Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.11.9.165 By Nicolas Coolman (2015/11/09)
~ Run by DJAMEL (Administrator) (2015/11/10 08:52:57)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\DJAMEL\Desktop\ZHPDiag.txt
~ Report: C:\Users\DJAMEL\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 8.1 Pro, 32-bit (Build 9600)
---\\ Internet Browsers (4) - 0s
GCIE: Google Chrome v46.0.2490.80
MFIE: Mozilla Firefox 42.0 (x86 zh-CN) v42.0
OPIE: Opera 33.0.1990.58 v33.0.1990.58
MSIE: Internet Explorer v11.0.9600.18053
---\\ Windows Product Information (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ System protection software (1) - 4s
Windows Defender (Deactivate)
---\\ Surveillance software (1) - 4s
Adobe Reader XI
---\\ Information on the system (6) - 0s
~ Operating System: x86 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2940.024 MB (29% free)
System Restore: Activé (Enable)
System drive C: has 75 GB () free of 99 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: DJAMEL
~ User Name: DJAMEL
~ Logged in as Administrator
---\\ Enumeration of the disk units (4) - 0s
~ Drive C: has 75 GB free of 99 GB (System)
~ Drive E: has 0 GB free of 0 GB
~ Drive F: has 12 GB free of 99 GB
~ Drive G: has 11 GB free of 86 GB
---\\ State of the Windows Security Center (11) - 1s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (24) - 1s
[MD5.91E24273FCA076EA9E65DAFA98901225] - 28/01/2015 - (.Microsoft Corporation - مستكشف Windows.) -- C:\Windows\Explorer.exe [2207488] ©
[MD5.8BFE805555CDAF6387912A34D7978DAA] - 29/10/2014 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [51200] ©
[MD5.DC02677945BDABD6B0C6A29914AA21EF] - 29/10/2014 - (.Microsoft Corporation - تطبيق بدء تشغيل Windows.) -- C:\Windows\System32\Wininit.exe [115712] ©
[MD5.D798AD4968F64AC7D80FFC1A7580ACD5] - 10/09/2015 - (.Microsoft Corporation - ملحقات الإنترنت لـ Win32.) -- C:\Windows\System32\wininet.dll [2011136] ©
[MD5.E36FB29A2158B7D5DCA0F4E08DE75442] - 29/10/2014 - (.Microsoft Corporation - تطبيق تسجيل دخول Windows.) -- C:\Windows\System32\Winlogon.exe [465408] ©
[MD5.BFB9E1202225113991F981D29BFB9029] - 21/12/2013 - (.Microsoft Corporation - مكتبة تراخيص البرامج.) -- C:\Windows\System32\sppcomapi.dll [438272] ©
[MD5.BD9C7A068C46053F8747CEA73B5930AB] - 29/10/2014 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [498688] ©
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - 30/09/2013 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19456] ©
[MD5.D75FB05E8DBF21FA0EF313C7503243F1] - 30/05/2014 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\drivers\AFD.sys [461312] ©
[MD5.72FCAE2CE6DFEAB2AB072435017F3417] - 22/08/2013 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [23392] ©
[MD5.CE232BB0965C0C0B786C3F976CCBFB7D] - 22/08/2013 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [73728] ©
[MD5.E2FC132D48EA4E8B04432C33EFB77801] - 22/08/2013 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [124928] ©
[MD5.55758EBBC45E1628161121D7CFEAD4A1] - 06/03/2014 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.7E0EDA9EE53E344D1604EB2A7E8DED47] - 24/07/2014 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [69632] ©
[MD5.7A708934CC652100A94944EC808C3916] - 04/11/2014 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [83456] ©
[MD5.FA6C94C754A566EA8A61D658932F32DE] - 27/11/2013 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [126976] ©
[MD5.49EDA7967848465645E2D809384D0EBA] - 27/06/2015 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\drivers\MRxSmb.sys [328704] ©
[MD5.BC242922B0D08F61CF7C87FD08FAFA8B] - 22/08/2013 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [218624] ©
[MD5.C52E578E3F8182C2EE6AAF0AC2B61C9B] - 15/10/2014 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1689408] ©
[MD5.4F30970F15ADCC382544B31D5D7E368E] - 22/08/2013 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [81408] ©
[MD5.C51AB62AB41A2E8560D12472B204CC00] - 22/08/2013 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [81920] ©
[MD5.67E91843B0344411820A012063E876B2] - 30/09/2013 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\Windows\System32\drivers\rdpdr.sys [143872] ©
[MD5.DB0C184142CF9FA1746F598A16EE92B2] - 22/08/2013 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [87040] ©
[MD5.31A2AA48C1ECD390E2707E5C21B75DCE] - 19/06/2014 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [264512] ©
---\\ Non Microsoft non disabled Windows Services (8) - 0s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit - Advanced SystemCare Service.) - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - مثبِّت Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
O23 - Service: ihpmServer (ihpmServer) . (.Copyright 2015. All rights reserved. - Service.) - C:\Program Files\RayDld\ihpmServer.exe =>PUP.Optional.CrossRider
O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe ©
O23 - Service: Alipay payment client security service (pcas) . (.Alipay.com Inc. - pcas service.) - C:\Program Files\alipay\aliedit\5.1.0.3754\pcas.exe
O23 - Service: QQPCMgr RTP Service (QQPCRTP) . (.Tencent - 电脑管家-实时防护服务.) - C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCRTP.exe =>PUP.Optional.TencentAddressBar
O23 - Service: Alipay security business service (secbizsrv) . (.Alipay.com Inc. - Alipay security business service.) - C:\Program Files\alipay\aliedit\5.1.0.3754\secbizsrv.exe
---\\ Task Planned Automatically (20) - 4s
[MD5.B89A82FB10E98F2FDF51FA82C7366DD3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1067736] ©
[MD5.79391331D6F021AF2F1105785C15F648] [APT] [ASC8_PerformanceMonitor] (.IObit.) -- C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [3051296] ©
[MD5.C1906947E76FA87CB5EC2625752DE966] [APT] [ASC8_SkipUac_DJAMEL] (.IObit.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [5442336] ©
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DEA5E98B9CA1EDE6631530B9E3F5553D] [APT] [Opera N Saturday] (.Opera Software.) -- C:\Program Files\Opera\launcher.exe [948856] ©
[MD5.DEA5E98B9CA1EDE6631530B9E3F5553D] [APT] [Opera N Sunday] (.Opera Software.) -- C:\Program Files\Opera\launcher.exe [948856] ©
[MD5.DEA5E98B9CA1EDE6631530B9E3F5553D] [APT] [Opera scheduled Autoupdate 1446656298] (.Opera Software.) -- C:\Program Files\Opera\launcher.exe [948856] ©
[MD5.D4F992A7F021E25545555217CCD45CD4] [APT] [Uninstaller_SkipUac_DJAMEL] (.IObit.) -- C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [4866848] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [840] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [844] ©
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3874] ©
O39 - APT: ASC8_PerformanceMonitor - (.IObit.) -- C:\Windows\System32\Tasks\ASC8_PerformanceMonitor [3170] ©
O39 - APT: ASC8_SkipUac_DJAMEL - (.IObit.) -- C:\Windows\System32\Tasks\ASC8_SkipUac_DJAMEL [3312] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3582] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3818] ©
O39 - APT: Opera N Saturday - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera N Saturday [3240] ©
O39 - APT: Opera N Sunday - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera N Sunday [3240] ©
O39 - APT: Opera scheduled Autoupdate 1446656298 - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1446656298 [3806] ©
O39 - APT: Uninstaller_SkipUac_DJAMEL - (.IObit.) -- C:\Windows\System32\Tasks\Uninstaller_SkipUac_DJAMEL [3350] ©
---\\ Process running (36) - 3s
[MD5.33D7E76F7DE0A73504742765105F178F] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [821024] [PID.820] ©
[MD5.5A3119FEBCCDEB54E7E6DAC53B63C09A] - (.Tencent - 电脑管家-实时防护服务.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCRTP.exe [301728] [PID.988] =>PUP.Optional.TencentAddressBar
[MD5.5DB2C6B908C50767E2EDAA294A7566B5] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1872] ©
[MD5.D9394477A0F7EC7B89D9333FF735802F] - (.Copyright 2015. All rights reserved. - Service.) -- C:\Program Files\RayDld\ihpmServer.exe [271592] [PID.1928] =>PUP.Optional.CrossRider
[MD5.B35281EFE2E5BB325926A43728361EAB] - (.Alipay.com Inc. - pcas service.) -- C:\Program Files\alipay\aliedit\5.1.0.3754\pcas.exe [589784] [PID.396]
[MD5.2835D45D2EB8C42046C71F372E0878E2] - (.Alipay.com Inc. - Alipay security business service.) -- C:\Program Files\alipay\aliedit\5.1.0.3754\secbizsrv.exe [591320] [PID.792]
[MD5.053EEEE1ABAE53F044F1E386E22AE525] - (.Google Inc. - مثبِّت Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] [PID.3684] ©
[MD5.A72BB48D9014A7D7C05F02F595F52D60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe [245576] [PID.1992] ©
[MD5.79391331D6F021AF2F1105785C15F648] - (.IObit - Performance Monitor.) -- C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [3051296] [PID.2404] ©
[MD5.9CBC466A62723E5FFBEACD370B1B27E8] - (.Alipay.com Inc. - Alipay Security Server.) -- C:\Program Files\alipay\aliedit\5.1.0.3754\aliwssv.exe [2014168] [PID.2324]
[MD5.DA1F6029600D4028C78A3FDBBE9E4231] - (.Tencent - 电脑管家.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCTray.exe [355296] [PID.3252] =>PUP.Optional.TencentAddressBar
[MD5.5DE78E7C6F6C0B60FFC0CC03D60B6E28] - (.Tencent - 电脑管家-网络流量监控.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\plugins\QMNetMon\QQPCNetFlow.exe [1186144] [PID.4392] =>PUP.Optional.TencentAddressBar
[MD5.422963B9386FD4052AA766A6575ED8DE] - (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe [2429728] [PID.5272] ©
[MD5.60D66CEB34E0F631C206423CEFE35FDB] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [143392] [PID.6128] ©
[MD5.2308A07BD53235EC6A0640DE5E58BAE7] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [178208] [PID.2288] ©
[MD5.BD7D0E6082E90D3AE3676548F64A8251] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [178720] [PID.1700] ©
[MD5.0F484CEBC0E6724B157E644787B66B68] - (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe [623520] [PID.3692] ©
[MD5.EDD15222718345DEF9F12336BA2405D1] - (.Murray Hurps Software Pty Ltd - Ad Muncher.) -- C:\Program Files\Ad Muncher\AdMunch.exe [560760] [PID.1964]
[MD5.9C05A9EFA16BBBC7852554019EA8E65E] - (.ALLPlayer Group Ltd. - .) -- C:\Program Files\ALLPlayer Remote\ALLPlayerRemoteControl.exe [5182896] [PID.1284] ©
[MD5.A509BA12ED64FC6C04D7816350CCFDFF] - (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe [114232] [PID.4268] =>PUP.Optional.TencentAddressBar
[MD5.CB8BD8B031E5B1EE936EC66C73D47C14] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3907152] [PID.4260] ©
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe [269848] [PID.4848] ©
[MD5.FBE184520696581A942AC12968F797D2] - (...) -- c:\program files\Tencent\QQLive\9.10.1063.0\QQLiveService.exe [42680] [PID.4132] =>PUP.Optional.TencentAddressBar
[MD5.C1906947E76FA87CB5EC2625752DE966] - (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [5442336] [PID.2812] ©
[MD5.E43917F639B4A24F0E6E0290F6C9ADDA] - (.Copyright © 2013 FXsound.com, a subsidiary of Power T - DFX.) -- C:\Program Files\DFX\Universal\Apps\DfxSharedApp32.exe [130520] [PID.7500]
[MD5.BA6AD911039F1DD0250932F3C169363A] - (...) -- C:\Program Files\DFX\DFX.exe [1269208] [PID.6880]
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.7252] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.2460] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.7724] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.8096] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.7304] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.428] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6372] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6108] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6380] ©
[MD5.186FA9DCE5F1589FCEA9FADEF2A0FEDA] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\DJAMEL\Downloads\ZHPDiag3.exe [1967104] [PID.6908] ©
---\\ Google Chrome, Start,Search,Extensions (16) - 13s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aoophnighhnlkbbfhbmjgkogegjhijfg] [] Lamborghini Newport
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] [] __MSG_name__
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] [] AdBlock
G2 - GCE: Preference [User Data\Default] [hodaonapcbcankniahofhifnakgefbkc] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [lkadffjmnaiokkdncgdlecdegajoiemi] ["update_url":"https://clients2.google.com/service/] CinemaP-1.9cV07.11 =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] [] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ooebklgpfnbcnpokahmdidgbmlcdepkm] [] 电脑管家上网防护
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] [] Google Chrome manifest =>.Google Inc.
