Format du document : text/plain
Prévisualisation
~ ZHPDiag v2016.2.16.51 Par Nicolas Coolman (2016/02/16)
~ Démarré par Administrateur (Administrator) (2016/02/17 18:15:06)
~ Site: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Administrateur\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Administrateur\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Ultimate, 32-bit Service Pack 1 (Build 7601)
---\\ Navigateurs Internet (2) - 0s
MFIE: Mozilla Firefox 39.0.3 (x86 fr)
MSIE: Internet Explorer v10.0.9200.16660
---\\ Informations sur les produits Windows (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection (2) - 12s
Kaspersky Anti-Virus 6.0 for Windows Workstations v6.0.4.1424
Windows Defender W7 (Activate)
---\\ Logiciels d'optimisation (1) - 12s
CCleaner v3.15
---\\ Surveillance de Logiciels (1) - 12s
Adobe Flash Player 20 PPAPI
---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3004.272 MB (18% free)
System Restore: Activé (Enable)
System drive C: has 15 GB () free of 79 GB =>Alerte espace disque inférieur à 20 Go
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: HEREM-PC
~ User Name: Administrateur
~ Logged in as Administrator
---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 15 GB free of 79 GB (System)
~ Drive D: has 137 GB free of 225 GB
---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (25) - 1s
[MD5.40D777B7A95E00593EB1568C68514493] - 20/11/2010 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2616320] =>.Microsoft Corporation
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] =>.Microsoft Corporation
[MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [96256] =>.Microsoft Corporation
[MD5.DAA3903F06116AE9EE7AC1D1B93684A4] - 26/07/2013 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1767936] =>.Microsoft Corporation
[MD5.6D13E1406F50C66E2A95D97F22C47560] - 20/11/2010 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [286720] =>.Microsoft Corporation
[MD5.E3AE23569749DE12D45BA3B489A036AE] - 20/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [193536] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - 20/11/2010 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.9EBBBA55060F786F0FCAA3893BFA2806] - 25/04/2011 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [338944] =>.Microsoft Corporation
[MD5.338C86357871C167A96AB976519BF59E] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584] =>.Microsoft Windows®
[MD5.77EA11B065E0A8AB902D78145CA51E10] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656] =>.Microsoft Corporation
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544] =>.Microsoft Corporation
[MD5.F024449C97EC1E464AAFFDA18593DB88] - 20/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [78336] =>.Microsoft Corporation
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544] =>.Microsoft Corporation
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] =>.Microsoft Corporation
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [101888] =>.Microsoft Corporation
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - 27/04/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [123904] =>.Microsoft Corporation
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - 20/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [187904] =>.Microsoft Corporation
[MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - 12/04/2013 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1211752] =>.Microsoft Windows®
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [79360] =>.Microsoft Corporation
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] =>.Microsoft Corporation
[MD5.B973FCFC50DC1434E1970A146F7E3885] - 20/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133632] =>.Microsoft Corporation
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] =>.Microsoft Corporation
[MD5.B459575348C20E8121D6039DA063C704] - 20/11/2010 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74752] =>.Microsoft Corporation
[MD5.F497F67932C6FA693D7DE2780631CFE7] - 20/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [245632] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (10) - 2s
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) . (.Kaspersky Lab - Kaspersky Anti-Virus.) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe =>.Kaspersky Lab®
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe =>PUP.Optional.GlobalUpdate
O23 - Service: Service Google Update (gupdate) (gupdate) . (...) - C:\Program Files\Google\Update\GoogleUpdate.exe (.not file.)
O23 - Service: Network HTTP Support Service (NetHttpService) . (.(c) 2012-2014, All rights reserved. - .) - C:\Windows\System32\nethtsrv.exe =>PUP.Optional.Amonetize
O23 - Service: Net Monitor for Employees Agent (NMEmployeesAgent) . (...) - C:\Windows\System32\nlnme\NLSAgentSvc.exe {00C6910D557A2D6EB49458799D35EABFAC}
O23 - Service: PandoraService (PanService) . (.Pandora.TV - Pandora.TV service file.) - C:\Program Files\PANDORA.TV\PanService\KMPService.exe {2BF6AC6C0932526A56D17EB4F2C776C5}
O23 - Service: Service Mgr DiscoverTreasure (Service Mgr DiscoverTreasure) . (...) - C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugincontainer.exe =>PUP.Optional.DiscoverTreasure
O23 - Service: Network Support Service Updater (ServiceUpdater) . (.(c) 2012-2014, All rights reserved. - .) - C:\Windows\System32\netupdsrv.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: Update Mgr DiscoverTreasure (Update Mgr DiscoverTreasure) . (...) - C:\Program Files\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77\updater.exe =>PUP.Optional.DiscoverTreasure
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (15) - 23s
SS - Demand [13/02/2016] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [12/03/2010] [ 311680] Kaspersky Anti-Virus 6.0 (AVP) . (.Kaspersky Lab.) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe =>.Kaspersky Lab®
SS - Auto [01/07/2015] [ 68608] globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate.) - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe =>PUP.Optional.GlobalUpdate
SS - Demand [01/07/2015] [ 68608] globalUpdate Update Service (globalUpdatem) (globalUpdatem) . (.globalUpdate.) - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe =>PUP.Optional.GlobalUpdate
SS - Demand [07/08/2015] [ 148136] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [30/07/2015] [ 350208] Network HTTP Support Service (NetHttpService) . (.(c) 2012-2014, All rights reserved..) - C:\Windows\System32\nethtsrv.exe =>PUP.Optional.Amonetize
SR - Auto [02/07/2013] [ 1323648] Net Monitor for Employees Agent (NMEmployeesAgent) . (...) - C:\Windows\System32\nlnme\NLSAgentSvc.exe {00C6910D557A2D6EB49458799D35EABFAC}
SR - Demand [16/02/2016] [ 2104840] Origin Client Service (Origin Client Service) . (.Electronic Arts.) - C:\Program Files\Origin\OriginClientService.exe =>.Electronic Arts, Inc.®
SR - Auto [08/07/2013] [ 1922600] PandoraService (PanService) . (.Pandora.TV.) - C:\Program Files\PANDORA.TV\PanService\KMPService.exe {2BF6AC6C0932526A56D17EB4F2C776C5}
SS - Demand [01/03/2013] [ 118520] Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (.Riverbed Technology, Inc..) - C:\Program Files\WinPcap\rpcapd.exe =>.Riverbed Technology, Inc.®
SR - Auto [17/02/2016] [ 1416928] Service Mgr DiscoverTreasure (Service Mgr DiscoverTreasure) . (...) - C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugincontainer.exe =>PUP.Optional.DiscoverTreasure
SR - Auto [30/07/2015] [ 190976] Network Support Service Updater (ServiceUpdater) . (.(c) 2012-2014, All rights reserved..) - C:\Windows\System32\netupdsrv.exe
SS - Auto [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SR - Auto [17/02/2016] [ 1268960] Update Mgr DiscoverTreasure (Update Mgr DiscoverTreasure) . (...) - C:\Program Files\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77\updater.exe =>PUP.Optional.DiscoverTreasure
---\\ Tâches planifiées en automatique (59) - 6s
[MD5.5925F7B74F6D668D1E390550D90FBA2F] [APT] [Adobe Flash Player PPAPI Notifier] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashUtil32_20_0_0_306_pepper.exe [1163968] =>.Adobe Systems Incorporated®
[MD5.7FCC00F1AB44098D5FBDEDB2A9D5384A] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [269504] =>.Adobe Systems Incorporated®
[MD5.877759FE37E2EED150C792006B342BC3] [APT] [BYAIAMUF] (.Cinema PlusV16.03.) -- C:\Users\Administrateur\AppData\Roaming\BYAIAMUF.exe [2035200] =>PUP.Optional.CrossRider
[MD5.B23B61AF1349EAB73480714042C21518] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6] (.Cinema PlusV16.03.) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6.exe [1408512] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-10.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-3] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-3.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-4] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-4.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-5] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.BA093B0EFDC06A2029E61123F8772AFA] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-6] (.Cinema PlusV16.03.) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6.exe [1474560] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [e653cf25-f107-4cbe-b8d1-5dadaea354f2-7] (...) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-7.exe (.not file.) [0] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [Experience Comp] (...) -- C:\Users\Administrateur\AppData\Local\Experience Comp\Bin\ExperienceComp.dll (.not file.) [0]
[MD5.D858BA2EE718B1DB1CED20646E641D08] [APT] [globalUpdateUpdateTaskMachineCore] (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608] =>PUP.Optional.GlobalUpdate
[MD5.D858BA2EE718B1DB1CED20646E641D08] [APT] [globalUpdateUpdateTaskMachineUA] (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608] =>PUP.Optional.GlobalUpdate
[MD5.1C7FF4BFACDDD04E3504DCB1BA5987ED] [APT] [GNOK] (.Cinema PlusV16.03.) -- C:\Users\Administrateur\AppData\Roaming\GNOK.exe [1380352] =>PUP.Optional.CrossRider
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineCore] (...) -- C:\Program Files\Google\Update\GoogleUpdate.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineUA] (...) -- C:\Program Files\Google\Update\GoogleUpdate.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [LaunchApp] (...) -- C:\Program Files\MyPC Backup\MyPC Backup.exe (.not file.) [0] =>PUP.Optional.MyPCBackup
[MD5.5B6373E3B8E810440A8E7D23BBC3A6B6] [APT] [Mart Form] (...) -- C:\Users\Administrateur\AppData\Local\Mart Form\{9F868A70-31AB-69EA-6BB8-5117F51B6A01}\MartForm.dll [26112] =>PUP.Optional.MartForm
[MD5.94F90E031C6F89E2D6E598BE82DE939E] [APT] [Mart Form2] (...) -- C:\Users\Administrateur\AppData\Local\Mart Form\{9F868A70-31AB-69EA-6BB8-5117F51B6A01}\ebucl.dll [12800] =>PUP.Optional.MartForm
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job [1064] =>.Adobe Systems Incorporated®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] =>.Adobe Systems Incorporated®
