Format du document : text/plain
Prévisualisation
~ ZHPDiag v2016.3.24.74 Par Nicolas Coolman (2016/03/22)
~ Démarré par Administrateur (Administrator) (2016/03/25 00:51:31)
~ Site: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Documents and Settings\Administrateur.EDITION_TWINS\Bureau\ZHPDiag.txt
~ Rapport: C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows XP, 32-bit Service Pack 3 (Build 2600)
---\\ Navigateurs Internet (2) - 0s
MFIE: Mozilla Firefox 45.0.1 (x86 en-US)
MSIE: Internet Explorer v6.0.2900.5512
---\\ Informations sur les produits Windows (3) - 0s
Windows Automatic Updates : OK
Windows Activation Technologies : KO
Windows Genuine Advantage : OK
---\\ Logiciels de protection et autres (Superflus) (1) - 1s
McAfee Security Scan Plus v3.11.163.2
---\\ Surveillance de Logiciels (1) - 1s
Adobe Flash Player 20 NPAPI
---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2026.336 MB (44% free)
System Restore: Activé (Enable)
System drive C: has 29 GB () free of 238 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: EDITION_TWINS
~ User Name: Administrateur
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 29 GB free of 238 GB (System)
---\\ Etat du Centre de Sécurité Windows (10) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (23) - 1s
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - 14/04/2008 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS.0\Explorer.exe [1037824] =>.Microsoft Corporation
[MD5.93AD0B78C7357A05F50E594EC7C22300] - 14/04/2008 - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS.0\System32\rundll32.exe [33792] =>.Microsoft Corporation
[MD5.4A6E04EA20F48D750D9BFED8600D516B] - 14/04/2008 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS.0\System32\wininet.dll [670208] =>.Microsoft Corporation
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - 14/04/2008 - (.Microsoft Corporation - Application d'ouverture de session Windows.) -- C:\WINDOWS.0\System32\Winlogon.exe [512000] =>.Microsoft Corporation
[MD5.F640F61A063DD79BD4D2F6C9509FB958] - 14/04/2008 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS.0\System32\dnsapi.dll [147968] =>.Microsoft Corporation
[MD5.322D0E36693D6E24A2398BEE62A268CD] - 14/04/2008 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS.0\System32\drivers\AFD.sys [138112] =>.Microsoft Corporation
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - 14/04/2008 - (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS.0\System32\drivers\atapi.sys [96512] =>.Microsoft Corporation
[MD5.C885B02847F5D2FD45A24E219ED93B32] - 14/04/2008 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS.0\System32\drivers\Cdfs.sys [63744] =>.Microsoft Corporation
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - 14/04/2008 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS.0\System32\drivers\Cdrom.sys [62976] =>.Microsoft Corporation
[MD5.31F923EB2170FC172C81ABDA0045D18C] - 14/04/2008 - (.Microsoft Corporation - Pilote de cryptographie FIPS.) -- C:\WINDOWS.0\System32\drivers\Fips.sys [44672] =>.Microsoft Corporation
[MD5.573C7D0A32852B48F3058CFD8026F511] - 14/04/2008 - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS.0\System32\drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - 13/04/2008 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS.0\System32\drivers\i8042prt.sys [54144] =>.Microsoft Corporation
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - 14/04/2008 - (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS.0\System32\drivers\Imapi.sys [42112] =>.Microsoft Corporation
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - 14/04/2008 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS.0\System32\drivers\IpNat.sys [152832] =>.Microsoft Corporation