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (19) - 1s
M0 - MFSP: prefs.js [DJAMEL - 8on07hgv.default] http://www.oursurfing.com/?type=hp&ts=1446912201&z=b2ca8d6f8711523e88d50d6g6z2z3qet2g7o2o7efg&from=amt&uid=wdcxwd3000js-63pdb1_wd-wcapd425900259002 =>PUP.Optional.OurSurfing
P2 - EXT FILE: (...) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\adblockpopups@jessehakanen.net.xpi
P2 - EXT FILE: (...) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi
P2 - EXT FILE: (...) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\jid1-w4wG5nJhx4LJZr@jetpack.xpi
P2 - EXT FILE: (...) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\{8d87fccf-3da9-490a-ab2e-88d2ec24ccf6}.xpi
P2 - EXT FILE: (...) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\oursurfing.xml =>PUP.Optional.OurSurfing
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - EXT: (.IObit - Advanced SystemCare Surfing Protection.) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\ascsurfingprotection@iobit.com ©
P2 - EXT: (.lightningnewtab.com - deskCut.) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab
P2 - FPN: [HKLM] [@alipay.com/npalicert] - (.alipay.com.) -- C:\Program Files\alipay\aliedit\5.1.0.3754\npalicdo.dll
P2 - FPN: [HKLM] [@alipay.com/npalidcp] - (.Alipay.com co.,ltd.) -- C:\Program Files\alipay\aliedit\5.1.0.3754\npalidcp.dll
P2 - FPN: [HKLM] [@alipay.com/npaliedit] - (.Alipay.com co.,ltd.) -- C:\Program Files\alipay\aliedit\5.1.0.3754\npaliedit.dll
P2 - FPN: [HKLM] [@alipay.com/npAliInetHealth] - (.Alipay.com Inc..) -- C:\Program Files\alipay\aliedit\5.1.0.3754\npAlipaydhc.dll
P2 - FPN: [HKLM] [@alipay.com/npAliSecCtrl] - (.Alipay.com Inc..) -- C:\Program Files\alipay\aliedit\5.1.0.3754\npAliSecCtrl.dll
P2 - FPN: [HKLM] [@alipay.com/NPComBrg701,version=1.0.2011.701] - (.iTrusChina.) -- C:\Windows\System32\itruscert\NPComBrg701.dll
P2 - FPN: [HKLM] [@qq.com/npAndroidAssistant] - (.腾讯公司.) -- C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll =>PUP.Optional.TencentAddressBar
P2 - FPN: [HKLM] [@qq.com/QQlive] - (.Tencent.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\npQQLive.dll =>PUP.Optional.TencentAddressBar
P2 - FPN: [HKLM] [@qq.com/QQPCMgr] - (.Tencent Technology (Shenzhen) Company Limited.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\npQMExtensionsMozilla.dll =>PUP.Optional.TencentAddressBar
---\\ Opera, Plugins,Start,Search (2) - 1s
B2 - EXT: [{background:{scripts:[background.js]}content_scrip] C:\Users\DJAMEL\AppData\Roaming\Opera Software\Opera Stable\Extensions\cmlhkbleammgpbpgmdjofccdihhnmgla
B2 - EXT: [CinemaP-1.9cV07.11] C:\Users\DJAMEL\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi
---\\ Internet Explorer Extensions, Start, Search (10) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://hao.qq.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (7) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (23)
---\\ Browser Helper Object (BHO) (6) - 0s
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll ©
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} . (.IObit - Uninstall for explorer.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer.dll ©
O2 - BHO: QPMIEHelper - {50F4150A-48B2-417A-BE4C-C83F580FB904} . (.腾讯公司 - QQPhoneManager Onekey-Install plug-in for A.) -- C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll =>PUP.Optional.TencentAddressBar
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll ©
O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} . (.IObit - Advanced SystemCare 8 ASCPlugin_Protection.) -- C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll ©
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll ©
---\\ Auto loading programs from Registry and folders (15) - 0s
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe ©
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe ©
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe ©
O4 - HKLM\..\Run: [USB Security] . (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe ©
O4 - HKLM\..\Run: [ QQPCTray] . (.Tencent - 电脑管家.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCTray.exe =>PUP.Optional.TencentAddressBar
O4 - HKLM\..\Run: [Ad Muncher] . (.Murray Hurps Software Pty Ltd - Ad Muncher.) -- C:\Program Files\Ad Muncher\AdMunch.exe
O4 - HKLM\..\Run: [DFX] . (...) -- C:\Program Files\DFX\DFX.exe
O4 - HKCU\..\Run: [ALLPlayer WiFi Remote] . (.ALLPlayer Group Ltd. - .) -- C:\Program Files\ALLPlayer Remote\ALLPlayerRemoteControl.exe ©
O4 - HKCU\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe ©
O4 - HKCU\..\Run: [qqlive] . (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe ©
O4 - HKUS\S-1-5-21-4219657764-3264935545-396923778-1001\..\Run: [ALLPlayer WiFi Remote] . (.ALLPlayer Group Ltd. - .) -- C:\Program Files\ALLPlayer Remote\ALLPlayerRemoteControl.exe ©
O4 - HKUS\S-1-5-21-4219657764-3264935545-396923778-1001\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe ©
O4 - HKUS\S-1-5-21-4219657764-3264935545-396923778-1001\..\Run: [qqlive] . (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O4 - HKUS\S-1-5-21-4219657764-3264935545-396923778-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe ©
---\\ Global shortcuts Startup (12) - 2s
O4 - GS\Desktop [Administrator]: QQ影音.lnk . (.腾讯科技(深圳)有限公司 - QQ影音.) C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Quicklaunch [Administrator]: QQ影音.lnk . (.腾讯科技(深圳)有限公司 - QQ影音.) C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\TaskBar [Administrator]: 腾讯视频.lnk . (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Desktop [DJAMEL]: QQ影音.lnk . (.腾讯科技(深圳)有限公司 - QQ影音.) C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Quicklaunch [DJAMEL]: QQ影音.lnk . (.腾讯科技(深圳)有限公司 - QQ影音.) C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\TaskBar [DJAMEL]: 腾讯视频.lnk . (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Desktop [Guest]: QQ影音.lnk . (.腾讯科技(深圳)有限公司 - QQ影音.) C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Quicklaunch [Guest]: QQ影音.lnk . (.腾讯科技(深圳)有限公司 - QQ影音.) C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\TaskBar [Guest]: 腾讯视频.lnk . (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O4 - GS\CommonDesktop [Public]: 电脑管家.lnk . (.Tencent - 电脑管家.) C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCTray.exe =>PUP.Optional.TencentAddressBar
O4 - GS\CommonDesktop [Public]: 腾讯视频.lnk . (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O4 - GS\CommonDesktop [Public]: 软件管理.lnk . (.Tencent - 软件管理.) C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSoftMgr.exe =>PUP.Optional.TencentAddressBar
---\\ Lop.com/Domain Hijackers (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = domain.name
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = domain.name
---\\ Extra protocols (20) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
---\\ Software installed (26) - 2s
O42 - Logiciel: Ad Muncher v4.94.34121 (Free) - (...) [HKLM] -- Ad Muncher
O42 - Logiciel: Adobe Reader XI (11.0.10) - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1033-7B44-AB0000000001} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824161310} ©
O42 - Logiciel: Advanced SystemCare 8 - (.IObit.) [HKLM] -- Advanced SystemCare 8_is1 ©
O42 - Logiciel: ALLPlayer Remote Control - (.ALLPlayer Group, Ltd..) [HKLM] -- {146BDBDD-ACD9-4B04-A286-C27471841E8E}_is1
O42 - Logiciel: DFX - (.Power Technology.) [HKLM] -- DFX ©
O42 - Logiciel: globalupdate Helper - (.globalupdate Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.GlobalUpdate
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM] -- Internet Download Manager ©
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM] -- IObitUninstall ©
O42 - Logiciel: Java 8 Update 65 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218065F0} ©
O42 - Logiciel: Java 8 Update 66 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218066F0} ©
O42 - Logiciel: Max Recorder - (.Silver Vine, LLC.) [HKLM] -- Max Recorder
O42 - Logiciel: Mozilla Firefox 42.0 (x86 zh-CN) - (.Mozilla.) [HKLM] -- Mozilla Firefox 42.0 (x86 zh-CN) ©
O42 - Logiciel: Ö§¸¶±¦°²È«¿Ø¼þ 5.1.0.3754 - (.Alipay.com Co., Ltd..) [HKLM] -- alieditplus
O42 - Logiciel: Opera Stable 33.0.1990.58 - (.Opera Software.) [HKLM] -- Opera 33.0.1990.58 ©
O42 - Logiciel: oursurfing - (...) [HKLM] -- oursurfing =>PUP.Optional.OurSurfing
O42 - Logiciel: QQ影音3.9 - (.腾讯科技(深圳)有限公司.) [HKCU] -- QQPlayer
O42 - Logiciel: Surfing Protection - (.IObit.) [HKLM] -- IObit Surfing Protection_is1 ©
O42 - Logiciel: TV 3L PC version 1.4.1.0 - (.Smart PC Soft, Ltd..) [HKLM] -- {0BBD0F9C-12E5-456A-A6FC-372324F3D082}_is1
O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM] -- USB Disk Security_is1 ©
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM] -- VLC media player ©
O42 - Logiciel: WinRAR 5.30 beta 6 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver ©
O42 - Logiciel: 电脑管家11.1 - (.腾讯科技(深圳)有限公司.) [HKLM] -- QQPCMgr
O42 - Logiciel: 腾讯视频 - (.腾讯科技(深圳)有限公司.) [HKLM] -- qqlive
---\\ HKCU & HKLM Software Keys (77) - 2s
HKLM\SOFTWARE\AdMuncher
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\alipay
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\BrowserCapabilities
HKLM\SOFTWARE\CinemaP-1.9cV07.11 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV07.11-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV07.11-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CoreCodec
HKLM\SOFTWARE\CyberLink
HKLM\SOFTWARE\DFX
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\ihpmserver
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\IObit
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\MaxRecorder
HKLM\SOFTWARE\MiddleRush
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Opera Software
HKLM\SOFTWARE\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\PowerTechnology
HKLM\SOFTWARE\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\Volatile
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AC3filter
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Akeo Consulting
HKCU\SOFTWARE\ALLPlayer Remote
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaP-1.9cV07.11-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaP-1.9cV07.11-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CoinisRevShare
HKCU\SOFTWARE\dab37b069e2ecad5ee04bb1acb208d92 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\DFX
HKCU\SOFTWARE\DownloadAstro
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GRETECH
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\IObit
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MaxRecorder
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\PowerTechnology
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
---\\ Contents of the Common Files folders (139) - 4s
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Ad Muncher
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Adobe
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\alipay
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\ALLPlayer Remote
O43 - CFD: 07/11/2015 - [] D -- C:\Program Files\CinemaP-1.9cV07.11 =>PUP.Optional.CrossRider
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Common Files
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\DFX
O43 - CFD: 07/11/2015 - [] D -- C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Google
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Intel
O43 - CFD: 07/11/2015 - [] D -- C:\Program Files\Internet Download Manager
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\IObit
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Java
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Max Recorder
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 06/11/2015 - [] D -- C:\Program Files\Middle Rush
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Opera
O43 - CFD: 07/11/2015 - [] D -- C:\Program Files\RayDld =>PUP.Optional.CrossRider
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\TV 3L PC
O43 - CFD: 22/08/2013 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\USB Disk Security
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 30/09/2013 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Windows Multimedia Platform
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 22/08/2013 - [] SHD -- C:\Program Files\Windows Sidebar
O43 - CFD: 08/11/2015 - [] HD -- C:\Program Files\WindowsApps
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\WindowsPowerShell
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 09/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 09/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ad Muncher
O43 - CFD: 09/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer Remote Control
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DFX Audio Enhancer
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 07/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 22/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Max Recorder
O43 - CFD: 22/08/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 09/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 30/09/2013 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TV 3L PC
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 07/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinToUSB
O43 - CFD: 07/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\腾讯软件
O43 - CFD: 06/11/2015 - [] D -- C:\ProgramData\48ed1695-d484-472b-bd42-582714ef1368
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Ad Muncher
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\alipay
O43 - CFD: 04/11/2015 - [0] D -- C:\ProgramData\ALLPlayerRemote
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\DFX
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 07/11/2015 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\IObit
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\KingSoft
O43 - CFD: 09/11/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 05/11/2015 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\ProductData =>PUP.Optional.Generic
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Sun
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 04/11/2015 - [0] D -- C:\ProgramData\TXQMPC
O43 - CFD: 04/11/2015 - [0] D -- C:\ProgramData\Zbshareware Lab
O43 - CFD: 04/11/2015 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Common Files\DFX
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Common Files\IObit
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Common Files\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Adobe
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Apple Computer
O43 - CFD: 09/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\DMCache
O43 - CFD: 09/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Identities
O43 - CFD: 10/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\IDM
O43 - CFD: 09/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\IObit
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Macromedia
O43 - CFD: 08/11/2015 - [] SD -- C:\Users\DJAMEL\AppData\Roaming\Microsoft
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Mozilla
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Opera Software
O43 - CFD: 07/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\oursurfing =>PUP.Optional.OurSurfing
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\ProductData
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Shortcut
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Sun
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 06/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\vlc
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\WinRAR
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Zbshareware Lab
O43 - CFD: 10/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\ZHP
O43 - CFD: 04/11/2015 - [0] D -- C:\Users\DJAMEL\AppData\Local\Adobe
O43 - CFD: 09/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\DFX
O43 - CFD: 09/11/2015 - [0] SHD -- C:\Users\DJAMEL\AppData\Local\EmieSiteList
O43 - CFD: 09/11/2015 - [0] SHD -- C:\Users\DJAMEL\AppData\Local\EmieUserList
O43 - CFD: 07/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 05/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Google
O43 - CFD: 09/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\MaxRecorder
O43 - CFD: 09/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Microsoft
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Mozilla
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Opera Software
O43 - CFD: 08/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Packages
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Programs
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Smart_PC_Soft
O43 - CFD: 10/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Temp
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\VirtualStore
O43 - CFD: 22/08/2013 - [] RD -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - [] RD -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 09/11/2015 - [] RD -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 07/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 22/08/2013 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 09/11/2015 - [] RD -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 22/08/2013 - [] RD -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\تطبيقات Chrome
O43 - CFD: 06/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
---\\ Latest files created in Prefetcher (1) - 7s
O45 - LFCP:[MD5.C8164169FA37221DB818B7C6403779D9] 09/11/2015 A -- C:\Windows\Prefetch\QMTENCENTNEWS.EXE-7AEDF939.pf =>PUP.Optional.TencentAddressBar
