM\..\Wow6432Node\Run: [eRecoveryService] Clé orpheline O4 - HKLM\..\Wow6432Node\Run: [NPSStartup] Clé orpheline O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKUS\S-1-5-21-1403743995-4018011135-4141274091-1000\..\Run: [AdobeBridge] Clé orpheline O4 - HKUS\S-1-5-21-1403743995-4018011135-4141274091-1000\..\Run: [NeXuS] . (.Winstep Software Technologies - NeXuS.) -- C:\Program Files (x86)\Winstep\Nexus.exe O4 - HKUS\S-1-5-21-1403743995-4018011135-4141274091-1000\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent ~ Application: Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll ~ Winsock: 7 Scanned in 00mn 00s ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKCU\...\Domains] http.mappy.com ~ IE Zone Confiance: Scanned in 00mn 01s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{59810A84-C4D9-4CA5-AA84-6705F2B0ED3C}: NameServer = 8.8.4.4,8.8.8.8,192.168.1.1 =>.Google DNS Redirections O17 - HKLM\System\CS1\Services\Tcpip\..\{59810A84-C4D9-4CA5-AA84-6705F2B0ED3C}: NameServer = 8.8.4.4,8.8.8.8,192.168.1.1 =>.Google DNS Redirections O17 - HKLM\System\CS3\Services\Tcpip\..\{59810A84-C4D9-4CA5-AA84-6705F2B0ED3C}: NameServer = 8.8.4.4,8.8.8.8,192.168.1.1 =>.Google DNS Redirections ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (...) -- O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll ~ SSODL: 1 Scanned in 00mn 00s ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: Component Categories cache daemon [64Bits] - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll ~ STS/SSO: Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: OptimizerPro Monitoring (5d9df4c6) . (...) - c:\Program Files (x86)\Optimizer Pro 3.79\OptProMon.dll =>PUP.OptimizerPro O23 - Service: Acer HomeMedia Connect Service (Acer HomeMedia Connect Service) . (.CyberLink - CLMSServer.) - C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: DCL (DCL) . (.DC Corporation - Pas de description.) - C:\Program Files (x86)\IGS\DCL.exe O23 - Service: eDataSecurity Service (eDataSecurity Service) . (.Egis Incorporated - Acer eDataSecurity Management Service.) - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe O23 - Service: Empowering Technology Service (ETService) . (.Pas de propriétaire - Acer Empowering Technology Framework Servic.) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe =>PUP.GlobalUpdate O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc O23 - Service: IHProtect Service (IHProtect Service) . (...) - C:\Program Files (x86)\XTab\ProtectService.exe =>Adware.AgentODR O23 - Service: Infonaut 1.10.0.14 Client Service (insvc_1.10.0.14) . (.Infonaut - Infonaut Client Service.) - C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe =>PUP.Infonaut O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) . (.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 337.8.) - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: Online Games Manager (ogmservice) . (.RealNetworks, Inc. - Online Games Manager.) - C:\Program Files (x86)\Online Games Manager\ogmservice.exe O23 - Service: Orange update Core Service (Orange update Core Service) . (.Orange SA - Orange Upd@te.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe O23 - Service: Uniform Resource Locator Burn (pylymezy) . (...) - C:\Users\betto\AppData\Roaming\VOPackage\VOsrv.exe =>Adware.Downware O23 - Service: Registry Helper Service (Registry Helper Service) . (.SafeApp Software, LLC - Registry Helper Service.) - C:\Program Files (x86)\Registry Helper\RegistryHelperService.exe =>PUP.RegistryHelper O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe O23 - Service: Serveur Média (Serveur Média) . (.PacketVideo - TwonkyMedia Server watchdog.) - C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe O23 - Service: Service Mgr DigitalMore (Service Mgr DigitalMore) . (...) - C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugincontainer.exe =>PUP.DigitalMore O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: StormWatch Update Service (StormWatch Update Service) . (...) - C:\Program Files (x86)\StormWatch\StormWatchSrv.exe =>PUP.StormWatch O23 - Service: SWUpdaterSvc (SWUpdater) . (.Weather Protector LLC - SW Updater Service.) - C:\Program Files (x86)\StormWatch\SWUpdaterSvc.exe =>PUP.StormWatch O23 - Service: Update Mgr DigitalMore (Update Mgr DigitalMore) . (...) - C:\Program Files (x86)\Common Files\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\updater.exe =>PUP.DigitalMore O23 - Service: WaNetworkEnhance Service (WaNetworkEnhance Service) . (...) - C:\Program Files (x86)\WaNetworkEnhance\WaNetworkEnhance Internet Enhancer\InternetEnhancerService.exe O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) . (...) - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe =>PUP.Fuyu ~ Services: 30 Scanned in 00mn 03s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Enumère les données de BootExecute (BEX) (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found ~ BEX: 1 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) [MD5.00000000000000000000000000000000] [APT] [678a7185-5455-440b-b575-a67817b3d169-1-6] (...) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-1-6.exe (.not file.) [0] =>PUP.CrossRider [MD5.5577053C0F9A06BFE742DEC28AF00F08] [APT] [678a7185-5455-440b-b575-a67817b3d169-1-7] (.Cinema PlusV14.04.) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-1-7.exe [1067520] =>PUP.CrossRider [MD5.00000000000000000000000000000000] [APT] [678a7185-5455-440b-b575-a67817b3d169-10_user] (...) -- C:\Program Files (x86)\Cinema PlusV14.04-ntf\678a7185-5455-440b-b575-a67817b3d169-10.exe (.not file.) [0] =>PUP.CrossRider [MD5.994627FB684635C1B2830016748846A7] [APT] [678a7185-5455-440b-b575-a67817b3d169-3] (.Cinema PlusV14.04.) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-3.exe [1858048] =>PUP.CrossRider [MD5.6F4ECDBEB3D751DB1D45FE1A2F208213] [APT] [678a7185-5455-440b-b575-a67817b3d169-4] (.Cinema PlusV14.04.) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-4.exe [1465856] =>PUP.CrossRider [MD5.9ADC1DD50A0936F457118B50D02F0D9A] [APT] [678a7185-5455-440b-b575-a67817b3d169-5] (.Cinema PlusV14.04.) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-5.exe [1005056] =>PUP.CrossRider [MD5.9ADC1DD50A0936F457118B50D02F0D9A] [APT] [678a7185-5455-440b-b575-a67817b3d169-5_user] (.Cinema PlusV14.04.) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-5.exe [1005056] =>PUP.CrossRider [MD5.00000000000000000000000000000000] [APT] [678a7185-5455-440b-b575-a67817b3d169-6] (...) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-6.exe (.not file.) [0] =>PUP.CrossRider [MD5.5577053C0F9A06BFE742DEC28AF00F08] [APT] [678a7185-5455-440b-b575-a67817b3d169-7] (.Cinema PlusV14.04.) -- C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-7.exe [1067520] =>PUP.CrossRider [MD5.994627FB684635C1B2830016748846A7] [APT] [ACXWGNVQ] (.Cinema PlusV14.04.) -- C:\Users\betto\AppData\Roaming\ACXWGNVQ.exe [1858048] =>PUP.CrossRider [MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (...) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.) [0] [MD5.B04A4810C6CC205F9DC72DC22E4AB236] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268464] [MD5.320681DF28D82CDCA7E3EED0846625DB] [APT] [AdobeAAMUpdater-1.0-PC-de-betto-betto] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904] [MD5.C0A523DA22721DBA1C53564404AF05F4] [APT] [Advanced~System Protector_startup] (...) -- C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe [6969128] =>PUP.AdvancedSystemProtector [MD5.2691439FAC40F46C937BB684A3AE2E0F] [APT] [APSnotifierPP1] (.AnyProtect.com.) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [6434816] =>PUP.AnyProtect [MD5.2691439FAC40F46C937BB684A3AE2E0F] [APT] [APSnotifierPP2] (.AnyProtect.com.) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [6434816] =>PUP.AnyProtect [MD5.2691439FAC40F46C937BB684A3AE2E0F] [APT] [APSnotifierPP3] (.AnyProtect.com.) -- C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [6434816] =>PUP.AnyProtect [MD5.00000000000000000000000000000000] [APT] [BlockAndSurf Update] (...) -- C:\Program Files (x86)\version36BlockAndSurf\J4BlockAndSurfJ52.exe (.not file.) [0] =>PUP.BlockAndSurf [MD5.9A1F3AEA8D61AA67D90F1B336C00984E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files (x86)\CCleaner\CCleaner.exe [5496600] [MD5.D858BA2EE718B1DB1CED20646E641D08] [APT] [globalUpdateUpdateTaskMachineCore] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608] =>PUP.GlobalUpdate [MD5.D858BA2EE718B1DB1CED20646E641D08] [APT] [globalUpdateUpdateTaskMachineUA] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608] =>PUP.GlobalUpdate [MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] [MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] [MD5.7743B4251557F16B81DE99001F97A0F7] [APT] [HP Photo Creations Communicator] (...) -- C:\ProgramData\HP Photo Creations\MessageCheck.exe [166056] [MD5.910DEA01032502D067FCF1B5571EC406] [APT] [Optimizer Pro Schedule] (...) -- C:\Program Files (x86)\Optimizer Pro 3.79\OptProLauncher.exe [148008] =>PUP.OptimizerPro [MD5.00000000000000000000000000000000] [APT] [PYSAL] (...) -- C:\Users\betto\AppData\Roaming\PYSAL.exe (.not file.) [0] [MD5.E547B124E91CFB267603B16804C6932F] [APT] [RegClean Pro] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8732952] =>Rogue.RegistryPowerCleaner [MD5.E547B124E91CFB267603B16804C6932F] [APT] [RegClean Pro_DEFAULT] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8732952] =>Rogue.RegistryPowerCleaner [MD5.E547B124E91CFB267603B16804C6932F] [APT] [RegClean Pro_UPDATES] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8732952] =>Rogue.RegistryPowerCleaner [MD5.CCA7F0B3ABD4E3B854B2D45FC021453B] [APT] [SmartWeb Upgrade Trigger Task] (...) -- C:\Users\betto\AppData\Local\SmartWeb\SmartWebHelper.exe [270368] =>PUP.SmartWeb [MD5.00000000000000000000000000000000] [APT] [{09E9D9F9-26E1-49C9-B7E9-7A36ABD2CFA4}] (...) -- C:\Users\betto\Desktop\epson31778eu.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{49784D1F-0912-4ADB-9BAE-766457ACA2BD}] (...) -- C:\Users\betto\AppData\Roaming\sweet-page\UninstallManager.exe (.not file.) [0] =>PUP.SweetPage [MD5.00000000000000000000000000000000] [APT] [{4DF134D2-8A6A-4FDD-B940-8E66ACCEF0D7}] (...) -- C:\Users\betto\Desktop\RECEPTION\gods.vs.humans.v1.0.multi5.full-THETA\Gods vs. Humans.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{593737DF-7CC6-4FC4-8084-3E1352C057C3}] (...) -- J:\SETUP.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{5DD120E5-A5FD-4EC0-9814-623844B40E1A}] (...) -- J:\steambackup.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{5E1B4089-45F7-43EC-8C91-C69CEE0EA050}] (...) -- C:\Users\betto\Desktop\RECEPTION\Doc.Clock.The.Toasted.Sandwich.of.Time.v1.0.Cracked-F4CG(3)\Doc.Clock.The.Toasted.Sandwich.of.Time.v1.0.Cracked-F4CG\setup-doc-clock.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{61A85E9D-1696-4B2E-B20E-A6A010F2209D}] (...) -- C:\Users\betto\Desktop\RECEPTION\Monster_Trucks_Nitro_v1.31\Monster Trucks Nitro v1.31\Monster Trucks Nitro.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{931FCEBD-2510-47F1-9DFB-9983AE043893}] (...) -- C:\Program Files (x86)\Delta\delta\1.8.10.0\GUninstaller.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{B8C16591-EE68-49D6-B302-B1D7233B4F9D}] (...) -- J:\SETUP.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{BDBE9441-3001-435B-8C78-0C29896164DE}] (...) -- C:\Users\betto\Desktop\RECEPTION\Gish.v1.6.full-THETA\Gish.v1.6.full-THETA\Gish.v1.6.full-THETA\Gish.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{BEF9BB51-86D9-4DFC-81BA-AD2DAD58D286}] (...) -- C:\Users\betto\Desktop\RECEPTION\Windosill.v1.0.cracked-THETA\Windosill v1.0 (by Vectorpark)\Windosill.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{C4539F02-9E08-4E70-9955-BA68F76B7792}] (...) -- C:\Users\betto\Desktop\RECEPTION\The.Ball.v1.0.multi9.cracked-THETA_Epidemz.net_Wargos.net\The.Ball.v1.0.multi9.cracked-THETA_Epidemz.net_Wargos.net\The Ball.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{DB4F4308-14AD-4F30-9C46-6F108329B056}] (...) -- C:\Users\betto\Desktop\JEUX EN ATTENTE\bobsj by darko\setup.exe (.not file.) [0] O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-1-6 - (...) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-1-6.job [3130] O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-1-6 - (...) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-1-6 [3130] O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-1-7 - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-1-7.job [3466] =>PUP.CrossRider O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-1-7 - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-1-7 [3466] =>PUP.CrossRider O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-10_user - (...) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-10_user.job [2112] O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-10_user - (...) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-10_user [2112] O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-3 - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-3.job [4486] =>PUP.CrossRider O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-3 - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-3 [4486] =>PUP.CrossRider O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-4 - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-4.job [4486] =>PUP.CrossRider O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-4 - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-4 [4486] =>PUP.CrossRider O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-5 - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-5.job [2438] =>PUP.CrossRider O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-5 - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-5 [2438] =>PUP.CrossRider O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-5_user - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-5_user.job [2438] =>PUP.CrossRider O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-5_user - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-5_user [2438] =>PUP.CrossRider O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-6 - (...) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-6.job [5510] =>PUP.CrossRider O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-6 - (...) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-6 [5510] =>PUP.CrossRider O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-7 - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-7.job [5510] =>PUP.CrossRider O39 - APT: 678a7185-5455-440b-b575-a67817b3d169-7 - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-7 [5510] =>PUP.CrossRider O39 - APT: ACXWGNVQ - (.Cinema PlusV14.04.) -- C:\Windows\Tasks\ACXWGNVQ.job [1686] =>PUP.CrossRider O39 - APT: ACXWGNVQ - (.Cinema PlusV14.04.) -- C:\Windows\System32\Tasks\ACXWGNVQ [1686] =>PUP.CrossRider O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002] O39 - APT: APSnotifierPP1 - (.AnyProtect.com.) -- C:\Windows\Tasks\APSnotifierPP1.job [378] =>PUP.AnyProtect O39 - APT: APSnotifierPP1 - (.AnyProtect.com.) -- C:\Windows\System32\Tasks\APSnotifierPP1 [378] =>PUP.AnyProtect O39 - APT: APSnotifierPP2 - (.AnyProtect.com.) -- C:\Windows\Tasks\APSnotifierPP2.job [376] =>PUP.AnyProtect O39 - APT: APSnotifierPP2 - (.AnyProtect.com.) -- C:\Windows\System32\Tasks\APSnotifierPP2 [376] =>PUP.AnyProtect O39 - APT: APSnotifierPP3 - (.AnyProtect.com.) -- C:\Windows\Tasks\APSnotifierPP3.job [376] =>PUP.AnyProtect O39 - APT: APSnotifierPP3 - (.AnyProtect.com.) -- C:\Windows\System32\Tasks\APSnotifierPP3 [376] =>PUP.AnyProtect O39 - APT: BlockAndSurf Update - (...) -- C:\Windows\Tasks\BlockAndSurf Update.job [444] =>PUP.BlockAndSurf O39 - APT: BlockAndSurf Update - (...) -- C:\Windows\System32\Tasks\BlockAndSurf Update [444] =>PUP.BlockAndSurf O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job [970] =>PUP.GlobalUpdate O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore [970] =>PUP.GlobalUpdate O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job [974] =>PUP.GlobalUpdate O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA [974] =>PUP.GlobalUpdate O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1064] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1064] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1068] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1068] O39 - APT: HP Photo Creations Communicator - (...) -- C:\Windows\Tasks\HP Photo Creations Communicator.job [324] O39 - APT: HP Photo Creations Communicator - (...) -- C:\Windows\System32\Tasks\HP Photo Creations Communicator [324] O39 - APT: PYSAL - (...) -- C:\Windows\Tasks\PYSAL.job [1336] O39 - APT: PYSAL - (...) -- C:\Windows\System32\Tasks\PYSAL [1336] O39 - APT: RegClean Pro_DEFAULT - (...) -- C:\Windows\Tasks\RegClean Pro_DEFAULT.job [258] =>Rogue.RegistryPowerCleaner O39 - APT: RegClean Pro_DEFAULT - (...) -- C:\Windows\System32\Tasks\RegClean Pro_DEFAULT [258] =>Rogue.RegistryPowerCleaner O39 - APT: RegClean Pro_UPDATES - (...) -- C:\Windows\Tasks\RegClean Pro_UPDATES.job [266] =>Rogue.RegistryPowerCleaner O39 - APT: RegClean Pro_UPDATES - (...) -- C:\Windows\System32\Tasks\RegClean Pro_UPDATES [266] =>Rogue.RegistryPowerCleaner ~ Scheduled Task: 80 Scanned in 00mn 03s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\system32\iedkcs32.dll O40 - ASIC: Microsoft Windows Media Player 11.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows Mail 7 [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll ~ Active Setup: 11 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: (hwinterface) . (. - .) - C:\Windows\System32\Drivers\hwinterface.sys (.not file.) O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys O41 - Driver: (innfd_1_10_0_14) . (.Infonaut - Infonaut Driver x64.) - C:\Windows\System32\drivers\innfd_1_10_0_14.sys =>PUP.Infonaut O41 - Driver: (ISODrive) . (.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys O41 - Driver: (MpKsl029ce939) . (. - .) - C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{493B5A6C-92CD-498D-A8FF-A0F27B3C41A2}\MpKsl029ce939.sys (.not file.) O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Winsock2 IFS Layer.) - C:\Windows\system32\drivers\ws2ifsl.sys ~ Drivers: 78 Scanned in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: 7-Zip 9.20 - (...) [HKLM][64Bits] -- 7-Zip O42 - Logiciel: AGEIA GAME System Software - (.AGEIA Technologies.) [HKLM][64Bits] -- {DEDF2885-0086-4534-9912-F9B97377ED07} O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441} O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5831C6D6-309D-DBB5-14F7-FEE57086CEE7} O42 - Logiciel: Acer Arcade Live Main Page - (.Acer Inc..) [HKLM][64Bits] -- {EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37} O42 - Logiciel: Acer DV Magician - (.Acer Inc..) [HKLM][64Bits] -- {F6EFFB76-4A07-11DA-9D78-000129760D75} O42 - Logiciel: Acer DVDivine - (.Acer Inc..) [HKLM][64Bits] -- {B145EC69-66F5-11D8-9D75-000129760D75} O42 - Logiciel: Acer Empowering Technology - (.Acer Incorporated.) [HKLM][64Bits] -- {8F1B6239-FEA0-450A-A950-B05276CE177C} O42 - Logiciel: Acer HomeMedia - (.Acer Inc..) [HKLM][64Bits] -- {AA4BF92B-2AAF-11DA-9D78-000129760D75} O42 - Logiciel: Acer HomeMedia Connect - (.Acer Inc..) [HKLM][64Bits] -- {132888AE-EF67-41C5-BCA2-7D5D2488AB63} O42 - Logiciel: Acer HomeMedia Trial Creator - (.Acer Inc..) [HKLM][64Bits] -- {B580C409-E16F-44FF-904D-3AE94E113BE0} O42 - Logiciel: Acer Product Registration - (.Acer Incorporated.) [HKLM][64Bits] -- {DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E} O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.) [HKLM][64Bits] -- {79DD56FC-DB8B-47F5-9C80-78B62E05F9BC} O42 - Logiciel: Acer SlideShow DVD - (.Acer Inc..) [HKLM][64Bits] -- {41581EF5-45A7-11DA-9D78-000129760D75} O42 - Logiciel: Acer VideoMagician - (.Acer Inc..) [HKLM][64Bits] -- {F79A208D-D929-11D9-9D77-000129760D75} O42 - Logiciel: Acer eDataSecurity Management - (.Egis Inc..) [HKLM][64Bits] -- {A5633652-3795-4829-BB0B-644F0279E279} O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9} O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {7BBAEC47-1CC0-4CB8-ADB4-531B78DBD1DD} O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {A127C3C0-055E-38CF-B38F-1E85F8BBBFFE} O42 - Logiciel: Adobe Flash Player 17 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 17 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {15FEDA5F-141C-4127-8D7E-B962D1742728} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Reader 9.5.5 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A95000000001} O42 - Logiciel: Advanced-System Protector - (.systweak.com.) [HKLM][64Bits] -- 00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~34F3174E_is1 =>PUP.AdvancedSystemProtector O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D} O42 - Logiciel: Alice Greenfingers - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767} O42 - Logiciel: Alien Shooter - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110082360} O42 - Logiciel: Angry Birds - (.Rovio.) [HKLM][64Bits] -- {07A6B206-3F11-4D92-92A1-90E116ADD660} O42 - Logiciel: Angry Birds - (.Rovio.) [HKLM][64Bits] -- {61637194-D4E8-45CB-8619-23CE7B637FCF} O42 - Logiciel: Angry Birds Rio - (.Rovio.) [HKLM][64Bits] -- {0D637670-BC00-4FAC-8E00-518EB7F65091} O42 - Logiciel: Angry Birds Seasons - (.Rovio.) [HKLM][64Bits] -- {F3FDA09C-57AA-40CC-A555-FED7EF421E7E} O42 - Logiciel: Angry Birds Space - (.Rovio.) [HKLM][64Bits] -- {40044440-4ED4-4792-8417-5EE6374F001C} O42 - Logiciel: AnyProtect - (.CMI Limited.) [HKLM][64Bits] -- AnyProtect =>PUP.CMILimited O42 - Logiciel: Audacity 1.3.14 (Unicode) - (.Audacity Team.) [HKLM][64Bits] -- Audacity 1.3 Beta (Unicode)_is1 O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net O42 - Logiciel: Beetle Junior - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110052107} O42 - Logiciel: BlockAndSurf - (.BlockAndSurf-software.) [HKLM][64Bits] -- D61CFC10-9823-110E-ED54-998575A4400D =>PUP.BlockAndSurf O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} O42 - Logiciel: Burnout(TM) Paradise The Ultimate Box - (.Electronic Arts.) [HKLM][64Bits] -- {9A996B6A-846E-4A89-B9C4-17546B7BE49F} O42 - Logiciel: Buzzdock - (.Alactro LLC.) [HKLM][64Bits] -- {cfd32d46-7d3f-483f-bace-7172aec5592d} =>PUP.BuzzDock O42 - Logiciel: C:\Program Files (x86)\Acer GameZone\GameConsole - (.Oberon Media, Inc..) [HKLM][64Bits] -- {71C2828F-2678-4675-BDEC-895424861262}_is1 O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner O42 - Logiciel: CMN - (...) [HKLM][64Bits] -- {F8C8FC80-E542-11D3-8F7F-009027591AA8} O42 - Logiciel: Canon IJ Network Scanner Selector EX - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Network_Scanner_Selector_EX O42 - Logiciel: Canon IJ Network Tool - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Network_UTILITY O42 - Logiciel: Canon IJ Scan Utility - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Scan_Utility O42 - Logiciel: Canon MG5600 series MP Drivers - (.Canon Inc..) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5600_series O42 - Logiciel: Canon My Image Garden - (.Canon Inc..) [HKLM][64Bits] -- Canon My Image Garden O42 - Logiciel: Canon My Image Garden Design Files - (.Canon Inc..) [HKLM][64Bits] -- Canon My Image Garden Design Files O42 - Logiciel: Canon Quick Menu - (.Canon Inc..) [HKLM][64Bits] -- CanonQuickMenu O42 - Logiciel: Caprice32 - (...) [HKLM][64Bits] -- Caprice32 O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {03D4C700-2BFE-43E0-A0B4-9512B43C5B9F} O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {BBC2068D-CE9C-48F5-A6EA-4B44B9DB14A5} O42 - Logiciel: Chinese Traditional Fonts Support For Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-2448-0000-900000000003} O42 - Logiciel: Cinema PlusV14.04 - (.Cinema PlusV14.04.) [HKLM][64Bits] -- Cinema PlusV14.04 =>PUP.CrossRider O42 - Logiciel: ConvertHelper 2.2 - (.DownloadHelper.) [HKLM][64Bits] -- {27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1 O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd O42 - Logiciel: DH Driver Cleaner Professional Edition - (.Ruud Ketelaars.) [HKLM][64Bits] -- Driver Cleaner Pro O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM][64Bits] -- DVD Shrink_is1 O42 - Logiciel: Dead Space™ 2 - (.Electronic Arts.) [HKLM][64Bits] -- {96D06FDD-6AF4-4309-BC1B-1C9588B0575E} O42 - Logiciel: DiRT 3 - (.Codemasters.) [HKLM][64Bits] -- GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200} O42 - Logiciel: DiRT 3 - (.Codemasters.) [HKLM][64Bits] -- {434D0FA0-1558-4D8E-AC3D-BD1000008200} O42 - Logiciel: Digital More - (.Digital More.) [HKLM][64Bits] -- Digital More =>PUP.DigitalMore O42 - Logiciel: DolbyFiles - (.Nero AG.) [HKLM][64Bits] -- {B1ADF008-E898-4FE2-8A1F-690D9A06ACAF} O42 - Logiciel: Dongle Sagem 760N - (...) [HKLM][64Bits] -- LIVEBOX_SAGEM_760N O42 - Logiciel: Dream Day First Home - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110} O42 - Logiciel: Enregistrement utilisateur de Canon MG5600 series - (.‭Canon Inc..) [HKLM][64Bits] -- Enregistrement utilisateur de Canon MG5600 series =>.Canon Inc O42 - Logiciel: Explor@ Park - (.VTech.) [HKLM][64Bits] -- VTechDownloadManager O42 - Logiciel: FLAC 1.2.1b (remove only) - (.Xiph.org.) [HKLM][64Bits] -- FLAC O42 - Logiciel: FTPRush v1 Unicode - (.IoRush Software.) [HKLM][64Bits] -- FTPRush_is1 O42 - Logiciel: FileZilla Client 3.3.0.1 - (...) [HKLM][64Bits] -- FileZilla Client O42 - Logiciel: FormatFactory 2.60 - (.Free Time.) [HKLM][64Bits] -- FormatFactory O42 - Logiciel: French App Name - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 O42 - Logiciel: French App Name - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {DE3A9DC5-9A5D-6485-9662-347162C7E4CA} O42 - Logiciel: Galapago - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457} O42 - Logiciel: GamesDesktop 001.424 - (.GAMESDESKTOP.) [HKLM][64Bits] -- gmsd_fr_424_is1 =>PUP.CrossRider O42 - Logiciel: Go-Go Gourmet - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114072167} O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E} O42 - Logiciel: HP Deskjet 3070 B611 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {9F20CE56-3828-432D-A3C5-3EC6A2ED93C6} O42 - Logiciel: HP Photo Creations - (.HP Photo Creations.) [HKLM][64Bits] -- HP Photo Creations O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {DDD5104F-1C44-49EB-9E6B-29EC5D27658B} O42 - Logiciel: Hearthstone - (.Blizzard Entertainment.) [HKLM][64Bits] -- Hearthstone O42 - Logiciel: Heroes of Hellas - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380} O42 - Logiciel: Hotline Miami 2 - Wrong Number - (.GOG.com.) [HKLM][64Bits] -- 1424773427_is1 O42 - Logiciel: Image 2 ASCII Art - (...) [HKLM][64Bits] -- Image 2 ASCII Art O42 - Logiciel: Infonaut 1.10.0.14 - (.Infonaut.) [HKLM][64Bits] -- Infonaut_1.10.0.14 =>PUP.Infonaut O42 - Logiciel: Intel(R) Network Connections 13.1.33.0 - (.Intel.) [HKLM][64Bits] -- PROSetDX O42 - Logiciel: Intel(R) Network Connections 13.1.33.0 - (.Intel.) [HKLM][64Bits] -- {DDD076BF-C5C3-468C-AA1B-F9A7E47446FE} O42 - Logiciel: Java 7 Update 71 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F03217071FF} O42 - Logiciel: Java(TM) 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216020F0} O42 - Logiciel: K-Lite Codec Pack 9.9.5 (Full) - (...) [HKLM][64Bits] -- KLiteCodecPack_is1 O42 - Logiciel: LAME v3.99.3 (for Windows) - (...) [HKLM][64Bits] -- LAME_is1 O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 3070 B611 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {1B62ED3F-1957-4CEA-A344-CA7582ECA8C3} =>.Hewlett-Packard Co O42 - Logiciel: MP3 Cut 5.5.1 - (.Accmeware Corporation.) [HKLM][64Bits] -- 1A455290-CCE1-400A-B40C-BA562A3804F5_is1 O42 - Logiciel: MP3 Cut DB Toolbar Toolbar - (...) [HKLM][64Bits] -- MP3 Cut DB Toolbar Toolbar O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Magic Farm - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114717227} O42 - Logiciel: Magic Marker wersja Magic Marker - (.IQ Publishing.) [HKLM][64Bits] -- {E9098858-9391-4045-BA68-C33D9D962A9E}_is1 O42 - Logiciel: Mail Merge Check - (...) [HKLM][64Bits] -- IGS O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.4.1028 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 O42 - Logiciel: MediaInfo 0.7.20 - (.MediaArea.net.) [HKLM][64Bits] -- MediaInfo O42 - Logiciel: Menu Templates - Starter Kit - (.Nero AG.) [HKLM][64Bits] -- {B78120A0-CF84-4366-A393-4D0A59BC546C} O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {F2508213-9989-4E85-A078-72BE483917EF} O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C} O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {996D32B6-F629-4764-894B-CB24D9C19051} O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Windows Media Video 9 VCM - (...) [HKLM][64Bits] -- WMV9_VCM O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C} O42 - Logiciel: Microsoft XNA Framework Redistributable 3.1 - (.Microsoft Corporation.) [HKLM][64Bits] -- {19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20} O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 Refresh - (.Microsoft Corporation.) [HKLM][64Bits] -- {D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F} O42 - Logiciel: Micy Roll version 0.0.0.9 - (.WaLMaRT.) [HKLM][64Bits] -- Micy Roll_is1 O42 - Logiciel: Minecraft - (.FreeGamePick.) [HKLM][64Bits] -- Minecraft_is1 O42 - Logiciel: Mises à jour NVIDIA 8.3.14 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update O42 - Logiciel: MixPad - Mixeur de fichiers audio - (.NCH Software.) [HKLM][64Bits] -- MixPad O42 - Logiciel: Module linguistique de la visionneuse d'aide Microsoft 1.0 - FRA - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Help Viewer 1.0 Language Pack - FRA O42 - Logiciel: Movie Templates - Starter Kit - (.Nero AG.) [HKLM][64Bits] -- {E498385E-1C51-459A-B45F-1721E37AA1A0} O42 - Logiciel: Mozilla Firefox 37.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 37.0.1 (x86 fr) O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService O42 - Logiciel: Ms. Splosion Man - (...) [HKLM][64Bits] -- Ms. Splosion Man_is1 O42 - Logiciel: Mystery Solitaire - Secret Island - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111796363} O42 - Logiciel: NFO viewer v 2.1 - (...) [HKLM][64Bits] -- NFO viewer_is1 O42 - Logiciel: NTI Backup Now 5 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403} O42 - Logiciel: NTI Media Maker 8 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC} O42 - Logiciel: NVIDIA GeForce Experience 1.6.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience O42 - Logiciel: NVIDIA Logiciel système PhysX 9.13.1220 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {80407BA7-7763-4395-AB98-5233F1B34E65} O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.30.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 337.88 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB O42 - Logiciel: NVIDIA Pilote graphique 337.88 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: NX Client for Windows 3.3.0-6 - (.NoMachine.) [HKLM][64Bits] -- nxclient_is1 O42 - Logiciel: Navigateur Orange - (...) [HKLM][64Bits] -- {ORAHSS}.Browser O42 - Logiciel: Nero 9 - (.Nero AG.) [HKLM][64Bits] -- {8f0197b3-87f4-4dad-8f81-57929becc411} O42 - Logiciel: Nero BurnRights - (.Nero AG.) [HKLM][64Bits] -- {7829DB6F-A066-4E40-8912-CB07887C20BB} O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A} O42 - Logiciel: Nero CoverDesigner - (.Nero AG.) [HKLM][64Bits] -- {62AC81F6-BDD3-4110-9D36-3E9EAAB40999} O42 - Logiciel: Nero Disc Copy Gadget - (.Nero AG.) [HKLM][64Bits] -- {F1861F30-3419-44DB-B2A1-C274825698B3} O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200DB-287A-4DC0-B02B-2B6787FBCD4C} O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33CF58F5-48D8-4575-83D6-96F574E4D83A} O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {FBCDFD61-7DCF-4E71-9226-873BA0053139} O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF} O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM][64Bits] -- {359CFC0A-BEB1-440D-95BA-CF63A86DA34F} O42 - Logiciel: Nero Rescue Agent - (.Nero AG.) [HKLM][64Bits] -- {368BA326-73AD-4351-84ED-3C0A7A52CC53} O42 - Logiciel: Nero ShowTime - (.Nero AG.) [HKLM][64Bits] -- {D9DCF92E-72EB-412D-AC71-3B01276E5F8B} O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2} O42 - Logiciel: Nero Vision - (.Nero AG.) [HKLM][64Bits] -- {43E39830-1826-415D-8BAE-86845787B54B} O42 - Logiciel: Nero WaveEditor - (.Nero AG.) [HKLM][64Bits] -- {A209525B-3377-43F4-B886-32F6B6E7356F} O42 - Logiciel: NeroBurningROM - (.Nero AG.) [HKLM][64Bits] -- {D025A639-B9C9-417D-8531-208859000AF8} O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595A3116-40BB-4E0F-A2E8-D7951DA56270} O42 - Logiciel: Nexus 11.10 - (...) [HKLM][64Bits] -- Winstep Xtreme_is1 O42 - Logiciel: Ongaku - (.SKIDROW.) [HKLM][64Bits] -- {DD673648-FD88-49F7-8CE1-B7A29B9117DB} O42 - Logiciel: Online Games Manager v1.30 - (.Real Networks, Inc..) [HKLM][64Bits] -- Online Games Manager O42 - Logiciel: OpenAL - (...) [HKLM][64Bits] -- OpenAL O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM][64Bits] -- {266517E6-D866-439D-919C-B8B1A52E6080} O42 - Logiciel: Optimizer Pro v3.2 - (.PCUtilities Software Limited.) [HKLM][64Bits] -- Optimizer Pro_is1 =>PUP.OptimizerPro O42 - Logiciel: Orange - Logiciels Internet - (...) [HKLM][64Bits] -- {ORAHSS}.UninstallSuite O42 - Logiciel: Orange Installer - (.Orange.) [HKLM][64Bits] -- Orange Installer O42 - Logiciel: Orange update - (.Orange.) [HKLM][64Bits] -- OrangeUpdateManager O42 - Logiciel: PC Connectivity Solution - (.Nokia.) [HKLM][64Bits] -- {AC599724-5755-48C1-ABE7-ABB857652930} O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392} O42 - Logiciel: PS3 Video 9 2.25 - (.Red Kawa Inc..) [HKLM][64Bits] -- PS3 Video 9 O42 - Logiciel: PX5 Advanced Sound Editor - (.Turtle Beach.) [HKLM][64Bits] -- {92F59AB3-8B11-4552-8F40-462270A8FD5E} O42 - Logiciel: Package de pilotes Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0) - (.Nokia.) [HKLM][64Bits] -- BC15EA930074932BB2C4B4493C9FD4EA95087D1A O42 - Logiciel: Papo & Yo - (.Minority Media.) [HKLM][64Bits] -- Papo & Yo_is1 O42 - Logiciel: Peggle Deluxe - (.Zylom.) [HKLM][64Bits] -- d6638a4b8de48c7a31b7185b7bfcc772 O42 - Logiciel: PhotoFiltre - (...) [HKLM][64Bits] -- PhotoFiltre O42 - Logiciel: ProtectDisc Driver, Version 11 - (.ProtectDisc Software GmbH.) [HKLM][64Bits] -- ProtectDisc Driver 11 O42 - Logiciel: PuTTY version 0.60 - (.Simon Tatham.) [HKLM][64Bits] -- PuTTY_is1 O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc O42 - Logiciel: Push The Box version 1.0 - (...) [HKLM][64Bits] -- {8EA7B810-AF02-446C-B076-D16251E8E93F}_is1 O42 - Logiciel: Rapture3D 2.5.1 Game - (.Blue Ripple Sound.) [HKLM][64Bits] -- {D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1 O42 - Logiciel: Rayman Origins - (.Ubisoft.) [HKLM][64Bits] -- {DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {DC24971E-1946-445D-8A82-CE685433FA7D} O42 - Logiciel: RegClean-Pro - (.systweak.com.) [HKLM][64Bits] -- RegClean-Pro_is1 =>Rogue.RegistryPowerCleaner O42 - Logiciel: Registry Helper - (.SafeApp Software, LLC.) [HKLM][64Bits] -- Registry Helper =>PUP.RegistryHelper O42 - Logiciel: Remote Desktop Access (VuuPC) - (.CMI Limited.) [HKLM][64Bits] -- VOPackage =>PUP.CMILimited O42 - Logiciel: Renegade Ops - (...) [HKLM][64Bits] -- Renegade Ops_is1 O42 - Logiciel: Reverse Chatroom - (.Reverse Chatroom.) [HKLM][64Bits] -- igsc O42 - Logiciel: Ricochet Infinity - (.Reflexive Entertainment, Inc..) [HKLM][64Bits] -- Ricochet Infinity_is1 O42 - Logiciel: Roll Encrypt - (.Roll Encrypt.) [HKLM][64Bits] -- wincheck =>PUP.Wincheck O42 - Logiciel: SAMSUNG Mobile Composite Device Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile Composite Device O42 - Logiciel: SAMSUNG Mobile Modem Driver Set - (...) [HKLM][64Bits] -- SAMSUNG Mobile Modem O42 - Logiciel: SAMSUNG Mobile Modem V2 Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile Modem V2 O42 - Logiciel: SAMSUNG Mobile USB Download Driver Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile USB Download Driver O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile USB Modem 1.0 O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile USB Modem O42 - Logiciel: SAMSUNG SYMBIAN USB Download Driver - (.SAMSUNG Electronics CO,.LTD.) [HKLM][64Bits] -- {D8CE69B0-9274-4b8c-BA49-0FF6A20A3C65} O42 - Logiciel: SAMSUNG USB Mobile Device Software - (...) [HKLM][64Bits] -- SAMSUNG USB Mobile Device O42 - Logiciel: SUPER © v2012.build.51 (April 7, 2012) version v2012.build.51 - (.eRightSoft.) [HKLM][64Bits] -- {B93DCF58-AA57-41EC-8D69-B05C66C6312D}_is1 O42 - Logiciel: SUPER © v2013.build.59+Recorder (2013/12/18) version v2013.buil - (.eRightSoft.) [HKLM][64Bits] -- {8E2A18E2-96AF-4DF9-8459-5C06B75139A4}_is1 O42 - Logiciel: Samsung Mobile Modem Device Software - (...) [HKLM][64Bits] -- Samsung Mobile Modem Device O42 - Logiciel: Samsung Mobile phone USB driver Software - (...) [HKLM][64Bits] -- Samsung Mobile phone USB driver O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A} O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {F193FC0E-9E18-40FC-A974-509A1BDD240A} O42 - Logiciel: Samsung New PC Studio USB Driver Installer - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{AF7E85DC-317C-47F5-810E-B82EE093A612} O42 - Logiciel: Samsung New PC Studio USB Driver Installer - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {AF7E85DC-317C-47F5-810E-B82EE093A612} O42 - Logiciel: SamsungConnectivityCableDriver - (.Samsung.) [HKLM][64Bits] -- {7E84FAC8-C518-40F9-9807-7455301D6D25} O42 - Logiciel: Serveur Média - (.PacketVideo.) [HKLM][64Bits] -- TwonkyMediaServeur Média O42 - Logiciel: Skype™ 6.11 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D} O42 - Logiciel: SlimDX Redistributable (February 2010) - (.SlimDX Group.) [HKLM][64Bits] -- {7748F5D9-4725-44F4-B1E8-3CB9BB843418} O42 - Logiciel: Slip - (...) [HKLM][64Bits] -- U2xpcA==_is1 O42 - Logiciel: SmartCopy - (.Northstar Systems Corp..) [HKLM][64Bits] -- {B7BD291B-D415-4484-89A4-82077504BE93}_is1 O42 - Logiciel: SmartLauncher - (.Northstar Systems Corp..) [HKLM][64Bits] -- {57634571-FD82-4BEC-B822-A1ED7765474F}_is1 O42 - Logiciel: SmartWeb - (.SoftBrain Technologies Ltd..) [HKLM][64Bits] -- SmartWeb =>PUP.SmartWeb O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3} O42 - Logiciel: Stick It To The Man! - (.Ripstone.) [HKLM][64Bits] -- Stick It To The Man!_is1 O42 - Logiciel: StormWatch - (.StormWatch.) [HKLM][64Bits] -- StormWatch =>PUP.StormWatch O42 - Logiciel: UE3Redist - (.Epic Games.) [HKCU][64Bits] -- InstallShield_{6530FDAA-5B1F-4830-95BB-650E9804D239} O42 - Logiciel: UE3Redist - (.Epic Games.) [HKLM][64Bits] -- {6530FDAA-5B1F-4830-95BB-650E9804D239} O42 - Logiciel: URL2JPEG 1.1 - (...) [HKLM][64Bits] -- URL2JPEG_is1 O42 - Logiciel: Ubisoft Game Launcher - (.UBISOFT.) [HKLM][64Bits] -- {888F1505-C2B3-4FDE-835D-36353EBD4754} O42 - Logiciel: UltraISO Premium V9.33 - (...) [HKLM][64Bits] -- UltraISO_is1 O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer O42 - Logiciel: Unlocker 1.9.1-x64 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay O42 - Logiciel: VLC media player 2.0.7 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN O42 - Logiciel: VirtualDJ Home FREE - (.Atomix Productions.) [HKLM][64Bits] -- {77C2D5D4-ADC5-49F9-B36E-5992FCF35EA3} O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27} O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01 O42 - Logiciel: WBFS Manager 3.0 - (.AlexDP.) [HKLM][64Bits] -- WBFS Manager 3.0 O42 - Logiciel: Wajam - (.WaNetworkEnhance.) [HKLM][64Bits] -- WaNetworkEnhance =>PUP.Wajam O42 - Logiciel: WavePad - Logiciel d'édition audio - (.NCH Software.) [HKLM][64Bits] -- WavePad O42 - Logiciel: WinPcap 4.1.2 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst O42 - Logiciel: WinSCP 4.1.8 - (.Martin Prikryl.) [HKLM][64Bits] -- winscp3_is1 O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} =>.Microsoft Corporation O42 - Logiciel: YouTube Video Downloader 2.6.8 - (.Tomato.) [HKLM][64Bits] -- YouTube Video Downloader_is1 O42 - Logiciel: Zylom Games Player Plugin - (.Zylom Games.) [HKLM][64Bits] -- Zylom Games Player Plugin O42 - Logiciel: aMSN 0.98.3 - (...) [HKLM][64Bits] -- aMSN O42 - Logiciel: cspep.0 - (.cspep.) [HKLM][64Bits] -- cspep_is1 O42 - Logiciel: dBpoweramp DSP Effects - (.Illustrate.) [HKLM][64Bits] -- dBpoweramp DSP Effects O42 - Logiciel: dBpoweramp Music Converter - (.Illustrate.) [HKLM][64Bits] -- dBpoweramp Music Converter O42 - Logiciel: eMule - (...) [HKLM][64Bits] -- eMule O42 - Logiciel: eSobi v2 - (.esobi Inc..) [HKLM][64Bits] -- InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA} O42 - Logiciel: livebox - (.SAGEM.) [HKLM][64Bits] -- {17342E3B-0818-4A6F-BFF8-99476605ADD6} O42 - Logiciel: mIRC - (.mIRC Co. Ltd..) [HKLM][64Bits] -- mIRC O42 - Logiciel: mkv2vob - (.3r1c.) [HKLM][64Bits] -- {21AE04E8-EBF6-40DB-9AA9-B7A80C5D057D} O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B} O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>P2P.BitTorrent O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent =>P2P.BitTorrent ~ Logic: 161 Scanned in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\3Dduo] [HKCU\Software\573f533c] [HKCU\Software\7-Zip] [HKCU\Software\AC3Filter] [HKCU\Software\ACE Compression Software] [HKCU\Software\ACXWGNVQ] [HKCU\Software\ALWIL Software] [HKCU\Software\AOL] [HKCU\Software\APN PIP] [HKCU\Software\ASProtect] [HKCU\Software\ATI Technologies Inc.] [HKCU\Software\ATI] [HKCU\Software\AVAST Software] [HKCU\Software\Accmeware Corporation] [HKCU\Software\Acer] [HKCU\Software\Activision] [HKCU\Software\Administrator] [HKCU\Software\Adobe] [HKCU\Software\Alawar] [HKCU\Software\Albedo Games] [HKCU\Software\Alcohol Soft] [HKCU\Software\AlienBreed3] [HKCU\Software\Alkemi] [HKCU\Software\Angry Mob Games] [HKCU\Software\AnyProtect] =>PUP.AnyProtect [HKCU\Software\AppDataLow\Software\BlockAndSurf] =>PUP.BlockAndSurf [HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider [HKCU\Software\AppDataLow\Software\Google] [HKCU\Software\AppDataLow\Software\JavaSoft] [HKCU\Software\AppDataLow\Software\SmartWeb] =>PUP.SmartWeb [HKCU\Software\AppDataLow\Software\Unity] [HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}] [HKCU\Software\AppDataLow] [HKCU\Software\Arachnid Games] [HKCU\Software\ArcSoft] [HKCU\Software\ArenaHD] [HKCU\Software\Arkane] [HKCU\Software\Arobas Music] [HKCU\Software\Audacity] [HKCU\Software\BGsoft] [HKCU\Software\Balls] [HKCU\Software\Behaviour] [HKCU\Software\Bit Barons GmbH] [HKCU\Software\BitTorrent] =>P2P.BitTorrent [HKCU\Software\Blizzard Entertainment] [HKCU\Software\BlueRippleSound] [HKCU\Software\Boonty] [HKCU\Software\Bootsnake Games] [HKCU\Software\Brorsoft] [HKCU\Software\CDDB] [HKCU\Software\Camel 101] [HKCU\Software\CanonBJ] [HKCU\Software\Canon] [HKCU\Software\Caphyon] [HKCU\Software\Caprice32] [HKCU\Software\Cenega Poland] [HKCU\Software\Centauri] [HKCU\Software\ChenzoPark] [HKCU\Software\Cinema PlusV14.04-ntf] =>PUP.CrossRider [HKCU\Software\Cinema PlusV14.04-nv-ie] =>PUP.CrossRider [HKCU\Software\Cinema PlusV14.04-nv] =>PUP.CrossRider [HKCU\Software\CinemaPlusV14.04-ntf] [HKCU\Software\Cipher Prime Studios, Inc.] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Climax] [HKCU\Software\ClockworkPixels] [HKCU\Software\Conduit] =>Toolbar.Conduit [HKCU\Software\CoreAAC] [HKCU\Software\Coreplay] [HKCU\Software\Crescent Moon Games] [HKCU\Software\Criterion Games] [HKCU\Software\Crystal Dynamics] [HKCU\Software\Cyanide] [HKCU\Software\CyberLink] [HKCU\Software\Cygnus Solutions] [HKCU\Software\DSS] [HKCU\Software\DT Soft] [HKCU\Software\DVD Shrink] [HKCU\Software\DarkEnergy] [HKCU\Software\DarkWaterStudios] [HKCU\Software\Darkwind Media] [HKCU\Software\Disc Soft] [HKCU\Software\DotEmu] [HKCU\Software\Double11] [HKCU\Software\DownloadToolz] [HKCU\Software\Drop Spider Games] [HKCU\Software\E-Line Media] [HKCU\Software\EA Games] [HKCU\Software\EMU] [HKCU\Software\EPSON] [HKCU\Software\EasyBoot Systems] [HKCU\Software\EclipseGames] [HKCU\Software\Eidos] [HKCU\Software\Electronic Arts] [HKCU\Software\Epic Games] [HKCU\Software\FANiSO] [HKCU\Software\FLT] [HKCU\Software\FNW] [HKCU\Software\FTPRush] [HKCU\Software\Firebase] [HKCU\Software\FlashFXP] [HKCU\Software\FlyOrDie] [HKCU\Software\Focus] [HKCU\Software\Forsaken Pad] [HKCU\Software\FreeTime] [HKCU\Software\Freeware] [HKCU\Software\Frozen Codebase] [HKCU\Software\GNU] [HKCU\Software\GOG.com] [HKCU\Software\GRE] [HKCU\Software\Gabest] [HKCU\Software\GameSpy] [HKCU\Software\Google] [HKCU\Software\Grendel Games] [HKCU\Software\Guillaume Lacasa] [HKCU\Software\HP Photo Creations] [HKCU\Software\HP] [HKCU\Software\Haali] [HKCU\Software\Hashbang Games] [HKCU\Software\Heavy Iron Studios Inc.] [HKCU\Software\Hewlett-Packard] [HKCU\Software\HighDefAction] [HKCU\Software\HomeTab] =>PUP.CertifiedToolbar [HKCU\Software\IM Providers] [HKCU\Software\IO Interactive] [HKCU\Software\Icaros] [HKCU\Software\Illustrate] [HKCU\Software\Imagination Technologies] [HKCU\Software\InstalledBrowserExtensions] =>PUP.BrowserExtensions [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\JustCause2] [HKCU\Software\Kromtech] [HKCU\Software\LAV] [HKCU\Software\LCD Gamma] [HKCU\Software\Leadertech] [HKCU\Software\Licenses] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Locked Door Puzzle] [HKCU\Software\LogMeInRescueCallingCard] [HKCU\Software\LucasArts] [HKCU\Software\MIX Studio] [HKCU\Software\MOHWSplash] [HKCU\Software\Macromedia] [HKCU\Software\Macrovision] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MandarkLib] [HKCU\Software\Manic] [HKCU\Software\Martin Prikryl] [HKCU\Software\Maximize Games] [HKCU\Software\MediaInfo] [HKCU\Software\MediaWork] [HKCU\Software\Meridian93] [HKCU\Software\Michael Todd Games] [HKCU\Software\Might and Delight] [HKCU\Software\Mike Bithell] [HKCU\Software\Mobileleader] [HKCU\Software\MoonSpiderStudio] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\Mr QuestionMan] [HKCU\Software\MuseGames] [HKCU\Software\NCH Software] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Namco Bandai Games] [HKCU\Software\Native Instruments] [HKCU\Software\Nero] [HKCU\Software\Netscape] [HKCU\Software\NewTech Infosystems] [HKCU\Software\No Reply Games] [HKCU\Software\Northcode Inc] [HKCU\Software\ODBC] [HKCU\Software\OXXOgames] [HKCU\Software\Oberon Media] [HKCU\Software\OpenAutomate] [HKCU\Software\OpenOffice.org] [HKCU\Software\Optimizer Pro] =>PUP.OptimizerPro [HKCU\Software\Orange] [HKCU\Software\Owlchemy Labs] [HKCU\Software\PYSAL] [HKCU\Software\PabloDraw] [HKCU\Software\Phobic Studios] [HKCU\Software\Phobosoft] [HKCU\Software\Piriform] [HKCU\Software\Piwot Games] [HKCU\Software\Playlogic] [HKCU\Software\Pogo] [HKCU\Software\Policies] [HKCU\Software\PopCap] [HKCU\Software\Press Play] [HKCU\Software\ProductSetup] =>Adware.InstallCore [HKCU\Software\Protect Software GmbH] [HKCU\Software\QtProject] [HKCU\Software\Quantized Bit] [HKCU\Software\RadLight] [HKCU\Software\Radiangames] [HKCU\Software\Razer] [HKCU\Software\Real] [HKCU\Software\Really Slick] [HKCU\Software\Realtek] [HKCU\Software\Recoil Games] [HKCU\Software\Red Head Games] [HKCU\Software\RedLynx Ltd] [HKCU\Software\Reg] [HKCU\Software\Reptile] [HKCU\Software\RetroEpic] [HKCU\Software\RetroStyle