[MD5.23C74D75E36E7158768DD63D92789A91] - 14/04/2008 - (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS.0\System32\drivers\IPSec.sys [75264] =>.Microsoft Corporation
[MD5.68755F0FF16070178B54674FE5B847B0] - 14/04/2008 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS.0\System32\drivers\MRxSmb.sys [456576] =>.Microsoft Corporation
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - 14/04/2008 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS.0\System32\drivers\netBT.sys [162816] =>.Microsoft Corporation
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - 14/04/2008 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS.0\System32\drivers\ntfs.sys [574976] =>.Microsoft Corporation
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - 14/04/2008 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS.0\System32\drivers\Parport.sys [80384] =>.Microsoft Corporation
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - 14/04/2008 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS.0\System32\drivers\Rasl2tp.sys [51328] =>.Microsoft Corporation
[MD5.15CABD0F7C00C47C70124907916AF3F1] - 13/04/2008 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS.0\System32\drivers\rdpdr.sys [196224] =>.Microsoft Corporation
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - 13/04/2008 - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) -- C:\WINDOWS.0\System32\drivers\redbook.sys [58752] =>.Microsoft Corporation
[MD5.46DE1126684369BACE4849E4FC8C43CA] - 14/04/2008 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS.0\System32\drivers\volsnap.sys [53376] =>.Microsoft Corporation
---\\ Liste des services NT non Microsoft et non désactivés (13) - 3s
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) . (.Alcohol Soft Development Team - Alcohol Virtual Drive Auto-mount Service.) - C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Baidu MoboMarket Service (BASSVC) . (.Baidu, Inc. - Baidu MoboMarket Service.) - C:\Program Files\Baidu Security\MoboMarket\1.2.8.3351\bassvc.exe =>.Baidu Online Network Technology (Beijing)Co., Ltd®
O23 - Service: cFosSpeed System Service (cFosSpeedS) . (.cFos Software GmbH - cFosSpeed Service.) - C:\Program Files\cFosSpeed\spd.exe {112197A57D474DC4BAF80DE77A350780D798}
O23 - Service: HWDeviceService.exe (HWDeviceService.exe) . (.Copyright (C) 2008 - DCSHOST.) - C:\Documents and Settings\All Users.WINDOWS.0\Application Data\DatacardService\HWDeviceService.exe =>.HUAWEI Technologies Co., Ltd.®
O23 - Service: IHProtect Service (IHProtect Service) . (.XTab system - ProtectSvc.exe.) - C:\Program Files\MiuiTab\ProtectService.exe =>PUP.Optional.AgentODR
O23 - Service: IhPul (IhPul) . (.tsvr.com - tsvr.com.) - C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\TSv\TSvr.exe =>PUP.Optional.Elex
O23 - Service: YAC Service (iSafeService) . (.Elex do Brasil Participações Ltda - iSafeSvc.) - C:\Program Files\Elex-tech\YAC\iSafeSvc.exe =>PUP.Optional.Elex
O23 - Service: MobiConnect. OUC (MobiConnect. RunOuc) . (...) - C:\Program Files\MobiConnect\UpdateDog\ouc.exe
O23 - Service: qkseeService (qkseeService) . (.Qksee Pvt Ltd. - qksee service.) - C:\Program Files\qksee\qkseeSvc.exe
O23 - Service: Baidu Spark Service (SparkSvc) . (.Baidu Inc. - spark.) - C:\Program Files\baidu\Spark\sparkservice.exe =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O23 - Service: StarWind AE Service (StarWindServiceAE) . (.StarWind Software - StarWind iSCSI Target (Alcohol Edition).) - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe =>.StarWind Software
O23 - Service: UI Assistant Service (UI Assistant Service) . (...) - C:\Program Files\MobiConnect\AssistantServices.exe =>.ZTE CORPORATION®
O23 - Service: WdMan Service (WdMan) . (.TFuns LIMITED - TFuns.) - C:\Documents and Settings\All Users.WINDOWS.0\Application Data\tWdMt\WdMan.exe =>PUP.Optional.WdsManPro