---\\ ShellIconOverlayIdentifiers (SIOI) (4) - 0s
O106 - SIOI: PCMgr Garbage Cleaner ShellExtension [.QMDeskTopGCIcon] - {B7667919-3765-4815-A66D-98A09BE662D6}. (.Tencent - 电脑管家-桌面快捷清理.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMGCShellExt.dll =>PUP.Optional.TencentAddressBar
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - مكتبة DLL الخاصة بملحق Shell للتخزين المحسّ.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: IDM Shell Extension [IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files\Internet Download Manager\IDMShellExt.dll ©
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - واجهة مستخدم ذاكرة التخزين المؤقت من جانب ا.) -- C:\Windows\System32\cscui.dll ©
---\\ System Drivers List (41) - 4s
O58 - SDL:2013/08/22 06:33:26 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [86368] ©
O58 - SDL:2013/08/22 06:33:25 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [773472] ©
O58 - SDL:2013/08/22 06:33:25 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [72544] ©
O58 - SDL:2013/08/22 06:33:26 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [215392] ©
O58 - SDL:2013/08/22 06:33:24 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22880] ©
O58 - SDL:2013/08/22 06:33:26 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [101728] ©
O58 - SDL:2013/08/13 00:25:32 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [16088] ©
O58 - SDL:2005/11/30 18:17:30 A . (.Conexant Systems, Inc. - CxTsCap, MPEG-2 TS Capture Driver, Official.) -- C:\Windows\System32\drivers\cx88ts.sys [13440] ©
O58 - SDL:2012/12/13 16:41:10 A . (.Windows (R) Win 7 DDK provider - Explore Systems Virtual Audio Device.) -- C:\Windows\System32\drivers\dfx11_1.sys [24424] ©
O58 - SDL:2013/08/22 06:33:29 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [56672] ©
O58 - SDL:2015/11/04 22:22:20 A . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) -- C:\Windows\System32\drivers\HWiNFO32.SYS [23840]
O58 - SDL:2013/07/23 22:18:30 A . (.Intel Corporation - Intel(R) Atom(TM) Processor GPIO Controller.) -- C:\Windows\System32\drivers\iaiogpio.sys [22016] ©
O58 - SDL:2013/07/23 22:18:30 A . (.Intel Corporation - Intel(R) Atom(TM) Processor I2C Controller.) -- C:\Windows\System32\drivers\iaioi2c.sys [61936] ©
O58 - SDL:2013/08/10 01:39:44 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\Windows\System32\drivers\iaStorAV.sys [524784] ©
O58 - SDL:2013/08/22 06:33:29 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [333664] ©
O58 - SDL:2015/06/12 03:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [123968] ©
O58 - SDL:2012/11/27 00:22:30 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys [10860032] ©
O58 - SDL:2013/08/22 06:33:29 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [94048] ©
O58 - SDL:2013/08/22 06:33:30 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [79712] ©
O58 - SDL:2013/08/22 06:33:30 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3.sys [68960] ©
O58 - SDL:2013/08/22 06:33:29 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [69472] ©
O58 - SDL:2013/08/22 06:33:30 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [51552] ©
O58 - SDL:2013/08/22 06:33:29 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [464736] ©
O58 - SDL:2013/08/22 06:33:32 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [58208] ©
O58 - SDL:2013/08/22 06:33:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [120160] ©
O58 - SDL:2013/08/22 06:33:33 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [141664] ©
O58 - SDL:2013/06/18 13:23:13 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 32-bit Dr.) -- C:\Windows\System32\drivers\Rt630x86.sys [490496] ©
O58 - SDL:2013/08/22 09:16:47 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2013/08/22 06:32:56 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [41312] ©
O58 - SDL:2013/08/22 06:32:57 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [79200] ©
O58 - SDL:2013/08/22 06:32:57 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [26976] ©
O58 - SDL:2015/11/06 20:01:36 A . (.Tencent - 电脑管家-TAO游戏启动加速驱动.) -- C:\Windows\System32\drivers\TAOAccelerator.sys [114616] =>PUP.Optional.TencentAddressBar
O58 - SDL:2015/11/06 20:01:36 A . (.Tencent Technology(Shenzhen) Company Limited - TAOKernel.) -- C:\Windows\System32\drivers\TAOKernel.sys [138552]
O58 - SDL:2015/11/04 21:02:04 A . (.Tencent - Tencent Common Protect-TsTurboA.) -- C:\Windows\System32\drivers\TenCommProtect.sys [42296] =>PUP.Optional.TencentAddressBar
O58 - SDL:2015/11/06 20:01:36 A . (.电脑管家 - 电脑管家-驱动模块.) -- C:\Windows\System32\drivers\TFsFlt.sys [150072] =>PUP.Optional.TencentAddressBar
O58 - SDL:2015/11/09 16:18:12 A . (.Tencent - Tencent TS888 (电脑管家主动防御模块).) -- C:\Windows\System32\drivers\TS888.sys [30392] =>PUP.Optional.TencentAddressBar
O58 - SDL:2015/11/06 20:01:36 A . (.Tencent - Tencent TSDefense Boot (电脑管家主动防御模块).) -- C:\Windows\System32\drivers\TSDefenseBt.sys [14008] =>PUP.Optional.TencentAddressBar
O58 - SDL:2015/10/30 18:18:08 A . (.电脑管家 - 电脑管家-驱动模块.) -- C:\Windows\System32\drivers\TsFltMgr.sys [126776] =>PUP.Optional.TencentAddressBar
O58 - SDL:2013/08/22 06:33:00 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [18272] ©
O58 - SDL:2013/08/22 06:33:01 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\System32\drivers\vsmraid.sys [148832] ©
O58 - SDL:2013/08/22 06:33:01 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [276832] ©
---\\ Last modified or created user files (82) - 14s
O61 - LFC: 2015/11/07 17:02:15 A . (..) -- C:\Users\DJAMEL\Downloads\Advanced System Care 9 Beta 3 Pro Serial Key + Crack Is Here! [LATEST]__15047_i1735377964_il841233.exe [1044184]
O61 - LFC: 2015/11/04 19:29:24 A . (.ALLPlayer.) -- C:\Users\DJAMEL\Downloads\ALLPlayerEN.exe [44396640]
O61 - LFC: 2015/11/07 18:08:11 A . (..) -- C:\Users\DJAMEL\Downloads\IDMAN.EXE [3167818]
O61 - LFC: 2015/11/04 19:31:20 A . (.QQPlayer.NET Tencent.) -- C:\Users\DJAMEL\Downloads\QQPlayer_Setup_Arabic.exe [28103402]
O61 - LFC: 2015/11/04 20:06:15 A . (.PortableApps.com.) -- C:\Users\DJAMEL\Downloads\server+Cccam+hakimsat+2.r_10924_i80177442_il345.exe [1821344]
O61 - LFC: 2015/11/04 18:52:57 A . (.ETBKO.) -- C:\Users\DJAMEL\Downloads\server_Cccam_hakimsat_2.exe [322600]
O61 - LFC: 2015/11/04 18:58:16 A . (.Smart PC Soft, Ltd..) -- C:\Users\DJAMEL\Downloads\tv3lpc.exe [25007905]
O61 - LFC: 2015/11/04 19:15:23 A . (..) -- C:\Users\DJAMEL\Downloads\vlc-2.1.3-win32.exe [24677393]
O61 - LFC: 2015/11/04 17:55:02 A . (.Program.) -- C:\Users\DJAMEL\Downloads\winrar.exe [1016168]
O61 - LFC: 2015/11/04 17:55:27 A . (..) -- C:\Users\DJAMEL\Downloads\winrar.exe.EXE [1786792]
O61 - LFC: 2015/11/06 22:37:20 A . (.The EasyUEFI Development Team..) -- C:\Users\DJAMEL\Downloads\WinToUSB_Setup.exe [5171148]
O61 - LFC: 2015/11/09 09:30:25 A . (.Murray Hurps Software Pty Ltd.) -- C:\Users\DJAMEL\Downloads\Programs\AM-Install.exe [560760]
O61 - LFC: 2015/11/05 06:43:38 A . (.The ICU Project.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\QQPhoneManager\Components\Webkit3.1\icudt.dll [4154936] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/05 06:43:38 A . (.Copyright (C) 2013 The Chromium Embedded Framework Au.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\QQPhoneManager\Components\Webkit3.1\libcef3.dll [29811712] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/04 23:05:29 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\QQPCMgr\qmdr\dr.dll [76168] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/04 22:23:17 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\QQLive\WebKit\Plugin\Flash\NP_Flash.dll [17448624] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/04 20:58:13 A . (.Tencent Corporation.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\MMInstallCache\QQPLayerSetup14228.exe [14176992] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/05 22:08:11 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\Common\gjdatareport.dll [76168] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AdbCmdServer.dll [198200] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidDaemon.exe [29752] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidDevice.dll [269368] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidServer.exe [222264] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidServerUp.exe [205880] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkFS.dll [76344] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkGraphic.dll [355384] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkImage.dll [56888] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkIOStub.dll [16440] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AsyncTask.dll [86072] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\bugreport.exe [270904] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\Common.dll [1948728] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\ConnectManager.dll [430136] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\ConnectUI.dll [366136] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\Daemon.dll [90680] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DaemonProxy.dll [36408] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DownloadMgr.dll [158264] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DriverTools.exe [114744] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DriverToolsX64.exe [134200] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\GF.dll [2334776] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libexpatw.dll [129592] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libimagequant.dll [52792] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libjpegturbo.dll [279608] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libpng.dll [128568] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libtcmalloc.dll [177720] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\Log4cplus.dll [295992] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\lua.dll [157752] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\mdb.exe [36408] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\NetHub.dll [307768] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\NetworkMgr.dll [187960] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\QQPMIpc.dll [80952] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.TODO: <公司名>.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\RubikEngine.dll [890424] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\SdkClient.dll [677944] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\sqlite.dll [448568] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\tadb.exe [621624] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\TADInstaller.dll [212536] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\tinyxml.dll [93752] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\xGraphic32.dll [132152] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\zlib.dll [75320] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 17:04:12 A . (.Copyright 2015.) -- C:\Users\DJAMEL\AppData\Roaming\oursurfing\Uninstall.exe [630784] =>PUP.Optional.OurSurfing
O61 - LFC: 2015/11/07 03:09:02 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\SqliteWrapper\68c589f2a5506181bfc3d55d1d8b40fb\SqliteWrapper.ni.dll [72704]
O61 - LFC: 2015/11/09 20:56:47 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\SqliteWrapper\3fb856e3a643766e2c18e51097dea7b7\SqliteWrapper.ni.dll [72704]
O61 - LFC: 2015/11/07 03:09:01 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.PerfTrack\daecccdf18083cca2c8941c600c9cb44\Microsoft.PerfTrack.ni.dll [18944]
O61 - LFC: 2015/11/09 20:56:46 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.PerfTrack\2a1f795aceb026901e8290d2319fe53a\Microsoft.PerfTrack.ni.dll [18944]
O61 - LFC: 2015/11/04 20:21:03 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingFoodAndDrink_8wekyb3d8bbwe\LocalState\Cache\cacheConfigurationCache\_CacheMetadata.bin [443]
O61 - LFC: 2015/11/07 03:08:58 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\SqliteWrapper\68c589f2a5506181bfc3d55d1d8b40fb\SqliteWrapper.ni.dll [72704]
O61 - LFC: 2015/11/09 20:56:43 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\SqliteWrapper\3fb856e3a643766e2c18e51097dea7b7\SqliteWrapper.ni.dll [72704]
O61 - LFC: 2015/11/07 03:08:57 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.PerfTrack\daecccdf18083cca2c8941c600c9cb44\Microsoft.PerfTrack.ni.dll [18944]
O61 - LFC: 2015/11/09 20:56:42 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.PerfTrack\2a1f795aceb026901e8290d2319fe53a\Microsoft.PerfTrack.ni.dll [18944]
O61 - LFC: 2015/11/09 20:56:27 A . (.Copyright © 2013.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\XPlatformCldb33b5a3#\2eec4c5e1c590145ccbaa75e27e660a1\XPlatformCloudKit.Win8.ni.exe [312320]
O61 - LFC: 2015/11/09 20:56:28 A . (.Copyright © 2013.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\XPlatformCl4c75da74#\a0660f2cb04b030aa85a0973a85936f6\XPlatformCloudKit.PCL.ni.dll [275968]
O61 - LFC: 2015/11/09 20:56:32 A . (.Cirrious.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\Cirrious.MvvmCross\c35d77d04db4eece8b35a521f717317e\Cirrious.MvvmCross.ni.dll [276992]
O61 - LFC: 2015/11/09 20:56:31 A . (.Cirrious.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\Cirrious.Mvf912faf1#\de05c299cf1b8fc789414012d6c4cfcd\Cirrious.MvvmCross.WindowsStore.ni.dll [64512]
O61 - LFC: 2015/11/09 20:56:36 A . (.Cirrious.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\Cirrious.Mvbe545cbd#\458f9de3e66a6ecd1afced48b2a5ac32\Cirrious.MvvmCross.Plugins.Json.ni.dll [20480]
O61 - LFC: 2015/11/09 20:56:30 A . (.Cirrious.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\Cirrious.Mvbe4dc043#\32bffbc20e6c8f0ef8c08c8dc87ee5eb\Cirrious.MvvmCross.Plugins.File.ni.dll [15872]
O61 - LFC: 2015/11/09 20:56:29 A . (.Cirrious.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\Cirrious.CrossCore\33a6dfe613ae4d01c133757fe5a6fef8\Cirrious.CrossCore.ni.dll [291840]
O61 - LFC: 2015/11/09 20:56:38 A . (.Cirrious.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\Cirrious.Cr9c7a320a#\3719e5c0b0e846392cace66f53710a52\Cirrious.CrossCore.WindowsStore.ni.dll [15872]
O61 - LFC: 2015/11/09 20:56:30 A . (.Copyright (C) 2013.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\AsyncOAuth\e3c640a0741d31cd95d3ef4f3d1ba096\AsyncOAuth.ni.dll [75264]
O61 - LFC: 2015/11/09 20:56:35 A . (.Copyright © 2013.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\AppPromo\1893574b4d7ab9d3e35cc11358a40382\AppPromo.ni.dll [282112]
O61 - LFC: 2015/11/09 16:18:19 A . (..) -- C:\Users\DJAMEL\AppData\Local\Microsoft\Windows\appsFolderLayout.bin [750]
O61 - LFC: 2015/11/07 21:42:30 A . (..) -- C:\Users\DJAMEL\AppData\Local\Microsoft\Windows\Sqm\Manifest\Sqm10248.bin [269992]
O61 - LFC: 2015/11/04 17:30:48 A . (..) -- C:\Users\DJAMEL\AppData\Local\Microsoft\Windows\1025\StructuredQuerySchema.bin [401073]
O61 - LFC: 2015/11/09 17:12:40 A . (..) -- C:\Users\DJAMEL\AppData\Local\Microsoft\Internet Explorer\UrlBlockManager\urlblocklist.bin [0]
O61 - LFC: 2015/11/10 08:05:49 A . (..) -- C:\Users\DJAMEL\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
---\\ File Associations Shell Spawning (11) - 1s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
---\\ Start Menu Internet (16) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\Launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - الأداة المساعدة للتهيئة لكل مستخدم لـ IE.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - الأداة المساعدة للتهيئة لكل مستخدم لـ IE.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - الأداة المساعدة للتهيئة لكل مستخدم لـ IE.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\launcher.exe ©
---\\ Search Browser Infection (5) - 2s
O69 - SBI: prefs.js [DJAMEL - 8on07hgv.default] user_pref("browser.startup.homepage", "http://www.oursurfing.com/?type=hp&ts=1446912201&z=b2ca8d6f8711523e88d50d6g6z2z3qet2g7o2o7e[...] =>PUP.Optional.OurSurfing
O69 - SBI: prefs.js [DJAMEL - 8on07hgv.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [DJAMEL - 8on07hgv.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {5CE25775-92B7-477d-9603-852F0B34D8B0} [DefaultScope] - (搜狗搜索) - http://www.sogou.com/
---\\ Search Svchost Services (36) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [161792] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - خدمة نشر شهادة البطاقة الذكية لـ Microsoft.) -- C:\Windows\System32\certprop.dll [126976] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - خدمة نشر شهادة البطاقة الذكية لـ Microsoft.) -- C:\Windows\System32\certprop.dll [126976] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [250368] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - عميل نهج المجموعة.) -- C:\Windows\System32\gpsvc.dll [1212928] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [733696] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [822784] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي الخاصة بخدمة تسجي.) -- C:\Windows\System32\seclogon.dll [24064] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [89600] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [115712] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [93696] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - خدمة جدولة المهام.) -- C:\Windows\System32\schedsvc.dll [1015808] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [185856] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [74752] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [108032] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [191488] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [296448] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - تقارير المشاكل وحلولها.) -- C:\Windows\System32\wercplsupport.dll [64512] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [75264] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [41984] ©