Games] [HKCU\Software\Rocket Jump] [HKCU\Software\Rockstar Games] [HKCU\Software\Rovio] [HKCU\Software\SIComponents] [HKCU\Software\SMTTB2009] [HKCU\Software\SSA] [HKCU\Software\STUDIO EVIL] [HKCU\Software\Safer Networking Limited] [HKCU\Software\Samsung] [HKCU\Software\Santa Ragione] [HKCU\Software\SearchProtectWS] =>PUP.SearchProtect [HKCU\Software\Sector3] [HKCU\Software\Serious Brew] [HKCU\Software\Serious Samurize] [HKCU\Software\SimonTatham] [HKCU\Software\SimplyTech] =>PUP.SimplyTech [HKCU\Software\Skidrow] [HKCU\Software\Skype] [HKCU\Software\SmashMouthGames] [HKCU\Software\Spark Plug Games] [HKCU\Software\SpoonInstall] [HKCU\Software\StormWatchApp] =>PUP.StormWatch [HKCU\Software\Swing Swing Submarine] [HKCU\Software\THETA AnIn] [HKCU\Software\TNT2] =>Adware.TidyNetwork [HKCU\Software\Techtonic Games Inc] [HKCU\Software\TeleCharger] [HKCU\Software\TeleCharger_v2] [HKCU\Software\TomTom] [HKCU\Software\Tomato] [HKCU\Software\Trolltech] [HKCU\Software\Turtle Beach] [HKCU\Software\TutoTag] =>PUP.AgenceExclusive [HKCU\Software\Tutorials] =>PUP.AgenceExclusive [HKCU\Software\Two Tribes] [HKCU\Software\UNCANNY GAMES] [HKCU\Software\Ubisoft] [HKCU\Software\Unity] [HKCU\Software\Unlimited Possibilities] [HKCU\Software\Upper Byte] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\Valve] [HKCU\Software\Vectorpark.com] [HKCU\Software\VideoToMp3] [HKCU\Software\VirtualDJ] [HKCU\Software\VirtualDub.org] [HKCU\Software\Visan] [HKCU\Software\Volition] [HKCU\Software\WIISCRUBBER] [HKCU\Software\WXP] [HKCU\Software\WaNetworkEnhance] [HKCU\Software\WajIEnhance] =>PUP.Wajam [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\WinSTEP2000] [HKCU\Software\Wow6432Node] [HKCU\Software\YorkNewCin] [HKCU\Software\ZebHelpProcess Helper] [HKCU\Software\Zoink Games] [HKCU\Software\Zylom] [HKCU\Software\Zyrax Software] [HKCU\Software\aMSN] [HKCU\Software\cspep] [HKCU\Software\eMule] [HKCU\Software\globalUpdate] =>PUP.GlobalUpdate [HKCU\Software\iWin] [HKCU\Software\mIRC] [HKCU\Software\madshi] [HKCU\Software\phime studio] [HKCU\Software\systweak] [HKLM\Software\AGEIA Technologies] [HKLM\Software\AMD] [HKLM\Software\ASIO] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\Acer] [HKLM\Software\Adobe] [HKLM\Software\Apple Inc.] [HKLM\Software\ArenaHD] [HKLM\Software\Audible] [HKLM\Software\Canon] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Cyberlink] [HKLM\Software\DEVGURU] [HKLM\Software\EA GAMES] [HKLM\Software\FileZilla 3] [HKLM\Software\HP] [HKLM\Software\Hauppauge] [HKLM\Software\HighDefAction] [HKLM\Software\IM Providers] [HKLM\Software\InstalledBrowserExtensions] =>PUP.BrowserExtensions [HKLM\Software\Intel] [HKLM\Software\Khronos] [HKLM\Software\Llamasoft] [HKLM\Software\MCCI] [HKLM\Software\Macromedia] [HKLM\Software\Martin Prikryl] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\Native Instruments] [HKLM\Software\ODBC] [HKLM\Software\OemSetup] [HKLM\Software\PC Connectivity Solution] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\Sonic] [HKLM\Software\VDownloader] [HKLM\Software\VideoLAN] [HKLM\Software\WinRAR] [HKLM\Software\Wow6432Node\2bd8d77a-dee4-4beb-9e08-3100d5bfbff9] =>PUP.CrossRider [HKLM\Software\Wow6432Node\A Day in the Woods] [HKLM\Software\Wow6432Node\ACE Compression Software] [HKLM\Software\Wow6432Node\AGEIA Technologies] [HKLM\Software\Wow6432Node\AIM Toolbar] [HKLM\Software\Wow6432Node\ALWIL Software] [HKLM\Software\Wow6432Node\ASIO] [HKLM\Software\Wow6432Node\ATI Technologies] [HKLM\Software\Wow6432Node\ATI] [HKLM\Software\Wow6432Node\AVAST Software] [HKLM\Software\Wow6432Node\Acer Incorporated] [HKLM\Software\Wow6432Node\Acer] [HKLM\Software\Wow6432Node\Activision] [HKLM\Software\Wow6432Node\Adobe] [HKLM\Software\Wow6432Node\AdwCleaner] [HKLM\Software\Wow6432Node\AheadUpdate] [HKLM\Software\Wow6432Node\America Online] [HKLM\Software\Wow6432Node\AppDataLow] [HKLM\Software\Wow6432Node\Apple Computer, Inc.] [HKLM\Software\Wow6432Node\Apple Inc.] [HKLM\Software\Wow6432Node\ArcSoft] [HKLM\Software\Wow6432Node\ArenaHD] [HKLM\Software\Wow6432Node\Audible] [HKLM\Software\Wow6432Node\AviSynth] [HKLM\Software\Wow6432Node\Bethesda Softworks] [HKLM\Software\Wow6432Node\Blizzard Entertainment] [HKLM\Software\Wow6432Node\BlueRippleSound] [HKLM\Software\Wow6432Node\Boonty] [HKLM\Software\Wow6432Node\Canon] [HKLM\Software\Wow6432Node\Canon_Inc_IC] [HKLM\Software\Wow6432Node\Caphyon] [HKLM\Software\Wow6432Node\Cinema PlusV14.04-nv-ie] =>PUP.CrossRider [HKLM\Software\Wow6432Node\Cinema PlusV14.04-nv] =>PUP.CrossRider [HKLM\Software\Wow6432Node\Classes] [HKLM\Software\Wow6432Node\Clients] [HKLM\Software\Wow6432Node\Coalesys] [HKLM\Software\Wow6432Node\Codemasters] [HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Croteam] [HKLM\Software\Wow6432Node\Crown Software] [HKLM\Software\Wow6432Node\CyberLink] [HKLM\Software\Wow6432Node\Cygnus Solutions] [HKLM\Software\Wow6432Node\DT Soft] [HKLM\Software\Wow6432Node\DVDVIDEOSOFT] [HKLM\Software\Wow6432Node\Danger Close Games] [HKLM\Software\Wow6432Node\Digital River] [HKLM\Software\Wow6432Node\DigitalMore] =>PUP.DigitalMore [HKLM\Software\Wow6432Node\Disc Soft] [HKLM\Software\Wow6432Node\DotEmu] [HKLM\Software\Wow6432Node\DownloadHelper] [HKLM\Software\Wow6432Node\EA Games] [HKLM\Software\Wow6432Node\ETeam] [HKLM\Software\Wow6432Node\EasyBoot Systems] [HKLM\Software\Wow6432Node\Electronic Arts] [HKLM\Software\Wow6432Node\Extend Studio] [HKLM\Software\Wow6432Node\FRANCE TELECOM] [HKLM\Software\Wow6432Node\FileZilla 3] [HKLM\Software\Wow6432Node\FlashFXP] [HKLM\Software\Wow6432Node\GAMESDESKTOP] =>Adware.GamesDesktop [HKLM\Software\Wow6432Node\GNU] [HKLM\Software\Wow6432Node\GOG.com] [HKLM\Software\Wow6432Node\Gamepires] [HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate [HKLM\Software\Wow6432Node\Google] [HKLM\Software\Wow6432Node\HaaliMkx] [HKLM\Software\Wow6432Node\Hauppauge] [HKLM\Software\Wow6432Node\Hewlett-Packard] [HKLM\Software\Wow6432Node\HighDefAction] [HKLM\Software\Wow6432Node\IHProtect] =>Adware.AgentODR [HKLM\Software\Wow6432Node\IM Providers] [HKLM\Software\Wow6432Node\Icaros] [HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster [HKLM\Software\Wow6432Node\InstalledBrowserExtensions] =>PUP.BrowserExtensions [HKLM\Software\Wow6432Node\Intel] [HKLM\Software\Wow6432Node\Interface] [HKLM\Software\Wow6432Node\JavaSoft] [HKLM\Software\Wow6432Node\JreMetrics] [HKLM\Software\Wow6432Node\KLCodecPack] [HKLM\Software\Wow6432Node\Khronos] [HKLM\Software\Wow6432Node\LAV] [HKLM\Software\Wow6432Node\Lame For Audacity] [HKLM\Software\Wow6432Node\Licenses] [HKLM\Software\Wow6432Node\LightScribe] [HKLM\Software\Wow6432Node\Llamasoft] [HKLM\Software\Wow6432Node\LogMeInRescueCallingCard] [HKLM\Software\Wow6432Node\Macromedia] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware] [HKLM\Software\Wow6432Node\MarkAny] [HKLM\Software\Wow6432Node\Martin Prikryl] [HKLM\Software\Wow6432Node\MediaArea.net] [HKLM\Software\Wow6432Node\MimarSinan] [HKLM\Software\Wow6432Node\Mindscape] [HKLM\Software\Wow6432Node\Moyea] [HKLM\Software\Wow6432Node\MozillaPlugins] [HKLM\Software\Wow6432Node\Mozilla] [HKLM\Software\Wow6432Node\NCH Software] [HKLM\Software\Wow6432Node\NVIDIA Corporation] [HKLM\Software\Wow6432Node\Nero] [HKLM\Software\Wow6432Node\NewTech Infosystems] [HKLM\Software\Wow6432Node\Novacore Studios] [HKLM\Software\Wow6432Node\Nth] [HKLM\Software\Wow6432Node\ODBC] [HKLM\Software\Wow6432Node\Oberon Media] [HKLM\Software\Wow6432Node\OpenOffice.org] [HKLM\Software\Wow6432Node\Orange] [HKLM\Software\Wow6432Node\Origin] [HKLM\Software\Wow6432Node\PC Connectivity Solution] [HKLM\Software\Wow6432Node\PCSuite] [HKLM\Software\Wow6432Node\Playbrains] [HKLM\Software\Wow6432Node\Policies] [HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.] [HKLM\Software\Wow6432Node\Realtek] [HKLM\Software\Wow6432Node\Reflexive Entertainment] [HKLM\Software\Wow6432Node\ReflexiveArcade] [HKLM\Software\Wow6432Node\Reg] [HKLM\Software\Wow6432Node\RegisteredApplications] [HKLM\Software\Wow6432Node\RocketLife] [HKLM\Software\Wow6432Node\Rockstar Games] [HKLM\Software\Wow6432Node\SEGA] [HKLM\Software\Wow6432Node\Saber Interactive] [HKLM\Software\Wow6432Node\Safer Networking Limited] [HKLM\Software\Wow6432Node\Sagem] [HKLM\Software\Wow6432Node\Samsung Electronics Ltd.] [HKLM\Software\Wow6432Node\Samsung] [HKLM\Software\Wow6432Node\Services] [HKLM\Software\Wow6432Node\Sierra Entertainment] [HKLM\Software\Wow6432Node\Sierra] [HKLM\Software\Wow6432Node\SiteAdvisor] [HKLM\Software\Wow6432Node\Skype] [HKLM\Software\Wow6432Node\SmashMouthGames] [HKLM\Software\Wow6432Node\SpeedBit] [HKLM\Software\Wow6432Node\Spidermonk Entertainment] [HKLM\Software\Wow6432Node\Square Enix] [HKLM\Software\Wow6432Node\StormWatchApp] =>PUP.StormWatch [HKLM\Software\Wow6432Node\Sun Microsystems] [HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab [HKLM\Software\Wow6432Node\Systweak] [HKLM\Software\Wow6432Node\Techland] [HKLM\Software\Wow6432Node\Trolltech] [HKLM\Software\Wow6432Node\Trymedia Systems] =>Adware.Trymedia [HKLM\Software\Wow6432Node\Tutorials] =>PUP.AgenceExclusive [HKLM\Software\Wow6432Node\TwonkyMedia] [HKLM\Software\Wow6432Node\Ubisoft] [HKLM\Software\Wow6432Node\Unreal] [HKLM\Software\Wow6432Node\VDownloader] [HKLM\Software\Wow6432Node\Valve] [HKLM\Software\Wow6432Node\VideoToMp3] [HKLM\Software\Wow6432Node\VirtualDJ] [HKLM\Software\Wow6432Node\VirtualDubMOD 1.5.10.2 b2540 Fr] [HKLM\Software\Wow6432Node\Visan] [HKLM\Software\Wow6432Node\Volatile] [HKLM\Software\Wow6432Node\Volition] [HKLM\Software\Wow6432Node\WinPcap] [HKLM\Software\Wow6432Node\Windows] [HKLM\Software\Wow6432Node\XLiveEmulator] [HKLM\Software\Wow6432Node\YorkNewCin] [HKLM\Software\Wow6432Node\Zeroscale Games] [HKLM\Software\Wow6432Node\Zoe Mode] [HKLM\Software\Wow6432Node\ahead] [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4] =>PUP.CrossRider [HKLM\Software\Wow6432Node\luckysearchesSoftware] =>Hijacker.LuckySearches [HKLM\Software\Wow6432Node\mozilla.org] [HKLM\Software\Wow6432Node\supTab] =>PUP.SupTab [HKLM\Software\Wow6432Node\sweet-pageSoftware] =>PUP.SweetPage [HKLM\Software\Wow6432Node] [HKLM\Software\YorkNewCin] ~ Key Software: 917 Scanned in 00mn 01s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 15/04/2015 - 09:58:17 - [] ----D C:\Program Files (x86)\092286ba-0823-44c3-a540-fc0ca0f85d2c O43 - CFD: 11/09/2012 - 23:44:29 - [0] ----D C:\Program Files (x86)\2K Games O43 - CFD: 15/04/2015 - 09:58:17 - [] ----D C:\Program Files (x86)\2XL Games O43 - CFD: 16/01/2011 - 12:18:58 - [] ----D C:\Program Files (x86)\7-Zip O43 - CFD: 11/01/2009 - 04:56:10 - [] ----D C:\Program Files (x86)\Acer O43 - CFD: 11/01/2009 - 05:07:04 - [] ----D C:\Program Files (x86)\Acer Arcade Live O43 - CFD: 08/11/2014 - 19:12:45 - [] ----D C:\Program Files (x86)\Acer GameZone O43 - CFD: 11/07/2009 - 10:40:28 - [] ----D C:\Program Files (x86)\Acer Incorporated O43 - CFD: 21/11/2012 - 22:55:53 - [0] ----D C:\Program Files (x86)\Activision O43 - CFD: 29/09/2012 - 21:17:49 - [] ----D C:\Program Files (x86)\Adobe O43 - CFD: 13/11/2011 - 17:49:52 - [] ----D C:\Program Files (x86)\Adobe Media Player O43 - CFD: 04/06/2011 - 00:03:10 - [] ----D C:\Program Files (x86)\AGEIA Technologies O43 - CFD: 28/11/2010 - 23:46:38 - [] ----D C:\Program Files (x86)\Alawar O43 - CFD: 13/11/2009 - 16:53:43 - [] ----D C:\Program Files (x86)\Alcohol Soft O43 - CFD: 14/02/2013 - 19:53:43 - [] ----D C:\Program Files (x86)\ALLGRAF O43 - CFD: 19/04/2012 - 22:48:24 - [0] ----D C:\Program Files (x86)\Amanita Design O43 - CFD: 22/06/2012 - 22:22:16 - [] ----D C:\Program Files (x86)\AMD APP O43 - CFD: 28/09/2010 - 15:49:30 - [] ----D C:\Program Files (x86)\aMSN O43 - CFD: 17/12/2013 - 21:47:17 - [] ----D C:\Program Files (x86)\Another World O43 - CFD: 09/02/2013 - 12:50:31 - [] ----D C:\Program Files (x86)\Antichamber O43 - CFD: 01/08/2010 - 14:49:05 - [] ----D C:\Program Files (x86)\Anuman interactive O43 - CFD: 15/04/2015 - 11:00:24 - [] ----D C:\Program Files (x86)\AnyProtectEx =>PUP.AnyProtect O43 - CFD: 13/08/2010 - 02:42:20 - [] ----D C:\Program Files (x86)\ARC SYSTEM WORKS O43 - CFD: 15/04/2015 - 11:05:24 - [] ----D C:\Program Files (x86)\ASP O43 - CFD: 06/01/2011 - 21:20:02 - [] ----D C:\Program Files (x86)\Aspyr O43 - CFD: 30/01/2011 - 19:21:35 - [] ----D C:\Program Files (x86)\Astroslugs.RIP-Unleashed O43 - CFD: 01/06/2011 - 18:20:45 - [0] ----D C:\Program Files (x86)\Atari O43 - CFD: 23/04/2012 - 10:15:06 - [] ----D C:\Program Files (x86)\ATI Technologies O43 - CFD: 10/01/2012 - 22:33:58 - [] ----D C:\Program Files (x86)\Audacity 1.3 Beta (Unicode) O43 - CFD: 07/07/2010 - 22:18:56 - [] ----D C:\Program Files (x86)\AviSynth 2.5 O43 - CFD: 08/08/2009 - 15:41:48 - [] ----D C:\Program Files (x86)\Bad Rats O43 - CFD: 07/01/2012 - 15:13:40 - [] ----D C:\Program Files (x86)\Batman - Arkham City O43 - CFD: 28/02/2015 - 20:11:50 - [] ----D C:\Program Files (x86)\Battle.net O43 - CFD: 25/10/2011 - 18:09:49 - [] ----D C:\Program Files (x86)\Battlefield 3 O43 - CFD: 09/10/2012 - 22:21:37 - [] ----D C:\Program Files (x86)\Bethesda Softworks O43 - CFD: 03/03/2012 - 21:50:47 - [0] ----D C:\Program Files (x86)\Biart O43 - CFD: 11/03/2013 - 19:42:41 - [0] ----D C:\Program Files (x86)\Black Forest Games O43 - CFD: 05/09/2010 - 12:52:19 - [0] ----D C:\Program Files (x86)\Blast! Entertainment Ltd O43 - CFD: 13/12/2014 - 20:23:08 - [] ----D C:\Program Files (x86)\Bonjour O43 - CFD: 11/08/2010 - 20:42:05 - [] ----D C:\Program Files (x86)\BoontyGames O43 - CFD: 11/02/2013 - 11:57:52 - [] ----D C:\Program Files (x86)\Brorsoft O43 - CFD: 15/11/2012 - 06:43:59 - [] ----D C:\Program Files (x86)\BRS O43 - CFD: 27/02/2013 - 00:47:02 - [] ----D C:\Program Files (x86)\Brutal Legend O43 - CFD: 29/01/2012 - 17:50:11 - [] ----D C:\Program Files (x86)\Bust_n_Rush O43 - CFD: 12/02/2015 - 21:35:52 - [] ----D C:\Program Files (x86)\Canon O43 - CFD: 05/05/2012 - 09:05:21 - [] ----D C:\Program Files (x86)\CAPCOM O43 - CFD: 23/09/2010 - 23:04:09 - [] ----D C:\Program Files (x86)\Caprice32 O43 - CFD: 26/04/2013 - 21:16:42 - [] ----D C:\Program Files (x86)\Cargo Commander O43 - CFD: 17/02/2015 - 00:45:44 - [] ----D C:\Program Files (x86)\CCleaner O43 - CFD: 30/06/2013 - 21:25:10 - [0] ----D C:\Program Files (x86)\Celestial O43 - CFD: 25/04/2013 - 08:26:02 - [] ----D C:\Program Files (x86)\Chime O43 - CFD: 15/04/2015 - 09:58:51 - [] ----D C:\Program Files (x86)\Cinema PlusV14.04 =>PUP.CrossRider O43 - CFD: 15/04/2015 - 09:58:01 - [0] ----D C:\Program Files (x86)\Cinema PlusV14.04-ntf =>PUP.CrossRider O43 - CFD: 27/09/2010 - 11:39:01 - [0] ----D C:\Program Files (x86)\City Interactive O43 - CFD: 13/09/2011 - 22:28:56 - [0] ----D C:\Program Files (x86)\Clockwork Pixels O43 - CFD: 23/08/2013 - 15:36:18 - [] ----D C:\Program Files (x86)\Clones O43 - CFD: 03/08/2013 - 17:43:56 - [0] ----D C:\Program Files (x86)\Cloudberry Kingdom O43 - CFD: 16/08/2013 - 20:42:42 - [] ----D C:\Program Files (x86)\Commandos II O43 - CFD: 11/04/2015 - 17:49:19 - [] ----D C:\Program Files (x86)\Common Files O43 - CFD: 14/01/2011 - 07:14:07 - [] ----D C:\Program Files (x86)\Content O43 - CFD: 14/01/2011 - 07:19:02 - [] ----D C:\Program Files (x86)\ContentXml O43 - CFD: 29/05/2012 - 18:09:02 - [] ----D C:\Program Files (x86)\ConvertHelper O43 - CFD: 03/08/2010 - 17:19:08 - [] ----D C:\Program Files (x86)\Cool Beans NFO Creator O43 - CFD: 22/12/2012 - 13:10:00 - [0] ----D C:\Program Files (x86)\Crankshaft Games O43 - CFD: 20/12/2010 - 23:07:33 - [] ----D C:\Program Files (x86)\Crash Time 4 - The Syndicate O43 - CFD: 06/12/2012 - 18:07:26 - [] ----D C:\Program Files (x86)\cspep O43 - CFD: 02/11/2011 - 22:46:10 - [] ----D C:\Program Files (x86)\Curve Studios O43 - CFD: 15/08/2010 - 17:21:46 - [0] ----D C:\Program Files (x86)\Cyanide O43 - CFD: 11/01/2009 - 05:00:43 - [] ----D C:\Program Files (x86)\CyberLink O43 - CFD: 03/08/2013 - 08:31:20 - [] ----D C:\Program Files (x86)\DAEMON Tools Lite =>.DT Soft Ltd O43 - CFD: 10/05/2011 - 17:37:54 - [] ----D C:\Program Files (x86)\Dark Energy Digital Ltd O43 - CFD: 03/10/2010 - 11:46:37 - [] ----D C:\Program Files (x86)\Dark Water Studios Ltd O43 - CFD: 19/05/2011 - 19:44:17 - [] ----D C:\Program Files (x86)\Darksiders O43 - CFD: 04/08/2012 - 00:03:55 - [0] ----D C:\Program Files (x86)\death race O43 - CFD: 26/11/2011 - 09:23:57 - [0] ----D C:\Program Files (x86)\Deep Silver O43 - CFD: 06/09/2010 - 01:36:20 - [] ----D C:\Program Files (x86)\Devolver Digital O43 - CFD: 15/04/2015 - 16:52:36 - [] ----D C:\Program Files (x86)\Digital More =>PUP.DigitalMore O43 - CFD: 25/05/2012 - 22:09:00 - [] ----D C:\Program Files (x86)\DiRT Showdown O43 - CFD: 21/09/2012 - 21:37:27 - [] ----D C:\Program Files (x86)\Disney Interactive Studios O43 - CFD: 16/11/2010 - 23:15:54 - [] ----D C:\Program Files (x86)\Doc Clock The Toasted Sandwich of Time O43 - CFD: 16/08/2010 - 01:52:06 - [0] ----D C:\Program Files (x86)\Doctor Entertainment O43 - CFD: 28/12/2012 - 22:30:41 - [0] ----D C:\Program Files (x86)\DownloadToolz O43 - CFD: 08/11/2014 - 19:31:51 - [] ----D C:\Program Files (x86)\Drakensang - The River of Time O43 - CFD: 23/04/2012 - 09:22:26 - [] ----D C:\Program Files (x86)\Driver Cleaner Pro O43 - CFD: 16/08/2010 - 22:04:46 - [] ----D C:\Program Files (x86)\Drop Spider Games O43 - CFD: 01/02/2015 - 21:49:07 - [] ----D C:\Program Files (x86)\DVD Shrink O43 - CFD: 01/07/2013 - 17:33:28 - [0] ----D C:\Program Files (x86)\DVDVIDEOSOFT O43 - CFD: 30/10/2010 - 21:22:04 - [] ----D C:\Program Files (x86)\EA O43 - CFD: 17/05/2012 - 10:14:56 - [] ----D C:\Program Files (x86)\EA Games O43 - CFD: 02/09/2013 - 23:48:48 - [] ----D C:\Program Files (x86)\EDGE O43 - CFD: 06/04/2012 - 18:24:31 - [] ----D C:\Program Files (x86)\Electronic Arts O43 - CFD: 25/10/2013 - 18:18:17 - [0] ----D C:\Program Files (x86)\Electronic.Super.Joy O43 - CFD: 13/09/2010 - 22:29:30 - [] ----D C:\Program Files (x86)\Empire Interactive O43 - CFD: 23/07/2009 - 18:55:27 - [] ----D C:\Program Files (x86)\eMule O43 - CFD: 15/10/2011 - 13:47:52 - [0] ----D C:\Program Files (x86)\epson O43 - CFD: 29/05/2012 - 18:38:17 - [] ----D C:\Program Files (x86)\eRightSoft O43 - CFD: 14/01/2011 - 07:15:10 - [] ----D C:\Program Files (x86)\es O43 - CFD: 11/01/2009 - 05:23:09 - [] ----D C:\Program Files (x86)\eSobi O43 - CFD: 24/10/2013 - 18:45:27 - [0] ----D C:\Program Files (x86)\Ethan Meteor Hunter MULTI18 O43 - CFD: 26/10/2012 - 21:56:36 - [] ----D C:\Program Files (x86)\Farming Simulator 2013 O43 - CFD: 20/11/2009 - 00:09:04 - [] ----D C:\Program Files (x86)\FileZilla FTP Client O43 - CFD: 12/01/2012 - 23:36:06 - [] ----D C:\Program Files (x86)\FLAC O43 - CFD: 18/07/2009 - 18:14:39 - [] ----D C:\Program Files (x86)\FlashFXP O43 - CFD: 23/08/2013 - 15:36:18 - [] ----D C:\Program Files (x86)\Fly'N O43 - CFD: 06/11/2013 - 23:02:36 - [] ----D C:\Program Files (x86)\Focus Home Interactive O43 - CFD: 14/01/2011 - 07:14:49 - [] ----D C:\Program Files (x86)\fr O43 - CFD: 15/04/2015 - 09:16:17 - [] ----D C:\Program Files (x86)\FreeGamePick O43 - CFD: 23/05/2011 - 22:58:37 - [] ----D C:\Program Files (x86)\FreeTime O43 - CFD: 14/11/2012 - 00:56:24 - [0] ----D C:\Program Files (x86)\Frozenbyte O43 - CFD: 06/11/2011 - 15:25:42 - [] ----D C:\Program Files (x86)\FTPRush O43 - CFD: 15/10/2011 - 14:56:48 - [0] ----D C:\Program Files (x86)\GFI O43 - CFD: 10/10/2013 - 20:45:22 - [0] ----D C:\Program Files (x86)\Glare O43 - CFD: 15/04/2015 - 09:58:02 - [] ----D C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate O43 - CFD: 15/04/2015 - 16:49:26 - [] ----D C:\Program Files (x86)\gmsd_fr_424 =>PUP.CrossRider O43 - CFD: 29/11/2010 - 19:01:33 - [] ----D C:\Program Files (x86)\Gods vs. Humans O43 - CFD: 12/11/2012 - 00:42:20 - [] ----D C:\Program Files (x86)\GOG.com O43 - CFD: 09/10/2014 - 12:02:48 - [] ----D C:\Program Files (x86)\Google O43 - CFD: 03/10/2010 - 17:34:01 - [] ----D C:\Program Files (x86)\GridRunnerREV O43 - CFD: 04/06/2011 - 00:04:22 - [0] ----D C:\Program Files (x86)\Hamiltons Great Adventure O43 - CFD: 28/02/2015 - 20:14:14 - [] ----D C:\Program Files (x86)\Hearthstone O43 - CFD: 08/11/2014 - 19:12:57 - [] ----D C:\Program Files (x86)\Hell Yeah Wrath of the Dead Rabbit O43 - CFD: 11/03/2015 - 22:47:56 - [] ----D C:\Program Files (x86)\Hotline Miami 2 - Wrong Number O43 - CFD: 01/04/2014 - 17:35:08 - [] ----D C:\Program Files (x86)\HP O43 - CFD: 05/10/2011 - 21:19:21 - [] ----D C:\Program Files (x86)\HP Photo Creations O43 - CFD: 31/05/2012 - 19:32:56 - [] ----D C:\Program Files (x86)\hpmonitor O43 - CFD: 15/04/2015 - 10:01:28 - [] ----D C:\Program Files (x86)\IGS O43 - CFD: 07/01/2012 - 18:46:54 - [] ----D C:\Program Files (x86)\Illustrate O43 - CFD: 18/07/2009 - 11:56:28 - [] ----D C:\Program Files (x86)\Image 2 ASCII Art O43 - CFD: 15/04/2015 - 09:55:54 - [] ----D C:\Program Files (x86)\Infonaut_1.10.0.14 =>PUP.Infonaut O43 - CFD: 12/01/2015 - 01:59:22 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 11/01/2009 - 04:26:09 - [] ----D C:\Program Files (x86)\Intel O43 - CFD: 05/03/2015 - 21:52:02 - [] ----D C:\Program Files (x86)\Internet Explorer O43 - CFD: 16/08/2010 - 17:10:02 - [] ----D C:\Program Files (x86)\IQ Publishing O43 - CFD: 14/01/2011 - 07:15:12 - [] ----D C:\Program Files (x86)\it O43 - CFD: 26/06/2011 - 19:24:00 - [] ----D C:\Program Files (x86)\Jamestown O43 - CFD: 02/08/2014 - 22:56:00 - [] ----D C:\Program Files (x86)\Java O43 - CFD: 24/01/2011 - 23:01:07 - [] ----D C:\Program Files (x86)\JRE O43 - CFD: 04/11/2011 - 23:24:49 - [] ----D C:\Program Files (x86)\Just A Game GmbH O43 - CFD: 13/08/2013 - 18:12:07 - [] ----D C:\Program Files (x86)\K-Lite Codec Pack O43 - CFD: 14/11/2012 - 00:56:47 - [0] ----D C:\Program Files (x86)\Kalypso O43 - CFD: 12/11/2012 - 01:04:01 - [0] ----D C:\Program Files (x86)\Kalypso Media O43 - CFD: 13/04/2015 - 17:44:21 - [] ----D C:\Program Files (x86)\Kane & Lynch 2- Dog Days O43 - CFD: 04/05/2012 - 19:15:04 - [0] ----D C:\Program Files (x86)\Konami O43 - CFD: 27/05/2012 - 21:25:15 - [] ----D C:\Program Files (x86)\Lame For Audacity O43 - CFD: 12/09/2012 - 22:43:05 - [] ----D C:\Program Files (x86)\Lost Head O43 - CFD: 29/10/2010 - 19:12:27 - [] ----D C:\Program Files (x86)\LucasArts O43 - CFD: 15/08/2010 - 17:28:30 - [] ----D C:\Program Files (x86)\MadCars_at O43 - CFD: 25/02/2015 - 19:46:55 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware O43 - CFD: 05/02/2010 - 00:43:43 - [] ----D C:\Program Files (x86)\MarkAny O43 - CFD: 17/12/2013 - 21:46:02 - [] ----D C:\Program Files (x86)\Marlow Briggs O43 - CFD: 16/09/2010 - 17:37:50 - [] ----D C:\Program Files (x86)\MediaCoder O43 - CFD: 17/04/2010 - 22:02:42 - [] ----D C:\Program Files (x86)\Metal Slug Complete PC O43 - CFD: 31/07/2010 - 13:44:34 - [] ----D C:\Program Files (x86)\Metro 2033 O43 - CFD: 06/07/2010 - 02:43:29 - [] ----D C:\Program Files (x86)\Microsoft O43 - CFD: 01/05/2012 - 09:14:55 - [0] ----D C:\Program Files (x86)\Microsoft Game Studios O43 - CFD: 14/07/2009 - 12:48:12 - [] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE O43 - CFD: 29/06/2011 - 19:08:46 - [] ----D C:\Program Files (x86)\Microsoft Office O43 - CFD: 11/01/2009 - 04:45:25 - [] ----D C:\Program Files (x86)\Microsoft Office Suite Activation Assistant O43 - CFD: 03/08/2013 - 15:06:03 - [] ----D C:\Program Files (x86)\Microsoft SDKs O43 - CFD: 05/03/2015 - 20:13:43 - [] ----D C:\Program Files (x86)\Microsoft Security Client O43 - CFD: 19/10/2014 - 20:45:01 - [] ----D C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 03/08/2013 - 15:08:19 - [] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 29/07/2014 - 06:13:55 - [] ----D C:\Program Files (x86)\Microsoft Studios O43 - CFD: 03/08/2013 - 15:08:20 - [] ----D C:\Program