O39 - APT: BYAIAMUF - (.Cinema PlusV16.03.) -- C:\Windows\Tasks\BYAIAMUF.job [1722] =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6 - (.Cinema PlusV16.03.) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6.job [3138] =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7 - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7.job [3474] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user.job [2112] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-3 - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-3.job [4494] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-4 - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-4.job [4494] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-5 - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5.job [2446] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user.job [2446] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-6 - (.Cinema PlusV16.03.) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6.job [5518] =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-7 - (...) -- C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-7.job [5182] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job [976] =>PUP.Optional.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job [980] =>PUP.Optional.GlobalUpdate
O39 - APT: GNOK - (.Cinema PlusV16.03.) -- C:\Windows\Tasks\GNOK.job [1370] =>PUP.Optional.CrossRider
O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1054] (.Orphean.) =>.Superfluous.Orphean
O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1058] (.Orphean.) =>.Superfluous.Orphean
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier [4076] =>.Adobe Systems Incorporated®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3940] =>.Adobe Systems Incorporated®
O39 - APT: BYAIAMUF - (.Cinema PlusV16.03.) -- C:\Windows\System32\Tasks\BYAIAMUF [4766] =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6 - (.Cinema PlusV16.03.) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6 [6166] =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7 - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7 [6504] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user [5154] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-3 - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-3 [7524] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-4 - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-4 [7524] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-5 - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5 [5476] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user [5490] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-6 - (.Cinema PlusV16.03.) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6 [8546] =>PUP.Optional.CrossRider
O39 - APT: e653cf25-f107-4cbe-b8d1-5dadaea354f2-7 - (...) -- C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-7 [8212] (.Orphean.) =>PUP.Optional.CrossRider
O39 - APT: Experience Comp - (...) -- C:\Windows\System32\Tasks\Experience Comp [3142] (.Orphean.) =>.Superfluous.Orphean
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore [3724] =>PUP.Optional.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA [3978] =>PUP.Optional.GlobalUpdate
O39 - APT: GNOK - (.Cinema PlusV16.03.) -- C:\Windows\System32\Tasks\GNOK [4414] =>PUP.Optional.CrossRider
O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3802] (.Orphean.) =>.Superfluous.Orphean
O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4054] (.Orphean.) =>.Superfluous.Orphean
O39 - APT: LaunchApp - (...) -- C:\Windows\System32\Tasks\LaunchApp [4032] (.Orphean.) =>PUP.Optional.MyPCBackup
O39 - APT: Mart Form - (...) -- C:\Windows\System32\Tasks\Mart Form [3188] =>PUP.Optional.MartForm
O39 - APT: Mart Form2 - (...) -- C:\Windows\System32\Tasks\Mart Form2 [3182] =>PUP.Optional.MartForm
---\\ Processus lancés (32) - 5s
[MD5.5E3F0AAEA4642BF184DEEA311C7201DE] - (.Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe [311680] [PID.1740] =>.Kaspersky Lab®
[MD5.6B90DBE6DC14BA57A8CC9B7DDFA6476B] - (.(c) 2012-2014, All rights reserved. - .) -- C:\Windows\System32\nethtsrv.exe [350208] [PID.1816]
[MD5.323FEA1A18612CAEC81D2977537161B8] - (...) -- C:\Windows\System32\nlnme\NLSAgentSvc.exe [1323648] [PID.1964] {00C6910D557A2D6EB49458799D35EABFAC}
[MD5.836266D31F9B7920ED04C4775E401FBC] - (.Pandora.TV - Pandora.TV service file.) -- C:\Program Files\PANDORA.TV\PanService\KMPService.exe [1922600] [PID.2016] {2BF6AC6C0932526A56D17EB4F2C776C5}
[MD5.E2F630433623924F5768EC161E47F09E] - (.(c) 2012-2014, All rights reserved. - .) -- C:\Windows\System32\netupdsrv.exe [190976] [PID.672]
[MD5.544D66CE8C715EE5F18E2E4E7CAAE27E] - (.PandoraTV - .) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe [1798696] [PID.128] {2BF6AC6C0932526A56D17EB4F2C776C5}
[MD5.B23B61AF1349EAB73480714042C21518] - (.Cinema PlusV16.03 - CinemaP-1.9cV16.03 exe.) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6.exe [1408512] [PID.496] =>PUP.Optional.CrossRider
[MD5.BA093B0EFDC06A2029E61123F8772AFA] - (.Cinema PlusV16.03 - CinemaP-1.9cV16.03 exe.) -- C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6.exe [1474560] [PID.3780] =>PUP.Optional.CrossRider
[MD5.4A71EA7C184CB812D52244F862727AD7] - (...) -- C:\Program Files\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77\updater.exe [1268960] [PID.2612] =>PUP.Optional.DiscoverTreasure
[MD5.1C2979206AB7AA51D0A1425491B9FA1C] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugincontainer.exe [1416928] [PID.3268] =>PUP.Optional.DiscoverTreasure
[MD5.CC64C248D8A490BD1EDD7B190E6728DD] - (...) -- C:\Windows\System32\nlnme\NLSAgent.exe [1560704] [PID.2412] {00C6910D557A2D6EB49458799D35EABFAC}
[MD5.FC63D9EBCEBE045A02E54D2CF5A06FBB] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8423968] [PID.3288] =>.Realtek Semiconductor Corp®
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816] [PID.2712] =>.Oracle America, Inc.®
[MD5.5E3F0AAEA4642BF184DEEA311C7201DE] - (.Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe [311680] [PID.1372] =>.Kaspersky Lab®
[MD5.ADE3D7AD36CA238C6D58E5E93392D2F8] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3903056] [PID.2156] =>.Tonec Inc.
[MD5.D497398A864B52B1418E61A91C6080A3] - (.Electronic Arts - Origin.) -- C:\Program Files\Origin\Origin.exe [3639280] [PID.3648] =>.Electronic Arts, Inc.®
[MD5.B26B610E68F862777C491227B9616271] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe [275608] [PID.4424] =>.Tonec Inc.®
[MD5.D967D4C44505B7BF3F6B1FEC299ABE11] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [50605696] [PID.5020] =>.Skype Software Sarl®
[MD5.E27BA5D1959DE8AC15BC4F4337548BEC] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\3\Plugin.exe [791776] [PID.2168] =>PUP.Optional.DiscoverTreasure
[MD5.87802073DC69FC6FF09F0D0567150862] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\10\Plugin.exe [508128] [PID.4248] =>PUP.Optional.DiscoverTreasure
[MD5.4FD9F62A957AEB66A0E53AC476C3D32D] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\5\Plugin.exe [916704] [PID.1408] =>PUP.Optional.DiscoverTreasure
[MD5.B0CF13A292BF8EE08D1FEED74C1A3CFE] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\8\Plugin.exe [1626336] [PID.4500] =>PUP.Optional.DiscoverTreasure
[MD5.E27BA5D1959DE8AC15BC4F4337548BEC] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\3\Plugin.exe [791776] [PID.4920] =>PUP.Optional.DiscoverTreasure
[MD5.D406CB2AC8E995D79E16A8155C1982E4] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\12\Plugin.exe [734944] [PID.1716] =>PUP.Optional.DiscoverTreasure
[MD5.8070DD721E0F480A6609E114F1CE3EDA] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\2\Plugin.exe [1594080] [PID.5180] =>PUP.Optional.DiscoverTreasure
[MD5.D406CB2AC8E995D79E16A8155C1982E4] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\12\Plugin.exe [734944] [PID.4176] =>PUP.Optional.DiscoverTreasure
[MD5.42699118581F25F56FD89CE9DFC0C842] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\7\Plugin.exe [533728] [PID.2304] =>PUP.Optional.DiscoverTreasure
[MD5.42699118581F25F56FD89CE9DFC0C842] - (...) -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77\plugins\7\Plugin.exe [533728] [PID.5576] =>PUP.Optional.DiscoverTreasure
[MD5.A309633A4BA2DE3FC30468C3103E0BA5] - (.Electronic Arts - OriginClientService.) -- C:\Program Files\Origin\OriginClientService.exe [2104840] [PID.4276] =>.Electronic Arts, Inc.®
[MD5.A2CB714DCF8F0E134F2429AF673C7C08] - (.Oracle Corporation - Java(TM) Update Checker.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe [506744] [PID.6576] =>.Oracle America, Inc.®
[MD5.F7CEB1E5F0000FDEEE04B046BBDE1D4E] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [377000] [PID.3920] =>.Mozilla Corporation®
[MD5.5AE930CBDC0E46B3FBFCE1F00A7A9B13] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Administrateur\AppData\Roaming\ZHP\ZHPDiag3.exe [2122752] [PID.7968] =>.Nicolas Coolman
---\\ Google Chrome, Démarrage,Recherche,Extensions (13) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cdncache-a.akamaihd.net =>PUP.Optional.Browser
G0 - GCSP: Preferences [User Data\Default][HomePage] http://esurf.biz
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.startimes.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://accounts.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://discovertreasure-a.akamaihd.net =>PUP.Optional.Browser
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fbcdn-profile-a.akamaihd.net =>PUP.Optional.Browser
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fbstatic-a.akamaihd.net =>PUP.Optional.Browser
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.facebook.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [npoppdbinhocdoppkfigckiikbefodei] [{"background":{"scripts":["background.js"]},"conte] {background:{scripts:[background.js]}content_scrip =>Hijacker.Browser
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (26) - 2s
M0 - MFSP: prefs.js [Administrateur - r9bzauj5.default] http://www.mysites123.com/?type=hp&ts=1450548918&z=51dad0a9101cc0a2fe9992eg5z8w5e5w3z5b3q9t6c&from=amt&uid=WDCXWD3200BPVT-00HXZT1_WD-WX31A61U8831U8831 =>PUP.Optional.Mysites123
P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\@B74A199FCFFB517BDAEBA52E99F303A3B74A.xpi
P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\MUB-SAE@iacsearchandmedia.com.xpi =>PUP.Optional.IACSearchAndMedia
P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi
P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\searchplugins\ask-search.xml
P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\searchplugins\default.xml
P2 - EXT FILE: (...) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\mysites123.xml =>PUP.Optional.Mysites123
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla
P2 - EXT: (.Cinema Plus - Lights Cinema 1.5beta.) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\ccf7276c-d388-480f-8835-5b680025e1ca@gmail.com =>PUP.Optional.CrossRider
P2 - EXT: (.lightningnewtab.com - FirefixTab.) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab
P2 - EXT: (.roc - YahooToolsProtected .) -- C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\yahooprotected@gmail.com
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@tools.dpliveupdate.com/DealPlyLive Update;version=3] - (.DealPly Technologies Ltd.) -- C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll =>PUP.Optional.Dealply
P2 - FPN: [HKLM] [@tools.dpliveupdate.com/DealPlyLive Update;version=9] - (.DealPly Technologies Ltd.) -- C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll =>PUP.Optional.Dealply
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc..) -- C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll =>.Google Inc.