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1245184] ©
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [367104] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [297984] ©
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [167424] ©
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [142848] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [95232] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [461824] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [183296] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [58368] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [390144] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [254464] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - عامل Windows Update.) -- C:\Windows\System32\wuaueng.dll [3065856] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [734208] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لخدمات Windows Sh.) -- C:\Windows\System32\shsvcs.dll [576512] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - خدمة تثبت البرامج.) -- C:\Windows\System32\appmgmts.dll [155648] ©
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filt.) -- C:\Windows\System32\KeyboardFilterSvc.dll [76096] ©
---\\ Firewall Active Exception List (54) - 3s
O87 - FAEL: "{D11B7C28-230E-4404-9007-340AA8B95B6E}" [In-None-P6-TRUE] .(.版权所有 (C) 2008 Tencent - QQDeskUpdate.) -- C:\Program Files\Tencent\QQPlayer\QQDeskUpdate.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{E7224401-B036-4FF0-89DE-8D7BD764D9D4}" [In-None-P17-TRUE] .(.版权所有 (C) 2008 Tencent - QQDeskUpdate.) -- C:\Program Files\Tencent\QQPlayer\QQDeskUpdate.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{F1FFEC03-DF9E-46FA-A15D-EFDD8B9A3740}" [In-None-P6-TRUE] .(.腾讯科技(深圳)有限公司 - QQ影音.) -- C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{C49660A9-8166-497D-B570-A43D7C4F9410}" [In-None-P17-TRUE] .(.腾讯科技(深圳)有限公司 - QQ影音.) -- C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{67E8BB62-0862-4E4B-AF55-9242F872712D}" [In-None-P17-TRUE] .(.Tencent Ltd. - QQ影音工具箱.) -- C:\Program Files\Tencent\QQPlayer\QPToolbox.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{0526F207-0735-4148-BCB7-BEB4C87B5D81}" [In-None-P6-TRUE] .(.Tencent - QQ影音在线升级程序.) -- C:\Program Files\Tencent\QQPlayer\QPUp.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{BE2B89D2-29C0-482F-B350-B06837578492}" [In-None-P17-TRUE] .(.Tencent - QQ影音在线升级程序.) -- C:\Program Files\Tencent\QQPlayer\QPUp.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{E38F876D-7EC3-483E-AA8D-16FAC51077C5}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQPlayer\Statistics.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{C710CA2A-8B35-43D0-B618-5F84D58AB54A}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQPlayer\Statistics.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{354E7FE0-FB10-4526-98F2-6D50C77E6EA3}" [In-None-P6-TRUE] .(.Tencent - 腾讯视频下载器.) -- C:\Program Files\Tencent\QQPlayer\loader\QQLiveDownloader.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{720B29A8-2D96-424D-9B76-E9A3B4B78AFC}" [In-None-P17-TRUE] .(.Tencent - 腾讯视频下载器.) -- C:\Program Files\Tencent\QQPlayer\loader\QQLiveDownloader.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "TCP Query User{E340518B-59AF-431E-89F9-0B67551956E1}C:\program files\tv 3l pc\tv3lpcex.exe" [In-None-P6-TRUE] .(...) -- C:\program files\tv 3l pc\tv3lpcex.exe
O87 - FAEL: "UDP Query User{97573C2C-E935-43DE-9AE5-DAD081911982}C:\program files\tv 3l pc\tv3lpcex.exe" [In-None-P17-TRUE] .(...) -- C:\program files\tv 3l pc\tv3lpcex.exe
O87 - FAEL: "{623BAD57-029D-431D-820D-6FE836429AFB}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQPlayer\loader\QQPCDownload8880463.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{1C12AA7D-0AF7-4A6A-915D-3964AC8336B8}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQPlayer\loader\QQPCDownload8880463.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{581908EC-75E0-48E7-8456-8471BF30AC35}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{BED66FE3-9214-4CE9-A97E-DC9C5BD6C5DB}" [In-None-P17-TRUE] .(.Tencent - 腾讯高速下载引擎.) -- C:\program files\common files\tencent\qqdownload\130\tencentdl.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{2793CEA4-1791-43F3-888E-644B0B105639}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{FE5050F7-9870-436E-8C38-E56BC1BEA1F0}" [In-None-P17-TRUE] .(.Tencent - 腾讯高速下载引擎.) -- C:\program files\common files\tencent\qqdownload\130\tencentdl.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{D5D440CB-AC7E-4E1B-BD29-B80C5E587EBE}" [In-None-P6-TRUE] .(.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{86BE44C5-3C4F-49A2-841A-33988DCA8F87}" [In-None-P17-TRUE] .(.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{7B6392BA-90C4-4A8D-8BA7-47E0BBAFF2A8}" [In-None-P6-TRUE] .(.Tencent - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLiveUp.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{6AF41BBA-1D31-44D8-8E1F-A1468BD56FF6}" [In-None-P17-TRUE] .(.Tencent - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLiveUp.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{CAC2C2DD-903E-4040-AD13-241B5AC94190}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\Statistics.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{276F4D77-E213-4742-AC60-97CB8785895B}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\Statistics.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{2494BDF8-9F8B-4315-B447-02F225BF9AF3}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLiveService.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{969929A1-E6E2-49D1-9125-EA83DA6AFC8E}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLiveService.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{AD05DD16-3269-49CC-BC4C-71140C635807}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-安装引导.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCmgrInstallGuide.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{8C4C8D14-7BDF-4BC2-9E5E-2C814BE96219}" [In-None-P17-TRUE] .(.Tencent - 电脑管家.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCTray.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{7B81C391-A234-405C-8A42-CCA9E6D63BD1}" [In-None-P17-TRUE] .(.Tencent - 电脑管家.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCMgr.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{EE8C9349-2B0C-43AF-B3FE-65FF742920FA}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-实时防护服务.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCRTP.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{ACCAC8C7-ADE5-454C-97CB-3B6A62AF7176}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-下载中心.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMDL.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{2B7F5928-E021-4C41-9D31-DA6FD2B8A0C4}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-crash上报.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\bugreport.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{EEC82651-EBAE-4239-B846-F0B343629B29}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-未知文件打开.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCFileOpen.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{A0F4B91F-EDB9-4AF8-8A76-9BB741996208}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-漏洞扫描.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCLeakScan.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{1B303C0A-8652-4811-841F-83183DD258B4}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-设置中心.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPConfig.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{F47F0925-04F1-4D4E-B554-E1CF737DD44B}" [In-None-P17-TRUE] .(.Tencent - 软件管理.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSoftMgr.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{65DB80D3-890E-45EA-8BA6-9A3C39A81B91}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-网络流量监控.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\plugins\QMNetMon\QQPCNetFlow.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{53D5068B-DA28-4BE1-918E-F8ED84626CF0}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-日志上传.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCBTU.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{B16D394F-B475-4DCB-BDFD-AD98BF05D71E}" [In-None-P17-TRUE] .(.Tencent - 电脑诊所.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCClinic.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{03014819-29EF-41F6-A59F-6C1C871E94AF}" [In-None-P17-TRUE] .(.Copyright (C) 2012 - 电脑管家-引导启动.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCLaunch.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{6A4DA8B9-0B27-4115-90A4-2C8B438366EA}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-自升级程序.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMUpdate\QQPCMgrUpdate.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{1C5D52F5-CE19-497D-9DC3-F9101B92872C}" [In-None-P17-TRUE] .(.Copyright (C) 2012 - 电脑管家-游戏专区.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSoftGame.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{842430C3-720B-4EFE-862C-2E23D72A0747}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-系统优化.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSysOptimize.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{04FE03B9-3C3D-4F58-A5D2-BE864E401F1A}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-杀毒.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCUpdateAVLib.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{44A15C0E-99DE-4B74-977A-D8BC6833A5B9}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-修复器.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQRepair.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{FB5EBDD6-6492-49BA-957E-2B61B86070BA}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-卸载程序.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\Uninst.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{6BFE4DA1-64A4-4C43-95A3-B7C33FD547AB}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-模块升级.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCPatch.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{FCD36BEE-893C-46D7-9540-A0563F5A8A51}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-反病毒引擎升级程序.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\TpkUpdate.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{C64C9287-5B79-4BB7-B3DD-6262DC835182}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-路由器管家.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMRouterMgr.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{3B14D24A-45E2-4120-9C77-F1714C53731E}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-帐号宝.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMAccountProtection.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{8733749E-986D-42D4-80B8-8526441B21A2}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-弹窗拦截.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMAdBlock.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{589C5E38-F104-4F86-94B8-D4D0DA56DA0B}" [In-None-P17-TRUE] .(.Tencent - 腾讯高速下载引擎.) -- C:\program files\common files\tencent\qqdownload\130\tencentdl.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{DCCA4256-855E-43CE-B79B-CB36A30035A6}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe =>PUP.Optional.TencentAddressBar
---\\ Product Upgrade Codes (1) - 1s
O90 - PUC: "93BAD29AC2E44034A96BCB446EB8552E" . (.globalupdate Helper.) =>PUP.Optional.GlobalUpdate
---\\ Services not Microsoft (SR=Run, SS=Stop) (11) - 18s
SR - Auto [28/10/2015] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SR - Auto [05/08/2015] [ 821024] Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit.) - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe ©
SS - Auto [04/11/2015] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [04/11/2015] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SR - Auto [03/11/2015] [ 271592] ihpmServer (ihpmServer) . (.Copyright 2015. All rights reserved..) - C:\Program Files\RayDld\ihpmServer.exe =>PUP.Optional.CrossRider
SS - Auto [09/10/2015] [ 2934048] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe ©
SR - Auto [14/01/2015] [ 589784] Alipay payment client security service (pcas) . (.Alipay.com Inc..) - C:\Program Files\alipay\aliedit\5.1.0.3754\pcas.exe
SR - Auto [06/11/2015] [ 301728] QQPCMgr RTP Service (QQPCRTP) . (.Tencent.) - C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCRTP.exe =>PUP.Optional.TencentAddressBar
SR - Auto [14/01/2015] [ 591320] Alipay security business service (secbizsrv) . (.Alipay.com Inc..) - C:\Program Files\alipay\aliedit\5.1.0.3754\secbizsrv.exe
SS - Demand [06/11/2015] [ 297952] TAOFrame (TAOFrame) . (.Tencent.) - C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\TAOFrame.exe =>PUP.Optional.TencentAddressBar
---\\ Search Tracing Registry Key (1) - 0s
HKLM\SOFTWARE\Microsoft\Tracing\tencentdl_RASAPI32 =>PUP.Optional.TencentAddressBar
---\\ Additional Scan (O88) (141) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\ihpmServer =>PUP.Optional.CrossRider
C:\Program Files\RayDld\ihpmServer.exe =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\QQPCRTP =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCRTP.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCTray.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\plugins\QMNetMon\QQPCNetFlow.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
c:\program files\Tencent\QQLive\9.10.1063.0\QQLiveService.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi =>Hijacker.Browser
C:\Program Files\Mozilla Firefox\browser\searchplugins\oursurfing.xml =>PUP.Optional.OurSurfing
C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab
C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQLive\9.10.1063.0\npQQLive.dll =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\npQMExtensionsMozilla.dll =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50F4150A-48B2-417A-BE4C-C83F580FB904} =>PUP.Optional.TencentAddressBar
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\oursurfing =>PUP.Optional.OurSurfing
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV07.11 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV07.11-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV07.11-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaP-1.9cV07.11-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaP-1.9cV07.11-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\dab37b069e2ecad5ee04bb1acb208d92 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
C:\Program Files\CinemaP-1.9cV07.11 =>PUP.Optional.CrossRider
C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\RayDld =>PUP.Optional.CrossRider
C:\Program Files\Tencent =>PUP.Optional.TencentAddressBar
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\ProgramData\ProductData =>PUP.Optional.Generic
C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
C:\Program Files\Common Files\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\oursurfing =>PUP.Optional.OurSurfing
C:\Users\DJAMEL\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\QMTENCENTNEWS.EXE-7AEDF939.pf =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMGCShellExt.dll =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\.QMDeskTopGCIcon =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\TAOAccelerator.sys =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\TenCommProtect.sys =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\TFsFlt.sys =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\TS888.sys =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\TSDefenseBt.sys =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\TsFltMgr.sys =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\QQPhoneManager\Components\Webkit3.1\icudt.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\QQPhoneManager\Components\Webkit3.1\libcef3.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\QQPCMgr\qmdr\dr.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\QQLive\WebKit\Plugin\Flash\NP_Flash.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\MMInstallCache\QQPLayerSetup14228.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\Common\gjdatareport.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AdbCmdServer.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidDaemon.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidDevice.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidServer.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidServerUp.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkFS.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkGraphic.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkImage.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkIOStub.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AsyncTask.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\bugreport.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\Common.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\ConnectManager.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\ConnectUI.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\Daemon.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DaemonProxy.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DownloadMgr.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DriverTools.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DriverToolsX64.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\GF.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libexpatw.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libimagequant.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libjpegturbo.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libpng.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libtcmalloc.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\Log4cplus.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\lua.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\mdb.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\NetHub.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\NetworkMgr.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\QQPMIpc.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\RubikEngine.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\SdkClient.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\sqlite.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\tadb.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\TADInstaller.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\tinyxml.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\xGraphic32.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\zlib.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\oursurfing\Uninstall.exe =>PUP.Optional.OurSurfing