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (19) - 22s
SS - Demand [10/02/2016] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS.0\system32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SS - Auto [12/03/2015] [ 113104] Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) . (.Alcohol Soft Development Team.) - C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
SR - Auto [17/10/2014] [ 208928] Baidu MoboMarket Service (BASSVC) . (.Baidu, Inc..) - C:\Program Files\Baidu Security\MoboMarket\1.2.8.3351\bassvc.exe =>.Baidu Online Network Technology (Beijing)Co., Ltd®
SR - Auto [09/09/2015] [ 618920] cFosSpeed System Service (cFosSpeedS) . (.cFos Software GmbH.) - C:\Program Files\cFosSpeed\spd.exe {112197A57D474DC4BAF80DE77A350780D798}
SR - Auto [14/03/2011] [ 271712] HWDeviceService.exe (HWDeviceService.exe) . (.Copyright (C) 2008.) - C:\Documents and Settings\All Users.WINDOWS.0\Application Data\DatacardService\HWDeviceService.exe =>.HUAWEI Technologies Co., Ltd.®
SR - Auto [21/03/2016] [ 119808] IHProtect Service (IHProtect Service) . (.XTab system.) - C:\Program Files\MiuiTab\ProtectService.exe =>PUP.Optional.AgentODR
SR - Auto [18/03/2016] [ 116368] IhPul (IhPul) . (.tsvr.com.) - C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\TSv\TSvr.exe =>PUP.Optional.Elex
SR - Auto [19/08/2015] [ 118048] YAC Service (iSafeService) . (.Elex do Brasil Participações Ltda.) - C:\Program Files\Elex-tech\YAC\iSafeSvc.exe =>PUP.Optional.Elex
SS - Demand [10/06/2010] [ 349552] Ma-Config Service (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe =>.CybelSoft
SS - Demand [31/07/2015] [ 305328] McAfee Security Scan Component Host Service (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe =>.McAfee, Inc.
SS - Auto [23/08/2011] [ 721248] MobiConnect. OUC (MobiConnect. RunOuc) . (...) - C:\Program Files\MobiConnect\UpdateDog\ouc.exe
SS - Demand [20/03/2016] [ 216520] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Foundation
SR - Auto [22/03/2016] [ 708728] qkseeService (qkseeService) . (.Qksee Pvt Ltd..) - C:\Program Files\qksee\qkseeSvc.exe
SR - Auto [04/03/2016] [ 97080] Baidu Spark Service (SparkSvc) . (.Baidu Inc..) - C:\Program Files\baidu\Spark\sparkservice.exe =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
SR - Auto [23/12/2009] [ 370688] StarWind AE Service (StarWindServiceAE) . (.StarWind Software.) - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe =>.StarWind Software
SR - Auto [03/12/2012] [ 275784] UI Assistant Service (UI Assistant Service) . (...) - C:\Program Files\MobiConnect\AssistantServices.exe =>.ZTE CORPORATION®
SR - Auto [17/03/2016] [ 294912] WdMan Service (WdMan) . (.TFuns LIMITED.) - C:\Documents and Settings\All Users.WINDOWS.0\Application Data\tWdMt\WdMan.exe =>PUP.Optional.WdsManPro
SS - Demand [17/10/2015] [ 13264] WiseHDInfo (WiseHDInfo) . (.wisecleaner.com.) - C:\WINDOWS.0\WiseHDInfo32.dll =>.Lespeed Technology Ltd.®
---\\ Processus lancés (22) - 2s
[MD5.5A0C16BA56B580CFC8BAAEDECDC6EA9B] - (.Baidu, Inc. - Baidu MoboMarket Service.) -- C:\Program Files\Baidu Security\MoboMarket\1.2.8.3351\bassvc.exe [208928] [PID.1732] =>.Baidu Online Network Technology (Beijing)Co., Ltd®
[MD5.4F6BF1CED2DABFE62ED1407CE8745277] - (.cFos Software GmbH - cFosSpeed Service.) -- C:\Program Files\cFosSpeed\spd.exe [618920] [PID.868] {112197A57D474DC4BAF80DE77A350780D798}
[MD5.5EF3427AE503B5C03A48F7C9FF458B69] - (.Copyright (C) 2008 - DCSHOST.) -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\DatacardService\HWDeviceService.exe [271712] [PID.984] =>.HUAWEI Technologies Co., Ltd.®
[MD5.A3E33718D1090A1587AC069597EC4FA6] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3907152] [PID.1592] =>.Tonec Inc.