Files (x86)\Microsoft Synchronization Services O43 - CFD: 03/08/2013 - 15:07:11 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 10.0 O43 - CFD: 19/03/2010 - 12:25:23 - [] ----D C:\Program Files (x86)\Microsoft Works O43 - CFD: 16/08/2010 - 02:15:52 - [] ----D C:\Program Files (x86)\Microsoft XNA O43 - CFD: 06/07/2010 - 02:46:23 - [] ----D C:\Program Files (x86)\Microsoft.NET O43 - CFD: 18/07/2013 - 13:33:05 - [] ----D C:\Program Files (x86)\Micy Roll O43 - CFD: 13/07/2014 - 20:19:35 - [] ----D C:\Program Files (x86)\mIRC O43 - CFD: 04/03/2012 - 19:08:06 - [] ----D C:\Program Files (x86)\mkv2vob O43 - CFD: 06/09/2010 - 22:16:22 - [] ----D C:\Program Files (x86)\Monster Trucks Nitro O43 - CFD: 12/09/2010 - 21:26:06 - [] ----D C:\Program Files (x86)\Monster.Truck.Challenge O43 - CFD: 12/09/2010 - 19:40:46 - [0] ----D C:\Program Files (x86)\MonsterTruck O43 - CFD: 15/04/2015 - 16:18:54 - [] ----D C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 20/12/2013 - 19:34:36 - [] ----D C:\Program Files (x86)\Mozilla Firefox(0) O43 - CFD: 27/12/2013 - 19:15:50 - [] ----D C:\Program Files (x86)\Mozilla Firefox(1) O43 - CFD: 15/04/2015 - 16:11:41 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 27/05/2012 - 21:11:55 - [] ----D C:\Program Files (x86)\MP3 Cut O43 - CFD: 27/05/2012 - 21:12:04 - [] ----D C:\Program Files (x86)\MP3 Cut DB Toolbar Toolbar O43 - CFD: 20/10/2012 - 12:11:04 - [] ----D C:\Program Files (x86)\mp3DirectCut O43 - CFD: 07/01/2012 - 18:23:22 - [] ----D C:\Program Files (x86)\Mr QuestionMan O43 - CFD: 03/08/2013 - 15:06:32 - [] ----D C:\Program Files (x86)\MSBuild O43 - CFD: 11/07/2009 - 22:48:19 - [0] ----D C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 12/09/2010 - 19:40:11 - [] ----D C:\Program Files (x86)\MTM2 O43 - CFD: 28/07/2012 - 20:56:12 - [] ----D C:\Program Files (x86)\Namco Bandai Games O43 - CFD: 10/10/2014 - 18:08:27 - [] ----D C:\Program Files (x86)\NCH Software O43 - CFD: 13/05/2012 - 11:43:56 - [] ----D C:\Program Files (x86)\ND Games O43 - CFD: 06/02/2011 - 21:18:53 - [] ----D C:\Program Files (x86)\Nero O43 - CFD: 11/01/2009 - 05:05:27 - [] ----D C:\Program Files (x86)\NewTech Infosystems O43 - CFD: 19/08/2009 - 22:20:02 - [] ----D C:\Program Files (x86)\NFO viewer O43 - CFD: 06/01/2013 - 01:30:19 - [0] ----D C:\Program Files (x86)\Nifflas O43 - CFD: 25/04/2013 - 08:25:47 - [] ----D C:\Program Files (x86)\Nimbus O43 - CFD: 01/11/2012 - 15:17:44 - [] ----D C:\Program Files (x86)\Nordic Games O43 - CFD: 11/07/2009 - 10:39:51 - [] ----D C:\Program Files (x86)\Northstar O43 - CFD: 16/07/2014 - 14:30:46 - [] ----D C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 11/07/2009 - 23:48:24 - [] ----D C:\Program Files (x86)\NX Client for Windows O43 - CFD: 01/11/2011 - 12:43:08 - [] ----D C:\Program Files (x86)\Oberon Media O43 - CFD: 01/02/2014 - 21:55:24 - [0] ----D C:\Program Files (x86)\Octodad Dadliest Catch O43 - CFD: 30/04/2012 - 22:48:29 - [0] ----D C:\Program Files (x86)\Offspring Fling O43 - CFD: 02/11/2014 - 21:18:08 - [] ----D C:\Program Files (x86)\Online Games Manager O43 - CFD: 25/05/2011 - 20:33:47 - [] ----D C:\Program Files (x86)\OpenAL O43 - CFD: 24/01/2011 - 23:01:05 - [] ----D C:\Program Files (x86)\OpenOffice.org 3 O43 - CFD: 15/04/2015 - 09:38:25 - [] ----D C:\Program Files (x86)\Optimizer Pro 3.79 =>PUP.OptimizerPro O43 - CFD: 08/01/2015 - 23:32:18 - [] ----D C:\Program Files (x86)\Orange O43 - CFD: 05/09/2013 - 19:31:00 - [0] ----D C:\Program Files (x86)\Outlast O43 - CFD: 14/08/2010 - 15:27:45 - [] ----D C:\Program Files (x86)\P2 Games O43 - CFD: 19/04/2013 - 01:12:13 - [] ----D C:\Program Files (x86)\Papo & Yo O43 - CFD: 06/05/2011 - 20:29:54 - [0] ----D C:\Program Files (x86)\Pathea Games O43 - CFD: 05/02/2010 - 00:43:42 - [] ----D C:\Program Files (x86)\PC Connectivity Solution O43 - CFD: 11/03/2013 - 19:39:36 - [] ----D C:\Program Files (x86)\Peggle Nights Deluxe O43 - CFD: 29/12/2013 - 06:44:34 - [] ----D C:\Program Files (x86)\PhotoFiltre O43 - CFD: 21/07/2012 - 23:47:10 - [0] ----D C:\Program Files (x86)\Play O43 - CFD: 12/11/2009 - 22:08:39 - [] ----D C:\Program Files (x86)\Playbrains O43 - CFD: 26/11/2011 - 09:00:11 - [0] ----D C:\Program Files (x86)\Playlogic O43 - CFD: 02/11/2013 - 21:20:45 - [] ----D C:\Program Files (x86)\Plush O43 - CFD: 08/01/2011 - 16:12:42 - [] ----D C:\Program Files (x86)\ProtectDisc Driver Installer O43 - CFD: 20/03/2013 - 22:23:27 - [] ----D C:\Program Files (x86)\Push The Box O43 - CFD: 12/07/2009 - 01:40:06 - [] ----D C:\Program Files (x86)\PuTTY O43 - CFD: 29/11/2010 - 21:22:15 - [] ----D C:\Program Files (x86)\Racers' Islands - Crazy Arenas O43 - CFD: 26/01/2012 - 20:59:44 - [] ----D C:\Program Files (x86)\Radiangames O43 - CFD: 15/04/2015 - 11:04:47 - [] ----D C:\Program Files (x86)\RCP O43 - CFD: 11/01/2009 - 04:36:04 - [] ----D C:\Program Files (x86)\Realtek O43 - CFD: 11/09/2012 - 23:45:26 - [0] ----D C:\Program Files (x86)\Rebellion O43 - CFD: 04/03/2013 - 10:08:12 - [0] ----D C:\Program Files (x86)\Recoil Games O43 - CFD: 03/10/2012 - 22:38:18 - [] ----D C:\Program Files (x86)\Red Kawa O43 - CFD: 09/06/2011 - 19:31:09 - [] ----D C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P O43 - CFD: 02/11/2006 - 17:07:27 - [] ----D C:\Program Files (x86)\Reference Assemblies O43 - CFD: 15/04/2015 - 11:04:26 - [] ----D C:\Program Files (x86)\Registry Helper =>PUP.RegistryHelper O43 - CFD: 14/01/2011 - 07:18:21 - [] ----D C:\Program Files (x86)\reslists O43 - CFD: 30/10/2011 - 16:54:02 - [0] ----D C:\Program Files (x86)\RetroEpic O43 - CFD: 20/10/2012 - 00:44:11 - [0] ----D C:\Program Files (x86)\Reverb Publishing O43 - CFD: 02/02/2014 - 18:19:47 - [] ----D C:\Program Files (x86)\Rhythm Destruction O43 - CFD: 27/08/2012 - 09:48:15 - [] ----D C:\Program Files (x86)\Ricochet Infinity O43 - CFD: 17/01/2011 - 23:30:17 - [0] ----D C:\Program Files (x86)\Rockstar Games O43 - CFD: 02/08/2012 - 06:01:52 - [0] ----D C:\Program Files (x86)\Ronimo Games O43 - CFD: 19/11/2012 - 18:30:04 - [] ----D C:\Program Files (x86)\Rovio O43 - CFD: 21/04/2011 - 20:59:25 - [] ----D C:\Program Files (x86)\SAGEM O43 - CFD: 05/02/2010 - 00:16:29 - [] ----D C:\Program Files (x86)\Samsung O43 - CFD: 29/12/2010 - 17:30:53 - [] ----D C:\Program Files (x86)\Samurize O43 - CFD: 08/02/2013 - 20:26:09 - [] ----D C:\Program Files (x86)\Saving Private Sheep 2 O43 - CFD: 21/04/2011 - 20:58:35 - [] ----D C:\Program Files (x86)\Securitoo O43 - CFD: 04/05/2012 - 17:53:15 - [] ----D C:\Program Files (x86)\SEGA O43 - CFD: 15/04/2015 - 18:47:50 - [] ----D C:\Program Files (x86)\Serveur Media O43 - CFD: 06/05/2012 - 19:49:38 - [] ----D C:\Program Files (x86)\Shrapnel Games O43 - CFD: 05/03/2015 - 20:44:22 - [] R---D C:\Program Files (x86)\Skype O43 - CFD: 19/07/2014 - 07:17:21 - [] ----D C:\Program Files (x86)\Slip O43 - CFD: 07/11/2010 - 17:50:06 - [] ----D C:\Program Files (x86)\SmashMouth Games O43 - CFD: 08/09/2013 - 15:21:13 - [] ----D C:\Program Files (x86)\Spectra O43 - CFD: 08/08/2011 - 21:48:02 - [] ----D C:\Program Files (x86)\Spirits of Metropolis v1.10 O43 - CFD: 07/08/2011 - 01:59:49 - [] ----D C:\Program Files (x86)\Spybot - Search & Destroy O43 - CFD: 11/09/2012 - 23:43:37 - [0] ----D C:\Program Files (x86)\SQUARE ENIX O43 - CFD: 29/09/2010 - 12:31:37 - [] ----D C:\Program Files (x86)\SQUARE ENIX - Eidos Interactive O43 - CFD: 11/09/2009 - 20:49:22 - [] ----D C:\Program Files (x86)\SR71GAMES O43 - CFD: 03/08/2013 - 12:52:34 - [] ----D C:\Program Files (x86)\Steam O43 - CFD: 16/12/2013 - 12:02:53 - [] ----D C:\Program Files (x86)\Stick It To The Man! O43 - CFD: 15/04/2015 - 10:00:36 - [] ----D C:\Program Files (x86)\StormWatch =>PUP.StormWatch O43 - CFD: 08/07/2012 - 18:37:51 - [0] ----D C:\Program Files (x86)\Strange Loop Games O43 - CFD: 29/04/2012 - 14:59:25 - [] ----D C:\Program Files (x86)\Strategy First Inc O43 - CFD: 09/12/2010 - 08:05:56 - [] ----D C:\Program Files (x86)\Super Meat Boy O43 - CFD: 12/09/2013 - 19:35:48 - [] ----D C:\Program Files (x86)\Superfrog HD O43 - CFD: 30/09/2011 - 18:11:02 - [] ----D C:\Program Files (x86)\Team17 O43 - CFD: 15/06/2010 - 23:45:12 - [0] ----D C:\Program Files (x86)\Techland O43 - CFD: 01/08/2014 - 18:03:20 - [] ----D C:\Program Files (x86)\Teyon O43 - CFD: 11/11/2010 - 00:58:06 - [] ----D C:\Program Files (x86)\The Ball O43 - CFD: 29/09/2011 - 19:17:29 - [] ----D C:\Program Files (x86)\The Binding of Isaac O43 - CFD: 27/08/2012 - 09:52:19 - [] ----D C:\Program Files (x86)\The Elder Scrolls V Skyrim O43 - CFD: 01/06/2013 - 17:05:55 - [0] ----D C:\Program Files (x86)\The Swapper O43 - CFD: 25/04/2013 - 08:25:47 - [] ----D C:\Program Files (x86)\The UnderGarden O43 - CFD: 22/04/2011 - 20:01:59 - [] ----D C:\Program Files (x86)\Thoughtquake Studios O43 - CFD: 11/09/2012 - 23:44:06 - [0] ----D C:\Program Files (x86)\THQ O43 - CFD: 17/12/2013 - 21:46:09 - [0] ----D C:\Program Files (x86)\Tiny Utilities O43 - CFD: 22/05/2011 - 21:49:11 - [] ----D C:\Program Files (x86)\Tomato O43 - CFD: 19/07/2011 - 19:48:46 - [0] ----D C:\Program Files (x86)\TomTom DesktopSuite O43 - CFD: 11/03/2013 - 19:37:38 - [] ----D C:\Program Files (x86)\TomTom HOME 2 O43 - CFD: 16/12/2011 - 23:25:42 - [0] ----D C:\Program Files (x86)\Toxic Games O43 - CFD: 26/09/2010 - 12:22:20 - [] ----D C:\Program Files (x86)\Trend Micro O43 - CFD: 09/04/2013 - 19:55:36 - [] ----D C:\Program Files (x86)\Ubisoft O43 - CFD: 14/07/2009 - 08:47:31 - [] ----D C:\Program Files (x86)\UltraISO O43 - CFD: 02/11/2006 - 17:36:07 - [0] --H-D C:\Program Files (x86)\Uninstall Information O43 - CFD: 25/01/2012 - 19:27:44 - [] ----D C:\Program Files (x86)\URL2JPEG O43 - CFD: 16/09/2014 - 23:36:55 - [] ----D C:\Program Files (x86)\uTorrent =>P2P.µTorrent O43 - CFD: 20/04/2011 - 17:52:20 - [] ----D C:\Program Files (x86)\Valve O43 - CFD: 07/02/2011 - 23:57:52 - [] ----D C:\Program Files (x86)\VDownloader O43 - CFD: 15/04/2015 - 16:49:13 - [] ----D C:\Program Files (x86)\version36BlockAndSurf =>PUP.BlockAndSurf O43 - CFD: 13/08/2013 - 18:12:41 - [] ----D C:\Program Files (x86)\VideoLAN O43 - CFD: 07/11/2014 - 19:44:29 - [] ----D C:\Program Files (x86)\VirtualDJ O43 - CFD: 27/12/2010 - 15:53:11 - [] ----D C:\Program Files (x86)\VTech O43 - CFD: 15/04/2015 - 09:38:51 - [] ----D C:\Program Files (x86)\Wajam =>PUP.Wajam O43 - CFD: 15/04/2015 - 09:39:02 - [] ----D C:\Program Files (x86)\WaNetworkEnhance =>PUP.Wajam O43 - CFD: 14/03/2012 - 21:32:49 - [] ----D C:\Program Files (x86)\WARP O43 - CFD: 28/10/2012 - 18:11:07 - [0] ----D C:\Program Files (x86)\WB Games O43 - CFD: 28/08/2010 - 19:25:56 - [] ----D C:\Program Files (x86)\Windosill O43 - CFD: 09/06/2011 - 23:02:07 - [] ----D C:\Program Files (x86)\Windows Calendar O43 - CFD: 21/01/2008 - 05:09:47 - [] ----D C:\Program Files (x86)\Windows Collaboration O43 - CFD: 21/01/2008 - 05:09:41 - [] ----D C:\Program Files (x86)\Windows Defender O43 - CFD: 07/02/2011 - 15:12:04 - [] ----D C:\Program Files (x86)\Windows Live O43 - CFD: 22/11/2009 - 21:48:05 - [] ----D C:\Program Files (x86)\Windows Live Safety Center O43 - CFD: 11/01/2009 - 04:58:22 - [] ----D C:\Program Files (x86)\Windows Live SkyDrive O43 - CFD: 22/04/2012 - 17:11:23 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 09/06/2011 - 23:02:07 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 02/11/2006 - 17:07:27 - [] ----D C:\Program Files (x86)\Windows NT O43 - CFD: 09/06/2011 - 23:02:07 - [] ----D C:\Program Files (x86)\Windows Photo Gallery O43 - CFD: 11/06/2011 - 15:19:30 - [] ----D C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 09/06/2011 - 23:02:07 - [] ----D C:\Program Files (x86)\Windows Sidebar O43 - CFD: 16/07/2009 - 00:34:09 - [] ----D C:\Program Files (x86)\WinSCP O43 - CFD: 23/04/2012 - 10:25:48 - [] ----D C:\Program Files (x86)\Winstep O43 - CFD: 15/04/2015 - 16:52:26 - [] ----D C:\Program Files (x86)\XTab O43 - CFD: 15/04/2015 - 19:53:33 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman O43 - CFD: 02/11/2014 - 21:15:20 - [] ----D C:\Program Files (x86)\Zylom Games O43 - CFD: 15/04/2015 - 16:40:33 - [] ----D C:\Program Files (x86)\Common Files\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e O43 - CFD: 19/02/2012 - 22:25:45 - [] ----D C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 13/12/2014 - 20:22:51 - [] ----D C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 12/01/2015 - 01:59:25 - [] ----D C:\Program Files (x86)\Common Files\ArcSoft O43 - CFD: 01/09/2010 - 22:48:00 - [] ----D C:\Program Files (x86)\Common Files\BioWare O43 - CFD: 21/02/2015 - 21:52:28 - [0] ----D C:\Program Files (x86)\Common Files\Blizzard Entertainment O43 - CFD: 11/08/2010 - 18:53:30 - [] ----D C:\Program Files (x86)\Common Files\BOONTY Shared O43 - CFD: 11/01/2009 - 04:43:36 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 17/02/2011 - 22:32:57 - [] ----D C:\Program Files (x86)\Common Files\DVDVIDEOSOFT O43 - CFD: 08/02/2012 - 00:32:50 - [] --H-D C:\Program Files (x86)\Common Files\EAInstaller O43 - CFD: 14/07/2009 - 08:47:31 - [] ----D C:\Program Files (x86)\Common Files\EZB Systems O43 - CFD: 14/07/2009 - 00:32:19 - [] ----D C:\Program Files (x86)\Common Files\France Telecom O43 - CFD: 28/05/2011 - 14:35:02 - [] ----D C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 15/10/2014 - 06:41:39 - [] ----D C:\Program Files (x86)\Common Files\Java O43 - CFD: 23/07/2011 - 20:05:36 - [] ----D C:\Program Files (x86)\Common Files\LightScribe O43 - CFD: 03/08/2013 - 15:06:32 - [0] ----D C:\Program Files (x86)\Common Files\Merge Modules O43 - CFD: 03/08/2013 - 15:07:09 - [] ----D C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 06/02/2011 - 21:19:10 - [] ----D C:\Program Files (x86)\Common Files\Nero O43 - CFD: 04/01/2011 - 19:22:14 - [] ----D C:\Program Files (x86)\Common Files\Oberon Media O43 - CFD: 02/11/2006 - 15:33:53 - [] ----D C:\Program Files (x86)\Common Files\Services O43 - CFD: 05/03/2015 - 20:44:22 - [] ----D C:\Program Files (x86)\Common Files\Skype O43 - CFD: 02/11/2006 - 15:33:53 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 22/08/2012 - 18:07:44 - [] ----D C:\Program Files (x86)\Common Files\Steam O43 - CFD: 12/11/2011 - 10:00:14 - [] ----D C:\Program Files (x86)\Common Files\System O43 - CFD: 22/05/2011 - 21:49:12 - [] ----D C:\Program Files (x86)\Common Files\Tomato O43 - CFD: 11/01/2009 - 04:57:29 - [] ----D C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 01/02/2011 - 20:26:46 - [] -SH-D C:\Program Files (x86)\Common Files\WindowsLiveInstaller O43 - CFD: 30/03/2012 - 10:30:16 - [] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard O43 - CFD: 25/04/2013 - 21:41:29 - [] ----D C:\ProgramData\10tons O43 - CFD: 20/08/2013 - 19:49:04 - [0] ----D C:\ProgramData\4shared Desktop O43 - CFD: 15/04/2015 - 16:40:31 - [] ----D C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e O43 - CFD: 11/01/2009 - 05:10:46 - [] ----D C:\ProgramData\Acer GameZone Console O43 - CFD: 19/02/2012 - 22:25:45 - [] ----D C:\ProgramData\Adobe O43 - CFD: 22/01/2011 - 14:33:21 - [] ----D C:\ProgramData\Alwil Software O43 - CFD: 07/11/2014 - 19:44:43 - [] ----D C:\ProgramData\APN O43 - CFD: 13/12/2014 - 20:23:07 - [] ----D C:\ProgramData\Apple O43 - CFD: 02/11/2006 - 17:42:17 - [] -SH-D C:\ProgramData\Application Data O43 - CFD: 12/07/2009 - 11:50:41 - [] ----D C:\ProgramData\Arcade Lab O43 - CFD: 12/01/2015 - 01:50:41 - [] ----D C:\ProgramData\ArcSoft O43 - CFD: 13/08/2010 - 02:51:11 - [0] ----D C:\ProgramData\ASign O43 - CFD: 19/05/2012 - 19:05:42 - [] ----D C:\ProgramData\ATI O43 - CFD: 09/11/2010 - 02:01:50 - [] ----D C:\ProgramData\AWEM O43 - CFD: 26/01/2011 - 22:10:29 - [] ----D C:\ProgramData\Balls O43 - CFD: 12/09/2012 - 21:39:31 - [] ----D C:\ProgramData\Battle.net O43 - CFD: 12/09/2012 - 21:40:38 - [] ----D C:\ProgramData\Blizzard Entertainment O43 - CFD: 11/08/2010 - 18:54:16 - [] ----D C:\ProgramData\BOONTY O43 - CFD: 11/07/2009 - 10:25:07 - [] -SH-D C:\ProgramData\Bureau O43 - CFD: 18/10/2009 - 12:02:48 - [] ----D C:\ProgramData\Cabela's Outdoor Adventures Saves O43 - CFD: 12/02/2015 - 21:10:42 - [0] ----D C:\ProgramData\Canon IJ Network Tool O43 - CFD: 12/02/2015 - 21:09:39 - [] --H-D C:\ProgramData\CanonBJ O43 - CFD: 12/02/2015 - 21:03:28 - [] --H-D C:\ProgramData\CanonIJETV O43 - CFD: 12/02/2015 - 21:54:17 - [] --H-D C:\ProgramData\CanonIJMIG O43 - CFD: 13/04/2015 - 17:44:21 - [] ----D C:\ProgramData\CanonIJPLM O43 - CFD: 12/02/2015 - 21:42:44 - [] --H-D C:\ProgramData\CanonIJQuickMenu O43 - CFD: 12/02/2015 - 21:42:08 - [] ----D C:\ProgramData\CanonIJWSpt O43 - CFD: 25/05/2012 - 22:10:19 - [] ----D C:\ProgramData\Codemasters O43 - CFD: 01/02/2014 - 21:43:11 - [] ----D C:\ProgramData\CODEX O43 - CFD: 02/11/2014 - 21:18:08 - [] ----D C:\ProgramData\com.gamehouse.acid O43 - CFD: 11/01/2009 - 05:03:45 - [] ----D C:\ProgramData\CyberLink O43 - CFD: 03/08/2013 - 08:49:45 - [] ----D C:\ProgramData\DAEMON Tools Lite =>.DT Soft Ltd O43 - CFD: 03/12/2011 - 10:51:50 - [] ----D C:\ProgramData\DAEMON Tools Pro O43 - CFD: 02/11/2006 - 17:42:17 - [] -SH-D C:\ProgramData\Desktop O43 - CFD: 27/12/2010 - 18:58:03 - [] ----D C:\ProgramData\dingogames O43 - CFD: 02/11/2006 - 17:42:17 - [] -SH-D C:\ProgramData\Documents O43 - CFD: 17/10/2010 - 15:16:55 - [] -SH-D C:\ProgramData\DSS O43 - CFD: 01/02/2015 - 21:49:31 - [] ----D C:\ProgramData\DVD Shrink O43 - CFD: 20/11/2010 - 19:51:19 - [] ----D C:\ProgramData\EA Core O43 - CFD: 14/03/2012 - 17:10:58 - [] ----D C:\ProgramData\EA Logs O43 - CFD: 20/11/2010 - 19:51:19 - [] ----D C:\ProgramData\Electronic Arts O43 - CFD: 23/07/2009 - 18:55:56 - [] ----D C:\ProgramData\eMule O43 - CFD: 05/10/2011 - 22:08:19 - [] ----D C:\ProgramData\EPSON O43 - CFD: 24/07/2009 - 23:31:35 - [0] ----D C:\ProgramData\EPtemp O43 - CFD: 11/01/2009 - 05:23:17 - [] ----D C:\ProgramData\eSobi O43 - CFD: 11/07/2009 - 10:25:07 - [] -SH-D C:\ProgramData\Favoris O43 - CFD: 02/11/2006 - 17:42:17 - [] -SH-D C:\ProgramData\Favorites O43 - CFD: 05/04/2011 - 22:30:26 - [] ----D C:\ProgramData\FlashFXP O43 - CFD: 15/08/2009 - 15:03:40 - [] ----D C:\ProgramData\GlobalSCAPE O43 - CFD: 20/08/2011 - 14:45:29 - [] ----D C:\ProgramData\Google O43 - CFD: 07/09/2011 - 18:55:35 - [0] ----D C:\ProgramData\Guitar Pro 6 O43 - CFD: 01/04/2014 - 17:35:11 - [] ----D C:\ProgramData\HP O43 - CFD: 19/05/2012 - 12:28:59 - [] ----D C:\ProgramData\HP Photo Creations O43 - CFD: 15/04/2015 - 10:02:16 - [] ----D C:\ProgramData\IHProtectUpDate =>Adware.AgentODR O43 - CFD: 14/07/2012 - 15:38:55 - [] ----D C:\ProgramData\InstallShield O43 - CFD: 15/09/2012 - 08:00:25 - [] ----D C:\ProgramData\JAGUAR O43 - CFD: 15/09/2010 - 16:07:07 - [] ----D C:\ProgramData\Lavasoft O43 - CFD: 04/02/2013 - 09:03:37 - [] ----D C:\ProgramData\Lightmare Studio O43 - CFD: 16/08/2010 - 02:18:30 - [] ----D C:\ProgramData\LucasArts O43 - CFD: 08/11/2014 - 19:24:55 - [] ----D C:\ProgramData\Malwarebytes O43 - CFD: 11/07/2009 - 21:51:12 - [] ----D C:\ProgramData\McAfee O43 - CFD: 28/10/2009 - 22:51:40 - [] ----D C:\ProgramData\McAfee Security Scan O43 - CFD: 29/06/2011 - 18:44:21 - [0] ----D C:\ProgramData\Media Center Programs O43 - CFD: 11/07/2009 - 10:25:07 - [] -SH-D C:\ProgramData\Menu Démarrer O43 - CFD: 12/07/2009 - 23:04:57 - [] ----D C:\ProgramData\Meridian93 O43 - CFD: 29/12/2013 - 17:13:42 - [] ----D C:\ProgramData\Microsoft O43 - CFD: 25/05/2013 - 13:20:02 - [] ----D C:\ProgramData\Microsoft Help O43 - CFD: 11/07/2009 - 10:25:07 - [] -SH-D C:\ProgramData\Modèles O43 - CFD: 25/04/2012 - 17:19:28 - [] ----D C:\ProgramData\Mozilla O43 - CFD: 26/08/2011 - 18:32:24 - [] ----D C:\ProgramData\MumboJumbo O43 - CFD: 11/03/2013 - 19:41:51 - [] ----D C:\ProgramData\Native Instruments O43 - CFD: 10/10/2014 - 18:08:27 - [] ----D C:\ProgramData\NCH Software O43 - CFD: 06/02/2011 - 21:15:01 - [] ----D C:\ProgramData\Nero O43 - CFD: 23/12/2012 - 20:50:16 - [] ----D C:\ProgramData\Nifflas O43 - CFD: 16/07/2014 - 14:28:53 - [] ----D C:\ProgramData\NVIDIA O43 - CFD: 14/07/2014 - 19:11:56 - [] ----D C:\ProgramData\NVIDIA Corporation O43 - CFD: 15/10/2014 - 06:41:57 - [0] ----D C:\ProgramData\Oracle O43 - CFD: 08/01/2015 - 23:32:16 - [] ----D C:\ProgramData\Orange O43 - CFD: 09/04/2013 - 19:44:47 - [] ----D C:\ProgramData\Orbit O43 - CFD: 25/10/2012 - 06:00:04 - [] ----D C:\ProgramData\Origin O43 - CFD: 01/08/2010 - 14:58:37 - [] ----D C:\ProgramData\Orion O43 - CFD: 03/07/2012 - 23:12:11 - [] ----D C:\ProgramData\OUTLAWS O43 - CFD: 11/03/2015 - 22:47:38 - [] ----D C:\ProgramData\Package Cache O43 - CFD: 05/02/2010 - 00:21:24 - [] ----D C:\ProgramData\PC Suite O43 - CFD: 01/11/2011 - 11:34:59 - [] ----D C:\ProgramData\PICTUREKA LA CHASSE AUX IMAGES O43 - CFD: 08/05/2012 - 20:20:14 - [] ----D C:\ProgramData\PMS O43 - CFD: 11/03/2013 - 19:39:47 - [] ----D C:\ProgramData\PopCap Games O43 - CFD: 02/11/2014 - 21:19:42 - [] ----D C:\ProgramData\Real O43 - CFD: 13/11/2011 - 18:00:16 - [] ----D C:\ProgramData\regid.1986-12.com.adobe O43 - CFD: 15/04/2015 - 16:41:27 - [] ----D C:\ProgramData\Registry Helper =>PUP.RegistryHelper O43 - CFD: 23/10/2011 - 10:44:37 - [] ----D C:\ProgramData\RELOADED O43 - CFD: 04/08/2012 - 00:05:15 - [] ----D C:\ProgramData\Remedy O43 - CFD: 15/04/2015 - 18:48:01 - [] ----D C:\ProgramData\Serveur Média O43 - CFD: 17/02/2011 - 22:35:36 - [] ----D C:\ProgramData\SiComponents O43 - CFD: 11/01/2009 - 04:55:46 - [] ----D C:\ProgramData\SiteAdvisor O43 - CFD: 05/03/2015 - 20:44:20 - [] ----D C:\ProgramData\Skype O43 - CFD: 02/04/2011 - 08:15:34 - [] ----D C:\ProgramData\Solidshield O43 - CFD: 12/07/2009 - 23:06:07 - [] ----D C:\ProgramData\SpinTop Games O43 - CFD: 13/09/2011 - 00:22:28 - [] ----D C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 02/11/2006 - 17:42:17 - [] -SH-D C:\ProgramData\Start Menu O43 - CFD: 27/02/2013 - 00:41:15 - [] ----D C:\ProgramData\Steam O43 - CFD: 02/05/2010 - 17:08:45 - [] ----D C:\ProgramData\Sun O43 - CFD: 20/12/2010 - 23:07:18 - [0] ----D C:\ProgramData\Synetic O43 - CFD: 15/04/2015 - 11:05:22 - [] ----D C:\ProgramData\Systweak O43 - CFD: 20/03/2015 - 08:48:55 - [0] ---AD C:\ProgramData\TEMP O43 - CFD: 02/11/2006 - 17:42:17 - [] -SH-D C:\ProgramData\Templates O43 - CFD: 19/07/2011 - 19:49:40 - [] ----D C:\ProgramData\TomTom O43 - CFD: 02/11/2014 - 21:18:07 - [] ----D C:\ProgramData\Trymedia =>Adware.Trymedia O43 - CFD: 20/12/2010 - 22:16:12 - [] ----D C:\ProgramData\Ubisoft O43 - CFD: 12/09/2009 - 20:38:57 - [] ----D C:\ProgramData\UDL O43 - CFD: 06/10/2011 - 00:15:58 - [] ----D C:\ProgramData\Visan O43 - CFD: 05/03/2015 - 20:56:19 - [] ----D C:\ProgramData\VS O43 - CFD: 27/12/2010 - 15:51:33 - [] ----D C:\ProgramData\VTech O43 - CFD: 15/04/2015 - 10:01:58 - [] ----D C:\ProgramData\WindowsMangerProtect =>PUP.Fuyu O43 - CFD: 01/02/2011 - 20:23:35 - [] ----D C:\ProgramData\WLInstaller O43 - CFD: 16/05/2013 - 22:05:08 - [] ----D C:\ProgramData\XLive O43 - CFD: 02/11/2014 - 21:15:09 - [] ----D C:\ProgramData\Zylom O43 - CFD: 20/09/2009 - 10:01:55 - [0] ----D C:\ProgramData\{2BAE6915-8510-4B9F-B498-02DA86258AA0} O43 - CFD: 15/04/2015 - 16:41:37 - [] ----D C:\ProgramData\{48867fc6-0299-1a47-4886-67fc6029ff18} O43 - CFD: 20/03/2013 - 22:23:27 - [] --H-D C:\ProgramData\~1 O43 - CFD: 20/03/2013 - 22:23:27 - [] --H-D C:\ProgramData\~2 O43 - CFD: 20/03/2013 - 22:23:27 - [] --H-D C:\ProgramData\~3 O43 - CFD: 20/03/2013 - 22:23:27 - [] --H-D C:\ProgramData\~4 O43 - CFD: 20/03/2013 - 22:23:27 - [] --H-D C:\ProgramData\~5 O43 - CFD: 20/03/2013 - 22:23:27 - [] --H-D C:\ProgramData\~6 O43 - CFD: 25/10/2013 - 18:18:16 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\(Default) O43 - CFD: 16/01/2011 - 12:18:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip O43 - CFD: 30/10/2011 - 15:58:31 