C:\Program Files\Tencent\QQPlayer\QQDeskUpdate.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPlayer\QPToolbox.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPlayer\QPUp.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPlayer\Statistics.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPlayer\loader\QQLiveDownloader.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPlayer\loader\QQPCDownload8880463.exe =>PUP.Optional.TencentAddressBar
C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe =>PUP.Optional.TencentAddressBar
C:\program files\common files\tencent\qqdownload\130\tencentdl.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLiveUp.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQLive\9.10.1063.0\Statistics.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCmgrInstallGuide.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCMgr.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMDL.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\bugreport.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCFileOpen.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCLeakScan.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPConfig.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSoftMgr.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCBTU.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCClinic.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCLaunch.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMUpdate\QQPCMgrUpdate.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSoftGame.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSysOptimize.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCUpdateAVLib.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQRepair.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\Uninst.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCPatch.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\TpkUpdate.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMRouterMgr.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMAccountProtection.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMAdBlock.exe =>PUP.Optional.TencentAddressBar
HKLM\Software\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E =>PUP.Optional.GlobalUpdate
HKLM\Software\Classes\Installer\Features\93BAD29AC2E44034A96BCB446EB8552E =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\TAOFrame =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\TAOFrame.exe =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Microsoft\Tracing\tencentdl_RASAPI32 =>PUP.Optional.TencentAddressBar
---\\ Summary of the elements found (11) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/adware-tencentaddressbar/ =>PUP.Optional.TencentAddressBar
http://www.nicolascoolman.fr/blog =>PUP.Optional.OurSurfing
http://www.nicolascoolman.fr/blog =>Hijacker.Browser
http://www.nicolascoolman.fr/blog =>PUP.Optional.LightningNewTab
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/blog =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/adware-installcore/ =>Adware.InstallCore
http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic
http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart
~ End of the scan, 9154 items in 93 seconds (934)(0)
~ Run by DJAMEL (Administrator) (2015/11/10 08:52:57)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\DJAMEL\Desktop\ZHPDiag.txt
~ Report: C:\Users\DJAMEL\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 8.1 Pro, 32-bit (Build 9600)
---\\ Internet Browsers (4) - 0s
GCIE: Google Chrome v46.0.2490.80
MFIE: Mozilla Firefox 42.0 (x86 zh-CN) v42.0
OPIE: Opera 33.0.1990.58 v33.0.1990.58
MSIE: Internet Explorer v11.0.9600.18053
---\\ Windows Product Information (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ System protection software (1) - 4s
Windows Defender (Deactivate)
---\\ Surveillance software (1) - 4s
Adobe Reader XI
---\\ Information on the system (6) - 0s
~ Operating System: x86 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2940.024 MB (29% free)
System Restore: Activé (Enable)
System drive C: has 75 GB () free of 99 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: DJAMEL
~ User Name: DJAMEL
~ Logged in as Administrator
---\\ Enumeration of the disk units (4) - 0s
~ Drive C: has 75 GB free of 99 GB (System)
~ Drive E: has 0 GB free of 0 GB
~ Drive F: has 12 GB free of 99 GB
~ Drive G: has 11 GB free of 86 GB
---\\ State of the Windows Security Center (11) - 1s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (24) - 1s
[MD5.91E24273FCA076EA9E65DAFA98901225] - 28/01/2015 - (.Microsoft Corporation - مستكشف Windows.) -- C:\Windows\Explorer.exe [2207488] ©
[MD5.8BFE805555CDAF6387912A34D7978DAA] - 29/10/2014 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [51200] ©
[MD5.DC02677945BDABD6B0C6A29914AA21EF] - 29/10/2014 - (.Microsoft Corporation - تطبيق بدء تشغيل Windows.) -- C:\Windows\System32\Wininit.exe [115712] ©
[MD5.D798AD4968F64AC7D80FFC1A7580ACD5] - 10/09/2015 - (.Microsoft Corporation - ملحقات الإنترنت لـ Win32.) -- C:\Windows\System32\wininet.dll [2011136] ©
[MD5.E36FB29A2158B7D5DCA0F4E08DE75442] - 29/10/2014 - (.Microsoft Corporation - تطبيق تسجيل دخول Windows.) -- C:\Windows\System32\Winlogon.exe [465408] ©
[MD5.BFB9E1202225113991F981D29BFB9029] - 21/12/2013 - (.Microsoft Corporation - مكتبة تراخيص البرامج.) -- C:\Windows\System32\sppcomapi.dll [438272] ©
[MD5.BD9C7A068C46053F8747CEA73B5930AB] - 29/10/2014 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [498688] ©
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - 30/09/2013 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19456] ©
[MD5.D75FB05E8DBF21FA0EF313C7503243F1] - 30/05/2014 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\drivers\AFD.sys [461312] ©
[MD5.72FCAE2CE6DFEAB2AB072435017F3417] - 22/08/2013 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [23392] ©
[MD5.CE232BB0965C0C0B786C3F976CCBFB7D] - 22/08/2013 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [73728] ©
[MD5.E2FC132D48EA4E8B04432C33EFB77801] - 22/08/2013 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [124928] ©
[MD5.55758EBBC45E1628161121D7CFEAD4A1] - 06/03/2014 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.7E0EDA9EE53E344D1604EB2A7E8DED47] - 24/07/2014 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [69632] ©
[MD5.7A708934CC652100A94944EC808C3916] - 04/11/2014 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [83456] ©
[MD5.FA6C94C754A566EA8A61D658932F32DE] - 27/11/2013 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [126976] ©
[MD5.49EDA7967848465645E2D809384D0EBA] - 27/06/2015 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\drivers\MRxSmb.sys [328704] ©
[MD5.BC242922B0D08F61CF7C87FD08FAFA8B] - 22/08/2013 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [218624] ©
[MD5.C52E578E3F8182C2EE6AAF0AC2B61C9B] - 15/10/2014 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1689408] ©
[MD5.4F30970F15ADCC382544B31D5D7E368E] - 22/08/2013 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [81408] ©
[MD5.C51AB62AB41A2E8560D12472B204CC00] - 22/08/2013 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [81920] ©
[MD5.67E91843B0344411820A012063E876B2] - 30/09/2013 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\Windows\System32\drivers\rdpdr.sys [143872] ©
[MD5.DB0C184142CF9FA1746F598A16EE92B2] - 22/08/2013 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [87040] ©
[MD5.31A2AA48C1ECD390E2707E5C21B75DCE] - 19/06/2014 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [264512] ©
---\\ Non Microsoft non disabled Windows Services (8) - 0s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit - Advanced SystemCare Service.) - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - مثبِّت Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
O23 - Service: ihpmServer (ihpmServer) . (.Copyright 2015. All rights reserved. - Service.) - C:\Program Files\RayDld\ihpmServer.exe =>PUP.Optional.CrossRider
O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe ©
O23 - Service: Alipay payment client security service (pcas) . (.Alipay.com Inc. - pcas service.) - C:\Program Files\alipay\aliedit\5.1.0.3754\pcas.exe
O23 - Service: QQPCMgr RTP Service (QQPCRTP) . (.Tencent - 电脑管家-实时防护服务.) - C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCRTP.exe =>PUP.Optional.TencentAddressBar
O23 - Service: Alipay security business service (secbizsrv) . (.Alipay.com Inc. - Alipay security business service.) - C:\Program Files\alipay\aliedit\5.1.0.3754\secbizsrv.exe
---\\ Task Planned Automatically (20) - 4s
[MD5.B89A82FB10E98F2FDF51FA82C7366DD3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1067736] ©
[MD5.79391331D6F021AF2F1105785C15F648] [APT] [ASC8_PerformanceMonitor] (.IObit.) -- C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [3051296] ©
[MD5.C1906947E76FA87CB5EC2625752DE966] [APT] [ASC8_SkipUac_DJAMEL] (.IObit.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [5442336] ©
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DEA5E98B9CA1EDE6631530B9E3F5553D] [APT] [Opera N Saturday] (.Opera Software.) -- C:\Program Files\Opera\launcher.exe [948856] ©
[MD5.DEA5E98B9CA1EDE6631530B9E3F5553D] [APT] [Opera N Sunday] (.Opera Software.) -- C:\Program Files\Opera\launcher.exe [948856] ©
[MD5.DEA5E98B9CA1EDE6631530B9E3F5553D] [APT] [Opera scheduled Autoupdate 1446656298] (.Opera Software.) -- C:\Program Files\Opera\launcher.exe [948856] ©
[MD5.D4F992A7F021E25545555217CCD45CD4] [APT] [Uninstaller_SkipUac_DJAMEL] (.IObit.) -- C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [4866848] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [840] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [844] ©
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3874] ©
O39 - APT: ASC8_PerformanceMonitor - (.IObit.) -- C:\Windows\System32\Tasks\ASC8_PerformanceMonitor [3170] ©
O39 - APT: ASC8_SkipUac_DJAMEL - (.IObit.) -- C:\Windows\System32\Tasks\ASC8_SkipUac_DJAMEL [3312] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3582] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3818] ©
O39 - APT: Opera N Saturday - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera N Saturday [3240] ©
O39 - APT: Opera N Sunday - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera N Sunday [3240] ©
O39 - APT: Opera scheduled Autoupdate 1446656298 - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1446656298 [3806] ©
O39 - APT: Uninstaller_SkipUac_DJAMEL - (.IObit.) -- C:\Windows\System32\Tasks\Uninstaller_SkipUac_DJAMEL [3350] ©
---\\ Process running (36) - 3s
[MD5.33D7E76F7DE0A73504742765105F178F] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [821024] [PID.820] ©
[MD5.5A3119FEBCCDEB54E7E6DAC53B63C09A] - (.Tencent - 电脑管家-实时防护服务.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCRTP.exe [301728] [PID.988] =>PUP.Optional.TencentAddressBar
[MD5.5DB2C6B908C50767E2EDAA294A7566B5] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1872] ©
[MD5.D9394477A0F7EC7B89D9333FF735802F] - (.Copyright 2015. All rights reserved. - Service.) -- C:\Program Files\RayDld\ihpmServer.exe [271592] [PID.1928] =>PUP.Optional.CrossRider
[MD5.B35281EFE2E5BB325926A43728361EAB] - (.Alipay.com Inc. - pcas service.) -- C:\Program Files\alipay\aliedit\5.1.0.3754\pcas.exe [589784] [PID.396]
[MD5.2835D45D2EB8C42046C71F372E0878E2] - (.Alipay.com Inc. - Alipay security business service.) -- C:\Program Files\alipay\aliedit\5.1.0.3754\secbizsrv.exe [591320] [PID.792]
[MD5.053EEEE1ABAE53F044F1E386E22AE525] - (.Google Inc. - مثبِّت Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] [PID.3684] ©
[MD5.A72BB48D9014A7D7C05F02F595F52D60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe [245576] [PID.1992] ©
[MD5.79391331D6F021AF2F1105785C15F648] - (.IObit - Performance Monitor.) -- C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [3051296] [PID.2404] ©
[MD5.9CBC466A62723E5FFBEACD370B1B27E8] - (.Alipay.com Inc. - Alipay Security Server.) -- C:\Program Files\alipay\aliedit\5.1.0.3754\aliwssv.exe [2014168] [PID.2324]
[MD5.DA1F6029600D4028C78A3FDBBE9E4231] - (.Tencent - 电脑管家.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCTray.exe [355296] [PID.3252] =>PUP.Optional.TencentAddressBar
[MD5.5DE78E7C6F6C0B60FFC0CC03D60B6E28] - (.Tencent - 电脑管家-网络流量监控.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\plugins\QMNetMon\QQPCNetFlow.exe [1186144] [PID.4392] =>PUP.Optional.TencentAddressBar
[MD5.422963B9386FD4052AA766A6575ED8DE] - (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe [2429728] [PID.5272] ©
[MD5.60D66CEB34E0F631C206423CEFE35FDB] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [143392] [PID.6128] ©
[MD5.2308A07BD53235EC6A0640DE5E58BAE7] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [178208] [PID.2288] ©
[MD5.BD7D0E6082E90D3AE3676548F64A8251] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [178720] [PID.1700] ©
[MD5.0F484CEBC0E6724B157E644787B66B68] - (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe [623520] [PID.3692] ©
[MD5.EDD15222718345DEF9F12336BA2405D1] - (.Murray Hurps Software Pty Ltd - Ad Muncher.) -- C:\Program Files\Ad Muncher\AdMunch.exe [560760] [PID.1964]
[MD5.9C05A9EFA16BBBC7852554019EA8E65E] - (.ALLPlayer Group Ltd. - .) -- C:\Program Files\ALLPlayer Remote\ALLPlayerRemoteControl.exe [5182896] [PID.1284] ©
[MD5.A509BA12ED64FC6C04D7816350CCFDFF] - (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe [114232] [PID.4268] =>PUP.Optional.TencentAddressBar
[MD5.CB8BD8B031E5B1EE936EC66C73D47C14] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3907152] [PID.4260] ©
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe [269848] [PID.4848] ©
[MD5.FBE184520696581A942AC12968F797D2] - (...) -- c:\program files\Tencent\QQLive\9.10.1063.0\QQLiveService.exe [42680] [PID.4132] =>PUP.Optional.TencentAddressBar
[MD5.C1906947E76FA87CB5EC2625752DE966] - (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [5442336] [PID.2812] ©
[MD5.E43917F639B4A24F0E6E0290F6C9ADDA] - (.Copyright © 2013 FXsound.com, a subsidiary of Power T - DFX.) -- C:\Program Files\DFX\Universal\Apps\DfxSharedApp32.exe [130520] [PID.7500]
[MD5.BA6AD911039F1DD0250932F3C169363A] - (...) -- C:\Program Files\DFX\DFX.exe [1269208] [PID.6880]
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.7252] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.2460] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.7724] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.8096] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.7304] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.428] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6372] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6108] ©
[MD5.0BE64FAB577BFA54443C680343AEC85F] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.6380] ©
[MD5.186FA9DCE5F1589FCEA9FADEF2A0FEDA] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\DJAMEL\Downloads\ZHPDiag3.exe [1967104] [PID.6908] ©
---\\ Google Chrome, Start,Search,Extensions (16) - 13s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aoophnighhnlkbbfhbmjgkogegjhijfg] [] Lamborghini Newport
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] [] __MSG_name__
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] [] AdBlock
G2 - GCE: Preference [User Data\Default] [hodaonapcbcankniahofhifnakgefbkc] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [lkadffjmnaiokkdncgdlecdegajoiemi] ["update_url":"https://clients2.google.com/service/] CinemaP-1.9cV07.11 =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] [] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] [] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ooebklgpfnbcnpokahmdidgbmlcdepkm] [] 电脑管家上网防护
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] [] Google Chrome manifest =>.Google Inc.