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc..) -- C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll =>.Google Inc.
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (9) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/ =>PUP.Optional.Babylon
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://searchinterneat-a.akamaihd.net/ =>PUP.Optional.Browser
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer,Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object de navigateur (BHO) (9) - 0s
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe Acrobat IE Helper Version 6.0 for Act.) -- C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll =>.Adobe Systems, Incorporated®
O2 - BHO: Speed Test 127 - {11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} . (.BestOffers - ScriptHost.) -- C:\Program Files\Speed Test 127\ScriptHost.dll =>PUP.Optional.ScriptHost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll =>.Oracle America, Inc.®
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} . (...) -- C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Discover Treasure - {bfa55139-82af-4663-a19b-e135dac8d043} . (...) -- C:\Program Files\Discover Treasure\Extensions\bfa55139-82af-4663-a19b-e135dac8d043.dll =>PUP.Optional.DiscoverTreasure
O2 - BHO: Free Games 111 - {C45EC9F0-8333-465D-9728-074BD41985C9} . (.BestOffers - ScriptHost.) -- C:\Program Files\Free Games 111\ScriptHost.dll =>PUP.Optional.ScriptHost
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll =>.Oracle America, Inc.®
O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} . (.DVDVideoSoft Ltd. - DVDVideoSoft IE Extension.) -- C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll =>.Digital Wave Ltd®
---\\ Internet Explorer, Barre d'outil (3) - 1s
O3 - Toolbar: 0x39358347C5D025419FA80819E2EAAC93 - [HKCU]{47833539-D0C5-4125-9FA8-0819E2EAAC93} . (...) -- C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- (.not file.)
O3 - Toolbar: 0x00 - [HKLM]{47833539-D0C5-4125-9FA8-0819E2EAAC93} . (...) -- C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
---\\ Applications lancées au démarrage du système (13) - 0s
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKLM\..\Run: [AVP] . (.Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe =>.Kaspersky Lab®
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKCU\..\Run: [EADM] . (.Electronic Arts - Origin.) -- C:\Program Files\Origin\Origin.exe =>.Electronic Arts, Inc.®
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1945330447-2877126342-2717384433-500\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1945330447-2877126342-2717384433-500\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKUS\S-1-5-21-1945330447-2877126342-2717384433-500\..\Run: [EADM] . (.Electronic Arts - Origin.) -- C:\Program Files\Origin\Origin.exe =>.Electronic Arts, Inc.®
---\\ Raccourcis Global Startup (33) - 8s
O4 - GS\Desktop [Administrateur]: Athan.lnk . (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) C:\Program Files\Athan\Athan.exe =>.www.IslamicFinder.org
O4 - GS\Desktop [Administrateur]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - GS\Desktop [Administrateur]: Drome Racers.lnk . (...) C:\Program Files\Drome Racers\Drome Racers.exe
O4 - GS\Desktop [Administrateur]: Harley Davidson.lnk . (...) C:\Program Files\Harley Davidson\Harley3.exe
O4 - GS\Desktop [Administrateur]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Desktop [Administrateur]: MultiSkypeLauncher.lnk . (.IM-history - MultiSkypeLauncher.) C:\Program Files\MultiSkypeLauncher\MultiSkypeLauncher.exe =>.IM-history
O4 - GS\Desktop [Administrateur]: Your Unin-staller!.lnk . (.URSoft,Inc - Your Uninstaller! - New way to uninstall pr.) C:\Program Files\Your Uninstaller! 7\urmain.exe {20D86DE3316D2F604A4A91753B51F566}
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrateur\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: jetAudio.lnk . (.JetAudio, Inc. - jetAudio.) C:\Program Files\JetAudio\JetAudio.exe
O4 - GS\Quicklaunch [Administrateur]: jetCast.lnk . (.jetAudio - jetCast.) C:\Program Files\JetAudio\JetCast.exe
O4 - GS\Quicklaunch [Administrateur]: QuickMediaConverter.lnk . (.Cocoon Software - Quick Media Converter Next Generation HD 4.) C:\Program Files\QuickMediaConverter\QuickMediaConverter.exe
O4 - GS\Quicklaunch [Administrateur]: Viber.lnk . (...) C:\Users\Administrateur\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\sendTo [Administrateur]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Administrateur]: KMPlayer.lnk . (.KMP Media co.,Ltd - The KMPlayer.) C:\Program Files\The KMPlayer\KMPlayer.exe {66502206A0488141A898E4B41EE1FD92}
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Viber.lnk . (...) C:\Users\Administrateur\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Startup [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Startup [Administrateur]: MultiSkypeLauncher.lnk . (.IM-history - MultiSkypeLauncher.) C:\Program Files\MultiSkypeLauncher\MultiSkypeLauncher.exe =>.IM-history
O4 - GS\CommonDesktop [Public]: CMS3.lnk . (...) C:\Program Files\CMS3.0\bin\CMS3.exe
O4 - GS\CommonDesktop [Public]: DVDVideoSoft Free Studio.lnk . (.DVDVideoSoft Ltd. - Free Studio.) C:\Program Files\Common Files\DVDVideoSoft\FreeStudioManager.exe =>.Digital Wave Ltd®
O4 - GS\CommonDesktop [Public]: Free YouTube Download.lnk . (.DVDVideoSoft Ltd. - FreeYouTubeDownload.) C:\Program Files\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.exe =>.Digital Wave Ltd®
O4 - GS\CommonDesktop [Public]: jetAudio.lnk . (.JetAudio, Inc. - jetAudio.) C:\Program Files\JetAudio\JetAudio.exe
O4 - GS\CommonDesktop [Public]: jetCast.lnk . (.jetAudio - jetCast.) C:\Program Files\JetAudio\JetCast.exe
O4 - GS\CommonDesktop [Public]: Micro Madness.lnk . (.D6 Entertainment - Micro Madness.) C:\Program Files\Micro Madness\Micro Madness.exe
O4 - GS\CommonDesktop [Public]: MX vs. ATV Unleashed.lnk . (...) C:\Program Files\THQ\MX vs ATV Unleashed\MXvsATV.exe
O4 - GS\CommonDesktop [Public]: Origin.lnk . (.Electronic Arts - Origin.) C:\Program Files\Origin\Origin.exe =>.Electronic Arts, Inc.®
O4 - GS\CommonDesktop [Public]: QuickMediaConverter.lnk . (.Cocoon Software - Quick Media Converter Next Generation HD 4.) C:\Program Files\QuickMediaConverter\QuickMediaConverter.exe
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{FC965A47-4839-40CA-B618-18F486F042C6}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: SprgFiles.lnk . (.New Unity Inc - SprgFiles Downloader Application.) C:\Program Files\SprgFiles\SprgFiles.exe
O4 - GS\CommonDesktop [Public]: Unleashed Editor.lnk . (.Beenox Inc. - MX vs. ATV Unleashed Editor.) C:\Program Files\THQ\MX vs ATV Unleashed\Unleashed Editor.exe
O4 - GS\Programs [Public]: Viber.lnk . (...) C:\Users\Administrateur\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc
---\\ Modification Domaine/Adresses DNS (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = crisnet.local
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2DF8E695-87F7-40BE-95B0-0EA3DC184E9A}: DhcpNameServer = 8.8.8.8 4.2.2.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BC9AE8A6-4200-4AFD-BEB4-9C7051FA3EF1}: DhcpNameServer = 192.168.1.1 0.0.0.0
---\\ Protocole additionnel (22) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s
O20 - AppInit_DLLs: . (.Kaspersky Lab ZAO - Kaspersky OE plugin loader.) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\kloehk.dll
---\\ Logiciels installés (60) - 25s
O42 - Logiciel: 7-Zip 9.38 beta - (...) [HKLM] -- 7-Zip
O42 - Logiciel: Adobe Acrobat 6.0 Professional - (.Adobe Systems.) [HKLM] -- {AC76BA86-1033-0000-7760-000000000001} =>.Adobe Systems
O42 - Logiciel: Adobe Flash Player 20 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 20 PPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Athan Basic 4.5 - (...) [HKLM] -- Athan
O42 - Logiciel: Canon LBP3010/LBP3018/LBP3050 - (...) [HKLM] -- Canon LBP3010/LBP3018/LBP3050 {2C1FCCF6E1684DBD4D3540B0D6C15EE5}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: CMS3.0 - (...) [HKLM] -- CMS3.01.0.0.13
O42 - Logiciel: Discover Treasure - (.Discover Treasure.) [HKLM] -- Discover Treasure =>PUP.Optional.DiscoverTreasure
O42 - Logiciel: Download App - (.CBS Interactive.) [HKCU] -- Download App =>.CBS Interactive
O42 - Logiciel: EaseUS Data Recovery Wizard 6.1 - (.EaseUS.) [HKLM] -- EaseUS Data Recovery Wizard 6.1_is1 =>.EaseUS
O42 - Logiciel: Experience Comp - (.Browser Experience corp.) [HKCU] -- {9563BC59-9556-4805-8CD4-886781779D8D}
O42 - Logiciel: ffdshow v1.2.4422 [2012-04-09] - (...) [HKLM] -- ffdshow_is1
O42 - Logiciel: Free Games 111 - (.BestOffers.) [HKLM] -- Free Games 111
O42 - Logiciel: Free YouTube Download version 3.2.59.616 - (.DVDVideoSoft Ltd..) [HKLM] -- Free YouTube Download_is1 =>.Digital Wave Ltd®
O42 - Logiciel: Funmoods Packages - (...) [HKCU] -- Funmoods Packages
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc.