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A Day in the Woods O43 - CFD: 09/04/2011 - 20:17:43 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 11/01/2009 - 04:37:57 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer O43 - CFD: 11/01/2009 - 04:37:28 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Arcade Live O43 - CFD: 11/01/2009 - 05:28:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GameZone O43 - CFD: 11/01/2009 - 05:28:55 - [] ---AD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem O43 - CFD: 09/04/2011 - 20:17:43 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 13/11/2011 - 17:49:52 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe O43 - CFD: 15/04/2015 - 11:05:24 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced~System Protector O43 - CFD: 28/09/2010 - 15:49:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aMSN O43 - CFD: 21/02/2015 - 21:46:22 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net O43 - CFD: 15/11/2012 - 06:43:59 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blue Ripple Sound O43 - CFD: 11/08/2010 - 20:42:04 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BoontyGames O43 - CFD: 01/11/2010 - 21:18:15 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Modern Warfare 2 O43 - CFD: 12/02/2015 - 21:42:11 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities O43 - CFD: 22/06/2012 - 22:22:03 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center O43 - CFD: 08/11/2014 - 19:17:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner O43 - CFD: 27/09/2010 - 11:39:01 - [0] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\City Interactive O43 - CFD: 24/08/2010 - 23:18:12 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Codemasters O43 - CFD: 03/08/2013 - 08:31:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite =>.DT Soft Ltd O43 - CFD: 07/01/2012 - 18:46:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dBpoweramp Music Converter O43 - CFD: 23/04/2012 - 09:06:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Cleaner Pro O43 - CFD: 01/07/2013 - 17:33:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVIDEOSOFT O43 - CFD: 23/07/2009 - 18:55:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eMule O43 - CFD: 12/02/2015 - 21:09:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enregistrement utilisateur de Canon MG5600 series =>.Canon Inc O43 - CFD: 11/01/2009 - 05:23:12 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSobi v2 O43 - CFD: 21/01/2008 - 05:20:45 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades O43 - CFD: 15/04/2015 - 09:16:17 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeGamePick O43 - CFD: 01/11/2011 - 08:59:44 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FTPRush O43 - CFD: 12/09/2013 - 19:35:47 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 15/04/2015 - 16:42:35 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>Adware.GamesDesktop O43 - CFD: 23/10/2012 - 18:04:59 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Giana Sisters - Twisted Dreams O43 - CFD: 11/03/2015 - 22:44:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com O43 - CFD: 20/03/2013 - 22:23:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 09/10/2014 - 12:02:52 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth =>.Google Inc O43 - CFD: 21/02/2015 - 21:52:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone O43 - CFD: 05/10/2011 - 21:19:21 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP O43 - CFD: 21/04/2011 - 21:04:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HSS Orange O43 - CFD: 18/07/2009 - 11:56:28 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image 2 ASCII Art O43 - CFD: 16/08/2010 - 17:10:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IQ Publishing O43 - CFD: 01/02/2014 - 21:38:49 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 13/08/2013 - 18:12:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack O43 - CFD: 05/09/2009 - 23:49:04 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling O43 - CFD: 21/04/2011 - 20:59:25 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Livebox O43 - CFD: 17/10/2009 - 17:48:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Machinarium O43 - CFD: 02/11/2006 - 17:36:19 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 07/05/2011 - 18:54:18 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace O43 - CFD: 11/01/2009 - 04:45:25 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office O43 - CFD: 06/07/2010 - 02:43:30 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in O43 - CFD: 12/10/2014 - 10:36:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight O43 - CFD: 29/07/2014 - 06:18:16 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Studios O43 - CFD: 11/03/2015 - 22:45:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express O43 - CFD: 17/12/2009 - 07:53:44 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works O43 - CFD: 07/01/2012 - 18:21:26 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mr QuestionMan O43 - CFD: 06/02/2011 - 21:18:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero O43 - CFD: 11/01/2009 - 05:05:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Backup Now 5 O43 - CFD: 11/01/2009 - 05:05:11 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8 O43 - CFD: 14/07/2014 - 19:11:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation O43 - CFD: 11/07/2009 - 23:48:24 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NX Client for Windows O43 - CFD: 04/01/2011 - 19:22:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oberon Media O43 - CFD: 24/01/2011 - 23:03:18 - [] -S--D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.2 O43 - CFD: 15/04/2015 - 09:38:25 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2 =>PUP.OptimizerPro O43 - CFD: 25/02/2015 - 19:49:35 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orange O43 - CFD: 12/07/2009 - 00:41:08 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre O43 - CFD: 20/11/2010 - 22:22:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Playlogic O43 - CFD: 01/11/2011 - 11:34:18 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pogo O43 - CFD: 10/10/2014 - 18:08:02 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes audio O43 - CFD: 11/06/2011 - 11:35:31 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razor 1911 O43 - CFD: 03/10/2012 - 22:38:18 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Kawa O43 - CFD: 15/04/2015 - 11:04:47 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro =>Rogue.RegistryPowerCleaner O43 - CFD: 15/04/2015 - 11:04:26 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry Helper =>PUP.RegistryHelper O43 - CFD: 24/08/2010 - 01:02:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ricochet Infinity O43 - CFD: 19/11/2012 - 18:55:07 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rovio O43 - CFD: 05/02/2010 - 00:44:14 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung New PC Studio O43 - CFD: 04/05/2012 - 18:30:35 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA O43 - CFD: 06/09/2010 - 18:12:10 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serious Sam 2 O43 - CFD: 03/03/2012 - 20:51:09 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serveur Média O43 - CFD: 16/08/2010 - 21:57:44 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Singularity(TM) O43 - CFD: 05/03/2015 - 20:44:22 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype O43 - CFD: 11/07/2009 - 10:39:37 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartCopy O43 - CFD: 11/07/2009 - 10:39:51 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartLauncher O43 - CFD: 07/11/2010 - 17:51:57 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmashMouthGames O43 - CFD: 13/09/2010 - 19:42:38 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy O43 - CFD: 23/08/2013 - 13:40:50 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 22/08/2012 - 18:07:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam O43 - CFD: 11/09/2009 - 20:49:48 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steel Saviour O43 - CFD: 15/04/2015 - 10:00:24 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StormWatch =>PUP.StormWatch O43 - CFD: 10/10/2014 - 18:08:02 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite NCH Software O43 - CFD: 14/01/2014 - 19:17:23 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPER © - by eRightSoft O43 - CFD: 02/11/2006 - 17:07:25 - [] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 22/04/2011 - 20:03:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tesla The Weather Man O43 - CFD: 07/09/2013 - 13:47:51 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tiny Utilities O43 - CFD: 02/08/2010 - 15:11:40 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TundraDraw O43 - CFD: 09/02/2013 - 20:23:07 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Turtle Beach O43 - CFD: 14/07/2009 - 08:47:32 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO O43 - CFD: 13/08/2013 - 18:19:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN O43 - CFD: 27/12/2010 - 15:53:21 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VTech O43 - CFD: 15/04/2015 - 09:39:02 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WaNetworkEnhance O43 - CFD: 07/02/2011 - 15:12:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live O43 - CFD: 14/07/2009 - 08:55:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 16/07/2009 - 00:34:09 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP O43 - CFD: 22/11/2011 - 22:55:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winstep O43 - CFD: 15/04/2015 - 19:53:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman O43 - CFD: 12/07/2009 - 11:41:54 - [0] -SH-D C:\Users\betto\AppData\Roaming\.# O43 - CFD: 11/02/2013 - 12:06:51 - [] ----D C:\Users\betto\AppData\Roaming\.dvdcss O43 - CFD: 15/04/2015 - 09:35:30 - [] ----D C:\Users\betto\AppData\Roaming\.minecraft O43 - CFD: 25/04/2013 - 21:41:29 - [] ----D C:\Users\betto\AppData\Roaming\10tons O43 - CFD: 16/08/2010 - 02:01:34 - [] ----D C:\Users\betto\AppData\Roaming\2XL O43 - CFD: 13/01/2012 - 19:38:12 - [] ----D C:\Users\betto\AppData\Roaming\AccurateRip O43 - CFD: 11/01/2009 - 05:10:46 - [] ----D C:\Users\betto\AppData\Roaming\Acer GameZone Console O43 - CFD: 02/08/2012 - 00:29:35 - [] ----D C:\Users\betto\AppData\Roaming\Adobe O43 - CFD: 01/02/2012 - 21:54:55 - [] ----D C:\Users\betto\AppData\Roaming\Adobe Mini Bridge CS5 O43 - CFD: 12/09/2012 - 20:32:24 - [] ----D C:\Users\betto\AppData\Roaming\AlawarEntertainment O43 - CFD: 26/08/2010 - 00:42:24 - [] ----D C:\Users\betto\AppData\Roaming\AlderGames O43 - CFD: 15/04/2015 - 10:56:16 - [] -SH-D C:\Users\betto\AppData\Roaming\AnyProtectEx =>PUP.AnyProtect O43 - CFD: 12/01/2015 - 01:50:39 - [] ----D C:\Users\betto\AppData\Roaming\ArcSoft O43 - CFD: 23/04/2012 - 10:22:58 - [] ----D C:\Users\betto\AppData\Roaming\ATI O43 - CFD: 27/05/2012 - 21:26:28 - [] ----D C:\Users\betto\AppData\Roaming\Audacity O43 - CFD: 11/07/2013 - 08:25:44 - [] ----D C:\Users\betto\AppData\Roaming\AutoTivity O43 - CFD: 25/08/2011 - 21:24:18 - [] ----D C:\Users\betto\AppData\Roaming\avidemux O43 - CFD: 14/04/2013 - 07:58:42 - [] ----D C:\Users\betto\AppData\Roaming\AX gamesoft O43 - CFD: 21/02/2015 - 21:51:21 - [] ----D C:\Users\betto\AppData\Roaming\Battle.net O43 - CFD: 23/03/2010 - 21:12:34 - [] ----D C:\Users\betto\AppData\Roaming\Bioshock2 O43 - CFD: 22/08/2009 - 10:56:22 - [] ----D C:\Users\betto\AppData\Roaming\BlackBean O43 - CFD: 12/08/2010 - 02:38:22 - [] ----D C:\Users\betto\AppData\Roaming\Braid O43 - CFD: 19/03/2012 - 20:00:27 - [0] ----D C:\Users\betto\AppData\Roaming\Broad Intelligence O43 - CFD: 11/02/2013 - 11:58:22 - [] ----D C:\Users\betto\AppData\Roaming\Brorsoft O43 - CFD: 25/02/2015 - 19:50:09 - [] ----D C:\Users\betto\AppData\Roaming\Canon O43 - CFD: 21/08/2009 - 23:10:40 - [] ----D C:\Users\betto\AppData\Roaming\Capcom O43 - CFD: 20/04/2013 - 10:21:32 - [] ----D C:\Users\betto\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 O43 - CFD: 02/10/2010 - 16:56:53 - [] ----D C:\Users\betto\AppData\Roaming\Chime O43 - CFD: 29/06/2011 - 18:42:51 - [] ----D C:\Users\betto\AppData\Roaming\CityBus O43 - CFD: 04/01/2011 - 19:23:26 - [] ----D C:\Users\betto\AppData\Roaming\Clickteam O43 - CFD: 13/09/2011 - 22:22:22 - [] ----D C:\Users\betto\AppData\Roaming\Clockwork Pixels O43 - CFD: 29/11/2010 - 20:45:42 - [] ----D C:\Users\betto\AppData\Roaming\Clones O43 - CFD: 25/11/2012 - 20:42:04 - [] ----D C:\Users\betto\AppData\Roaming\com.northwayGames.Incredipede O43 - CFD: 13/08/2013 - 17:51:01 - [] ----D C:\Users\betto\AppData\Roaming\DAEMON Tools Lite =>.DT Soft Ltd O43 - CFD: 03/12/2011 - 11:01:17 - [] ----D C:\Users\betto\AppData\Roaming\DAEMON Tools Pro O43 - CFD: 18/02/2012 - 16:00:55 - [] ----D C:\Users\betto\AppData\Roaming\DarknessII O43 - CFD: 23/06/2011 - 08:50:23 - [] ----D C:\Users\betto\AppData\Roaming\Day 1 Studios O43 - CFD: 12/01/2012 - 22:05:10 - [] ----D C:\Users\betto\AppData\Roaming\dBpoweramp O43 - CFD: 27/12/2010 - 18:58:03 - [] ----D C:\Users\betto\AppData\Roaming\dingogames O43 - CFD: 15/05/2011 - 12:11:06 - [0] ----D C:\Users\betto\AppData\Roaming\DisneyInteractiveStudios O43 - CFD: 19/11/2010 - 01:23:46 - [] ----D C:\Users\betto\AppData\Roaming\DocClockGame O43 - CFD: 27/02/2013 - 00:41:20 - [] ----D C:\Users\betto\AppData\Roaming\Doublefine O43 - CFD: 01/02/2015 - 20:06:59 - [] ----D C:\Users\betto\AppData\Roaming\dvdcss O43 - CFD: 19/05/2012 - 13:57:59 - [] ----D C:\Users\betto\AppData\Roaming\Dynamite Jack O43 - CFD: 02/01/2012 - 12:15:17 - [] ----D C:\Users\betto\AppData\Roaming\EAC O43 - CFD: 30/09/2010 - 19:31:45 - [] ----D C:\Users\betto\AppData\Roaming\EPSON O43 - CFD: 29/12/2010 - 17:25:14 - [] ----D C:\Users\betto\AppData\Roaming\ExportTool O43 - CFD: 14/08/2010 - 16:21:50 - [0] ----D C:\Users\betto\AppData\Roaming\FairyTale O43 - CFD: 01/05/2013 - 20:52:11 - [] ----D C:\Users\betto\AppData\Roaming\FEZ O43 - CFD: 19/07/2012 - 07:26:39 - [] ----D C:\Users\betto\AppData\Roaming\FileZilla O43 - CFD: 14/07/2009 - 11:31:33 - [] ----D C:\Users\betto\AppData\Roaming\FlashFXP O43 - CFD: 29/07/2012 - 00:15:29 - [] ----D C:\Users\betto\AppData\Roaming\FTPRush O43 - CFD: 03/12/2011 - 10:41:32 - [] ----D C:\Users\betto\AppData\Roaming\GetRightToGo O43 - CFD: 12/07/2009 - 23:01:05 - [] ----D C:\Users\betto\AppData\Roaming\Go Go Gourmet O43 - CFD: 11/07/2009 - 20:56:42 - [] ----D C:\Users\betto\AppData\Roaming\Google O43 - CFD: 07/09/2011 - 21:25:27 - [] ----D C:\Users\betto\AppData\Roaming\Guitar Pro 6 O43 - CFD: 05/12/2010 - 14:11:45 - [] ----D C:\Users\betto\AppData\Roaming\Hive Cluster O43 - CFD: 14/12/2011 - 21:24:24 - [] ----D C:\Users\betto\AppData\Roaming\HomeSheepHome2 O43 - CFD: 01/09/2011 - 21:36:29 - [] ----D C:\Users\betto\AppData\Roaming\Hothead Games O43 - CFD: 12/10/2011 - 21:24:16 - [] ----D C:\Users\betto\AppData\Roaming\HpUpdate O43 - CFD: 23/09/2010 - 22:56:02 - [] ----D C:\Users\betto\AppData\Roaming\Identities O43 - CFD: 11/07/2009 - 10:39:00 - [] ----D C:\Users\betto\AppData\Roaming\InstallShield O43 - CFD: 06/06/2010 - 18:09:58 - [] ----D C:\Users\betto\AppData\Roaming\InstallShield Installation Information O43 - CFD: 06/07/2013 - 20:42:35 - [] ----D C:\Users\betto\AppData\Roaming\Kalypso Media O43 - CFD: 22/09/2010 - 14:38:29 - [] ----D C:\Users\betto\AppData\Roaming\Leadertech O43 - CFD: 02/11/2013 - 17:55:07 - [] ----D C:\Users\betto\AppData\Roaming\LoneSurvivor O43 - CFD: 02/10/2011 - 20:53:15 - [] ----D C:\Users\betto\AppData\Roaming\Macromedia O43 - CFD: 11/11/2010 - 02:10:32 - [] ----D C:\Users\betto\AppData\Roaming\Magnet's Story O43 - CFD: 08/11/2014 - 19:25:04 - [0] ----D C:\Users\betto\AppData\Roaming\Malwarebytes O43 - CFD: 02/08/2010 - 15:30:09 - [] ----D C:\Users\betto\AppData\Roaming\Mazaika O43 - CFD: 02/11/2006 - 17:07:25 - [0] ----D C:\Users\betto\AppData\Roaming\Media Center Programs O43 - CFD: 12/07/2009 - 23:04:47 - [] ----D C:\Users\betto\AppData\Roaming\Meridian93 O43 - CFD: 25/11/2014 - 21:10:32 - [] -S--D C:\Users\betto\AppData\Roaming\Microsoft O43 - CFD: 15/04/2015 - 19:56:58 - [] ----D C:\Users\betto\AppData\Roaming\mIRC O43 - CFD: 02/11/2013 - 23:36:14 - [0] ----D C:\Users\betto\AppData\Roaming\MMFApplications O43 - CFD: 11/07/2009 - 21:13:41 - [] ----D C:\Users\betto\AppData\Roaming\Mozilla O43 - CFD: 27/05/2012 - 21:12:19 - [] ----D C:\Users\betto\AppData\Roaming\MP3 Cut O43 - CFD: 10/10/2014 - 18:08:12 - [] ----D C:\Users\betto\AppData\Roaming\NCH Software O43 - CFD: 27/02/2011 - 22:23:36 - [] ----D C:\Users\betto\AppData\Roaming\Nero O43 - CFD: 11/01/2011 - 22:43:47 - [] ----D C:\Users\betto\AppData\Roaming\Nicalis O43 - CFD: 06/01/2013 - 01:19:56 - [] ----D C:\Users\betto\AppData\Roaming\Nifflas O43 - CFD: 02/10/2011 - 17:54:31 - [] ----D C:\Users\betto\AppData\Roaming\No Company Name O43 - CFD: 27/07/2014 - 18:50:28 - [] ----D C:\Users\betto\AppData\Roaming\NVIDIA O43 - CFD: 30/04/2012 - 22:43:06 - [] ----D C:\Users\betto\AppData\Roaming\offspringfling O43 - CFD: 24/01/2011 - 23:03:32 - [] ----D C:\Users\betto\AppData\Roaming\OpenOffice.org O43 - CFD: 15/04/2015 - 09:43:48 - [] ----D C:\Users\betto\AppData\Roaming\Optimizer Pro =>PUP.OptimizerPro O43 - CFD: 05/02/2010 - 00:21:24 - [] ----D C:\Users\betto\AppData\Roaming\PC Suite O43 - CFD: 13/07/2011 - 20:46:38 - [] ----D C:\Users\betto\AppData\Roaming\Picsoft O43 - CFD: 12/11/2013 - 07:26:30 - [] ----D C:\Users\betto\AppData\Roaming\PJShooter O43 - CFD: 02/10/2011 - 20:53:15 - [] ----D C:\Users\betto\AppData\Roaming\PlayFirst O43 - CFD: 22/04/2013 - 17:06:00 - [] ----D C:\Users\betto\AppData\Roaming\PlightOfTheZombie O43 - CFD: 01/11/2011 - 11:34:51 - [] ----D C:\Users\betto\AppData\Roaming\Pogo Games O43 - CFD: 28/04/2010 - 22:07:10 - [] ----D C:\Users\betto\AppData\Roaming\Prison Break O43 - CFD: 08/01/2011 - 16:12:40 - [] ----D C:\Users\betto\AppData\Roaming\ProtectDisc O43 - CFD: 21/07/2012 - 20:06:35 - [] ----D C:\Users\betto\AppData\Roaming\RedDotGames O43 - CFD: 09/03/2013 - 20:12:14 - [] ----D C:\Users\betto\AppData\Roaming\RetroCityRampage O43 - CFD: 12/08/2012 - 14:04:20 - [] ----D C:\Users\betto\AppData\Roaming\rigonauts O43 - CFD: 29/08/2010 - 12:41:21 - [] ----D C:\Users\betto\AppData\Roaming\Roogoo O43 - CFD: 19/11/2012 - 18:33:20 - [] ----D C:\Users\betto\AppData\Roaming\Rovio O43 - CFD: 05/02/2010 - 00:15:41 - [] ----D C:\Users\betto\AppData\Roaming\Samsung O43 - CFD: 13/02/2012 - 14:53:30 - [] ----D C:\Users\betto\AppData\Roaming\Scoregasm O43 - CFD: 10/11/2011 - 22:32:53 - [] ----D C:\Users\betto\AppData\Roaming\Sky Bros O43 - CFD: 22/06/2014 - 20:34:04 - [] ----D C:\Users\betto\AppData\Roaming\Skype O43 - CFD: 25/02/2015 - 17:37:50 - [] ----D C:\Users\betto\AppData\Roaming\Soldiers939 O43 - CFD: 12/01/2015 - 02:00:11 - [] ----D C:\Users\betto\AppData\Roaming\Songbird2 O43 - CFD: 25/02/2015 - 17:37:48 - [] ----D C:\Users\betto\AppData\Roaming\sparta111 O43 - CFD: 01/02/2012 - 21:54:55 - [] ----D C:\Users\betto\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 O43 - CFD: 13/02/2015 - 21:18:09 - [] ----D C:\Users\betto\AppData\Roaming\Steam O43 - CFD: 25/02/2015 - 19:22:18 - [0] ----D C:\Users\betto\AppData\Roaming\StormFall =>Adware.StormFall O43 - CFD: 15/04/2015 - 11:05:26 - [] ----D C:\Users\betto\AppData\Roaming\systweak O43 - CFD: 28/09/2009 - 16:40:22 - [] ----D C:\Users\betto\AppData\Roaming\Template O43 - CFD: 22/04/2011 - 20:03:16 - [] ----D C:\Users\betto\AppData\Roaming\Thoughtquake O43 - CFD: 28/05/2011 - 14:45:23 - [] ----D C:\Users\betto\AppData\Roaming\THQ O43 - CFD: 22/05/2011 - 21:49:21 - [] ----D C:\Users\betto\AppData\Roaming\Tomato O43 - CFD: 19/07/2011 - 19:49:28 - [] ----D C:\Users\betto\AppData\Roaming\TomTom O43 - CFD: 18/03/2011 - 21:04:19 - [] ----D C:\Users\betto\AppData\Roaming\Tower Builder Game O43 - CFD: 07/12/2011 - 18:54:56 - [] ----D C:\Users\betto\AppData\Roaming\Trine2 O43 - CFD: 25/04/2013 - 20:06:35 - [] ----D C:\Users\betto\AppData\Roaming\Unity O43 - CFD: 08/02/2014 - 09:04:56 - [] ----D C:\Users\betto\AppData\Roaming\Upper Byte O43 - CFD: 15/04/2015 - 19:50:25 - [] ----D C:\Users\betto\AppData\Roaming\uTorrent =>P2P.