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (19) - 1s
M0 - MFSP: prefs.js [DJAMEL - 8on07hgv.default] http://www.oursurfing.com/?type=hp&ts=1446912201&z=b2ca8d6f8711523e88d50d6g6z2z3qet2g7o2o7efg&from=amt&uid=wdcxwd3000js-63pdb1_wd-wcapd425900259002 =>PUP.Optional.OurSurfing
P2 - EXT FILE: (...) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\adblockpopups@jessehakanen.net.xpi
P2 - EXT FILE: (...) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi
P2 - EXT FILE: (...) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\jid1-w4wG5nJhx4LJZr@jetpack.xpi
P2 - EXT FILE: (...) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\{8d87fccf-3da9-490a-ab2e-88d2ec24ccf6}.xpi
P2 - EXT FILE: (...) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\oursurfing.xml =>PUP.Optional.OurSurfing
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - EXT: (.IObit - Advanced SystemCare Surfing Protection.) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\ascsurfingprotection@iobit.com ©
P2 - EXT: (.lightningnewtab.com - deskCut.) -- C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab
P2 - FPN: [HKLM] [@alipay.com/npalicert] - (.alipay.com.) -- C:\Program Files\alipay\aliedit\5.1.0.3754\npalicdo.dll
P2 - FPN: [HKLM] [@alipay.com/npalidcp] - (.Alipay.com co.,ltd.) -- C:\Program Files\alipay\aliedit\5.1.0.3754\npalidcp.dll
P2 - FPN: [HKLM] [@alipay.com/npaliedit] - (.Alipay.com co.,ltd.) -- C:\Program Files\alipay\aliedit\5.1.0.3754\npaliedit.dll
P2 - FPN: [HKLM] [@alipay.com/npAliInetHealth] - (.Alipay.com Inc..) -- C:\Program Files\alipay\aliedit\5.1.0.3754\npAlipaydhc.dll
P2 - FPN: [HKLM] [@alipay.com/npAliSecCtrl] - (.Alipay.com Inc..) -- C:\Program Files\alipay\aliedit\5.1.0.3754\npAliSecCtrl.dll
P2 - FPN: [HKLM] [@alipay.com/NPComBrg701,version=1.0.2011.701] - (.iTrusChina.) -- C:\Windows\System32\itruscert\NPComBrg701.dll
P2 - FPN: [HKLM] [@qq.com/npAndroidAssistant] - (.腾讯公司.) -- C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll =>PUP.Optional.TencentAddressBar
P2 - FPN: [HKLM] [@qq.com/QQlive] - (.Tencent.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\npQQLive.dll =>PUP.Optional.TencentAddressBar
P2 - FPN: [HKLM] [@qq.com/QQPCMgr] - (.Tencent Technology (Shenzhen) Company Limited.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\npQMExtensionsMozilla.dll =>PUP.Optional.TencentAddressBar
---\\ Opera, Plugins,Start,Search (2) - 1s
B2 - EXT: [{background:{scripts:[background.js]}content_scrip] C:\Users\DJAMEL\AppData\Roaming\Opera Software\Opera Stable\Extensions\cmlhkbleammgpbpgmdjofccdihhnmgla
B2 - EXT: [CinemaP-1.9cV07.11] C:\Users\DJAMEL\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi
---\\ Internet Explorer Extensions, Start, Search (10) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://hao.qq.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (7) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (23)
---\\ Browser Helper Object (BHO) (6) - 0s
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll ©
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} . (.IObit - Uninstall for explorer.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer.dll ©
O2 - BHO: QPMIEHelper - {50F4150A-48B2-417A-BE4C-C83F580FB904} . (.腾讯公司 - QQPhoneManager Onekey-Install plug-in for A.) -- C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll =>PUP.Optional.TencentAddressBar
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll ©
O2 - BHO: Advanced SystemCare Surfing Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} . (.IObit - Advanced SystemCare 8 ASCPlugin_Protection.) -- C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll ©
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll ©
---\\ Auto loading programs from Registry and folders (15) - 0s
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe ©
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe ©
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe ©
O4 - HKLM\..\Run: [USB Security] . (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe ©
O4 - HKLM\..\Run: [ QQPCTray] . (.Tencent - 电脑管家.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCTray.exe =>PUP.Optional.TencentAddressBar
O4 - HKLM\..\Run: [Ad Muncher] . (.Murray Hurps Software Pty Ltd - Ad Muncher.) -- C:\Program Files\Ad Muncher\AdMunch.exe
O4 - HKLM\..\Run: [DFX] . (...) -- C:\Program Files\DFX\DFX.exe
O4 - HKCU\..\Run: [ALLPlayer WiFi Remote] . (.ALLPlayer Group Ltd. - .) -- C:\Program Files\ALLPlayer Remote\ALLPlayerRemoteControl.exe ©
O4 - HKCU\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe ©
O4 - HKCU\..\Run: [qqlive] . (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe ©
O4 - HKUS\S-1-5-21-4219657764-3264935545-396923778-1001\..\Run: [ALLPlayer WiFi Remote] . (.ALLPlayer Group Ltd. - .) -- C:\Program Files\ALLPlayer Remote\ALLPlayerRemoteControl.exe ©
O4 - HKUS\S-1-5-21-4219657764-3264935545-396923778-1001\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe ©
O4 - HKUS\S-1-5-21-4219657764-3264935545-396923778-1001\..\Run: [qqlive] . (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O4 - HKUS\S-1-5-21-4219657764-3264935545-396923778-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe ©
---\\ Global shortcuts Startup (12) - 2s
O4 - GS\Desktop [Administrator]: QQ影音.lnk . (.腾讯科技(深圳)有限公司 - QQ影音.) C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Quicklaunch [Administrator]: QQ影音.lnk . (.腾讯科技(深圳)有限公司 - QQ影音.) C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\TaskBar [Administrator]: 腾讯视频.lnk . (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Desktop [DJAMEL]: QQ影音.lnk . (.腾讯科技(深圳)有限公司 - QQ影音.) C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Quicklaunch [DJAMEL]: QQ影音.lnk . (.腾讯科技(深圳)有限公司 - QQ影音.) C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\TaskBar [DJAMEL]: 腾讯视频.lnk . (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Desktop [Guest]: QQ影音.lnk . (.腾讯科技(深圳)有限公司 - QQ影音.) C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Quicklaunch [Guest]: QQ影音.lnk . (.腾讯科技(深圳)有限公司 - QQ影音.) C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O4 - GS\TaskBar [Guest]: 腾讯视频.lnk . (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O4 - GS\CommonDesktop [Public]: 电脑管家.lnk . (.Tencent - 电脑管家.) C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCTray.exe =>PUP.Optional.TencentAddressBar
O4 - GS\CommonDesktop [Public]: 腾讯视频.lnk . (.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O4 - GS\CommonDesktop [Public]: 软件管理.lnk . (.Tencent - 软件管理.) C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSoftMgr.exe =>PUP.Optional.TencentAddressBar
---\\ Lop.com/Domain Hijackers (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = domain.name
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = domain.name
---\\ Extra protocols (20) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - ملحقات OLE32 لـ Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - عارض Microsoft (R) HTML.) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
---\\ Software installed (26) - 2s
O42 - Logiciel: Ad Muncher v4.94.34121 (Free) - (...) [HKLM] -- Ad Muncher
O42 - Logiciel: Adobe Reader XI (11.0.10) - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1033-7B44-AB0000000001} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824161310} ©
O42 - Logiciel: Advanced SystemCare 8 - (.IObit.) [HKLM] -- Advanced SystemCare 8_is1 ©
O42 - Logiciel: ALLPlayer Remote Control - (.ALLPlayer Group, Ltd..) [HKLM] -- {146BDBDD-ACD9-4B04-A286-C27471841E8E}_is1
O42 - Logiciel: DFX - (.Power Technology.) [HKLM] -- DFX ©
O42 - Logiciel: globalupdate Helper - (.globalupdate Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.GlobalUpdate
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM] -- Internet Download Manager ©
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM] -- IObitUninstall ©
O42 - Logiciel: Java 8 Update 65 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218065F0} ©
O42 - Logiciel: Java 8 Update 66 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218066F0} ©
O42 - Logiciel: Max Recorder - (.Silver Vine, LLC.) [HKLM] -- Max Recorder
O42 - Logiciel: Mozilla Firefox 42.0 (x86 zh-CN) - (.Mozilla.) [HKLM] -- Mozilla Firefox 42.0 (x86 zh-CN) ©
O42 - Logiciel: Ö§¸¶±¦°²È«¿Ø¼þ 5.1.0.3754 - (.Alipay.com Co., Ltd..) [HKLM] -- alieditplus
O42 - Logiciel: Opera Stable 33.0.1990.58 - (.Opera Software.) [HKLM] -- Opera 33.0.1990.58 ©
O42 - Logiciel: oursurfing - (...) [HKLM] -- oursurfing =>PUP.Optional.OurSurfing
O42 - Logiciel: QQ影音3.9 - (.腾讯科技(深圳)有限公司.) [HKCU] -- QQPlayer
O42 - Logiciel: Surfing Protection - (.IObit.) [HKLM] -- IObit Surfing Protection_is1 ©
O42 - Logiciel: TV 3L PC version 1.4.1.0 - (.Smart PC Soft, Ltd..) [HKLM] -- {0BBD0F9C-12E5-456A-A6FC-372324F3D082}_is1
O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM] -- USB Disk Security_is1 ©
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM] -- VLC media player ©
O42 - Logiciel: WinRAR 5.30 beta 6 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver ©
O42 - Logiciel: 电脑管家11.1 - (.腾讯科技(深圳)有限公司.) [HKLM] -- QQPCMgr
O42 - Logiciel: 腾讯视频 - (.腾讯科技(深圳)有限公司.) [HKLM] -- qqlive
---\\ HKCU & HKLM Software Keys (77) - 2s
HKLM\SOFTWARE\AdMuncher
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\alipay
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\BrowserCapabilities
HKLM\SOFTWARE\CinemaP-1.9cV07.11 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV07.11-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV07.11-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CoreCodec
HKLM\SOFTWARE\CyberLink
HKLM\SOFTWARE\DFX
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\ihpmserver
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\IObit
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\MaxRecorder
HKLM\SOFTWARE\MiddleRush
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Opera Software
HKLM\SOFTWARE\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\PowerTechnology
HKLM\SOFTWARE\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\Volatile
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AC3filter
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Akeo Consulting
HKCU\SOFTWARE\ALLPlayer Remote
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaP-1.9cV07.11-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaP-1.9cV07.11-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CoinisRevShare
HKCU\SOFTWARE\dab37b069e2ecad5ee04bb1acb208d92 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\DFX
HKCU\SOFTWARE\DownloadAstro
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GRETECH
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\IObit
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MaxRecorder
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\PowerTechnology
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
---\\ Contents of the Common Files folders (139) - 4s
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Ad Muncher
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Adobe
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\alipay
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\ALLPlayer Remote
O43 - CFD: 07/11/2015 - [] D -- C:\Program Files\CinemaP-1.9cV07.11 =>PUP.Optional.CrossRider
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Common Files
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\DFX
O43 - CFD: 07/11/2015 - [] D -- C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Google
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Intel
O43 - CFD: 07/11/2015 - [] D -- C:\Program Files\Internet Download Manager
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\IObit
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Java
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Max Recorder
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 06/11/2015 - [] D -- C:\Program Files\Middle Rush
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Opera
O43 - CFD: 07/11/2015 - [] D -- C:\Program Files\RayDld =>PUP.Optional.CrossRider
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\TV 3L PC
O43 - CFD: 22/08/2013 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\USB Disk Security
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 30/09/2013 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Windows Multimedia Platform
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 22/08/2013 - [] SHD -- C:\Program Files\Windows Sidebar
O43 - CFD: 08/11/2015 - [] HD -- C:\Program Files\WindowsApps
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\WindowsPowerShell
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 09/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 09/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ad Muncher
O43 - CFD: 09/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer Remote Control
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DFX Audio Enhancer
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 07/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 22/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Max Recorder
O43 - CFD: 22/08/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 09/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 30/09/2013 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TV 3L PC
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 07/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinToUSB
O43 - CFD: 07/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\腾讯软件
O43 - CFD: 06/11/2015 - [] D -- C:\ProgramData\48ed1695-d484-472b-bd42-582714ef1368
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Ad Muncher
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\alipay
O43 - CFD: 04/11/2015 - [0] D -- C:\ProgramData\ALLPlayerRemote
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\DFX
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 07/11/2015 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\IObit
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\KingSoft
O43 - CFD: 09/11/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 05/11/2015 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\ProductData =>PUP.Optional.Generic
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Sun
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 04/11/2015 - [0] D -- C:\ProgramData\TXQMPC
O43 - CFD: 04/11/2015 - [0] D -- C:\ProgramData\Zbshareware Lab
O43 - CFD: 04/11/2015 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Common Files\DFX
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Common Files\IObit
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files\Common Files\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Adobe
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Apple Computer
O43 - CFD: 09/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\DMCache
O43 - CFD: 09/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Identities
O43 - CFD: 10/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\IDM
O43 - CFD: 09/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\IObit
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Macromedia
O43 - CFD: 08/11/2015 - [] SD -- C:\Users\DJAMEL\AppData\Roaming\Microsoft
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Mozilla
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Opera Software
O43 - CFD: 07/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\oursurfing =>PUP.Optional.OurSurfing
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\ProductData
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Shortcut
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Sun
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 06/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\vlc
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\WinRAR
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Zbshareware Lab
O43 - CFD: 10/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\ZHP
O43 - CFD: 04/11/2015 - [0] D -- C:\Users\DJAMEL\AppData\Local\Adobe
O43 - CFD: 09/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\DFX
O43 - CFD: 09/11/2015 - [0] SHD -- C:\Users\DJAMEL\AppData\Local\EmieSiteList
O43 - CFD: 09/11/2015 - [0] SHD -- C:\Users\DJAMEL\AppData\Local\EmieUserList
O43 - CFD: 07/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 05/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Google
O43 - CFD: 09/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\MaxRecorder
O43 - CFD: 09/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Microsoft
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Mozilla
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Opera Software
O43 - CFD: 08/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Packages
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Programs
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Smart_PC_Soft
O43 - CFD: 10/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\Temp
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Local\VirtualStore
O43 - CFD: 22/08/2013 - [] RD -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - [] RD -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 09/11/2015 - [] RD -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 07/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 22/08/2013 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 09/11/2015 - [] RD -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 22/08/2013 - [] RD -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 04/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\تطبيقات Chrome
O43 - CFD: 06/11/2015 - [] D -- C:\Users\DJAMEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
---\\ Latest files created in Prefetcher (1) - 7s
O45 - LFCP:[MD5.C8164169FA37221DB818B7C6403779D9] 09/11/2015 A -- C:\Windows\Prefetch\QMTENCENTNEWS.EXE-7AEDF939.pf =>PUP.Optional.TencentAddressBar
---\\ ShellIconOverlayIdentifiers (SIOI) (4) - 0s
O106 - SIOI: PCMgr Garbage Cleaner ShellExtension [.QMDeskTopGCIcon] - {B7667919-3765-4815-A66D-98A09BE662D6}. (.Tencent - 电脑管家-桌面快捷清理.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMGCShellExt.dll =>PUP.Optional.TencentAddressBar
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - مكتبة DLL الخاصة بملحق Shell للتخزين المحسّ.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: IDM Shell Extension [IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files\Internet Download Manager\IDMShellExt.dll ©
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - واجهة مستخدم ذاكرة التخزين المؤقت من جانب ا.) -- C:\Windows\System32\cscui.dll ©
---\\ System Drivers List (41) - 4s
O58 - SDL:2013/08/22 06:33:26 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [86368] ©
O58 - SDL:2013/08/22 06:33:25 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [773472] ©
O58 - SDL:2013/08/22 06:33:25 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [72544] ©
O58 - SDL:2013/08/22 06:33:26 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [215392] ©
O58 - SDL:2013/08/22 06:33:24 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22880] ©
O58 - SDL:2013/08/22 06:33:26 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [101728] ©
O58 - SDL:2013/08/13 00:25:32 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [16088] ©
O58 - SDL:2005/11/30 18:17:30 A . (.Conexant Systems, Inc. - CxTsCap, MPEG-2 TS Capture Driver, Official.) -- C:\Windows\System32\drivers\cx88ts.sys [13440] ©