O42 - Logiciel: GUPlayer (remove only) - (...) [HKCU] -- GUPlayer {42F3D522047C48CAD717BCB89F5219DE} =>PUP.Optional.GUPlayer
O42 - Logiciel: Haali Media Splitter - (...) [HKLM] -- HaaliMkx
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E} =>.Intel Corporation®
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: Java 7 Update 25 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217025FF} =>.Oracle
O42 - Logiciel: Java Auto Updater - (.Sun Microsystems, Inc..) [HKLM] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Sun Microsystems, Inc.
O42 - Logiciel: jetAudio - (.JetAudio, Inc..) [HKLM] -- {DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}
O42 - Logiciel: Kaspersky Anti-Virus 6.0 for Windows Workstations - (.Kaspersky Lab.) [HKLM] -- {8F023021-A7EB-45D3-9269-D65264C81729} =>.Kaspersky Lab
O42 - Logiciel: KMP Service - (.KMP.) [HKLM] -- 4F6D5E84-5826-4394-9F40-3A9A19165651_is1
O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM] -- WinRAR archiver
O42 - Logiciel: Mart Form - (.Rush Web corp.) [HKCU] -- {6643E13A-AF18-EB44-9527-A1CB97030F8D} =>PUP.Optional.MartForm*
O42 - Logiciel: Mercedes CLC Dream Test Drive - (.Mercedes-Benz UK.) [HKLM] -- {6F33360D-E0FA-4691-8D67-76CD5061D621}_is1
O42 - Logiciel: Micro Application - Aménagez Votre Intérieur 3D - (...) [HKLM] -- 446227_R1
O42 - Logiciel: Micro Madness - (.Play sp. z o. o..) [HKLM] -- Micro Madness_is1
O42 - Logiciel: Mountain Bike Adrenaline - (.Nobilis.) [HKLM] -- Mountain Bike Adrenaline_is1 =>.Nobilis
O42 - Logiciel: Mozilla Firefox 39.0.3 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 39.0.3 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MultiSkypeLauncher (remove only) - (.MultiSkypeLauncher.) [HKLM] -- MultiSkypeLauncher
O42 - Logiciel: MX vs ATV Unleashed - (.THQ.) [HKLM] -- {BBE18EBD-CD44-4C51-8BC5-577ECCCEC68F} =>.THQ
O42 - Logiciel: mysites123 uninstall - (.mysites123.) [HKLM] -- mysites123 uninstall =>PUP.Optional.Mysites123
O42 - Logiciel: OffersWizard Network System Driver - (...) [HKLM] -- inethnfd
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM] -- Origin =>.Electronic Arts, Inc.
O42 - Logiciel: QuickMediaConverter - (...) [HKLM] -- QUICKMEDIACONVERTERQuickMediaConverter 64bits
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Skype™ 7.18 - (.Skype Technologies S.A..) [HKLM] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A.
O42 - Logiciel: Sony Sound Forge 8.0 - (.Sony.) [HKLM] -- {767572FD-4D01-4FA3-B0A6-4B09FB2CFC37} =>.Sony
O42 - Logiciel: Speed Test 127 - (.Speed Analysis.) [HKLM] -- Speed Test 127
O42 - Logiciel: SprgFiles - (.https://www.www.springfile.biz.) [HKCU] -- SprgFiles
O42 - Logiciel: SuperCopier2 - (...) [HKLM] -- SuperCopier2
O42 - Logiciel: SurveillancePlugin - (.Synology.) [HKLM] -- {380CB8DE-234B-47C2-86B2-3FEC620D9E18} =>.Synology
O42 - Logiciel: The KMPlayer (remove only) - (.KMP Media co., Ltd.) [HKLM] -- The KMPlayer
O42 - Logiciel: The Rise of Atlantis 1.0 - (...) [HKLM] -- The Rise of Atlantis_is1
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU] -- UnityWebPlayer =>.Unity Technologies ApS
O42 - Logiciel: Viber - (.Viber Media Inc.) [HKCU] -- Viber =>.Viber Media S.a.r.l®
O42 - Logiciel: Video Performer - (.PerformerSoft LLC.) [HKLM] -- Video Performer =>PUP.Optional.PerformerSoft
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM] -- VLC media player =>.VideoLAN
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) - (.Broadcom.) [HKLM] -- A6A8668C0A13640CA28FE2A7D9654BE4AE478B13 =>.Microsoft Windows Component Publisher®
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (09/11/2009 6.2.0.9500) - (.Broadcom.) [HKLM] -- B2216CF97AA58CAC0B4B870FAC75CAC7C65F7087 =>.Microsoft Windows Component Publisher®
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM] -- BF20603967CFDCB2BBF91950E8A56DFBC5C833FE =>.Microsoft Windows Component Publisher®
O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM] -- WinPcapInst =>.Riverbed Technology, Inc.
O42 - Logiciel: Your Uninstaller! 7 - (.URSoft, Inc..) [HKLM] -- YU2010_is1 {2D52C7CF5E69A633AC3AED0E78F988DC}
---\\ HKCU & HKLM Software Keys (157) - 26s
HKLM\SOFTWARE\156eacdc-6be3-484e-958c-b1950c01381c =>PUP.Optional.CrossRider
HKLM\SOFTWARE\40882d6a-0c6a-479b-917d-dd9bf7ea5963 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\7-Zip
HKLM\SOFTWARE\99
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\AVG
HKLM\SOFTWARE\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\BabylonToolbar =>PUP.Optional.Babylon
HKLM\SOFTWARE\callas software gmbh
HKLM\SOFTWARE\CANON
HKLM\SOFTWARE\CBS Interactive
HKLM\SOFTWARE\CinemaP-1.9cV16.03 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV16.03-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV16.03-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Client
HKLM\SOFTWARE\COWON
HKLM\SOFTWARE\DATA BECKER
HKLM\SOFTWARE\DealPlyLive =>PUP.Optional.Dealply
HKLM\SOFTWARE\DiscoverTreasure
HKLM\SOFTWARE\DVDVideoSoft
HKLM\SOFTWARE\EASEUS
HKLM\SOFTWARE\Electronic Arts
HKLM\SOFTWARE\EPSON
HKLM\SOFTWARE\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\GNU
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\GS-Enabler =>PUP.Optional.GSBooster
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\HighCriteria
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\InstallCore =>Adware.InstallCore
HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\InterVideo
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JetAudio, Inc.
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\KasperskyLab
HKLM\SOFTWARE\KMPlayer
HKLM\SOFTWARE\LEGO Interactive
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\MAXSOFT-OCRON
HKLM\SOFTWARE\McAfee.com
HKLM\SOFTWARE\Micro Application
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\mysites123Software =>PUP.Optional.Mysites123
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Opera Software
HKLM\SOFTWARE\Origin
HKLM\SOFTWARE\Pandora.TV
HKLM\SOFTWARE\Piriform
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\Sony Corporation
HKLM\SOFTWARE\Sony Media Software
HKLM\SOFTWARE\SP Global =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\SprgFiles
HKLM\SOFTWARE\SProtector =>PUP.Optional.MocaFlix
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\Synology
HKLM\SOFTWARE\Systweak =>.Superfluous.Systweak
HKLM\SOFTWARE\THQ
HKLM\SOFTWARE\TuneUp
HKLM\SOFTWARE\v7slicldr
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\Volatile
HKLM\SOFTWARE\Waves Audio
HKLM\SOFTWARE\WinPcap
HKLM\SOFTWARE\WinRAR
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ASCII
HKCU\SOFTWARE\AVG
HKCU\SOFTWARE\AWIND
HKCU\SOFTWARE\BYAIAMUF
HKCU\SOFTWARE\C120DLUSB
HKCU\SOFTWARE\Canon
HKCU\SOFTWARE\CBS Interactive
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CinemaP-1.9cV16.03 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaP-1.9cV16.03-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaP-1.9cV16.03-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Cocoon Software
HKCU\SOFTWARE\COWON
HKCU\SOFTWARE\DATA BECKER
HKCU\SOFTWARE\DealPlyLive =>PUP.Optional.Dealply
HKCU\SOFTWARE\DirectShow
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\DVDVideoSoft
HKCU\SOFTWARE\funmoods =>PUP.Optional.Funmoods
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\GNOK =>PUP.Optional.CrossRider
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\InstallCore =>Adware.InstallCore
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\KMPlayer
HKCU\SOFTWARE\LAV
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LiveSupport
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MainConcept
HKCU\SOFTWARE\mb Software AG
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\MediaChance
HKCU\SOFTWARE\Micro Application
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nobilis
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OffersWizard
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro
HKCU\SOFTWARE\OXXOgames
HKCU\SOFTWARE\PC SOFT
HKCU\SOFTWARE\PerformerSoft LLC =>PUP.Optional.PerformerSoft
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplicationsEx =>PUP.Optional.SfKpCouponApp
HKCU\SOFTWARE\SecuROM
HKCU\SOFTWARE\SFX TEAM
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Softonic =>.Superfluous.Softonic
HKCU\SOFTWARE\Sony Media Software
HKCU\SOFTWARE\SprgFiles
HKCU\SOFTWARE\Systweak =>.Superfluous.Systweak
HKCU\SOFTWARE\THQ
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\URSoft
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\Viber
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\SProtector =>PUP.Optional.MocaFlix
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Contenu des dossiers Programmes (296) - 31s
O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\69dc8177-a574-4dff-8461-b3267b078dcf =>PUP.Optional.CrossRider
O43 - CFD: 19/12/2015 - [] D -- C:\Program Files\7-Zip
O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Adobe
O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\Athan
O43 - CFD: 23/09/2015 - [] D -- C:\Program Files\Atlantis Quest
O43 - CFD: 21/10/2013 - [] D -- C:\Program Files\Canon {2C1FCCF6E1684DBD4D3540B0D6C15EE5}
O43 - CFD: 12/05/2014 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd®
O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\CinemaP-1.9cV16.03 =>PUP.Optional.CrossRider
O43 - CFD: 23/10/2015 - [0] D -- C:\Program Files\City Interactive
O43 - CFD: 10/03/2014 - [] D -- C:\Program Files\CMS3.0
O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\Common Files
O43 - CFD: 23/09/2015 - [] D -- C:\Program Files\Counter-Strike 1.6
O43 - CFD: 19/03/2015 - [] D -- C:\Program Files\DIFX =>.Microsoft Windows Component Publisher®
O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\Discover Treasure =>PUP.Optional.DiscoverTreasure
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files\Drome Racers
O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\DVDVideoSoft =>.Digital Wave Ltd®
O43 - CFD: 29/03/2014 - [] D -- C:\Program Files\EaseUS
O43 - CFD: 04/11/2013 - [] D -- C:\Program Files\ffdshow
O43 - CFD: 12/08/2013 - [0] SHD -- C:\Program Files\Fichiers communs
O43 - CFD: 08/03/2014 - [] D -- C:\Program Files\Free Games 111 =>PUP.Optional.ScriptHost
O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\FreeCodecPack
O43 - CFD: 08/04/2014 - [] D -- C:\Program Files\Funmoods
O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 30/12/2013 - [0] D -- C:\Program Files\GS-Enabler
O43 - CFD: 02/03/2015 - [] D -- C:\Program Files\GSAutoClicker3
O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\GUPlayer =>PUP.Optional.GUPlayer
O43 - CFD: 04/11/2013 - [] D -- C:\Program Files\Haali
O43 - CFD: 03/02/2016 - [] D -- C:\Program Files\Harley Davidson
O43 - CFD: 27/06/2015 - [] HD -- C:\Program Files\InstallShield Installation Information =>.InstallShield Software Corporation®
O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Intel =>.Intel Corporation®
O43 - CFD: 15/02/2016 - [] D -- C:\Program Files\Internet Download Manager
O43 - CFD: 20/08/2013 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 19/08/2013 - [] D -- C:\Program Files\Java =>.Oracle America, Inc.®
O43 - CFD: 27/06/2015 - [] D -- C:\Program Files\JetAudio
O43 - CFD: 01/02/2015 - [] D -- C:\Program Files\Kaspersky Lab =>.Kaspersky Lab®