µTorrent O43 - CFD: 09/12/2011 - 23:44:01 - [] ----D C:\Users\betto\AppData\Roaming\Visan O43 - CFD: 12/04/2015 - 00:26:24 - [] ----D C:\Users\betto\AppData\Roaming\vlc O43 - CFD: 15/04/2015 - 11:03:09 - [] ----D C:\Users\betto\AppData\Roaming\VOPackage =>Adware.Downware O43 - CFD: 21/03/2012 - 18:50:04 - [] ----D C:\Users\betto\AppData\Roaming\Waveform O43 - CFD: 13/08/2013 - 20:38:17 - [] ----D C:\Users\betto\AppData\Roaming\Wayforward Technologies O43 - CFD: 14/07/2009 - 08:58:20 - [] ----D C:\Users\betto\AppData\Roaming\WinRAR O43 - CFD: 15/04/2015 - 20:09:09 - [] ----D C:\Users\betto\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 22/12/2010 - 22:05:53 - [] ----D C:\Users\betto\AppData\Roaming\ZombieDriver O43 - CFD: 23/09/2010 - 22:56:02 - [] ----D C:\Users\betto\AppData\Roaming\Zylom O43 - CFD: 05/11/2011 - 22:12:26 - [] ----D C:\Users\betto\AppData\Local\.inapptracking O43 - CFD: 19/08/2010 - 19:53:02 - [] ----D C:\Users\betto\AppData\Local\119611678098597108 O43 - CFD: 19/08/2010 - 11:00:58 - [] ----D C:\Users\betto\AppData\Local\119611678099186932 O43 - CFD: 19/08/2010 - 19:53:06 - [] ----D C:\Users\betto\AppData\Local\119614890734134516 O43 - CFD: 19/08/2010 - 11:01:04 - [] ----D C:\Users\betto\AppData\Local\119614890734724340 O43 - CFD: 04/04/2011 - 01:02:18 - [] ----D C:\Users\betto\AppData\Local\123KickIt O43 - CFD: 27/08/2011 - 13:31:18 - [] ----D C:\Users\betto\AppData\Local\28050 O43 - CFD: 28/08/2010 - 01:46:32 - [] ----D C:\Users\betto\AppData\Local\2K Games O43 - CFD: 31/07/2010 - 12:38:36 - [] ----D C:\Users\betto\AppData\Local\4A Games O43 - CFD: 15/04/2015 - 09:41:51 - [] ----D C:\Users\betto\AppData\Local\65682200-1429090907-0920-0521-174701000000 O43 - CFD: 15/04/2015 - 10:00:12 - [] ----D C:\Users\betto\AppData\Local\65682200-1429091993-0920-0521-174701000000 O43 - CFD: 02/11/2012 - 19:52:17 - [] ----D C:\Users\betto\AppData\Local\Activision O43 - CFD: 15/04/2015 - 02:00:36 - [] ----D C:\Users\betto\AppData\Local\Adobe O43 - CFD: 06/07/2010 - 17:33:18 - [] ----D C:\Users\betto\AppData\Local\aladdin O43 - CFD: 09/06/2011 - 19:32:04 - [] ----D C:\Users\betto\AppData\Local\ALI213 O43 - CFD: 11/07/2009 - 10:28:19 - [] -SH-D C:\Users\betto\AppData\Local\Application Data O43 - CFD: 12/01/2015 - 01:49:46 - [] ----D C:\Users\betto\AppData\Local\ArcSoft O43 - CFD: 23/04/2012 - 10:22:58 - [] ----D C:\Users\betto\AppData\Local\ATI O43 - CFD: 05/03/2015 - 19:55:41 - [] ----D C:\Users\betto\AppData\Local\Battle.net O43 - CFD: 14/11/2010 - 13:32:03 - [] ----D C:\Users\betto\AppData\Local\Bit.Trip Beat O43 - CFD: 03/03/2011 - 11:31:46 - [] ----D C:\Users\betto\AppData\Local\BIT.TRIP RUNNER O43 - CFD: 19/04/2012 - 14:49:38 - [] ----D C:\Users\betto\AppData\Local\BladesOfTime O43 - CFD: 21/02/2015 - 22:13:05 - [] ----D C:\Users\betto\AppData\Local\Blizzard O43 - CFD: 21/02/2015 - 21:46:27 - [] ----D C:\Users\betto\AppData\Local\Blizzard Entertainment O43 - CFD: 27/12/2010 - 15:53:39 - [] ----D C:\Users\betto\AppData\Local\cache O43 - CFD: 16/07/2009 - 18:36:37 - [] ----D C:\Users\betto\AppData\Local\CAPCOM O43 - CFD: 09/11/2010 - 00:30:02 - [] --H-D C:\Users\betto\AppData\Local\ChenzoPark O43 - CFD: 02/11/2014 - 21:17:56 - [] ----D C:\Users\betto\AppData\Local\com.gamehouse.acid O43 - CFD: 13/09/2010 - 22:28:25 - [] ----D C:\Users\betto\AppData\Local\Criterion Games O43 - CFD: 25/09/2012 - 21:22:36 - [] ----D C:\Users\betto\AppData\Local\CuteThingsDyingViolently O43 - CFD: 23/09/2010 - 10:37:00 - [] ----D C:\Users\betto\AppData\Local\Darksiders O43 - CFD: 14/08/2012 - 21:13:33 - [] ----D C:\Users\betto\AppData\Local\Darksiders2 O43 - CFD: 02/10/2010 - 20:58:20 - [] ----D C:\Users\betto\AppData\Local\Deep Silver O43 - CFD: 07/04/2012 - 08:39:32 - [] ----D C:\Users\betto\AppData\Local\Demiurge Studios O43 - CFD: 26/10/2011 - 23:29:54 - [] ----D C:\Users\betto\AppData\Local\Disney Interactive Studios O43 - CFD: 03/10/2010 - 11:50:11 - [0] ----D C:\Users\betto\AppData\Local\DogFighter O43 - CFD: 09/02/2013 - 20:22:40 - [] ----D C:\Users\betto\AppData\Local\Downloaded Installations O43 - CFD: 16/08/2010 - 22:07:37 - [] ----D C:\Users\betto\AppData\Local\DropSpiderGames O43 - CFD: 20/09/2011 - 22:15:24 - [] ----D C:\Users\betto\AppData\Local\dxhr O43 - CFD: 17/05/2012 - 10:34:03 - [] ----D C:\Users\betto\AppData\Local\EA Games O43 - CFD: 26/05/2012 - 09:47:15 - [] ----D C:\Users\betto\AppData\Local\Electronic Arts O43 - CFD: 23/07/2013 - 00:16:01 - [] ----D C:\Users\betto\AppData\Local\EMU O43 - CFD: 23/07/2009 - 18:55:56 - [] ----D C:\Users\betto\AppData\Local\eMule O43 - CFD: 31/07/2010 - 15:28:01 - [] ----D C:\Users\betto\AppData\Local\Fallout3 O43 - CFD: 26/10/2010 - 21:42:49 - [] ----D C:\Users\betto\AppData\Local\FalloutNV O43 - CFD: 23/02/2013 - 14:56:42 - [] ----D C:\Users\betto\AppData\Local\FANiSO O43 - CFD: 13/09/2010 - 23:00:14 - [] ----D C:\Users\betto\AppData\Local\FlatOut Ultimate Carnage O43 - CFD: 25/05/2012 - 22:10:19 - [] ----D C:\Users\betto\AppData\Local\FLT O43 - CFD: 28/02/2013 - 00:56:13 - [] ----D C:\Users\betto\AppData\Local\Gaijin Games O43 - CFD: 11/02/2013 - 20:19:38 - [] ----D C:\Users\betto\AppData\Local\Ghost O43 - CFD: 15/08/2009 - 15:03:40 - [] ----D C:\Users\betto\AppData\Local\GlobalSCAPE O43 - CFD: 15/04/2015 - 09:58:02 - [] ----D C:\Users\betto\AppData\Local\globalUpdate =>PUP.GlobalUpdate O43 - CFD: 15/04/2015 - 16:49:13 - [] ----D C:\Users\betto\AppData\Local\gmsd_fr_424 =>PUP.CrossRider O43 - CFD: 09/10/2014 - 12:02:50 - [] ----D C:\Users\betto\AppData\Local\Google O43 - CFD: 13/06/2011 - 17:08:52 - [] ----D C:\Users\betto\AppData\Local\Halfbrick O43 - CFD: 11/07/2009 - 10:28:19 - [] -SH-D C:\Users\betto\AppData\Local\Historique O43 - CFD: 05/10/2011 - 21:34:05 - [] ----D C:\Users\betto\AppData\Local\HP O43 - CFD: 21/04/2012 - 16:43:55 - [] ----D C:\Users\betto\AppData\Local\Insanely Twisted Shadow Planet O43 - CFD: 13/06/2011 - 17:06:18 - [] ----D C:\Users\betto\AppData\Local\Intel O43 - CFD: 26/06/2011 - 11:07:12 - [] ----D C:\Users\betto\AppData\Local\IsolatedStorage O43 - CFD: 06/12/2011 - 22:01:28 - [] ----D C:\Users\betto\AppData\Local\Lazy 8 Studios O43 - CFD: 28/10/2010 - 20:27:31 - [] ----D C:\Users\betto\AppData\Local\LucasArts O43 - CFD: 22/06/2012 - 20:18:44 - [] ----D C:\Users\betto\AppData\Local\Macromedia O43 - CFD: 04/10/2011 - 06:29:32 - [] ----D C:\Users\betto\AppData\Local\Mad Skills Motocross O43 - CFD: 23/08/2013 - 22:52:40 - [] ----D C:\Users\betto\AppData\Local\Microsoft O43 - CFD: 20/03/2015 - 21:07:44 - [] ----D C:\Users\betto\AppData\Local\Microsoft Games O43 - CFD: 22/12/2009 - 19:54:37 - [] ----D C:\Users\betto\AppData\Local\Microsoft Help O43 - CFD: 11/07/2009 - 21:13:25 - [] ----D C:\Users\betto\AppData\Local\Mozilla O43 - CFD: 16/05/2013 - 22:05:47 - [] ----D C:\Users\betto\AppData\Local\Ms. Splosion Man O43 - CFD: 11/03/2013 - 19:30:30 - [] ----D C:\Users\betto\AppData\Local\MumboJumbo O43 - CFD: 07/02/2011 - 01:43:32 - [] ----D C:\Users\betto\AppData\Local\Nero O43 - CFD: 16/07/2014 - 13:46:24 - [] ----D C:\Users\betto\AppData\Local\NVIDIA O43 - CFD: 20/11/2014 - 18:18:03 - [] ----D C:\Users\betto\AppData\Local\Oberon Games O43 - CFD: 01/02/2014 - 21:43:11 - [] ----D C:\Users\betto\AppData\Local\Octodad Dadliest Catch O43 - CFD: 07/11/2010 - 18:09:44 - [] ----D C:\Users\betto\AppData\Local\Ongaku O43 - CFD: 23/10/2011 - 10:44:41 - [] ----D C:\Users\betto\AppData\Local\PAYDAY O43 - CFD: 16/07/2009 - 00:16:55 - [] ----D C:\Users\betto\AppData\Local\playlogic O43 - CFD: 11/07/2009 - 10:32:53 - [] ----D C:\Users\betto\AppData\Local\PowerCinema O43 - CFD: 22/09/2010 - 14:45:04 - [] ----D C:\Users\betto\AppData\Local\PunkBuster O43 - CFD: 08/11/2009 - 22:59:40 - [] ----D C:\Users\betto\AppData\Local\Rockstar Games O43 - CFD: 24/08/2010 - 01:12:47 - [] ----D C:\Users\betto\AppData\Local\Sidhe O43 - CFD: 01/08/2014 - 18:05:24 - [] ----D C:\Users\betto\AppData\Local\SKIDROW O43 - CFD: 15/08/2012 - 19:43:32 - [] ----D C:\Users\betto\AppData\Local\Skyrim O43 - CFD: 15/04/2015 - 18:42:19 - [] ----D C:\Users\betto\AppData\Local\SmartWeb =>PUP.SmartWeb O43 - CFD: 03/03/2013 - 20:15:50 - [] ----D C:\Users\betto\AppData\Local\Sniper Elite Nazi Zombie Army O43 - CFD: 02/05/2012 - 20:22:33 - [] ----D C:\Users\betto\AppData\Local\SniperV2 O43 - CFD: 25/02/2015 - 17:37:45 - [0] ----D C:\Users\betto\AppData\Local\Soldiers O43 - CFD: 12/01/2015 - 02:01:12 - [] ----D C:\Users\betto\AppData\Local\Songbird2 O43 - CFD: 25/02/2015 - 19:22:36 - [0] ----D C:\Users\betto\AppData\Local\Sparta O43 - CFD: 10/09/2011 - 14:19:37 - [] ----D C:\Users\betto\AppData\Local\SSDD O43 - CFD: 27/06/2010 - 18:33:02 - [] ----D C:\Users\betto\AppData\Local\storage O43 - CFD: 25/02/2015 - 17:37:47 - [] ----D C:\Users\betto\AppData\Local\StormFall =>Adware.StormFall O43 - CFD: 15/04/2015 - 12:03:37 - [] ----D C:\Users\betto\AppData\Local\StormWatch =>PUP.StormWatch O43 - CFD: 08/01/2011 - 16:13:47 - [] ----D C:\Users\betto\AppData\Local\Targem O43 - CFD: 15/04/2015 - 19:57:30 - [] ----D C:\Users\betto\AppData\Local\Temp O43 - CFD: 11/07/2009 - 10:28:19 - [] -SH-D C:\Users\betto\AppData\Local\Temporary Internet Files O43 - CFD: 19/07/2011 - 19:49:28 - [] ----D C:\Users\betto\AppData\Local\TomTom O43 - CFD: 15/09/2012 - 08:00:39 - [] ----D C:\Users\betto\AppData\Local\Transcripted O43 - CFD: 12/08/2011 - 13:53:28 - [] ----D C:\Users\betto\AppData\Local\Two Tribes O43 - CFD: 08/10/2010 - 23:44:36 - [] ----D C:\Users\betto\AppData\Local\Ubisoft O43 - CFD: 24/09/2011 - 14:05:00 - [] ----D C:\Users\betto\AppData\Local\Ubisoft Game Launcher O43 - CFD: 25/07/2013 - 07:21:51 - [0] ----D C:\Users\betto\AppData\Local\Unity O43 - CFD: 20/12/2010 - 22:25:33 - [] ----D C:\Users\betto\AppData\Local\VirtualStore O43 - CFD: 19/07/2009 - 12:12:20 - [] ----D C:\Users\betto\AppData\Local\VirtuaTennis2009 O43 - CFD: 12/11/2011 - 09:32:06 - [] ----D C:\Users\betto\AppData\Local\WB Games O43 - CFD: 08/01/2011 - 17:23:36 - [] ----D C:\Users\betto\AppData\Local\WBFSManager O43 - CFD: 15/04/2015 - 10:00:41 - [] ----D C:\Users\betto\AppData\Local\Weather_Protector_LLC =>PUP.StormWatch O43 - CFD: 29/01/2011 - 13:39:34 - [] ----D C:\Users\betto\AppData\Local\Wii_Converter_GUI O43 - CFD: 23/09/2010 - 22:57:18 - [0] ----D C:\Users\betto\AppData\Local\Zylom Games O43 - CFD: 21/01/2008 - 05:20:45 - [] R---D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 11/07/2009 - 10:32:45 - [] R---D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 28/11/2010 - 23:46:38 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Alawar Games O43 - CFD: 15/04/2015 - 11:00:24 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.AnyProtect O43 - CFD: 02/10/2010 - 16:55:28 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chime O43 - CFD: 29/11/2010 - 20:42:31 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Clones O43 - CFD: 23/04/2012 - 09:06:50 - [0] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Cleaner Pro O43 - CFD: 12/11/2012 - 00:53:49 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fly'N O43 - CFD: 23/05/2011 - 22:58:44 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory O43 - CFD: 29/11/2010 - 19:00:54 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gods vs. Humans O43 - CFD: 20/03/2010 - 10:54:54 - [0] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Konami O43 - CFD: 21/01/2008 - 05:20:45 - [] R---D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 08/08/2009 - 22:52:32 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo O43 - CFD: 04/03/2012 - 19:08:09 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\mkv2vob O43 - CFD: 06/09/2010 - 22:15:54 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Monster Trucks Nitro O43 - CFD: 07/01/2012 - 18:21:26 - [0] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mr QuestionMan O43 - CFD: 15/11/2010 - 19:57:07 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nimbus O43 - CFD: 08/01/2015 - 23:32:19 - [0] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orange O43 - CFD: 10/10/2014 - 18:08:38 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programmes audio O43 - CFD: 29/11/2010 - 21:22:04 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Racers' Islands - Crazy Arenas O43 - CFD: 05/12/2010 - 14:08:13 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RUSH O43 - CFD: 06/09/2010 - 17:38:39 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Serious Sam 2 Patch 2.066.00 O43 - CFD: 25/02/2015 - 17:37:50 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Soldiers O43 - CFD: 15/04/2015 - 16:54:31 - [] R---D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 15/04/2015 - 10:00:36 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormWatch =>PUP.StormWatch O43 - CFD: 10/10/2014 - 18:08:38 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Suite NCH Software O43 - CFD: 27/10/2010 - 18:09:34 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Ball O43 - CFD: 14/11/2010 - 18:59:09 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The UnderGarden O43 - CFD: 09/04/2013 - 19:43:47 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft O43 - CFD: 12/11/2011 - 10:28:27 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker O43 - CFD: 12/11/2014 - 19:58:48 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ O43 - CFD: 15/04/2015 - 09:38:33 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>Adware.Downware O43 - CFD: 28/08/2010 - 19:25:25 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windosill O43 - CFD: 14/07/2009 - 08:55:50 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 01/08/2010 - 14:56:19 - [] ----D C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM ~ Program Folder: 841 Scanned in 00mn 01s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.9A3A331881A112551748860EDD857A26] - 10/04/2015 - 20:56:56 ---A- . (.Infonaut - Infonaut Driver x64.) -- C:\Windows\System32\Drivers\innfd_1_10_0_14.sys [58224] =>PUP.Infonaut O44 - LFC:[MD5.8AFC5E0C18CCC7407475A1927D7C8CB7] - 13/04/2015 - 16:33:00 ---A- . (...) -- C:\Windows\MEMORY.DMP [725873222] O44 - LFC:[MD5.0DFDB1506F5C747986D345711F9ACA8A] - 15/04/2015 - 08:38:25 ---A- . (...) -- C:\Windows\System32\Drivers\SPPD.sys [21976] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/04/2015 - 09:05:34 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_webTinstMKTN84_01009.Wdf [0] =>PUP.CorsicaTechnologies O44 - LFC:[MD5.D1CEC2E76611EE3DED4F875AD379FA02] - 15/04/2015 - 10:04:47 ---A- . (.Pas de propriétaire - Registry Optimizer.) -- C:\Windows\System32\roboot64.exe [20248] O44 - LFC:[MD5.CB8572E790FCE09714143741C20E9934] - 15/04/2015 - 10:05:16 ---A- . (...) -- C:\Windows\System32\sasnative64.exe [16896] O44 - LFC:[MD5.63E10562FF96379A218483E31F91295A] - 15/04/2015 - 15:36:47 ---A- . (...) -- C:\Windows\ntbtlog.txt [223784] O44 - LFC:[MD5.FFDE4C875B411308EA7BB49BF655B6F5] - 15/04/2015 - 15:38:27 ---A- . (...) -- C:\Windows\System32\DCLOff.ini [8496] O44 - LFC:[MD5.EA88046DC9ECEDA15962740E2AB7060B] - 15/04/2015 - 15:40:35 ---A- . (...) -- C:\Windows\setupact.log [5248] O44 - LFC:[MD5.87143DE05C17685D4E1498E0A6874A4A] - 15/04/2015 - 17:46:47 ---A- . (...) -- C:\Windows\PFRO.log [431876] O44 - LFC:[MD5.AD641DB8897E641F1FA55075D2225651] - 15/04/2015 - 17:46:52 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/04/2015 - 17:47:40 ---A- . (...) -- C:\Windows\System32\LogConfigTemp.xml [0] O44 - LFC:[MD5.F9BCD87F979773F95408985F53EA4626] - 15/04/2015 - 17:54:09 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1608814] O44 - LFC:[MD5.113975D32130C4368B0E94B88E0E301A] - 15/04/2015 - 17:54:09 ---A- . (...) -- C:\Windows\System32\perfc009.dat [118780] O44 - LFC:[MD5.CF7879BE02B843521BF043308C5ABA6A] - 15/04/2015 - 17:54:09 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [144674] O44 - LFC:[MD5.54898F8CD2F7E5B09D3CF9DA97E2F9EB] - 15/04/2015 - 17:54:09 ---A- . (...) -- C:\Windows\System32\perfh009.dat [632154] O44 - LFC:[MD5.57A20A0900B00CC1B34D9F0297FCDC88] - 15/04/2015 - 17:54:09 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [719846] O44 - LFC:[MD5.457945C0968C63124BB4B97FD05DF4BA] - 15/04/2015 - 18:14:35 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1197341] O44 - LFC:[MD5.26C43960C99EE861A5D0EDC4DCF3B1C3] - 15/04/2015 - 18:33:43 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [129752] ~ Files: 19 Scanned in 00mn 10s ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.07909AC1D10E55E75831908FE1BFDBE1] - 15/04/2015 - 18:02:11 ---A- - C:\Windows\Prefetch\STORMWATCHSRV.EXE-C71685E0.pf =>PUP.StormWatch ~ Prefetcher: 1 Scanned in 00mn 00s ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "C:\Program Files (x86)\FlashFXP\FlashFXP.exe" [Enabled] .(.IniCom Networks, Inc..) -- C:\Program Files (x86)\FlashFXP\FlashFXP.exe O47 - AAKE:Key Export SP - "C:\Program Files (x86)\FlashFXP 4\FlashFXP.exe" [Enabled] .(...) -- C:\Program Files (x86)\FlashFXP 4\FlashFXP.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orange\Connectivity\ConnectivityManager.exe" [Enabled] .(...) -- C:\Program Files (x86)\Orange\Connectivity\ConnectivityManager.exe (.not file.) O47 - AAKE:Key Export DP - "C:\Program Files (x86)\FlashFXP\FlashFXP.exe" [Enabled] .(.IniCom Networks, Inc..) -- C:\Program Files (x86)\FlashFXP\FlashFXP.exe O47 - AAKE:Key Export DP - "C:\Program Files (x86)\FlashFXP 4\FlashFXP.exe" [Enabled] .(...) -- C:\Program Files (x86)\FlashFXP 4\FlashFXP.exe (.not file.) ~ Keys Export: 5 Scanned in 00mn 00s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll ~ LSA: 7 Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ CSB: 13 Scanned in 00mn 00s ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ TDSD: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre StartupReg (SMSR) (O53) O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe O53 - SMSR:HKLM\...\startupreg\AdobeAAMUpdater-1.0 [Key] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated O53 - SMSR:HKLM\...\startupreg\AdobeCS5ServiceManager [Key] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe O53 - SMSR:HKLM\...\startupreg\AgentMonitor [Key] . (.Pas de propriétaire - AgentMon Application.) -- C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe O53 - SMSR:HKLM\...\startupreg\ApnTBMon [Key] . (...) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe (.not file.) =>Toolbar.AskBar O53 - SMSR:HKLM\...\startupreg\AutoStartNPSAgent [Key] . (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe O53 - SMSR:HKLM\...\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} [Key] . (...) -- C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\CanonQuickMenu [Key] . (.CANON INC. - Canon Quick Menu.) -- C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.exe O53 - SMSR:HKLM\...\startupreg\CCleaner Monitoring [Key] . (.Piriform Ltd - CCleaner.) -- C:\Program Files (x86)\CCleaner\CCleaner64.exe =>.Piriform Ltd O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd O53 - SMSR:HKLM\...\startupreg\EPSON Stylus DX4000 Series [Key] . (...) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_FATIBEE.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\gmsd_fr_424 [Key] . (...) -- C:\Program Files (x86)\gmsd_fr_424\gmsd_fr_424.exe (.not file.) =>PUP.CrossRider O53 - SMSR:HKLM\...\startupreg\HP Deskjet 3070 B611 series (NET) [Key] . (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP Deskjet 3070 B611 series\Bin\ScanToPCActivationApp.exe =>.Hewlett-Packard Co O53 - SMSR:HKLM\...\startupreg\HP Software Update [Key] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co O53 - SMSR:HKLM\...\startupreg\IJNetworkScannerSelectorEX [Key] . (.CANON INC. - Canon IJ Network Scanner Selector EX.) -- C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe O53 - SMSR:HKLM\...\startupreg\Malwarebytes' Anti-Malware [Key] . (...) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.exe O53 - SMSR:HKLM\...\startupreg\Nvtmru [Key] . (.NVIDIA Corporation - NVIDIA NvTmru Application.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe O53 - SMSR:HKLM\...\startupreg\Optimizer Pro [Key] . (...) -- C:\Program Files (x86)\Optimizer Pro 3.79\OptProLauncher.exe =>PUP.OptimizerPro O53 - SMSR:HKLM\...\startupreg\ORAHSSSessionManager [Key] . (...) -- C:\Program Files (x86)\Orange\SessionManager\SessionManager.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\Orange Installer [Key] . (...) -- C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe O53 - SMSR:HKLM\...\startupreg\PCMMediaSharing [Key] . (...) -- C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe O53 - SMSR:HKLM\...\startupreg\ProductReg [Key] . (.Acer - ProductR Application.) -- C:\Program Files\Acer\WR_PopUp\ProductReg.exe O53 - SMSR:HKLM\...\startupreg\Registry Helper [Key] . (.SafeApp Software, LLC - Registry Helper.) -- C:\Program Files (x86)\Registry Helper\RegistryHelper.exe =>PUP.RegistryHelper O53 - SMSR:HKLM\...\startupreg\SmartWeb [Key] . (...) -- C:\Users\betto\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.SmartWeb O53 - SMSR:HKLM\...\startupreg\StartCCC [Key] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files (x86)\Steam\Steam.exe O53 - SMSR:HKLM\...\startupreg\StormWatch [Key] . (...) -- C:\Program Files (x86)\StormWatch\StormWatchApp.exe =>PUP.StormWatch O53 - SMSR:HKLM\...\startupreg\swg [Key] . (...) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\SwitchBoard [Key] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O53 - SMSR:HKLM\...\startupreg\TomTomHOME.exe [Key] . (...) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\WinCheck [Key] . (...) -- C:\Users\betto\AppData\Local\65682200-1429090907-0920-0521-174701000000\bnsgAB2D.exe =>PUP.Wincheck O53 - SMSR:HKLM\...\startupreg\Yontoo Desktop [Key] . (...) -- C:\Users\betto\AppData\Roaming\Yontoo\YontooDesktop.exe (.not file.) =>Adware.Yontoo ~ SMSR Keys: 35 Scanned in 00mn 00s ---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 ~ MWPS: 16 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=3 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=3 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=0 ~ MWPE Keys: 8 Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:19/01/2009 - 19:32:22 ---A- . (.Protect Software GmbH - ProtectDisc x64/x86 Hybrid Driver.) -- C:\Windows\System32\Drivers\acedrv11.sys [334344] O58 - SDL:21/01/2008 - 03:46:53 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [486456] O58 - SDL:21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [342584] O58 - SDL:21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (X64).) -- C:\Windows\System32\Drivers\adpu160m.sys [126520] O58 - SDL:21/01/2008 - 03:47:27 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\Drivers\adpu320.sys [185912] O58 - SDL:21/01/2008 - 03:46:50 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [15976] O58 - SDL:21/01/2008 - 03:46:52 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [90680] O58 - SDL:21/01/2008 - 03:47:00 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [91192] O58 - SDL:16/05/2007 - 17:43:52 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athrxu6.sys [1039360] O58 - SDL:29/07/2008 - 03:47:00 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athrxusb.sys [1075712] O58 - SDL:23/02/2012 - 13:31:50 ---A- . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\AtihdLH6.sys [92176] O58 - SDL:06/04/2012 - 06:22:40 ---A- . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\Drivers\atikmdag.sys [11174400] O58 - SDL:06/04/2012 - 02:10:44 ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\Drivers\atikmpag.sys [343040] O58 - SDL:24/04/2010 - 14:24:50 ---A- . (...) -- C:\Windows\System32\Drivers\atksgt.sys [314016] O58 - SDL:21/01/2008 - 03:47:30 ---A- . (...) -- C:\Windows\System32\Drivers\bdasup.sys [15616] O58 - SDL:18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [18432] O58 - SDL:18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [8704] O58 - SDL:02/11/2006 - 09:43:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [86528] O58 - SDL:18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [47104] O58 - SDL:18/09/2006 - 22:30:18 ---A- . (...) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [14976] O58 - SDL:19/09/2006 - 12:42:33 ---A- . (...) -- C:\Windows\System32\Drivers\BrUsbSer.sys [14720] O58 - SDL:21/01/2008 - 03:46:50 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [18024] O58 - SDL:02/11/2006 - 12:50:06 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\Drivers\djsvs.sys [88168] O58 - SDL:21/01/2008 - 03:46:56 ---A- . (...) -- C:\Windows\System32\Drivers\E1G6032E.sys [146176] O58 - SDL:13/06/2008 - 09:41:54 ---A- . (.Intel Corporation - Intel(R) Gigabit Network Connection NDIS 6 deserialized driver.) -- C:\Windows\System32\Drivers\e1y60x64.sys [316544] O58 - SDL:21/01/2008 - 03:46:59 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [397368] O58 - SDL:10/04/2008 - 09:20:00 ---A- . (.Creative Technology Ltd. - Creative Audio Driver.) -- C:\Windows\System32\Drivers\gwfilt64.sys [28160] O58 - SDL:03/07/2013 - 03:22:30 ---A- . (...) -- C:\Windows\System32\Drivers\hidparse.sys [31616] O58 - SDL:21/01/2008 - 03:46:59 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\System32\Drivers\HpCISSs.sys [47672] O58 - SDL:25/06/2008 - 22:31:38 ---A- . (...) -- C:\Windows\System32\Drivers\iANSW60e.sys [124448] O58 - SDL:29/07/2005 - 16:35:59 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStor.sys [402456] O58 - SDL:21/01/2008 - 03:46:59 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\System32\Drivers\iaStorV.sys [290872] O58 - SDL:02/11/2006 - 13:02:39 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [44648] O58 - SDL:10/04/2015 - 20:56:56 ---A- . (.Infonaut - Infonaut Driver x64.) -- C:\Windows\System32\Drivers\innfd_1_10_0_14.sys [58224] =>PUP.Infonaut O58 - SDL:30/09/2008 - 09:42:20 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\System32\Drivers\int15_64.sys [17952] O58 - SDL:23/05/2008 - 15:54:38 ---A- . (.Intel Corporation - Intel(R) Network Adapter Diagnostic Driver.) -- C:\Windows\System32\Drivers\iqvw64e.sys [33888] O58 - SDL:02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\Drivers\iteatapi.sys [37480] O58 - SDL:02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\Drivers\iteraid.sys [37480] O58 - SDL:21/01/2008 - 03:49:00 ---A- . (...) -- C:\Windows\System32\Drivers\ksthunk.sys [20864] O58 - SDL:24/04/2010 - 14:24:50 ---A- . (...) -- C:\Windows\System32\Drivers\lirsgt.sys [43680] O58 - SDL:21/01/2008 - 03:46:51 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [113720] O58 - SDL:21/01/2008 - 03:46:56 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [105016] O58 - SDL:21/01/2008 - 03:47:01 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [113720] O58 - SDL:17/01/2008 - 23:51:44 ---A- . (...) -- C:\Windows\System32\Drivers\Lycosa.sys [18816] O58 - SDL:21/11/2014 - 06:14:08 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816] O58 - SDL:21/11/2014 - 06:14:12 ---A- . (...) -- C:\Windows\System32\Drivers\mbamchameleon.sys [93400] O58 - SDL:15/04/2015 - 18:33:43 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [129752] O58 - SDL:21/01/2008 - 03:46:59 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\System32\Drivers\megasas.sys [35896] O58 - SDL:21/01/2008 - 03:46:56 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [438328] O58 - SDL:02/11/2006 - 13:02:24 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\System32\Drivers\Mraid35x.sys [39016] O58 - SDL:21/01/2008 - 03:49:52 ---A- . (...) -- C:\Windows\System32\Drivers\mskssrv.sys [11008] O58 - SDL:02/11/2006 - 10:37:30 ---A- . (...) -- C:\Windows\System32\Drivers\mspclock.sys [7040] O58 - SDL:02/11/2006 - 10:37:30 ---A- . (...) -- C:\Windows\System32\Drivers\mspqm.sys [6656] O58 - SDL:21/01/2008 - 03:49:52 ---A- . (...) -- C:\Windows\System32\Drivers\mstee.sys [7936] O58 - SDL:04/11/2008 - 13:12:08 ---A- . (.Samsung Electronics, Inc. - MagicTunePremium Driver.) -- C:\Windows\System32\Drivers\MTiCtwl.sys [23096] O58 - SDL:21/11/2014 - 06:14:18 ---A- . (...) -- C:\Windows\System32\Drivers\mwac.sys [64216] O58 - SDL:02/11/2006 - 13:03:03 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [51816] O58 - SDL:11/02/2011 - 22:23:34 ---A- . (.