O58 - SDL:2012/12/13 16:41:10 A . (.Windows (R) Win 7 DDK provider - Explore Systems Virtual Audio Device.) -- C:\Windows\System32\drivers\dfx11_1.sys [24424] ©
O58 - SDL:2013/08/22 06:33:29 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [56672] ©
O58 - SDL:2015/11/04 22:22:20 A . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) -- C:\Windows\System32\drivers\HWiNFO32.SYS [23840]
O58 - SDL:2013/07/23 22:18:30 A . (.Intel Corporation - Intel(R) Atom(TM) Processor GPIO Controller.) -- C:\Windows\System32\drivers\iaiogpio.sys [22016] ©
O58 - SDL:2013/07/23 22:18:30 A . (.Intel Corporation - Intel(R) Atom(TM) Processor I2C Controller.) -- C:\Windows\System32\drivers\iaioi2c.sys [61936] ©
O58 - SDL:2013/08/10 01:39:44 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\Windows\System32\drivers\iaStorAV.sys [524784] ©
O58 - SDL:2013/08/22 06:33:29 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [333664] ©
O58 - SDL:2015/06/12 03:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [123968] ©
O58 - SDL:2012/11/27 00:22:30 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys [10860032] ©
O58 - SDL:2013/08/22 06:33:29 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [94048] ©
O58 - SDL:2013/08/22 06:33:30 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [79712] ©
O58 - SDL:2013/08/22 06:33:30 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3.sys [68960] ©
O58 - SDL:2013/08/22 06:33:29 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [69472] ©
O58 - SDL:2013/08/22 06:33:30 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [51552] ©
O58 - SDL:2013/08/22 06:33:29 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [464736] ©
O58 - SDL:2013/08/22 06:33:32 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [58208] ©
O58 - SDL:2013/08/22 06:33:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [120160] ©
O58 - SDL:2013/08/22 06:33:33 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [141664] ©
O58 - SDL:2013/06/18 13:23:13 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 32-bit Dr.) -- C:\Windows\System32\drivers\Rt630x86.sys [490496] ©
O58 - SDL:2013/08/22 09:16:47 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2013/08/22 06:32:56 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [41312] ©
O58 - SDL:2013/08/22 06:32:57 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [79200] ©
O58 - SDL:2013/08/22 06:32:57 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [26976] ©
O58 - SDL:2015/11/06 20:01:36 A . (.Tencent - 电脑管家-TAO游戏启动加速驱动.) -- C:\Windows\System32\drivers\TAOAccelerator.sys [114616] =>PUP.Optional.TencentAddressBar
O58 - SDL:2015/11/06 20:01:36 A . (.Tencent Technology(Shenzhen) Company Limited - TAOKernel.) -- C:\Windows\System32\drivers\TAOKernel.sys [138552]
O58 - SDL:2015/11/04 21:02:04 A . (.Tencent - Tencent Common Protect-TsTurboA.) -- C:\Windows\System32\drivers\TenCommProtect.sys [42296] =>PUP.Optional.TencentAddressBar
O58 - SDL:2015/11/06 20:01:36 A . (.电脑管家 - 电脑管家-驱动模块.) -- C:\Windows\System32\drivers\TFsFlt.sys [150072] =>PUP.Optional.TencentAddressBar
O58 - SDL:2015/11/09 16:18:12 A . (.Tencent - Tencent TS888 (电脑管家主动防御模块).) -- C:\Windows\System32\drivers\TS888.sys [30392] =>PUP.Optional.TencentAddressBar
O58 - SDL:2015/11/06 20:01:36 A . (.Tencent - Tencent TSDefense Boot (电脑管家主动防御模块).) -- C:\Windows\System32\drivers\TSDefenseBt.sys [14008] =>PUP.Optional.TencentAddressBar
O58 - SDL:2015/10/30 18:18:08 A . (.电脑管家 - 电脑管家-驱动模块.) -- C:\Windows\System32\drivers\TsFltMgr.sys [126776] =>PUP.Optional.TencentAddressBar
O58 - SDL:2013/08/22 06:33:00 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [18272] ©
O58 - SDL:2013/08/22 06:33:01 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\System32\drivers\vsmraid.sys [148832] ©
O58 - SDL:2013/08/22 06:33:01 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [276832] ©
---\\ Last modified or created user files (82) - 14s
O61 - LFC: 2015/11/07 17:02:15 A . (..) -- C:\Users\DJAMEL\Downloads\Advanced System Care 9 Beta 3 Pro Serial Key + Crack Is Here! [LATEST]__15047_i1735377964_il841233.exe [1044184]
O61 - LFC: 2015/11/04 19:29:24 A . (.ALLPlayer.) -- C:\Users\DJAMEL\Downloads\ALLPlayerEN.exe [44396640]
O61 - LFC: 2015/11/07 18:08:11 A . (..) -- C:\Users\DJAMEL\Downloads\IDMAN.EXE [3167818]
O61 - LFC: 2015/11/04 19:31:20 A . (.QQPlayer.NET Tencent.) -- C:\Users\DJAMEL\Downloads\QQPlayer_Setup_Arabic.exe [28103402]
O61 - LFC: 2015/11/04 20:06:15 A . (.PortableApps.com.) -- C:\Users\DJAMEL\Downloads\server+Cccam+hakimsat+2.r_10924_i80177442_il345.exe [1821344]
O61 - LFC: 2015/11/04 18:52:57 A . (.ETBKO.) -- C:\Users\DJAMEL\Downloads\server_Cccam_hakimsat_2.exe [322600]
O61 - LFC: 2015/11/04 18:58:16 A . (.Smart PC Soft, Ltd..) -- C:\Users\DJAMEL\Downloads\tv3lpc.exe [25007905]
O61 - LFC: 2015/11/04 19:15:23 A . (..) -- C:\Users\DJAMEL\Downloads\vlc-2.1.3-win32.exe [24677393]
O61 - LFC: 2015/11/04 17:55:02 A . (.Program.) -- C:\Users\DJAMEL\Downloads\winrar.exe [1016168]
O61 - LFC: 2015/11/04 17:55:27 A . (..) -- C:\Users\DJAMEL\Downloads\winrar.exe.EXE [1786792]
O61 - LFC: 2015/11/06 22:37:20 A . (.The EasyUEFI Development Team..) -- C:\Users\DJAMEL\Downloads\WinToUSB_Setup.exe [5171148]
O61 - LFC: 2015/11/09 09:30:25 A . (.Murray Hurps Software Pty Ltd.) -- C:\Users\DJAMEL\Downloads\Programs\AM-Install.exe [560760]
O61 - LFC: 2015/11/05 06:43:38 A . (.The ICU Project.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\QQPhoneManager\Components\Webkit3.1\icudt.dll [4154936] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/05 06:43:38 A . (.Copyright (C) 2013 The Chromium Embedded Framework Au.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\QQPhoneManager\Components\Webkit3.1\libcef3.dll [29811712] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/04 23:05:29 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\QQPCMgr\qmdr\dr.dll [76168] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/04 22:23:17 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\QQLive\WebKit\Plugin\Flash\NP_Flash.dll [17448624] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/04 20:58:13 A . (.Tencent Corporation.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\MMInstallCache\QQPLayerSetup14228.exe [14176992] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/05 22:08:11 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\Common\gjdatareport.dll [76168] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AdbCmdServer.dll [198200] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidDaemon.exe [29752] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidDevice.dll [269368] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidServer.exe [222264] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidServerUp.exe [205880] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkFS.dll [76344] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkGraphic.dll [355384] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkImage.dll [56888] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkIOStub.dll [16440] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AsyncTask.dll [86072] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\bugreport.exe [270904] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\Common.dll [1948728] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\ConnectManager.dll [430136] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\ConnectUI.dll [366136] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\Daemon.dll [90680] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DaemonProxy.dll [36408] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DownloadMgr.dll [158264] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DriverTools.exe [114744] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DriverToolsX64.exe [134200] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\GF.dll [2334776] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libexpatw.dll [129592] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libimagequant.dll [52792] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libjpegturbo.dll [279608] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libpng.dll [128568] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libtcmalloc.dll [177720] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\Log4cplus.dll [295992] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\lua.dll [157752] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\mdb.exe [36408] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\NetHub.dll [307768] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\NetworkMgr.dll [187960] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\QQPMIpc.dll [80952] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.TODO: <公司名>.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\RubikEngine.dll [890424] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\SdkClient.dll [677944] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\sqlite.dll [448568] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\tadb.exe [621624] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.腾讯公司.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\TADInstaller.dll [212536] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\tinyxml.dll [93752] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (.Tencent.) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\xGraphic32.dll [132152] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 08:16:43 A . (..) -- C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\zlib.dll [75320] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/07 17:04:12 A . (.Copyright 2015.) -- C:\Users\DJAMEL\AppData\Roaming\oursurfing\Uninstall.exe [630784] =>PUP.Optional.OurSurfing
O61 - LFC: 2015/11/07 03:09:02 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\SqliteWrapper\68c589f2a5506181bfc3d55d1d8b40fb\SqliteWrapper.ni.dll [72704]
O61 - LFC: 2015/11/09 20:56:47 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\SqliteWrapper\3fb856e3a643766e2c18e51097dea7b7\SqliteWrapper.ni.dll [72704]
O61 - LFC: 2015/11/07 03:09:01 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.PerfTrack\daecccdf18083cca2c8941c600c9cb44\Microsoft.PerfTrack.ni.dll [18944]
O61 - LFC: 2015/11/09 20:56:46 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.PerfTrack\2a1f795aceb026901e8290d2319fe53a\Microsoft.PerfTrack.ni.dll [18944]
O61 - LFC: 2015/11/04 20:21:03 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingFoodAndDrink_8wekyb3d8bbwe\LocalState\Cache\cacheConfigurationCache\_CacheMetadata.bin [443]
O61 - LFC: 2015/11/07 03:08:58 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\SqliteWrapper\68c589f2a5506181bfc3d55d1d8b40fb\SqliteWrapper.ni.dll [72704]
O61 - LFC: 2015/11/09 20:56:43 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\SqliteWrapper\3fb856e3a643766e2c18e51097dea7b7\SqliteWrapper.ni.dll [72704]
O61 - LFC: 2015/11/07 03:08:57 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.PerfTrack\daecccdf18083cca2c8941c600c9cb44\Microsoft.PerfTrack.ni.dll [18944]
O61 - LFC: 2015/11/09 20:56:42 A . (..) -- C:\Users\DJAMEL\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.PerfTrack\2a1f795aceb026901e8290d2319fe53a\Microsoft.PerfTrack.ni.dll [18944]
O61 - LFC: 2015/11/09 20:56:27 A . (.Copyright © 2013.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\XPlatformCldb33b5a3#\2eec4c5e1c590145ccbaa75e27e660a1\XPlatformCloudKit.Win8.ni.exe [312320]
O61 - LFC: 2015/11/09 20:56:28 A . (.Copyright © 2013.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\XPlatformCl4c75da74#\a0660f2cb04b030aa85a0973a85936f6\XPlatformCloudKit.PCL.ni.dll [275968]
O61 - LFC: 2015/11/09 20:56:32 A . (.Cirrious.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\Cirrious.MvvmCross\c35d77d04db4eece8b35a521f717317e\Cirrious.MvvmCross.ni.dll [276992]
O61 - LFC: 2015/11/09 20:56:31 A . (.Cirrious.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\Cirrious.Mvf912faf1#\de05c299cf1b8fc789414012d6c4cfcd\Cirrious.MvvmCross.WindowsStore.ni.dll [64512]
O61 - LFC: 2015/11/09 20:56:36 A . (.Cirrious.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\Cirrious.Mvbe545cbd#\458f9de3e66a6ecd1afced48b2a5ac32\Cirrious.MvvmCross.Plugins.Json.ni.dll [20480]
O61 - LFC: 2015/11/09 20:56:30 A . (.Cirrious.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\Cirrious.Mvbe4dc043#\32bffbc20e6c8f0ef8c08c8dc87ee5eb\Cirrious.MvvmCross.Plugins.File.ni.dll [15872]
O61 - LFC: 2015/11/09 20:56:29 A . (.Cirrious.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\Cirrious.CrossCore\33a6dfe613ae4d01c133757fe5a6fef8\Cirrious.CrossCore.ni.dll [291840]
O61 - LFC: 2015/11/09 20:56:38 A . (.Cirrious.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\Cirrious.Cr9c7a320a#\3719e5c0b0e846392cace66f53710a52\Cirrious.CrossCore.WindowsStore.ni.dll [15872]
O61 - LFC: 2015/11/09 20:56:30 A . (.Copyright (C) 2013.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\AsyncOAuth\e3c640a0741d31cd95d3ef4f3d1ba096\AsyncOAuth.ni.dll [75264]
O61 - LFC: 2015/11/09 20:56:35 A . (.Copyright © 2013.) -- C:\Users\DJAMEL\AppData\Local\Packages\43940MohammedAlrawaili.funnyvideogamemoments_69gxd8cf1txrc\AC\Microsoft\CLR_v4.0_32\NativeImages\AppPromo\1893574b4d7ab9d3e35cc11358a40382\AppPromo.ni.dll [282112]
O61 - LFC: 2015/11/09 16:18:19 A . (..) -- C:\Users\DJAMEL\AppData\Local\Microsoft\Windows\appsFolderLayout.bin [750]
O61 - LFC: 2015/11/07 21:42:30 A . (..) -- C:\Users\DJAMEL\AppData\Local\Microsoft\Windows\Sqm\Manifest\Sqm10248.bin [269992]
O61 - LFC: 2015/11/04 17:30:48 A . (..) -- C:\Users\DJAMEL\AppData\Local\Microsoft\Windows\1025\StructuredQuerySchema.bin [401073]
O61 - LFC: 2015/11/09 17:12:40 A . (..) -- C:\Users\DJAMEL\AppData\Local\Microsoft\Internet Explorer\UrlBlockManager\urlblocklist.bin [0]
O61 - LFC: 2015/11/10 08:05:49 A . (..) -- C:\Users\DJAMEL\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
---\\ File Associations Shell Spawning (11) - 1s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Start Menu Internet (16) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Search Browser Infection (5) - 2s
O69 - SBI: prefs.js [DJAMEL - 8on07hgv.default] user_pref("browser.startup.homepage", "http://www.oursurfing.com/?type=hp&ts=1446912201&z=b2ca8d6f8711523e88d50d6g6z2z3qet2g7o2o7e[...] =>PUP.Optional.OurSurfing
O69 - SBI: prefs.js [DJAMEL - 8on07hgv.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [DJAMEL - 8on07hgv.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {5CE25775-92B7-477d-9603-852F0B34D8B0} [DefaultScope] - (搜狗搜索) - http://www.sogou.com/
---\\ Search Svchost Services (36) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [161792] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - خدمة نشر شهادة البطاقة الذكية لـ Microsoft.) -- C:\Windows\System32\certprop.dll [126976] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - خدمة نشر شهادة البطاقة الذكية لـ Microsoft.) -- C:\Windows\System32\certprop.dll [126976] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [250368] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - عميل نهج المجموعة.) -- C:\Windows\System32\gpsvc.dll [1212928] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [733696] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [822784] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي الخاصة بخدمة تسجي.) -- C:\Windows\System32\seclogon.dll [24064] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [89600] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [115712] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [93696] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - خدمة جدولة المهام.) -- C:\Windows\System32\schedsvc.dll [1015808] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [185856] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [74752] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [108032] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [191488] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [296448] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - تقارير المشاكل وحلولها.) -- C:\Windows\System32\wercplsupport.dll [64512] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [75264] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [41984] ©
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1245184] ©
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [367104] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [297984] ©
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [167424] ©
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [142848] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [95232] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [461824] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [183296] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [58368] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [390144] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [254464] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - عامل Windows Update.) -- C:\Windows\System32\wuaueng.dll [3065856] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [734208] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - مكتبة الارتباط الديناميكي لخدمات Windows Sh.) -- C:\Windows\System32\shsvcs.dll [576512] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - خدمة تثبت البرامج.) -- C:\Windows\System32\appmgmts.dll [155648] ©
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filt.) -- C:\Windows\System32\KeyboardFilterSvc.dll [76096] ©
---\\ Firewall Active Exception List (54) - 3s
O87 - FAEL: "{D11B7C28-230E-4404-9007-340AA8B95B6E}" [In-None-P6-TRUE] .(.版权所有 (C) 2008 Tencent - QQDeskUpdate.) -- C:\Program Files\Tencent\QQPlayer\QQDeskUpdate.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{E7224401-B036-4FF0-89DE-8D7BD764D9D4}" [In-None-P17-TRUE] .(.版权所有 (C) 2008 Tencent - QQDeskUpdate.) -- C:\Program Files\Tencent\QQPlayer\QQDeskUpdate.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{F1FFEC03-DF9E-46FA-A15D-EFDD8B9A3740}" [In-None-P6-TRUE] .(.腾讯科技(深圳)有限公司 - QQ影音.) -- C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{C49660A9-8166-497D-B570-A43D7C4F9410}" [In-None-P17-TRUE] .(.腾讯科技(深圳)有限公司 - QQ影音.) -- C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{67E8BB62-0862-4E4B-AF55-9242F872712D}" [In-None-P17-TRUE] .(.Tencent Ltd. - QQ影音工具箱.) -- C:\Program Files\Tencent\QQPlayer\QPToolbox.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{0526F207-0735-4148-BCB7-BEB4C87B5D81}" [In-None-P6-TRUE] .(.Tencent - QQ影音在线升级程序.) -- C:\Program Files\Tencent\QQPlayer\QPUp.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{BE2B89D2-29C0-482F-B350-B06837578492}" [In-None-P17-TRUE] .(.Tencent - QQ影音在线升级程序.) -- C:\Program Files\Tencent\QQPlayer\QPUp.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{E38F876D-7EC3-483E-AA8D-16FAC51077C5}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQPlayer\Statistics.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{C710CA2A-8B35-43D0-B618-5F84D58AB54A}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQPlayer\Statistics.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{354E7FE0-FB10-4526-98F2-6D50C77E6EA3}" [In-None-P6-TRUE] .(.Tencent - 腾讯视频下载器.) -- C:\Program Files\Tencent\QQPlayer\loader\QQLiveDownloader.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{720B29A8-2D96-424D-9B76-E9A3B4B78AFC}" [In-None-P17-TRUE] .(.Tencent - 腾讯视频下载器.) -- C:\Program Files\Tencent\QQPlayer\loader\QQLiveDownloader.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "TCP Query User{E340518B-59AF-431E-89F9-0B67551956E1}C:\program files\tv 3l pc\tv3lpcex.exe" [In-None-P6-TRUE] .(...) -- C:\program files\tv 3l pc\tv3lpcex.exe