O43 - CFD: 01/01/2014 - [0] D -- C:\Program Files\LiveSupport =>PUP.Optional.LiveSupport
O43 - CFD: 23/10/2015 - [] D -- C:\Program Files\Mercedes CLC
O43 - CFD: 04/04/2014 - [] D -- C:\Program Files\Micro Application
O43 - CFD: 23/10/2015 - [] D -- C:\Program Files\Micro Madness
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 16/12/2015 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 08/08/2015 - [] D -- C:\Program Files\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\MSECache
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files\MultiSkypeLauncher
O43 - CFD: 23/10/2015 - [] D -- C:\Program Files\Nobilis
O43 - CFD: 09/10/2015 - [] D -- C:\Program Files\Opera
O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\Origin =>.Electronic Arts, Inc.®
O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\Origin Games
O43 - CFD: 20/08/2013 - [] D -- C:\Program Files\PANDORA.TV
O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\QuickMediaConverter
O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Realtek =>.Andrea Electronics®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 12/12/2015 - [] RD -- C:\Program Files\Skype =>.Skype Software Sarl®
O43 - CFD: 30/01/2014 - [] D -- C:\Program Files\Sony
O43 - CFD: 08/03/2014 - [] D -- C:\Program Files\Speed Test 127 =>PUP.Optional.ScriptHost
O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\SprgFiles
O43 - CFD: 12/05/2014 - [] D -- C:\Program Files\SuperCopier2
O43 - CFD: 28/06/2014 - [] D -- C:\Program Files\Synology
O43 - CFD: 22/10/2015 - [] D -- C:\Program Files\Team6 game studios
O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\The KMPlayer
O43 - CFD: 27/06/2015 - [] D -- C:\Program Files\The Rise of Atlantis
O43 - CFD: 23/10/2015 - [] D -- C:\Program Files\THQ
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 08/03/2014 - [] D -- C:\Program Files\Video Performer
O43 - CFD: 20/08/2013 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 30/01/2014 - [0] D -- C:\Program Files\VSTplugins
O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 12/08/2013 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 10/03/2014 - [] D -- C:\Program Files\WinPcap =>.Riverbed Technology, Inc.®
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 11/10/2015 - [] D -- C:\Program Files\Your Uninstaller! 7
O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 19/03/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 12/08/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 01/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Athan
O43 - CFD: 21/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon LBP3010 LBP3018 LBP3050
O43 - CFD: 13/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\City Interactive
O43 - CFD: 10/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CMS3.0
O43 - CFD: 23/09/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
O43 - CFD: 01/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
O43 - CFD: 29/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Data Recovery Wizard 6.1
O43 - CFD: 27/05/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
O43 - CFD: 04/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
O43 - CFD: 12/08/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 04/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
O43 - CFD: 15/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 27/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\jetAudio
O43 - CFD: 01/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mercedes CLC Dream Test Drive
O43 - CFD: 04/04/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Micro Application
O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Micro Madness
O43 - CFD: 13/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nobilis
O43 - CFD: 16/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
O43 - CFD: 20/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PANDORATV
O43 - CFD: 13/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrintMe Internet Printing
O43 - CFD: 21/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programme de désinstallation de l'imprimante Canon
O43 - CFD: 01/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickMediaConverter
O43 - CFD: 12/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 30/01/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 12/05/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 14/07/2009 - [0] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 27/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Rise of Atlantis
O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\THQ
O43 - CFD: 10/07/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 10/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
O43 - CFD: 13/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 11/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7
O43 - CFD: 23/09/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zelda Mystery of Solarus
O43 - CFD: 26/12/2013 - [] D -- C:\ProgramData\14aad33b547053db
O43 - CFD: 17/02/2016 - [] D -- C:\ProgramData\4f596ec3-77fb-4fc3-82cb-691c42c71d77
O43 - CFD: 13/08/2013 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 27/07/2015 - [] D -- C:\ProgramData\AVG
O43 - CFD: 11/10/2015 - [0] D -- C:\ProgramData\Babylon =>PUP.Optional.Babylon
O43 - CFD: 16/02/2016 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 12/08/2013 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 21/10/2013 - [] D -- C:\ProgramData\Canon
O43 - CFD: 27/07/2015 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 08/04/2014 - [] D -- C:\ProgramData\DealPlyLive =>PUP.Optional.Dealply
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 16/02/2016 - [] D -- C:\ProgramData\Electronic Arts
O43 - CFD: 27/05/2014 - [] D -- C:\ProgramData\EPSON
O43 - CFD: 12/08/2013 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 04/11/2013 - [] D -- C:\ProgramData\IBUpdaterService =>PUP.Optional.InstallBrain
O43 - CFD: 19/08/2013 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 26/12/2013 - [] D -- C:\ProgramData\InstallMate =>.Superfluous.Tarma
O43 - CFD: 17/02/2016 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 18/02/2014 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 12/08/2013 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 30/04/2014 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 08/03/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 12/08/2013 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 12/05/2014 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 17/02/2016 - [] D -- C:\ProgramData\Origin
O43 - CFD: 16/02/2016 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 26/12/2013 - [] D -- C:\ProgramData\QuickSet =>PUP.Optional.SurfAndKeep
O43 - CFD: 15/02/2016 - [] D -- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 12/12/2015 - [] D -- C:\ProgramData\suarf anD keep =>PUP.Optional.SurfAndKeep
O43 - CFD: 12/12/2015 - [] D -- C:\ProgramData\sUirf And keEp =>PUP.Optional.SurfAndKeep
O43 - CFD: 17/08/2013 - [] D -- C:\ProgramData\Sun
O43 - CFD: 16/02/2016 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 27/06/2015 - [] D -- C:\ProgramData\TERMINAL Studio
O43 - CFD: 12/12/2015 - [] D -- C:\ProgramData\YoutubeAdblocker =>PUP.Optional.Multiplug
O43 - CFD: 17/02/2016 - [] D -- C:\Program Files\Common Files\4f596ec3-77fb-4fc3-82cb-691c42c71d77
O43 - CFD: 14/08/2013 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files\Common Files\Config
O43 - CFD: 13/08/2013 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\Common Files\DVDVideoSoft
O43 - CFD: 27/05/2014 - [] D -- C:\Program Files\Common Files\EPSON
O43 - CFD: 27/06/2015 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 17/08/2013 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 13/02/2014 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 12/12/2015 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 12/03/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\.mono
O43 - CFD: 08/04/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\0F2Y1G1H1F1F1Q1B0C =>Adware.InstallCore
O43 - CFD: 14/12/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\Adobe
O43 - CFD: 14/08/2013 - [0] D -- C:\Users\Administrateur\AppData\Roaming\AdobeUM
O43 - CFD: 27/07/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\AVG
O43 - CFD: 11/10/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\Babylon =>PUP.Optional.Babylon
O43 - CFD: 13/02/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\CBS Interactive
O43 - CFD: 01/07/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\Cocoon Software
O43 - CFD: 27/06/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\COWON
O43 - CFD: 08/04/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Dealply =>PUP.Optional.Dealply
O43 - CFD: 17/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\DMCache
O43 - CFD: 01/07/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\DVDVideoSoft
O43 - CFD: 04/11/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\freegames4357 =>PUP.Optional.ScriptHost
O43 - CFD: 08/04/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Funmoods
O43 - CFD: 16/08/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\Google
O43 - CFD: 13/08/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\Identities
O43 - CFD: 16/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\IDM
O43 - CFD: 17/08/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\Macromedia
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Media Center Programs
O43 - CFD: 08/12/2015 - [] SD -- C:\Users\Administrateur\AppData\Roaming\Microsoft
O43 - CFD: 12/05/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Mozilla
O43 - CFD: 13/11/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\MultiSkypeLauncher
O43 - CFD: 19/12/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\mysites123 =>PUP.Optional.Mysites123
O43 - CFD: 27/07/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
O43 - CFD: 09/10/2015 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Opera Software
O43 - CFD: 17/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\Origin
O43 - CFD: 10/03/2014 - [0] D -- C:\Users\Administrateur\AppData\Roaming\PerformerSoft =>PUP.Optional.PerformerSoft
O43 - CFD: 30/01/2014 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Publish Providers
O43 - CFD: 23/10/2015 - [] RHD -- C:\Users\Administrateur\AppData\Roaming\SecuROM
O43 - CFD: 17/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\Skype
O43 - CFD: 30/01/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Sony
O43 - CFD: 04/11/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\speedtest4354 =>PUP.Optional.ScriptHost
O43 - CFD: 16/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\SpringFiles
O43 - CFD: 13/02/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Systweak =>.Superfluous.Systweak
O43 - CFD: 24/02/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Unity
O43 - CFD: 11/10/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\URSoft
O43 - CFD: 23/09/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\uTorrent
O43 - CFD: 15/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\ViberPC
O43 - CFD: 10/06/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\vlc