[MD5.AC44BF99C44BBF6B70E2689226AF78E6] - (.tsvr.com - tsvr.com.) -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\TSv\TSvr.exe [116368] [PID.1580] =>PUP.Optional.Elex
[MD5.D7F7849DFBBDCCF801F8D32BD8E5557D] - (...) -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\MobiConnect\OnlineUpdate\ouc.exe [721248] [PID.2144]
[MD5.6A881210DB2753D610EF045BF27BC022] - (.Baidu Inc. - spark.) -- C:\Program Files\baidu\Spark\sparkservice.exe [97080] [PID.2300] =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
[MD5.E5C796B621F6FBA8616511063D7F0FFE] - (.StarWind Software - StarWind iSCSI Target (Alcohol Edition).) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688] [PID.2404] =>.StarWind Software
[MD5.B995F4A853F5D0FDF8DAECC71C0BC621] - (...) -- C:\Program Files\MobiConnect\AssistantServices.exe [275784] [PID.2536] =>.ZTE CORPORATION®
[MD5.014EFC12621929881CDC59C1D67DFB1D] - (.TFuns LIMITED - TFuns.) -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\tWdMt\WdMan.exe [294912] [PID.2636] =>PUP.Optional.WdsManPro
[MD5.BD95E822E7A958BBCA842D078426A151] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe [269848] [PID.1828] =>.Tonec Inc.®
[MD5.29259683CE518DC73752348AF974B59E] - (.Baidu, Inc. - Baidu AndroidStore Helper.) -- C:\Program Files\Baidu Security\MoboMarket\1.2.8.3351\bas_helper.exe [2183200] [PID.2844] =>.Baidu Online Network Technology (Beijing)Co., Ltd®
[MD5.51E63633487F9180EC8031980684BF86] - (...) -- C:\WINDOWS.0\Temp\winbjbvs.exe [11776] [PID.3708] =>Heuristic.Suspect
[MD5.CC9E1075DB0645F1032F8C4B4412DEBA] - (...) -- C:\WINDOWS.0\Temp\winwcav.exe [16896] [PID.2004] =>Heuristic.Suspect
[MD5.97C105F970F72928BA957F1C46FEA6AB] - (...) -- C:\WINDOWS.0\Temp\winsjlgr.exe [53930] [PID.1640] =>Heuristic.Suspect
[MD5.B873AC74EA60B71CB960354CCAB10846] - (.Qksee Pvt Ltd. - qksee service.) -- C:\Program Files\qksee\qkseeSvc.exe [708728] [PID.2336]
[MD5.11F6F9216D8F77EAC196B07D66E819EA] - (.Elex do Brasil Participações Ltda - iSafeSvc.) -- C:\Program Files\Elex-tech\YAC\iSafeSvc.exe [118048] [PID.2724] =>PUP.Optional.Elex
[MD5.A03A95B389479B2ADE3A288FA2EA11D1] - (.Elex do Brasil Participações Ltda - iSafeSvc2.) -- C:\Program Files\Elex-tech\YAC\iSafeSvc2.exe [118048] [PID.332] =>PUP.Optional.Elex
[MD5.283910BA1B76C6D3534F89540E5354D5] - (.XTab system - ProtectSvc.exe.) -- C:\Program Files\MiuiTab\ProtectService.exe [119808] [PID.9680] =>PUP.Optional.MiuiTab
[MD5.80B72881A9BDDA484867F22DDC2E84DD] - (.Mozilla Corporation - Firefox.) -- c:\program files\mozilla firefox\firefox.exe [392136] [PID.19288] =>.Mozilla Corporation®
[MD5.FF1B6186596A6A3B1A43E0280B75ECEC] - (.Nullsoft, Inc. - Winamp.) -- C:\Program Files\Winamp\winamp.exe [1630560] [PID.20888] =>.Nullsoft, Inc.