O87 - FAEL: "UDP Query User{97573C2C-E935-43DE-9AE5-DAD081911982}C:\program files\tv 3l pc\tv3lpcex.exe" [In-None-P17-TRUE] .(...) -- C:\program files\tv 3l pc\tv3lpcex.exe
O87 - FAEL: "{623BAD57-029D-431D-820D-6FE836429AFB}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQPlayer\loader\QQPCDownload8880463.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{1C12AA7D-0AF7-4A6A-915D-3964AC8336B8}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQPlayer\loader\QQPCDownload8880463.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{581908EC-75E0-48E7-8456-8471BF30AC35}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{BED66FE3-9214-4CE9-A97E-DC9C5BD6C5DB}" [In-None-P17-TRUE] .(.Tencent - 腾讯高速下载引擎.) -- C:\program files\common files\tencent\qqdownload\130\tencentdl.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{2793CEA4-1791-43F3-888E-644B0B105639}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{FE5050F7-9870-436E-8C38-E56BC1BEA1F0}" [In-None-P17-TRUE] .(.Tencent - 腾讯高速下载引擎.) -- C:\program files\common files\tencent\qqdownload\130\tencentdl.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{D5D440CB-AC7E-4E1B-BD29-B80C5E587EBE}" [In-None-P6-TRUE] .(.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{86BE44C5-3C4F-49A2-841A-33988DCA8F87}" [In-None-P17-TRUE] .(.Copyright (C) 1998 - 2015 Tencent. All Rights Reserve - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{7B6392BA-90C4-4A8D-8BA7-47E0BBAFF2A8}" [In-None-P6-TRUE] .(.Tencent - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLiveUp.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{6AF41BBA-1D31-44D8-8E1F-A1468BD56FF6}" [In-None-P17-TRUE] .(.Tencent - 腾讯视频.) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLiveUp.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{CAC2C2DD-903E-4040-AD13-241B5AC94190}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\Statistics.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{276F4D77-E213-4742-AC60-97CB8785895B}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\Statistics.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{2494BDF8-9F8B-4315-B447-02F225BF9AF3}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLiveService.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{969929A1-E6E2-49D1-9125-EA83DA6AFC8E}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLiveService.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{AD05DD16-3269-49CC-BC4C-71140C635807}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-安装引导.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCmgrInstallGuide.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{8C4C8D14-7BDF-4BC2-9E5E-2C814BE96219}" [In-None-P17-TRUE] .(.Tencent - 电脑管家.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCTray.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{7B81C391-A234-405C-8A42-CCA9E6D63BD1}" [In-None-P17-TRUE] .(.Tencent - 电脑管家.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCMgr.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{EE8C9349-2B0C-43AF-B3FE-65FF742920FA}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-实时防护服务.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCRTP.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{ACCAC8C7-ADE5-454C-97CB-3B6A62AF7176}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-下载中心.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMDL.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{2B7F5928-E021-4C41-9D31-DA6FD2B8A0C4}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-crash上报.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\bugreport.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{EEC82651-EBAE-4239-B846-F0B343629B29}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-未知文件打开.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCFileOpen.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{A0F4B91F-EDB9-4AF8-8A76-9BB741996208}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-漏洞扫描.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCLeakScan.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{1B303C0A-8652-4811-841F-83183DD258B4}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-设置中心.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPConfig.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{F47F0925-04F1-4D4E-B554-E1CF737DD44B}" [In-None-P17-TRUE] .(.Tencent - 软件管理.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSoftMgr.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{65DB80D3-890E-45EA-8BA6-9A3C39A81B91}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-网络流量监控.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\plugins\QMNetMon\QQPCNetFlow.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{53D5068B-DA28-4BE1-918E-F8ED84626CF0}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-日志上传.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCBTU.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{B16D394F-B475-4DCB-BDFD-AD98BF05D71E}" [In-None-P17-TRUE] .(.Tencent - 电脑诊所.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCClinic.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{03014819-29EF-41F6-A59F-6C1C871E94AF}" [In-None-P17-TRUE] .(.Copyright (C) 2012 - 电脑管家-引导启动.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCLaunch.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{6A4DA8B9-0B27-4115-90A4-2C8B438366EA}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-自升级程序.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMUpdate\QQPCMgrUpdate.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{1C5D52F5-CE19-497D-9DC3-F9101B92872C}" [In-None-P17-TRUE] .(.Copyright (C) 2012 - 电脑管家-游戏专区.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSoftGame.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{842430C3-720B-4EFE-862C-2E23D72A0747}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-系统优化.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSysOptimize.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{04FE03B9-3C3D-4F58-A5D2-BE864E401F1A}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-杀毒.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCUpdateAVLib.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{44A15C0E-99DE-4B74-977A-D8BC6833A5B9}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-修复器.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQRepair.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{FB5EBDD6-6492-49BA-957E-2B61B86070BA}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-卸载程序.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\Uninst.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{6BFE4DA1-64A4-4C43-95A3-B7C33FD547AB}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-模块升级.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCPatch.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{FCD36BEE-893C-46D7-9540-A0563F5A8A51}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-反病毒引擎升级程序.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\TpkUpdate.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{C64C9287-5B79-4BB7-B3DD-6262DC835182}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-路由器管家.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMRouterMgr.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{3B14D24A-45E2-4120-9C77-F1714C53731E}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-帐号宝.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMAccountProtection.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{8733749E-986D-42D4-80B8-8526441B21A2}" [In-None-P17-TRUE] .(.Tencent - 电脑管家-弹窗拦截.) -- C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMAdBlock.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{589C5E38-F104-4F86-94B8-D4D0DA56DA0B}" [In-None-P17-TRUE] .(.Tencent - 腾讯高速下载引擎.) -- C:\program files\common files\tencent\qqdownload\130\tencentdl.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{DCCA4256-855E-43CE-B79B-CB36A30035A6}" [In-None-P17-TRUE] .(...) -- C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe =>PUP.Optional.TencentAddressBar
---\\ Product Upgrade Codes (1) - 1s
O90 - PUC: "93BAD29AC2E44034A96BCB446EB8552E" . (.globalupdate Helper.) =>PUP.Optional.GlobalUpdate
---\\ Services not Microsoft (SR=Run, SS=Stop) (11) - 18s
SR - Auto [28/10/2015] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SR - Auto [05/08/2015] [ 821024] Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit.) - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe ©
SS - Auto [04/11/2015] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [04/11/2015] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SR - Auto [03/11/2015] [ 271592] ihpmServer (ihpmServer) . (.Copyright 2015. All rights reserved..) - C:\Program Files\RayDld\ihpmServer.exe =>PUP.Optional.CrossRider
SS - Auto [09/10/2015] [ 2934048] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe ©
SR - Auto [14/01/2015] [ 589784] Alipay payment client security service (pcas) . (.Alipay.com Inc..) - C:\Program Files\alipay\aliedit\5.1.0.3754\pcas.exe
SR - Auto [06/11/2015] [ 301728] QQPCMgr RTP Service (QQPCRTP) . (.Tencent.) - C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCRTP.exe =>PUP.Optional.TencentAddressBar
SR - Auto [14/01/2015] [ 591320] Alipay security business service (secbizsrv) . (.Alipay.com Inc..) - C:\Program Files\alipay\aliedit\5.1.0.3754\secbizsrv.exe
SS - Demand [06/11/2015] [ 297952] TAOFrame (TAOFrame) . (.Tencent.) - C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\TAOFrame.exe =>PUP.Optional.TencentAddressBar
---\\ Search Tracing Registry Key (1) - 0s
HKLM\SOFTWARE\Microsoft\Tracing\tencentdl_RASAPI32 =>PUP.Optional.TencentAddressBar
---\\ Additional Scan (O88) (141) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\ihpmServer =>PUP.Optional.CrossRider
C:\Program Files\RayDld\ihpmServer.exe =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\QQPCRTP =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCRTP.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCTray.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\plugins\QMNetMon\QQPCNetFlow.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLive.exe =>PUP.Optional.TencentAddressBar
c:\program files\Tencent\QQLive\9.10.1063.0\QQLiveService.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi =>Hijacker.Browser
C:\Program Files\Mozilla Firefox\browser\searchplugins\oursurfing.xml =>PUP.Optional.OurSurfing
C:\Users\DJAMEL\AppData\Roaming\Mozilla\Firefox\Profiles\8on07hgv.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab
C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQLive\9.10.1063.0\npQQLive.dll =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\npQMExtensionsMozilla.dll =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{50F4150A-48B2-417A-BE4C-C83F580FB904} =>PUP.Optional.TencentAddressBar
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\oursurfing =>PUP.Optional.OurSurfing
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV07.11 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV07.11-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV07.11-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaP-1.9cV07.11-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaP-1.9cV07.11-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\dab37b069e2ecad5ee04bb1acb208d92 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
C:\Program Files\CinemaP-1.9cV07.11 =>PUP.Optional.CrossRider
C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\RayDld =>PUP.Optional.CrossRider
C:\Program Files\Tencent =>PUP.Optional.TencentAddressBar
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\ProgramData\ProductData =>PUP.Optional.Generic
C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
C:\Program Files\Common Files\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\oursurfing =>PUP.Optional.OurSurfing
C:\Users\DJAMEL\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Windows\Prefetch\QMTENCENTNEWS.EXE-7AEDF939.pf =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMGCShellExt.dll =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\.QMDeskTopGCIcon =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\TAOAccelerator.sys =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\TenCommProtect.sys =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\TFsFlt.sys =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\TS888.sys =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\TSDefenseBt.sys =>PUP.Optional.TencentAddressBar
C:\Windows\System32\drivers\TsFltMgr.sys =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\QQPhoneManager\Components\Webkit3.1\icudt.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\QQPhoneManager\Components\Webkit3.1\libcef3.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\QQPCMgr\qmdr\dr.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\QQLive\WebKit\Plugin\Flash\NP_Flash.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\MMInstallCache\QQPLayerSetup14228.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\Common\gjdatareport.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AdbCmdServer.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidDaemon.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidDevice.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidServer.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AndroidServerUp.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkFS.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkGraphic.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkImage.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\arkIOStub.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\AsyncTask.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\bugreport.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\Common.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\ConnectManager.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\ConnectUI.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\Daemon.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DaemonProxy.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DownloadMgr.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DriverTools.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\DriverToolsX64.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\GF.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libexpatw.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libimagequant.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libjpegturbo.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libpng.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\libtcmalloc.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\Log4cplus.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\lua.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\mdb.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\NetHub.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\NetworkMgr.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\QQPMIpc.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\RubikEngine.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\SdkClient.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\sqlite.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\tadb.exe =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\TADInstaller.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\tinyxml.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\xGraphic32.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\Tencent\AndroidServer\1.0.0.507\zlib.dll =>PUP.Optional.TencentAddressBar
C:\Users\DJAMEL\AppData\Roaming\oursurfing\Uninstall.exe =>PUP.Optional.OurSurfing
C:\Program Files\Tencent\QQPlayer\QQDeskUpdate.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPlayer\QQPlayer.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPlayer\QPToolbox.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPlayer\QPUp.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPlayer\Statistics.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPlayer\loader\QQLiveDownloader.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPlayer\loader\QQPCDownload8880463.exe =>PUP.Optional.TencentAddressBar
C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exe =>PUP.Optional.TencentAddressBar
C:\program files\common files\tencent\qqdownload\130\tencentdl.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQLive\9.10.1063.0\QQLiveUp.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQLive\9.10.1063.0\Statistics.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCmgrInstallGuide.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCMgr.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMDL.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\bugreport.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCFileOpen.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCLeakScan.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPConfig.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSoftMgr.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCBTU.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCClinic.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCLaunch.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMUpdate\QQPCMgrUpdate.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSoftGame.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCSysOptimize.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCUpdateAVLib.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQRepair.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\Uninst.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QQPCPatch.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\TpkUpdate.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMRouterMgr.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMAccountProtection.exe =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\QMAdBlock.exe =>PUP.Optional.TencentAddressBar
HKLM\Software\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E =>PUP.Optional.GlobalUpdate
HKLM\Software\Classes\Installer\Features\93BAD29AC2E44034A96BCB446EB8552E =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\TAOFrame =>PUP.Optional.TencentAddressBar
C:\Program Files\Tencent\QQPCMgr\11.1.16908.217\TAOFrame.exe =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Microsoft\Tracing\tencentdl_RASAPI32 =>PUP.Optional.TencentAddressBar
---\\ Summary of the elements found (11) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/adware-tencentaddressbar/ =>PUP.Optional.TencentAddressBar
http://www.nicolascoolman.fr/blog =>PUP.Optional.OurSurfing
http://www.nicolascoolman.fr/blog =>Hijacker.Browser
http://www.nicolascoolman.fr/blog =>PUP.Optional.LightningNewTab
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/blog =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/adware-installcore/ =>Adware.InstallCore
http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic
http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart
~ End of the scan, 9154 items in 93 seconds (934)(0)