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\Windows\System32\Drivers\npf.sys [35344] O58 - SDL:30/01/2008 - 10:48:32 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\System32\Drivers\NTIDrvr.sys [16384] O58 - SDL:11/06/2014 - 09:57:41 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\Drivers\nvhda64v.sys [197408] O58 - SDL:20/05/2014 - 03:44:03 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 337.88.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [12688328] O58 - SDL:21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [128056] O58 - SDL:21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [54328] O58 - SDL:11/04/2009 - 06:39:49 ---A- . (...) -- C:\Windows\System32\Drivers\ohci1394.sys [72448] O58 - SDL:17/09/2007 - 15:53:34 ---A- . (.Nokia - PCCS Mode Change Filter Driver.) -- C:\Windows\System32\Drivers\pccsmcfdx64.sys [29184] O58 - SDL:29/07/2008 - 17:53:48 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Filter Driver.) -- C:\Windows\System32\Drivers\psdfilter.sys [22064] O58 - SDL:29/07/2008 - 17:53:50 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Named Pipe Driver.) -- C:\Windows\System32\Drivers\PSDNServ.sys [21040] O58 - SDL:29/07/2008 - 17:53:50 ---A- . (.Egis Incorporated - Acer eDataSecurity Management PSD Virtual Disk Driver.) -- C:\Windows\System32\Drivers\PSDVdisk.sys [60976] O58 - SDL:21/01/2008 - 03:46:52 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1221176] O58 - SDL:02/11/2006 - 12:50:27 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [124008] O58 - SDL:18/09/2008 - 11:50:30 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [1497112] O58 - SDL:05/06/2008 - 18:21:44 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for Vista x64.) -- C:\Windows\System32\Drivers\RTSTOR64.sys [66048] O58 - SDL:30/09/2006 - 00:51:44 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040] O58 - SDL:21/01/2008 - 03:47:26 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [78392] O58 - SDL:15/04/2015 - 08:38:25 ---A- . (...) -- C:\Windows\System32\Drivers\SPPD.sys [21976] O58 - SDL:03/08/2013 - 07:31:41 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\Drivers\sptd.sys [564824] O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI - SAMSUNG USB Mobile Device.) -- C:\Windows\System32\Drivers\ss_bbus.sys [116224] O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\ss_bcm.sys [14848] O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\ss_bcmnt.sys [14848] O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Modem Filter.) -- C:\Windows\System32\Drivers\ss_bmdfl.sys [18944] O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Modem.) -- C:\Windows\System32\Drivers\ss_bmdm.sys [157696] O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\Windows\System32\Drivers\ss_bwh.sys [15872] O58 - SDL:20/03/2009 - 10:01:30 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\Windows\System32\Drivers\ss_bwhnt.sys [15872] O58 - SDL:11/04/2009 - 06:39:31 ---A- . (...) -- C:\Windows\System32\Drivers\stream.sys [68224] O58 - SDL:02/11/2006 - 13:02:52 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\symc8xx.sys [49256] O58 - SDL:02/11/2006 - 13:02:37 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\sym_hi.sys [44648] O58 - SDL:02/11/2006 - 13:02:47 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\System32\Drivers\sym_u3.sys [48232] O58 - SDL:03/08/2009 - 09:22:58 ---A- . (.Teruten Inc - File System Mini Filter Drvier.) -- C:\Windows\System32\Drivers\TFsExDisk.sys [16392] O58 - SDL:30/01/2008 - 10:48:16 ---A- . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\System32\Drivers\UBHelper.sys [16384] O58 - SDL:21/01/2008 - 03:46:56 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\Drivers\uliahci.sys [284728] O58 - SDL:02/11/2006 - 12:50:54 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\System32\Drivers\ulsata.sys [148072] O58 - SDL:21/01/2008 - 03:46:52 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series x64 Windows Driver.) -- C:\Windows\System32\Drivers\ulsata2.sys [174696] O58 - SDL:11/04/2009 - 06:39:40 ---A- . (...) -- C:\Windows\System32\Drivers\USBCAMD2.sys [32640] O58 - SDL:29/06/2013 - 03:25:14 ---A- . (...) -- C:\Windows\System32\Drivers\usbd.sys [7552] O58 - SDL:21/01/2008 - 03:46:50 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [18024] O58 - SDL:21/01/2008 - 03:47:25 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [149048] O58 - SDL:02/11/2006 - 10:40:24 ---A- . (...) -- C:\Windows\System32\Drivers\wacompen.sys [26624] O58 - SDL:08/04/2009 - 14:28:46 ---A- . (...) -- C:\Windows\System32\Drivers\xusb21.sys [68992] O58 - SDL:04/02/2013 - 17:29:24 ---A- . (.GEAR Software Inc. - CD/DVD Class Filter Driver.) -- C:\Windows\SysWOW64\drivers\GEARAspiWDM.sys [15664] O58 - SDL:15/09/2011 - 21:34:04 ---A- . (.Logix4u - hwinterface.sys.) -- C:\Windows\SysWOW64\drivers\hwinterface.sys [3026] O58 - SDL:01/10/2008 - 10:04:16 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15.sys [12832] O58 - SDL:30/09/2008 - 09:42:20 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15_64.sys [17952] O58 - SDL:28/11/2006 - 20:46:22 ----- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 MPR Protocol Driver.) -- C:\Windows\SysWOW64\drivers\PCAMp50.sys [28224] O58 - SDL:28/11/2006 - 20:46:20 ----- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\Windows\SysWOW64\drivers\PCASp50.sys [27072] O58 - SDL:25/10/2007 - 17:26:10 ---A- . (...) -- C:\Windows\SysWOW64\drivers\StarOpen.sys [5632] O58 - SDL:03/08/2009 - 09:22:58 ---A- . (.Teruten Inc - File System Mini Filter Drvier.) -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys [16392] ~ Drivers: 106 Scanned in 00mn 01s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 11/04/2015 - 20:09:27 ---A- . (.Internet Program.) -- C:\Users\betto\AppData\Local\Temp\ICReinstall_Minecraft.exe [703776] =>PUP.InternetProgram O61 - LFC: 11/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys [1] O61 - LFC: 11/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\Downloads\Firefox Setup Stub 37.0.1.exe [243544] O61 - LFC: 15/04/2015 - 20:09:27 ----- . (.Java(TM) Native Access (JNA).) -- C:\Users\betto\AppData\Local\Temp\jna\jna7693278747917209935.dll [441220] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\65682200-1429090907-0920-0521-174701000000\Uninstall.exe [80516] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\65682200-1429090907-0920-0521-174701000000\bnsgAB2D.exe [193024] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\65682200-1429091993-0920-0521-174701000000\Uninstall.exe [101398] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\65682200-1429091993-0920-0521-174701000000\jnsm3CC1.exe [326144] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\65682200-1429091993-0920-0521-174701000000\rnsh3FAF.exe [57344] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\BAEE5799-1165-8499-572E-9FD9DEC3FC74.exe [1014272] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\D5897839-8854-E150-B917-2997BAC68F02.dll [89088] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\D5897839-8854-E150-B917-2997BAC68F02.exe [849920] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\26b5dc9e48691a8035dafb2b7ed76562_fce8395f8fd8a848_15f74c7777689be5_2_0.bin [16384] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\26b5dc9e48691a8035dafb2b7ed76562_fce8395f8fd8a848_15f74c7777689be5_3_0.bin [16384] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\app2951\Of_FR-I3-Wajam_chk_0_245.exe [2356632] =>PUP.Wajam O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\bitool.dll [59904] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\OfferInstaller.exe [305664] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\jue1330.exe [2998272] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\GetVersion.dll [6656] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\Math.dll [67584] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\System.dll [11264] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\UserInfo.dll [4096] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\blowfish.dll [22528] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\manlib.dll [26112] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\nsDialogs.dll [9728] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\nsWeb_DispOffr.dll [69120] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\nsisunz.dll [40960] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\registry.dll [25088] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nseA489.tmp\serlib.dll [16384] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nsr1797.tmp\System.dll [11264] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nsr1797.tmp\WmiInspector.dll [106496] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\nsr1797.tmp\inetc.dll [20992] O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.ClientConnect.) -- C:\Users\betto\AppData\Local\Temp\app2951\Of_FR-I3-SearchProtect2_chk_0_239.exe [151256] =>PUP.SearchProtect O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.PC Utilities Software Limited.) -- C:\Users\betto\AppData\Local\Temp\app2951\Of_FR-I3-OptimizerPro_chk_0_237.exe [6543312] =>PUP.OptimizerPro O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.VuPC.) -- C:\Users\betto\AppData\Local\Temp\app2951\Of_FR-I3-Vuupc_chk_0_244.exe [362855] =>PUP.VuuPC O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\GoogleCrashHandler.exe [72872] =>PUP.GlobalUpdate O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\GoogleUpdate.exe [68608] =>PUP.GlobalUpdate O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\GoogleUpdateBroker.exe [46080] =>PUP.GlobalUpdate O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\GoogleUpdateOnDemand.exe [46080] =>PUP.GlobalUpdate O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\goopdate.dll [761856] =>PUP.GlobalUpdate O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\goopdateres_en.dll [26792] =>PUP.GlobalUpdate O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\npGoogleUpdate4.dll [220672] =>PUP.GlobalUpdate O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\psmachine.dll [155648] =>PUP.GlobalUpdate O61 - LFC: 15/04/2015 - 20:09:27 ---A- . (.globalUpdate.) -- C:\Users\betto\AppData\Local\Temp\comh.318006\psuser.dll [155648] =>PUP.GlobalUpdate O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Local\Temp\setup_608.exe [152160] O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\NVIDIA\GLCache\3a784e388e99b593a2f176d80899e1c9\b51836fb308e266e\82bd674ac494837f.bin [43235] O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\VOPackage\Uninstall.exe [119980] =>Adware.Downware O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\VOPackage\VOsrv.exe [142848] =>Adware.Downware O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\VOPackage\runasu.exe [57344] =>Adware.Downware O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\systweak\regclean pro\Version 6.1\backup3.bin [610] =>Rogue.RegistryPowerCleaner O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\systweak\regclean pro\Version 6.1\backup4.bin [717] =>Rogue.RegistryPowerCleaner O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\AppData\Roaming\systweak\regclean pro\Version 6.1\backup6.bin [523] =>Rogue.RegistryPowerCleaner O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (...) -- C:\Users\betto\Downloads\Firefox Setup Stub 37.0.1 (1).exe [243544] O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (.Cinema PlusV14.04.) -- C:\Users\betto\AppData\Roaming\ACXWGNVQ.exe [1858048] =>PUP.CrossRider O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (.Nicolas Coolman.) -- C:\Users\betto\Desktop\ZHPDiag2.exe [6879990] =>.Nicolas Coolman O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (.PCUtilities Software Limited.) -- C:\Users\betto\AppData\Local\Temp\optprosetup.exe [6282720] O61 - LFC: 15/04/2015 - 20:09:28 ---A- . (.SysTool PasSame LIMITED.) -- C:\Users\betto\AppData\Local\Temp\tmp-RunningMan\tmp\wpm_v20.0.0.1953_0302.exe [493712] =>PUP.WpManager ~ 335 Fichiers temporaires (Temporary files) ~ 68 Fichiers cookies (Cookies files) ~ Files: 58 Scanned in 00mn 20s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Liste les services legacy du registre (LALS) (O64) O64 - Services: CurCS - 19/01/2009 - C:\Windows\system32\drivers\acedrv11.sys (acedrv11) .(.Protect Software GmbH - ProtectDisc x64/x86 Hybrid Driver.) - LEGACY_ACEDRV11 O64 - Services: CurCS - 24/04/2010 - C:\Windows\System32\DRIVERS\atksgt.sys (atksgt) .(...) - LEGACY_ATKSGT O64 - Services: CurCS - 10/04/2015 - C:\Windows\System32\drivers\innfd_1_10_0_14.sys (innfd_1_10_0_14) .(.Infonaut - Infonaut Driver x64.) - LEGACY_INNFD_1_10_0_14 =>PUP.Infonaut O64 - Services: CurCS - 30/09/2008 - C:\Windows\sysWOW64\drivers\int15_64.sys (int15) .(.Acer, Inc. - int15.) - LEGACY_INT15 O64 - Services: CurCS - 10/02/2009 - C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys (ISODrive) .(.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - LEGACY_ISODRIVE O64 - Services: CurCS - 24/04/2010 - C:\Windows\System32\DRIVERS\lirsgt.sys (lirsgt) .(...) - LEGACY_LIRSGT O64 - Services: CurCS - 09/12/1745 - C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{493B5A6C-92CD-498D-A8FF-A0F27B3C41A2}\MpKsl029ce939.sys (MpKsl029ce939) .(...) - LEGACY_MPKSL029CE939 O64 - Services: CurCS - 11/02/2011 - C:\Windows\System32\drivers\npf.sys (npf) .(.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) - LEGACY_NPF O64 - Services: CurCS - 29/07/2008 - C:\Windows\System32\DRIVERS\psdfilter.sys (PSDFilter) .(.Egis Incorporated - Acer eDataSecurity Management PSD Filter Dr.) - LEGACY_PSDFILTER O64 - Services: CurCS - 29/07/2008 - C:\Windows\System32\DRIVERS\PSDNServ.sys (PSDNServ) .(.Egis Incorporated - Acer eDataSecurity Management PSD Named Pip.) - LEGACY_PSDNSERV O64 - Services: CurCS - 29/07/2008 - C:\Windows\System32\DRIVERS\PSDVdisk.sys (psdvdisk) .(.Egis Incorporated - Acer eDataSecurity Management PSD Virtual D.) - LEGACY_PSDVDISK O64 - Services: CurCS - 30/09/2006 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV O64 - Services: CurCS - 03/08/2013 - C:\Windows\system32\Drivers\sptd.sys (sptd) .(.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) - LEGACY_SPTD O64 - Services: CurCS - 01/07/2010 - C:\Program Files\Unlocker\UnlockerDriver5.sys (UnlockerDriver5) .(...) - LEGACY_UNLOCKERDRIVER5 ~ Legacy: 99 Scanned in 00mn 00s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ~ FASS Keys: 11 Scanned in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: prefs.js [betto - 9zgyi6yv.default] user_pref("extensions.crossrider.bic", "14cbc1892b7f1ce24ac4ca0cc4700eff"); =>PUP.CrossRider O69 - SBI: SearchScopes [HKCU] {015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} - (Trovi) - http://www.luckysearches.com =>Hijacker.LuckySearches O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.luckysearches.com =>Hijacker.LuckySearches O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} - (e) - http://www.luckysearches.com =>Hijacker.LuckySearches O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} - (Google) - http://www.luckysearches.com =>Hijacker.LuckySearches ~ Keys: Scanned in 00mn 00s ---\\ Enumère les fichiers Crack & Keygen (CKF) (O82) C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\build\pc\cache\langs.dat =>.Crack,Keygen C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\DirectX\DXSETUP.exe =>.Crack,Keygen C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\Red.Faction.Armageddon.Crack.Patch.By.Ali213.rar =>.Crack,Keygen C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\RedFactionArmageddon.exe =>.Crack,Keygen C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\RedFactionArmageddon_DX11.exe =>.Crack,Keygen C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\rf4_launcher.exe =>.Crack,Keygen C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\vcredist_x86.exe =>.Crack,Keygen C:\Users\betto\APRES FORMATAGE\FlashFXP.v3.6.0.1240.Multilingual.Patch.and.Keymaker-ACME\FFXP36_Keygen.exe =>.Crack,Keygen C:\Users\betto\Desktop\JEUX\Pid.CRACKED-P2P\Pid.exe =>.Crack,Keygen C:\Users\betto\Desktop\JEUX\Pid.CRACKED-P2P\unins000.dat =>.Crack,Keygen C:\Users\betto\Desktop\JEUX\Pid.CRACKED-P2P\unins000.exe =>.Crack,Keygen C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\build\pc\cache\langs.dat =>.Crack,Keygen C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\DirectX\DXSETUP.exe =>.Crack,Keygen C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\Red.Faction.Armageddon.Crack.Patch.By.Ali213.rar =>.Crack,Keygen C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\RedFactionArmageddon.exe =>.Crack,Keygen C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\RedFactionArmageddon_DX11.exe =>.Crack,Keygen C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\rf4_launcher.exe =>.Crack,Keygen C:\Program Files (x86)\Red.Faction.Armageddon.STEAMCRACKED-P2P\vcredist_x86.exe =>.Crack,Keygen C:\Users\betto\APRES FORMATAGE\FlashFXP.v3.6.0.1240.Multilingual.Patch.and.Keymaker-ACME\FFXP36_Keygen.exe =>.Crack,Keygen C:\Users\betto\Desktop\JEUX\Pid.CRACKED-P2P\Pid.exe =>.Crack,Keygen C:\Users\betto\Desktop\JEUX\Pid.CRACKED-P2P\unins000.dat =>.Crack,Keygen C:\Users\betto\Desktop\JEUX\Pid.CRACKED-P2P\unins000.exe =>.Crack,Keygen ~ Files: Scanned in 01mn 12s ---\\ Enumère les service demarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [26624] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [85504] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [302080] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [49664] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [49664] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [179712] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [719360] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [454656] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [446976] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [98304] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d'accès distant.) -- C:\Windows\System32\rasmans.dll [309760] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [88064] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [61952] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [342016] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [318976] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes Terminal Server.) -- C:\Windows\System32\termsrv.dll [548352] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [1081856] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [302080] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [28672] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [45056] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [154112] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [37888] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [86528] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [74752] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [855040] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [221696] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service de configuration des services Terminal Server.) -- C:\Windows\System32\sessenv.dll [74752] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [103424] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [178688] ~ Services: 30 Scanned in 00mn 00s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.994627FB684635C1B2830016748846A7] [SPRF][15/04/2015] (.Cinema PlusV14.04 - Cinema PlusV14.04 exe.) -- C:\Users\betto\AppData\Roaming\ACXWGNVQ.exe [1858048] =>PUP.CrossRider [MD5.0F86155EC80FC5B384E6289533D1CDD6] [SPRF][20/01/2015] (...) -- C:\Users\betto\AppData\Roaming\wklnhst.dat [630] [MD5.43860F92000D216C80D3B949D5930C5C] [SPRF][15/04/2015] (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Users\betto\Desktop\ZHPDiag2.exe [6879990] [MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [SPRF][16/05/2006] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll [24576] [MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [SPRF][16/05/2006] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe [196608] [MD5.1245E33C050E61191059EAA33D9CE6C9] [SPRF][16/05/2006] (.Macrovision Corporation - InstallShield Update Service Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll [484272] ~ Files: 6 Scanned in 00mn 00s ---\\ Liste des exceptions du parefeu (FirewallRules) (O87) O87 - FAEL: "{C02DDDBA-AB39-480D-BBE1-3F954CA58457}" | In - Public - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent O87 - FAEL: "{3FC0A8AB-FBD1-4950-A9B3-28D206D60C72}" | In - Public - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe =>P2P.BitTorrent O87 - FAEL: "TCP Query User{E080F2AA-4F0C-4A04-ACE1-4D4E8BA9D344}C:\program files (x86)\utorrent\utorrent.exe" | In - Private - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\program files (x86)\utorrent\utorrent.exe =>P2P.BitTorrent O87 - FAEL: "UDP Query User{41DD2E4B-0A58-4B72-BB0E-B6131F4D1FA3}C:\program files (x86)\utorrent\utorrent.exe" | In - Private - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\program files (x86)\utorrent\utorrent.exe =>P2P.BitTorrent ~ Firewall: 4 Scanned in 00mn 05s ---\\ Export de clés de registre aléatoires (O91) [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:060df2cd="alAl/YP/b/Af/X6/bxAu/Y//alAf/YP/HPAj/Xb/UxAp/X2/GxAk////" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:0c230bcb="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:0dc3ee96="/P////%%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:0e93c3f3="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:1520c6f1="V/////%%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:1c311243="b/Af/X6/alAl/YP/HPAi/Yq/GPAf/Yb/GPAz/B2/FlAk/Xh////%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:27ddcf6f="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:2d71d5ab="V/////%%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:2e22d94e="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:340d3099="/P////%%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:37b7a6d8="UlAr/XJ/c//k////" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:38583bc3="Ml/2/CF/M//g/CZ////%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:3c09c42b="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:414bc593="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:48bd1aff="V/////%%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:51d2f2ea="IlAl/YP/HPAi/Xt/dxAu/YZ/J/Af/X6/Z/AM/X6/axAp/YP/alAf/Xt/axAr/B//VP/j/Cx/V//j/C [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:587b5709="V/////%%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:6185d035="VP/h/CP/V//l////" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:65114b36="VP/+////" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:72758a5d="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:7367429f="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:7f69fa1f="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:8b9e4cbc="V/////%%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:a0743acc="N/////%%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:a1dcff5b="V/////%%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:a2e3b941="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:bbf88800="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:c24899a6="VP/g/CV/Vl/1/CF////%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:c5705860="Vx////%%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:c6c5dd44="V/////%%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:c99a5f5c="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:d1abcdb6="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:d94388d2="b/Af/X6/alAl/YP/HPAi/Yq/GPAf/Yb/GPAz/B2/FlAk/Xh////%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:e46c271e="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:e8f9dcc7="UlAr/XJ/c//k////" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:f0bf0bde="///%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:f1f24e29="Vl/l/C/////%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:f2c53c49="UlAr/XJ/c//k////" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:f6ad6fa6="V/////%%" [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4\27918871534310610\eae10f9d]:fe94ce1e="V/////%%" ~ Export Key Software: Scanned in 00mn 00s ---\\ Recherche de clés de registre CLSID (O101) [HKCR\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}] (globalUpdate.OneClickProcessLauncher) =>PUP.GlobalUpdate [HKCR\CLSID\{8E65ED4A-DA5A-3D2F-EA44-34A830EADAAB}] (BlockAndSurf) =>PUP.BlockAndSurf ~ BCK: 3944 Scanned in 00mn 07s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 22/07/1658 0 | (ACDaemon) . (...) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe SS - | Demand 15/04/2015 268464 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Demand 11/08/2010 69120 | (Boonty Games) . (.BOONTY.) - C:\Program Files (x86)\Common Files\BOONTY Shared\Service\Boonty.exe SS - | Auto 15/04/2015 68608 | (globalUpdate) . (.globalUpdate.) - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe =>PUP.GlobalUpdate SS - | Demand 15/04/2015 68608 | (globalUpdatem) . (.globalUpdate.) - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe =>PUP.GlobalUpdate SS - | Auto 15/10/2014 107912 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 15/10/2014 107912 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Auto 02/04/2015 158816 | (IHProtect Service) . (...) - C:\Program Files (x86)\XTab\ProtectService.exe =>Adware.AgentODR SS - | Auto 21/11/2014 1871160 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe SS - | Auto 21/11/2014 969016 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe SS - | Demand 03/04/2015 148080 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe SS - | Demand 23/09/2008 50424 | (NTIBackupSvc) . (.NewTech InfoSystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe SS - | Auto 27/03/2014 581568 | (ogmservice) . (.RealNetworks, Inc..) - C:\Program Files (x86)\Online Games Manager\ogmservice.exe SS - | Auto 05/02/2015 729112 | (Orange update Core Service) . (.Orange SA.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe SS - | Auto 26/01/2014 84328 | (Registry Helper Service) . (.SafeApp Software, LLC.) - C:\Program Files (x86)\Registry Helper\RegistryHelperService.exe =>PUP.RegistryHelper SS - | Auto 13/06/2008 241734 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe SS - | Demand 07/04/2008 430592 | (ServiceLayer) . (.Nokia..) - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe SS - | Demand 16/03/2011 407336 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe SS - | Demand 19/02/2010 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe SS - | Auto 15/04/2015 493712 | (WindowsMangerProtect) . (...) - C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe =>PUP.Fuyu SS - | Demand 22/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation SR - | Auto 15/04/2015 2313768 | (5d9df4c6) . (...) - c:\Program Files (x86)\Optimizer Pro 3.79\OptProMon.dll =>PUP.OptimizerPro SR - | Auto 20/05/2008 269448 | (Acer HomeMedia Connect Service) . (.CyberLink.) - C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SR - | Auto 14/04/2015 2308280 | (DCL) . (.DC Corporation.) - C:\Program Files (x86)\IGS\DCL.exe SR - | Auto 29/07/2008 500784 | (eDataSecurity Service) . (.Egis Incorporated.) - C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe SR - | Auto 01/10/2008 24576 | (ETService) . (...) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe SR - | Auto 10/04/2015 278600 | (insvc_1.10.0.14) . (.Infonaut.) - C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe =>PUP.Infonaut SR - | Auto 19/10/2006 61440 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe SR - | Auto 30/01/2015 23784 | (MsMpSvc) . (.Microsoft Corporation.) - c:\Program Files\Microsoft Security Client\MsMpEng.exe SR - | Auto 23/09/2009 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe SR - | Auto 23/09/2008 144632 | (NTISchedulerSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe SR - | Auto 20/05/2014 927520 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SR - | Auto 27/08/2013 2155296 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe SR - | Auto 15/04/2015 142848 | (pylymezy) . (...) - C:\Users\betto\AppData\Roaming\VOPackage\VOsrv.exe =>Adware.Downware SR - | Auto 14/12/2010 501336 | (Serveur Média) . (.PacketVideo.) - C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe SR - | Auto 15/04/2015 641296 | (Service Mgr DigitalMore) . (...) - C:\ProgramData\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\plugincontainer.exe =>PUP.DigitalMore SR - | Auto 10/04/2015 586264 | (StormWatch Update Service) . (...) - C:\Program Files (x86)\StormWatch\StormWatchSrv.exe =>PUP.StormWatch SR - | Auto 22/11/2014 17584 | (SWUpdater) . (.Weather Protector LLC.) - C:\Program Files (x86)\StormWatch\SWUpdaterSvc.exe =>PUP.StormWatch SR - | Auto 15/04/2015 561424 | (Update Mgr DigitalMore) . (...) - C:\Program Files (x86)\Common Files\8708eaaa-1c2b-4faa-8923-a6c9f88eeb0e\updater.exe =>PUP.DigitalMore SR - | Auto 31/03/2015 686592 | (WaNetworkEnhance Service) . (...) - C:\Program Files (x86)\WaNetworkEnhance\WaNetworkEnhance Internet Enhancer\InternetEnhancerService.exe SR - | Auto 21/01/2008 27648 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 07s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Run by betto at 15/04/2015 20:11:34 ~ OS 64 not supported by MBR tool ~ MBR: 0 Scanned in 00mn 00s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by betto at 15/04/2015 20:11:36 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 02s ---\\ Liste des émulateurs de CD/DVD (MBR Hook) O58 - SDL:03/08/2013 - 07:31:41 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\Drivers\sptd.sys [564824] O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd ~ Emulateurs: Scanned in 00mn 02s ---\\ Scan Additionnel (O88) Database Version : 13008 - (13/04/2015) Clés trouvées (Keys found) : 58 Valeurs trouvées (Values found) : 2 Dossiers trouvés (Folders found) : 40 Fichiers trouvés (Files found) : 82 [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E65ED4A-DA5A-3D2F-EA44-34A830EADAAB}] =>PUP.BlockAndSurf^ [HKLM\SYSTEM\CurrentControlSet\Services\5d9df4c6] =>PUP.OptimizerPro^ [HKLM\SYSTEM\CurrentControlSet\Services\globalUpdate) (globalUpdate] =>PUP.GlobalUpdate^ [HKLM\SYSTEM\CurrentControlSet\Services\IHProtect Service] =>Adware.AgentODR^ [HKLM\SYSTEM\CurrentControlSet\Services\insvc_1.10.0.14] =>PUP.Infonaut^ [HKLM\SYSTEM\CurrentControlSet\Services\pylymezy] =>Adware.Downware^ [HKLM\SYSTEM\CurrentControlSet\Services\Registry Helper Service] =>PUP.RegistryHelper^ [HKLM\SYSTEM\CurrentControlSet\Services\Service Mgr DigitalMore] =>PUP.DigitalMore^ [HKLM\SYSTEM\CurrentControlSet\Services\StormWatch Update Service] =>PUP.StormWatch^ [HKLM\SYSTEM\CurrentControlSet\Services\SWUpdater] =>PUP.StormWatch^ [HKLM\SYSTEM\CurrentControlSet\Services\Update Mgr DigitalMore] =>PUP.DigitalMore^ [HKLM\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect] =>PUP.Fuyu^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~34F3174E_is1] =>PUP.AdvancedSystemProtector^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\AnyProtect] =>PUP.CMILimited^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\D61CFC10-9823-110E-ED54-998575A4400D] =>PUP.BlockAndSurf^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{cfd32d46-7d3f-483f-bace-7172aec5592d}] =>PUP.BuzzDock^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Cinema PlusV14.04] =>PUP.CrossRider^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Digital More] =>PUP.DigitalMore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_fr_424_is1] =>PUP.CrossRider^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Infonaut_1.10.0.14] =>PUP.Infonaut^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1] =>PUP.OptimizerPro^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\RegClean-Pro_is1] =>Rogue.RegistryPowerCleaner^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Registry Helper] =>PUP.RegistryHelper^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage] =>PUP.CMILimited^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\wincheck] =>PUP.Wincheck^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SmartWeb] =>PUP.SmartWeb^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\StormWatch] =>PUP.StormWatch^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WaNetworkEnhance] =>PUP.Wajam^ [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent] =>P2P.BitTorrent^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent] =>P2P.BitTorrent^ [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\ApnTBMon] =>Toolbar.AskBar^ [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\gmsd_fr_424] =>PUP.CrossRider^ [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Optimizer Pro] =>PUP.OptimizerPro^ [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Registry Helper] =>PUP.RegistryHelper^ [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SmartWeb] =>PUP.SmartWeb^ [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\StormWatch] =>PUP.StormWatch^ [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\WinCheck] =>PUP.Wincheck^ [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Yontoo Desktop] =>Adware.Yontoo^ [HKCU\Software\APN PIP] =>Toolbar.Ask [HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster [HKCU\Software\iwin] =>Adware.iWinArcade [HKCU\Software\Tutorials] =>Spyware.AgenceExclusive [HKLM\Software\Wow6432Node\Tutorials] =>Spyware.AgenceExclusive [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP] =>Adware.IMBooster [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP] =>Adware.IMBooster [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect] =>Toolbar.Conduit [HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider [HKCU\Software\InstalledBrowserExtensions\] =>PUP.CrossRider [HKCU\Software\HomeTab] =>PUP.CertifiedToolbar [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity [HKLM\Software\Classes\CLSID\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity [HKCU\Software\InstalledBrowserExtensions] =>PUP.CrossRider [HKLM\Software\InstalledBrowserExtensions] =>PUP.CrossRider [HKLM\Software\Wow6432Node\InstalledBrowserExtensions] =>PUP.CrossRider [HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro [HKLM\Software\Wow6432Node\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar] =>Adware.IMBooster [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:uTorrent =>P2P.BitTorrent^ C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\EP: RegExtension {58102098-601E-13CE-331B-C1AEDE02FD33} . (...) -- C:\extensions\Program Files (x86)\version36BlockAndSurf\192.xpi =>PUP.BlockAndSurf^ C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\9zgyi6yv.default\extensions\istart_ffnt@gmail.com =>PUP.Istart^ C:\Users\betto\AppData\Roaming\Mozilla\Firefox\Profiles\9zgyi6yv.default\extensions\searchengine@gmail.com =>PUP.SearchEngine^ C:\Program Files (x86)\AnyProtectEx =>PUP.AnyProtect^ C:\Program Files (x86)\Cinema PlusV14.04 =>PUP.CrossRider^ C:\Program Files (x86)\Cinema PlusV14.04-ntf =>PUP.CrossRider^ C:\Program Files (x86)\Digital More =>PUP.DigitalMore^ C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate^ C:\Program Files (x86)\gmsd_fr_424 =>PUP.CrossRider^ C:\Program Files (x86)\Infonaut_1.10.0.14 =>PUP.Infonaut^ C:\Program Files (x86)\Optimizer Pro 3.79 =>PUP.OptimizerPro^ C:\Program Files (x86)\Registry Helper =>PUP.RegistryHelper^ C:\Program Files (x86)\StormWatch =>PUP.StormWatch^ C:\Program Files (x86)\uTorrent =>P2P.µTorrent^ C:\Program Files (x86)\version36BlockAndSurf =>PUP.BlockAndSurf^ C:\Program Files (x86)\Wajam =>PUP.Wajam^ C:\Program Files (x86)\WaNetworkEnhance =>PUP.Wajam^ C:\ProgramData\IHProtectUpDate =>Adware.AgentODR^ C:\ProgramData\Registry Helper =>PUP.RegistryHelper^ C:\ProgramData\Trymedia =>Adware.Trymedia^ C:\ProgramData\WindowsMangerProtect =>PUP.Fuyu^ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP =>Adware.GamesDesktop^ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2 =>PUP.OptimizerPro^ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro =>Rogue.RegistryPowerCleaner^ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry Helper =>PUP.RegistryHelper^ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StormWatch =>PUP.StormWatch^ C:\Users\betto\AppData\Roaming\AnyProtectEx =>PUP.AnyProtect^ C:\Users\betto\AppData\Roaming\Optimizer Pro =>PUP.OptimizerPro^ C:\Users\betto\AppData\Roaming\StormFall =>Adware.StormFall^ C:\Users\betto\AppData\Roaming\uTorrent =>P2P.µTorrent^ C:\Users\betto\AppData\Roaming\VOPackage =>Adware.Downware^ C:\Users\betto\AppData\Local\globalUpdate =>PUP.GlobalUpdate^ C:\Users\betto\AppData\Local\gmsd_fr_424 =>PUP.CrossRider^ C:\Users\betto\AppData\Local\SmartWeb =>PUP.SmartWeb^ C:\Users\betto\AppData\Local\StormFall =>Adware.StormFall^ C:\Users\betto\AppData\Local\StormWatch =>PUP.StormWatch^ C:\Users\betto\AppData\Local\Weather_Protector_LLC =>PUP.StormWatch^ C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.AnyProtect^ C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormWatch =>PUP.StormWatch^ C:\Users\betto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>Adware.Downware^ C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe =>PUP.Infonaut^ C:\Users\betto\AppData\Roaming\VOPackage\VOsrv.exe =>Adware.Downware^ C:\Program Files (x86)\StormWatch\SWUpdaterSvc.exe =>PUP.StormWatch^ C:\Program Files (x86)\StormWatch\StormWatchSrv.exe =>PUP.StormWatch^ C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-1-7.exe =>PUP.CrossRider^ C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-3.exe =>PUP.CrossRider^ C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-4.exe =>PUP.CrossRider^ C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-5.exe =>PUP.CrossRider^ C:\Program Files (x86)\Cinema PlusV14.04\678a7185-5455-440b-b575-a67817b3d169-7.exe =>PUP.CrossRider^ C:\Users\betto\AppData\Roaming\ACXWGNVQ.exe =>PUP.CrossRider^ C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe =>PUP.AdvancedSystemProtector^ C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.AnyProtect^ C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe =>PUP.GlobalUpdate^ C:\Program Files (x86)\Optimizer Pro 3.79\OptProLauncher.exe =>PUP.OptimizerPro^ C:\Program Files (x86)\RCP\RegCleanPro.exe =>Rogue.RegistryPowerCleaner^ C:\Users\betto\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.SmartWeb^ C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-1-7.job =>PUP.CrossRider^ C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-1-7 =>PUP.CrossRider^ C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-3.job =>PUP.CrossRider^ C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-3 =>PUP.CrossRider^ C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-4.job =>PUP.CrossRider^ C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-4 =>PUP.CrossRider^ C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-5.job =>PUP.CrossRider^ C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-5 =>PUP.CrossRider^ C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-5_user.job =>PUP.CrossRider^ C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-5_user =>PUP.CrossRider^ C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-6.job =>PUP.CrossRider^ C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-6 =>PUP.CrossRider^ C:\Windows\Tasks\678a7185-5455-440b-b575-a67817b3d169-7.job =>PUP.CrossRider^ C:\Windows\System32\Tasks\678a7185-5455-440b-b575-a67817b3d169-7 =>PUP.CrossRider^ C:\Windows\Tasks\ACXWGNVQ.job =>PUP.CrossRider^ C:\Windows\System32\Tasks\ACXWGNVQ =>PUP.CrossRider^ C:\Windows\Tasks\APSnotifierPP1.job =>PUP.AnyProtect^ C:\Windows\System32\Tasks\APSnotifierPP1 =>PUP.AnyProtect^ C:\Windows\Tasks\APSnotifierPP2.job =>PUP.AnyProtect^ C:\Windows\System32\Tasks\APSnotifierPP2 =>PUP.AnyProtect^ C:\Windows\Tasks\APSnotifierPP3.job =>PUP.AnyProtect^ C:\Windows\System32\Tasks\APSnotifierPP3 =>PUP.AnyProtect^ C:\Windows\Tasks\BlockAndSurf Update.job =>PUP.BlockAndSurf^ C:\Windows\System32\Tasks\BlockAndSurf Update =>PUP.BlockAndSurf^ C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job =>PUP.GlobalUpdate^ C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore =>PUP.GlobalUpdate^ C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job =>PUP.GlobalUpdate^ C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA =>PUP.GlobalUpdate^ C:\Windows\Tasks\RegClean Pro_DEFAULT.job =>Rogue.RegistryPowerCleaner^ C:\Windows\System32\Tasks\RegClean Pro_DEFAULT =>Rogue.RegistryPowerCleaner^ C:\Windows\Tasks\RegClean Pro_UPDATES.job =>Rogue.RegistryPowerCleaner^ C:\Windows\System32\Tasks\RegClean Pro_UPDATES =>Rogue.RegistryPowerCleaner^ [HKCU\Software\AnyProtect] =>PUP.AnyProtect^ [HKCU\Software\AppDataLow\Software\BlockAndSurf] =>PUP.BlockAndSurf^ [HKCU\Software\AppDataLow\Software\SmartWeb] =>PUP.SmartWeb^ [HKCU\Software\BitTorrent] =>P2P.BitTorrent^ [HKCU\Software\Cinema PlusV14.04-ntf] =>PUP.CrossRider^ [HKCU\Software\Cinema PlusV14.04-nv-ie] =>PUP.CrossRider^ [HKCU\Software\Cinema PlusV14.04-nv] =>PUP.CrossRider^ [HKCU\Software\Conduit] =>Toolbar.Conduit^ [HKCU\Software\Optimizer Pro] =>PUP.OptimizerPro^ [HKCU\Software\ProductSetup] =>Adware.InstallCore^ [HKCU\Software\SearchProtectWS] =>PUP.SearchProtect^ [HKCU\Software\SimplyTech] =>PUP.SimplyTech^ [HKCU\Software\StormWatchApp] =>PUP.StormWatch^ [HKCU\Software\TNT2] =>Adware.TidyNetwork^ [HKCU\Software\TutoTag] =>PUP.AgenceExclusive^ [HKCU\Software\WajIEnhance] =>PUP.Wajam^ [HKCU\Software\globalUpdate] =>PUP.GlobalUpdate^ [HKLM\Software\Wow6432Node\2bd8d77a-dee4-4beb-9e08-3100d5bfbff9] =>PUP.CrossRider^ [HKLM\Software\Wow6432Node\Cinema PlusV14.04-nv-ie] =>PUP.CrossRider^ [HKLM\Software\Wow6432Node\Cinema PlusV14.04-nv] =>PUP.CrossRider^ [HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit^ [HKLM\Software\Wow6432Node\DigitalMore] =>PUP.DigitalMore^ [HKLM\Software\Wow6432Node\GAMESDESKTOP] =>Adware.GamesDesktop^ [HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate^ [HKLM\Software\Wow6432Node\IHProtect] =>Adware.AgentODR^ [HKLM\Software\Wow6432Node\StormWatchApp] =>PUP.StormWatch^ [HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab^ [HKLM\Software\Wow6432Node\Trymedia Systems] =>Adware.Trymedia^ [HKLM\Software\Wow6432Node\ea30e8eb-2ca4-474b-0194-b4395eed20e4] =>PUP.CrossRider^ [HKLM\Software\Wow6432Node\luckysearchesSoftware] =>Hijacker.LuckySearches^ [HKLM\Software\Wow6432Node\supTab] =>PUP.SupTab^ [HKLM\Software\Wow6432Node\sweet-pageSoftware] =>PUP.SweetPage^ [HKCR\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}] (globalUpdate.OneClickProcessLauncher) =>PUP.GlobalUpdate^ [HKCR\CLSID\{8E65ED4A-DA5A-3D2F-EA44-34A830EADAAB}] (BlockAndSurf) =>PUP.BlockAndSurf^ ~ Additionnel Scan: 561092 Items scanned in 01mn 56s ---\\ Informations complémentaires sur les modules ~ http://nicolascoolman.fr/g2-google-chrome-extensions/ =>.Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) ~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5) ~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2) ~ http://nicolascoolman.fr/o3-internet-explorer-toolbars/ =>.Internet Explorer Toolbars (O3) ~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4) ~ AMI: 5 Scanned in 00mn 00s ---\\ Récapitulatif des détections trouvées sur votre station http://www.nicolascoolman.fr/blog/ =>PUP.Infonaut http://nicolascoolman.fr/adware-downware =>Adware.Downware http://www.nicolascoolman.fr/blog/ =>PUP.StormWatch http://nicolascoolman.fr/pup-crossrider =>PUP.CrossRider http://www.nicolascoolman.fr/blog/ =>Hijacker.LuckySearches http://nicolascoolman.fr/pup-sweetpage =>PUP.SweetPage http://nicolascoolman.fr/pup-blockandsurf =>PUP.BlockAndSurf http://www.nicolascoolman.fr/blog/ =>PUP.Istart http://www.nicolascoolman.fr/blog/ =>PUP.SearchEngine http://nicolascoolman.fr/hijacker-proxy =>Hijacker.Proxy http://nicolascoolman.fr/pup-optimizerpro =>PUP.OptimizerPro http://nicolascoolman.fr/pup-globalupdate =>PUP.GlobalUpdate http://www.nicolascoolman.fr/blog/ =>Adware.AgentODR http://www.nicolascoolman.fr/blog/ =>PUP.RegistryHelper http://www.nicolascoolman.fr/blog/ =>PUP.DigitalMore http://www.nicolascoolman.fr/blog/ =>PUP.Fuyu http://nicolascoolman.fr/pup-advancedsystemprotector =>PUP.AdvancedSystemProtector http://nicolascoolman.fr/pup-anyprotect =>PUP.AnyProtect http://nicolascoolman.fr/rogue-registrypowercleaner =>Rogue.RegistryPowerCleaner http://nicolascoolman.fr/pup-smartwebsearch =>PUP.SmartWeb http://www.nicolascoolman.fr/blog/ =>PUP.CMILimited http://www.nicolascoolman.fr/blog/ =>PUP.BuzzDock http://www.nicolascoolman.fr/blog/ =>PUP.Wincheck http://nicolascoolman.fr/pup-wajam =>PUP.Wajam http://nicolascoolman.fr/toolbar-conduit =>Toolbar.Conduit http://nicolascoolman.fr/pup-certifiedtoolbar =>PUP.CertifiedToolbar http://www.nicolascoolman.fr/blog/ =>PUP.BrowserExtensions http://nicolascoolman.fr/adware-installcore =>Adware.InstallCore http://nicolascoolman.fr/pup-searchprotect =>PUP.SearchProtect http://www.nicolascoolman.fr/blog/ =>PUP.SimplyTech http://nicolascoolman.fr/adware-tidynetwork =>Adware.TidyNetwork http://nicolascoolman.fr/spyware-agenceexclusive =>PUP.AgenceExclusive http://www.nicolascoolman.fr/blog/ =>Adware.GamesDesktop http://nicolascoolman.fr/adware-imbooster =>Adware.IMBooster http://nicolascoolman.fr/pup-suptab =>PUP.SupTab http://nicolascoolman.fr/adware-trymedia =>Adware.Trymedia http://www.nicolascoolman.fr/blog/ =>Adware.StormFall http://www.nicolascoolman.fr/blog/ =>PUP.CorsicaTechnologies http://www.nicolascoolman.fr/blog/ =>Toolbar.AskBar http://nicolascoolman.fr/adware-yontoo =>Adware.Yontoo http://nicolascoolman.fr/pup-internetprogram =>PUP.InternetProgram http://nicolascoolman.fr/pup-vuupc =>PUP.VuuPC http://nicolascoolman.fr/pup-wpmanager =>PUP.WpManager http://nicolascoolman.fr/toolbar-ask =>Toolbar.Ask http://nicolascoolman.fr/adware-iwinarcade =>Adware.iWinArcade http://www.nicolascoolman.fr/blog/ =>Spyware.AgenceExclusive http://www.nicolascoolman.fr/blog/ =>Toolbar.eDataSecurity ~ MSI: 47 link(s) detected in 00mn 00s ---\\ Alert Messages WARNING : Hijacker Proxy found, Clean with ZHPCleaner Tool End of the scan (2991 lines in 05mn 06s)(22.8)