O43 - CFD: 13/11/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\WinRAR
O43 - CFD: 17/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\ZHP
O43 - CFD: 19/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\13310
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\155
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\aahjlonapdfppdkdijlamekhmfgmjbag
O43 - CFD: 19/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Adobe
O43 - CFD: 13/08/2013 - [0] SHD -- C:\Users\Administrateur\AppData\Local\Application Data
O43 - CFD: 27/07/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Avg
O43 - CFD: 11/10/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Babylon =>PUP.Optional.Babylon
O43 - CFD: 27/07/2015 - [0] D -- C:\Users\Administrateur\AppData\Local\Call Extension
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ceabhglmhoaheldinfkfejcfnfcbikfg
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\cfiflanfnecgmoccidoeflmigdkmmkoc
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\cgildhlbeacndjeenenobgadpfhnfodj
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\cognihjmfdabcllcfedkhfbdcgnioepj
O43 - CFD: 26/12/2013 - [] D -- C:\Users\Administrateur\AppData\Local\Comodo
O43 - CFD: 08/04/2014 - [] D -- C:\Users\Administrateur\AppData\Local\DealPlyLive =>PUP.Optional.Dealply
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\dkggpfgdjaclbknbimpopbejjhcjicgm
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\eghefhkldhkmgigcabeakbmemgdakeak
O43 - CFD: 23/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Experience Comp
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\fjiaeajmeljmihejaijppjplkefkbion
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\fpdjkmkohkkeaodohigddmljioeglhgh
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\gcgidlomgkpgjgdcbalnmnkkbbpgminh
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\gfgabaceahhpmeghkkfhebbjfboidiie
O43 - CFD: 01/07/2015 - [] D -- C:\Users\Administrateur\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 16/02/2016 - [] D -- C:\Users\Administrateur\AppData\Local\Google
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\hecedgdbakhejfcphfngflenojajnhne
O43 - CFD: 13/08/2013 - [0] SHD -- C:\Users\Administrateur\AppData\Local\Historique
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ibcakjlajdkaldfhbeiaegdhjncifocd
O43 - CFD: 05/02/2014 - [0] D -- C:\Users\Administrateur\AppData\Local\igaliffjpkffjppbcjgoibcakaimfeml
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ilcnjaopkmppdnaojinbeiioojamnlee
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\innjnjfhmkicdbdakjimobnnlidpmcpa
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\jbbdpjcgnphkhkgoaoibkbmhmkkahgae
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\jcmnfhhoiniakehfaabbcljjjdlfmhkp
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\kbjbbogikkonlkihijacgiginjfgbcmn
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\kcbgbdginlpmflnommepmloplioopfme
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\kdpppmohopkflfjigbfpeilokdefloon
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\kejihfonakglnpifcldpkiiplbfmnilp
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\kfmiplchdnnglmoambjfojhgienfbedg
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\kknfjjmlnmiopcindalpecciicmaibib
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ladmgnmkfdemoiiccnndheihdcmdkaoe
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\lebhjkcangmoapkpkgkpfpcbmbacieii
O43 - CFD: 12/05/2014 - [] D -- C:\Users\Administrateur\AppData\Local\Macromedia
O43 - CFD: 16/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Mart Form =>PUP.Optional.MartForm
O43 - CFD: 25/03/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Microsoft
O43 - CFD: 30/03/2015 - [] D -- C:\Users\Administrateur\AppData\Local\Microsoft Games
O43 - CFD: 13/08/2013 - [0] D -- C:\Users\Administrateur\AppData\Local\Microsoft Help
O43 - CFD: 11/08/2014 - [] D -- C:\Users\Administrateur\AppData\Local\Mozilla
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\nbpomaaefibighjfhfcigmmbclpogbld
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ncnbbicbdoccfaimheflmeplijelnekl
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\nihoedikpjdeajmbgmlgenmmmkglagdp
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\nohnbpeccgobdfldjigckbbkmaghfmej
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ohhjbbogpcnilfbkfajgbnmlbfjeijee
O43 - CFD: 13/02/2014 - [0] D -- C:\Users\Administrateur\AppData\Local\okpahfebfehjbjheoljdejhgjcfofhka
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\ooigpnmhkefijjpcenjgfehehejkcibp
O43 - CFD: 09/10/2015 - [0] D -- C:\Users\Administrateur\AppData\Local\Opera Software
O43 - CFD: 16/02/2016 - [] D -- C:\Users\Administrateur\AppData\Local\Origin
O43 - CFD: 26/12/2013 - [] D -- C:\Users\Administrateur\AppData\Local\Programs
O43 - CFD: 12/12/2015 - [0] D -- C:\Users\Administrateur\AppData\Local\Skype
O43 - CFD: 17/02/2016 - [] D -- C:\Users\Administrateur\AppData\Local\Temp
O43 - CFD: 13/08/2013 - [0] SHD -- C:\Users\Administrateur\AppData\Local\Temporary Internet Files
O43 - CFD: 26/12/2013 - [] D -- C:\Users\Administrateur\AppData\Local\Torch =>.Superfluous.Torch
O43 - CFD: 03/11/2015 - [0] D -- C:\Users\Administrateur\AppData\Local\Unity
O43 - CFD: 15/02/2016 - [] D -- C:\Users\Administrateur\AppData\Local\Viber
O43 - CFD: 01/07/2015 - [] D -- C:\Users\Administrateur\AppData\Local\WDSetup
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\{287F6F3A-0DF0-4AE7-BB81-026C8D6A7B0A}
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\{AC8E9D3F-24AA-4F18-9AA5-16F083DDFF4D}
O43 - CFD: 12/12/2015 - [] D -- C:\Users\Administrateur\AppData\Local\{CE2C3444-F41F-4072-9701-2C0D7FD4B6F2}
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 18/08/2013 - [] RD -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 13/02/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Download App
O43 - CFD: 23/10/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 01/07/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GUPlayer =>PUP.Optional.GUPlayer
O43 - CFD: 04/11/2013 - [0] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
O43 - CFD: 15/02/2016 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 13/11/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MultiSkypeLauncher
O43 - CFD: 13/11/2015 - [] RD -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 12/05/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SuperCopier2
O43 - CFD: 20/08/2013 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
O43 - CFD: 08/03/2014 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Video Performer
O43 - CFD: 13/11/2015 - [] D -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
---\\ ShellIconOverlayIdentifiers (SIOI) (4) - 0s
O106 - SIOI: IDM Shell Extension [ IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files\Internet Download Manager\IDMShellExt.dll =>.Tonec Inc.®
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\Windows\System32\cscui.dll =>.Microsoft Corporation
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ Enumération des clés StartupReg (9) - 1s
O53 - SMSR:HKLM\...\startupreg\Athan [Key] . (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files\Athan\Athan.exe =>.www.IslamicFinder.org
O53 - SMSR:HKLM\...\startupreg\AVP [Key] . (.Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\avp.exe =>.Kaspersky Lab
O53 - SMSR:HKLM\...\startupreg\ccleaner [Key] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd
O53 - SMSR:HKLM\...\startupreg\CNAP2 Launcher [Key] . (.CANON INC. - Canon Advanced Printing Technology Printer.) -- C:\Windows\System32\spool\drivers\w32x86\3\CNAP2LAK.EXE =>.CANON INC.
O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (...) -- C:\Users\Administrateur\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\IgfxTray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\SuperCopier2.exe [Key] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files\SuperCopier2\SuperCopier2.exe =>.SFX TEAM
---\\ Liste des pilotes du système (73) - 10s
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400] =>.Microsoft Windows®
O58 - SDL:2010/11/20 13:29:13 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [80256] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312] =>.Microsoft Windows®
O58 - SDL:2010/11/20 13:29:15 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22400] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608] =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:02:49 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gi.) -- C:\Windows\System32\drivers\b57nd60x.sys [229888] =>.Broadcom Corporation
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 01:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128] =>.Brother Industries Ltd.
O58 - SDL:2009/07/13 23:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336] =>.Brother Industries Ltd.
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160] =>.Brother Industries Ltd.
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904] =>.Brother Industries Ltd.
O58 - SDL:2009/07/01 05:46:20 A . (.Broadcom Corporation. - Widcomm Bluetooth USB Filter for Windows XP.) -- C:\Windows\System32\drivers\btusbflt.sys [43944] =>.Broadcom Corporation®
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080] =>.Broadcom Corporation
O58 - SDL:2009/07/14 02:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712] =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160] =>.Broadcom Corporation
O58 - SDL:2009/07/13 23:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2009/09/17 05:54:14 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECI.sys [41088] =>.Intel Corporation
O58 - SDL:2009/07/14 02:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152] =>.Microsoft Windows®
O58 - SDL:2010/11/20 13:29:54 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332160] =>.Microsoft Windows®
O58 - SDL:2016/01/28 10:20:10 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [134248] =>.Tonec Inc.®
O58 - SDL:2010/02/20 17:18:09 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys [8726528] =>.Intel Corporation
O58 - SDL:2009/07/14 02:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040] =>.Microsoft Windows®
O58 - SDL:2010/02/11 00:01:10 A . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\System32\drivers\Impcd.sys [132352] =>.Intel Corporation
O58 - SDL:2009/11/12 17:49:02 A . (.Kaspersky Lab - Kaspersky Unified Driver.) -- C:\Windows\System32\drivers\kl1.sys [126480] =>.Kaspersky Lab®
O58 - SDL:2009/09/03 15:24:40 A . (.Kaspersky Lab - KLFLTDEV Pnp device filterfre_wxp_x86.) -- C:\Windows\System32\drivers\klfltdev.sys [24848] =>.Kaspersky Lab®
O58 - SDL:2015/02/08 12:39:13 A . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x86].) -- C:\Windows\System32\drivers\klif.sys [233560] =>.Kaspersky Lab®
O58 - SDL:2015/02/08 12:39:13 A . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) -- C:\Windows\System32\drivers\klim6.sys [22104] =>.Kaspersky Lab®
O58 - SDL:2009/07/13 23:02:47 A . (.Atheros Communications, Inc. - Atheros L1c PCI-E Gigabit Ethernet Controll.) -- C:\Windows\System32\drivers\L1C62x86.sys [50688] =>.Atheros Communications, Inc.
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95824] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89168] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584] =>.Microsoft Windows®
O58 - SDL:2015/07/30 11:30:52 A . (.nethfdrv - nethfdrv.) -- C:\Windows\System32\drivers\nethfdrv.sys [40528] {2B7DF4C242BFBB654DA05B78A86926AA} =>PUP.Optional.Amonetize
O58 - SDL:2009/07/13 23:02:53 A . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\System32\drivers\netr28u.sys [657408] =>.Ralink Technology Corp.
O58 - SDL:2009/07/14 02:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624] =>.Microsoft Windows®
O58 - SDL:2013/03/01 02:48:42 A . (.Riverbed Technology, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) -- C:\Windows\System32\drivers\npf.sys [36600] =>.Riverbed Technology, Inc.®
O58 - SDL:2010/11/20 13:30:06 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117120] =>.Microsoft Windows®
O58 - SDL:2010/11/20 13:30:06 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [143744] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064] =>.Microsoft Windows®
O58 - SDL:2010/01/12 11:13:02 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [2988640] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/08/21 01:29:32 A . (.Realtek Semiconductor Corporation - Realtek RTL81892SE NDIS Driverr.) -- C:\Windows\System32\drivers\rtl8192se.sys [508928] =>.Realtek Semiconductor Corporation
O58 - SDL:2009/07/13 21:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 00:45:33 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\serial.sys [83456] =>.Brother Industries Ltd.
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904] =>.Microsoft Windows®
O58 - SDL:2009/07/13 22:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:2009/07/13 22:40:44 A . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:2009/07/13 22:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2009/07/13 22:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:2009/07/13 22:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2009/07/13 22:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2009/07/13 22:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2009/07/13 22:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2009/07/13 22:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:2009/07/13 22:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:2009/07/13 22:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:2009/07/13 22:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:2009/07/13 22:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (2) - 27s
O61 - LFC: 2016/02/17 11:46:53 A . (..) -- C:\Users\Administrateur\JEUX\Need for Speed Carbon - Collector's Edition (2006) PC [РУС ENG] Repack by MOP030B от Zlofenix\setup.exe [924386]
O61 - LFC: 2016/02/16 15:03:16 A . (.CityFly Inc.) -- C:\Users\Administrateur\Downloads\Programs\telecharger_jeux_taxi_2_pc_gratuit_downloader.exe [3838888]
---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
---\\ Menu de démarrage Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe http://www.mysites123.com/ =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.ex http://www.mysites123.com/ =>PUP.Optional.Mysites123
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
---\\ Recherche d'infection sur les navigateurs (30) - 24s
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("browser.search.searchengine.alias", "mysites123"); =>PUP.Optional.Mysites123
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("browser.search.searchengine.iconURL", "http://mysites123.com/favicon.ico"); =>PUP.Optional.Mysites123
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("browser.search.searchengine.name", "mysites123"); =>PUP.Optional.Mysites123
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("browser.search.searchengine.url", "http://mysites123.com/web?type=ds&ts=1450548918&z=51dad0a9101cc0a2fe9992eg5z8w5e5w3z[...] =>PUP.Optional.Mysites123
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("browser.startup.homepage", "http://www.mysites123.com/?type=hp&ts=1450548918&z=51dad0a9101cc0a2fe9992eg5z8w5e5w3z5b3q9t[...] =>PUP.Optional.Mysites123
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.GreatFind.cg", "9e2baa60-7ea3-4227-9878-050b1f9e110c"); =>PUP.Optional.GreatFind
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.MUB-SAE.newTabSearchURL", "\"http://dts.search.ask.com/sr?gct=hp&o=APN11773A&sysid=539&qrsc=2871&l=dis&sver=[...] =>PUP.Optional.Bandoo
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.MUB-SAE.searchURL", "\"http://dts.search.ask.com/sr?gct=ds&o=APN11773&sysid=539&qrsc=2871&l=dis&sver=3&t_typ[...] =>PUP.Optional.Bandoo
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_bundledUrls.expiration",[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_bundledUrls.value", "%7B[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_bundledWithHash.expirati[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_bundledWithHash.value", [...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_last_executable_request.[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_notBundledArr_.expiratio[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_notBundledArr_.value", "[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_regBundledWithSoftware.e[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.internaldb.monetization_plugin_regBundledWithSoftware.v[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.accf7276cd388480f88355b680025e1cagmailcom71387.71387.publisher", "Cinema Plus"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.crossrider.bic", "14e4b6649a0c58cf2edd11f2bbd0fb7d"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.enabledAddons", "yahooprotected%40gmail.com:1.0.1.1042,deskCutv2%40gmail.com:0.1.13,MUB-SAE%40iacsearchandme[...] =>PUP.Optional.DeskCut
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [Administrateur - r9bzauj5.default] user_pref("keyword.URL", "http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQBdU1sQQAMTbQ5dAApcFQcRdxQBWQ5JDAUWcFsJBwAUE[...] =>PUP.Optional.Browser
O69 - SBI: SearchScopes [HKCU] OldSearch - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Default) - http://searchinterneat-a.akamaihd.net/ =>PUP.Optional.Browser
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com/ =>PUP.Optional.Babylon
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKLM] OldSearch - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Default) - http://searchinterneat-a.akamaihd.net/ =>PUP.Optional.Browser
---\\ Enumère les services démarrés par Svchost (33) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [593408] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [674304] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [473600] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [286208] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [242176] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [521216] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [1933848] =>.Microsoft Windows Component Publisher®
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [585728] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [499712] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [47104] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164352] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [750592] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [113664] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102912] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [149504] =>.Microsoft Corporation
---\\ Liste des exceptions du parefeu Windows (15) - 3s
O87 - FAEL: "TCP Query User{D9558500-5A70-4041-A22F-42DD349679D2}C:\program files\cms3.0\bin\cms3.exe" [In-None-P6-TRUE] .(...) -- C:\program files\cms3.0\bin\cms3.exe
O87 - FAEL: "UDP Query User{B97CB837-F5AB-4B58-B84B-BDD4265B357B}C:\program files\cms3.0\bin\cms3.exe" [In-None-P17-TRUE] .(...) -- C:\program files\cms3.0\bin\cms3.exe
O87 - FAEL: "TCP Query User{68C447D1-B1CD-4BB3-A175-1B3AF6F03A58}C:\program files\cms3.0\bin\cms3.exe" [In-None-P6-TRUE] .(...) -- C:\program files\cms3.0\bin\cms3.exe
O87 - FAEL: "UDP Query User{269E4EFB-706D-4B75-9C25-9F05BCD5820F}C:\program files\cms3.0\bin\cms3.exe" [In-None-P17-TRUE] .(...) -- C:\program files\cms3.0\bin\cms3.exe
O87 - FAEL: "{39F4283E-7ED5-45CD-ADE5-B287432D74E7}" [In-None-P6-TRUE] .(...) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe {2BF6AC6C0932526A56D17EB4F2C776C5}
O87 - FAEL: "{D85D3F4F-3BC0-4B9A-A698-B28E35859937}" [In-None-P17-TRUE] .(...) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe {2BF6AC6C0932526A56D17EB4F2C776C5}
O87 - FAEL: "{70C0F266-4AA7-4BE2-8D44-A855F8E60D38}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O87 - FAEL: "{7EDAE109-9BCE-4531-A663-D6274DDA9519}" [In-None-P6-TRUE] .(...) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe {2BF6AC6C0932526A56D17EB4F2C776C5}
O87 - FAEL: "{C95AD675-2300-4ECE-8C9B-C6F29C3DE623}" [In-None-P17-TRUE] .(...) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe {2BF6AC6C0932526A56D17EB4F2C776C5}
O87 - FAEL: "{56E83EF9-36C1-47E8-9E6B-625AC208140D}" [In-None-P6-TRUE] .(.New Unity Inc - SprgFiles Downloader Application.) -- C:\Program Files\SprgFiles\SprgFiles.exe
O87 - FAEL: "{0EFA2D94-214A-4ED8-B2EB-D9313D4F582D}" [In-None-P17-TRUE] .(.New Unity Inc - SprgFiles Downloader Application.) -- C:\Program Files\SprgFiles\SprgFiles.exe
O87 - FAEL: "{C56C8459-A132-4B8D-9ED0-C13DE98878BB}" [In-None-P6-TRUE] .(.New Unity Inc - SprgFiles Downloader Application.) -- C:\Program Files\SprgFiles\downloader.exe
O87 - FAEL: "{051A0270-149D-40AC-BAC0-B321AD3D28AA}" [In-None-P17-TRUE] .(.New Unity Inc - SprgFiles Downloader Application.) -- C:\Program Files\SprgFiles\downloader.exe
O87 - FAEL: "{DA7466B3-9D95-4426-A270-34CC6DC36769}" [In-None-P6-TRUE] .(...) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe {2BF6AC6C0932526A56D17EB4F2C776C5}
O87 - FAEL: "{97F99720-F867-429C-8969-DBCA3AF18E40}" [In-None-P17-TRUE] .(...) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe {2BF6AC6C0932526A56D17EB4F2C776C5}
---\\ Recherche de clés de registre Tracing (4) - 2s
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASAPI32 =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASMANCS =>PUP.Optional.MyPCBackup
---\\ Scan Additionnel (131) - 0s
C:\Users\Administrateur\AppData\Local\Mart Form\{9F868A70-31AB-69EA-6BB8-5117F51B6A01}\MartForm.dll =>PUP.Optional.MartForm*
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\globalUpdate\Update\GoogleUpdate.exe =>PUP.Optional.GlobalUpdate
HKLM\SYSTEM\CurrentControlSet\Services\NetHttpService =>PUP.Optional.Amonetize
C:\Windows\System32\nethtsrv.exe =>PUP.Optional.Amonetize
HKLM\SYSTEM\CurrentControlSet\Services\globalUpdatem =>PUP.Optional.GlobalUpdate
C:\Users\Administrateur\AppData\Roaming\BYAIAMUF.exe =>PUP.Optional.CrossRider
C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6.exe =>PUP.Optional.CrossRider
C:\Program Files\CinemaP-1.9cV16.03\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6.exe =>PUP.Optional.CrossRider
C:\Users\Administrateur\AppData\Roaming\GNOK.exe =>PUP.Optional.CrossRider
C:\Users\Administrateur\AppData\Local\Mart Form\{9F868A70-31AB-69EA-6BB8-5117F51B6A01}\MartForm.dll =>PUP.Optional.MartForm
C:\Users\Administrateur\AppData\Local\Mart Form\{9F868A70-31AB-69EA-6BB8-5117F51B6A01}\ebucl.dll =>PUP.Optional.MartForm
C:\Windows\Tasks\BYAIAMUF.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-3.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-4.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-7.job =>PUP.Optional.CrossRider
C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job =>PUP.Optional.GlobalUpdate
C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job =>PUP.Optional.GlobalUpdate
C:\Windows\Tasks\GNOK.job =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\BYAIAMUF =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-6 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-1-7 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-10_user =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-3 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-4 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-5_user =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-6 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\e653cf25-f107-4cbe-b8d1-5dadaea354f2-7 =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore =>PUP.Optional.GlobalUpdate
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA =>PUP.Optional.GlobalUpdate
C:\Windows\System32\Tasks\GNOK =>PUP.Optional.CrossRider
C:\Windows\System32\Tasks\LaunchApp =>PUP.Optional.MyPCBackup
C:\Windows\System32\Tasks\Mart Form =>PUP.Optional.MartForm
C:\Windows\System32\Tasks\Mart Form2 =>PUP.Optional.MartForm
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\npoppdbinhocdoppkfigckiikbefodei =>Hijacker.Browser
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\npoppdbinhocdoppkfigckiikbefodei =>Hijacker.Browser
C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\MUB-SAE@iacsearchandmedia.com.xpi =>PUP.Optional.IACSearchAndMedia
C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo
C:\Program Files\Mozilla Firefox\browser\searchplugins\mysites123.xml =>PUP.Optional.Mysites123
C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\ccf7276c-d388-480f-8835-5b680025e1ca@gmail.com =>PUP.Optional.CrossRider
C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\r9bzauj5.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab
C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate
C:\Program Files\Speed Test 127\ScriptHost.dll =>PUP.Optional.ScriptHost
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} =>PUP.Optional.ScriptHost
C:\Program Files\Free Games 111\ScriptHost.dll =>PUP.Optional.ScriptHost
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C45EC9F0-8333-465D-9728-074BD41985C9} =>PUP.Optional.ScriptHost
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mysites123 uninstall =>PUP.Optional.Mysites123
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Video Performer =>PUP.Optional.PerformerSoft
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mysites123 uninstall =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Video Performer =>PUP.Optional.PerformerSoft
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GUPlayer =>PUP.Optional.GUPlayer
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6643E13A-AF18-EB44-9527-A1CB97030F8D} =>PUP.Optional.MartForm*
HKLM\SOFTWARE\156eacdc-6be3-484e-958c-b1950c01381c =>PUP.Optional.CrossRider
HKLM\SOFTWARE\40882d6a-0c6a-479b-917d-dd9bf7ea5963 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\BabylonToolbar =>PUP.Optional.Babylon
HKLM\SOFTWARE\CinemaP-1.9cV16.03 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV16.03-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaP-1.9cV16.03-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\DealPlyLive =>PUP.Optional.Dealply
HKLM\SOFTWARE\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\GS-Enabler =>PUP.Optional.GSBooster
HKLM\SOFTWARE\InstallCore =>Adware.InstallCore
HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\mysites123Software =>PUP.Optional.Mysites123
HKLM\SOFTWARE\SP Global =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\SProtector =>PUP.Optional.MocaFlix
HKLM\SOFTWARE\Systweak =>.Superfluous.Systweak
HKCU\SOFTWARE\CinemaP-1.9cV16.03 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaP-1.9cV16.03-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaP-1.9cV16.03-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\DealPlyLive =>PUP.Optional.Dealply
HKCU\SOFTWARE\funmoods =>PUP.Optional.Funmoods
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\GNOK =>PUP.Optional.CrossRider
HKCU\SOFTWARE\InstallCore =>Adware.InstallCore
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro
HKCU\SOFTWARE\PerformerSoft LLC =>PUP.Optional.PerformerSoft
HKCU\SOFTWARE\RegisteredApplicationsEx =>PUP.Optional.SfKpCouponApp
HKCU\SOFTWARE\Softonic =>.Superfluous.Softonic
HKCU\SOFTWARE\Systweak =>.Superfluous.Systweak
HKCU\SOFTWARE\AppDataLow\SProtector =>PUP.Optional.MocaFlix
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
C:\Program Files\69dc8177-a574-4dff-8461-b3267b078dcf =>PUP.Optional.CrossRider
C:\Program Files\CinemaP-1.9cV16.03 =>PUP.Optional.CrossRider
C:\Program Files\Discover Treasure =>PUP.Optional.DiscoverTreasure
C:\Program Files\Free Games 111 =>PUP.Optional.ScriptHost
C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files\GUPlayer =>PUP.Optional.GUPlayer
C:\Program Files\LiveSupport =>PUP.Optional.LiveSupport
C:\Program Files\Speed Test 127 =>PUP.Optional.ScriptHost
C:\ProgramData\Babylon =>PUP.Optional.Babylon
C:\ProgramData\DealPlyLive =>PUP.Optional.Dealply
C:\ProgramData\IBUpdaterService =>PUP.Optional.InstallBrain
C:\ProgramData\InstallMate =>.Superfluous.Tarma
C:\ProgramData\QuickSet =>PUP.Optional.SurfAndKeep
C:\ProgramData\suarf anD keep =>PUP.Optional.SurfAndKeep
C:\ProgramData\sUirf And keEp =>PUP.Optional.SurfAndKeep
C:\ProgramData\YoutubeAdblocker =>PUP.Optional.Multiplug
C:\Users\Administrateur\AppData\Roaming\0F2Y1G1H1F1F1Q1B0C =>Adware.InstallCore
C:\Users\Administrateur\AppData\Roaming\Babylon =>PUP.Optional.Babylon
C:\Users\Administrateur\AppData\Roaming\Dealply =>PUP.Optional.Dealply
C:\Users\Administrateur\AppData\Roaming\freegames4357 =>PUP.Optional.ScriptHost
C:\Users\Administrateur\AppData\Roaming\mysites123 =>PUP.Optional.Mysites123
C:\Users\Administrateur\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
C:\Users\Administrateur\AppData\Roaming\PerformerSoft =>PUP.Optional.PerformerSoft
C:\Users\Administrateur\AppData\Roaming\speedtest4354 =>PUP.Optional.ScriptHost
C:\Users\Administrateur\AppData\Roaming\Systweak =>.Superfluous.Systweak
C:\Users\Administrateur\AppData\Local\Babylon =>PUP.Optional.Babylon
C:\Users\Administrateur\AppData\Local\DealPlyLive =>PUP.Optional.Dealply
C:\Users\Administrateur\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Users\Administrateur\AppData\Local\Mart Form =>PUP.Optional.MartForm
C:\Users\Administrateur\AppData\Local\Torch =>.Superfluous.Torch
C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GUPlayer =>PUP.Optional.GUPlayer
C:\Windows\System32\drivers\nethfdrv.sys =>PUP.Optional.Amonetize
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} =>PUP.Optional.Browser
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} =>PUP.Optional.Babylon
HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} =>PUP.Optional.Browser
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASAPI32 =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\MyPC Backup_RASMANCS =>PUP.Optional.MyPCBackup
---\\ Récapitulatif des éléments trouvés sur votre station (41) - 0s
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.MartForm*
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/pup-amonetize/ =>PUP.Optional.Amonetize
http://www.nicolascoolman.fr/?p=180 =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/?p=316 =>PUP.Optional.MyPCBackup
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.MartForm
http://www.nicolascoolman.fr/?p=546 =>PUP.Optional.Browser
http://www.nicolascoolman.fr/hijacker-browser/ =>Hijacker.Browser
http://www.nicolascoolman.fr/pup-optional-mysites123 =>PUP.Optional.Mysites123
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.IACSearchAndMedia
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BDYahoo
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.LightningNewTab
http://www.nicolascoolman.fr/?p=203 =>PUP.Optional.Dealply
http://www.nicolascoolman.fr/?p=170 =>PUP.Optional.Babylon
http://www.nicolascoolman.fr/?p=1120 =>PUP.Optional.ScriptHost
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.PerformerSoft
http://www.nicolascoolman.fr/pup-optional-guplayer =>PUP.Optional.GUPlayer
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SweetSearch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.GSBooster
http://www.nicolascoolman.fr/?p=279 =>Adware.InstallCore
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/?p=336 =>PUP.Optional.AdvancedSystemProtector
http://www.nicolascoolman.fr/?p=1344 =>PUP.Optional.MocaFlix
http://www.nicolascoolman.fr/pup-systweak/ =>.Superfluous.Systweak
http://www.nicolascoolman.fr/?p=362 =>PUP.Optional.Funmoods
http://www.nicolascoolman.fr/?p=324 =>PUP.Optional.OptimizerPro
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SfKpCouponApp
http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.Softonic
http://www.nicolascoolman.fr/link-661/ =>PUP.Optional.DiscoverTreasure
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.LiveSupport
http://www.nicolascoolman.fr/?p=600 =>PUP.Optional.InstallBrain
http://www.nicolascoolman.fr/?p=259 =>.Superfluous.Tarma
http://www.nicolascoolman.fr/?p=1113 =>PUP.Optional.SurfAndKeep
http://www.nicolascoolman.fr/?p=1402 =>PUP.Optional.Multiplug
http://www.nicolascoolman.fr/?p=197 =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.Torch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.GreatFind
http://www.nicolascoolman.fr/?p=237 =>PUP.Optional.Bandoo
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Monetization
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.DeskCut
http://www.nicolascoolman.fr/?p=666 =>PUP.Optional.QuickStart
~ End of the scan, 15818 items in 00h08mn03s (1230)(0)