[MD5.43E2BBE02F74ED99192AB4D1D3E31F38] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Mes documents\Downloads\ZHPDiag3.exe [2161152] [PID.22516] =>.Nicolas Coolman
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (17) - 2s
M0 - MFSP: prefs.js [Administrateur - 8qj5rm9o.default-1435582655953] http://www.yoursites123.com/?type=hp&ts=1458590004&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=wpm0314&uid=WDCXWD2500BEVT-60A23T0_WD-WX61A809838998389 =>PUP.Optional.YourSites123
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{25936db0-7cd4-5110-e50e-87d7aae0f45d}
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\QuickTimePlugin.class
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\WMP Firefox Plugin License.rtf
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\WMP Firefox Plugin RelNotes.txt
P2 - EXT FILE: (...) -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Mozilla\Firefox\Profiles\8qj5rm9o.default-1435582655953\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT FILE: (...) -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Mozilla\Firefox\Profiles\8qj5rm9o.default-1435582655953\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
P2 - EXT FILE: (...) -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Mozilla\Firefox\Profiles\8qj5rm9o.default-1435582655953\searchplugins\default.xml
P2 - EXT FILE: (...) -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Mozilla\Firefox\Profiles\8qj5rm9o.default-1435582655953\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo
P2 - EXT FILE: (...) -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Mozilla\Firefox\Profiles\8qj5rm9o.default-1435582655953\searchplugins\yoursites123.xml =>PUP.Optional.YourSites123
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\avg-secure-search.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\webssearches.xml =>PUP.Optional.WebsSearches
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT: (.lightningnewtab.com - Default NewTab.) -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Mozilla\Firefox\Profiles\8qj5rm9o.default-1435582655953\extensions\default_newtabff@gmail.com =>PUP.Optional.LightningNewTab
P2 - EXT: (.Microsoft - Microsoft .NET Framework Assistant.) -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Mozilla\Firefox\Profiles\8qj5rm9o.default-1435582655953\extensions\{20a82645-c095-46ed-80e3-08825760534b} =>.Microsoft
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS.0\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll =>.Adobe Systems Incorporated
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (12) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/ =>PUP.Optional.YourSites123
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yoursites123.com/ =>PUP.Optional.YourSites123
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/ =>PUP.Optional.Qvo6
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/ =>PUP.Optional.YourSites123
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/ =>PUP.Optional.Qvo6
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/ =>PUP.Optional.YourSites123
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer,Proxy Management (4) - 1s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS.0\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS.0\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (35)
---\\ Browser Helper Object de navigateur (BHO) (5) - 0s
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll =>.Oracle America, Inc.®
O2 - BHO: Roll Around - {83c0e288-8fa0-43d3-acc7-c1e839d85abc} (Orphean) =>PUP.Optional.RollAround
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll =>.Microsoft Corporation®
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll =>.Oracle America, Inc.®
---\\ Applications lancées au démarrage du système (18) - 1s
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKCU\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe =>.Microsoft Corporation
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll
O4 - HKUS\.DEFAULT\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll
O4 - HKUS\S-1-5-18\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll
O4 - HKUS\S-1-5-19\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll
O4 - HKUS\S-1-5-20\..\RunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32
O4 - HKUS\S-1-5-21-602162358-436374069-1801674531-500\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKUS\S-1-5-21-602162358-436374069-1801674531-500\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe =>.Microsoft Corporation
---\\ Raccourcis Global Startup (94) - 11s
O4 - GS\Desktop [Administrateur]: Firefox Password Recovery Master.lnk . (.Rixler Software - Firefox Password Recovery Master.) C:\Program Files\Firefox Password Recovery Master\FFPasRec.exe
O4 - GS\Desktop [Administrateur]: Flvto Youtube Downloader.lnk . (.Hotger - Flvto Youtube Downloader.) C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Flvto Youtube Downloader\FlvtoYoutubeDownloader.exe {00B04AA73DCBC59123279CA151AE0A8EF7} =>.Hotger
O4 - GS\Desktop [Administrateur]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Administrateur]: Mes documents.lnk . (...) C:\Documents and Settings\Administrateur.EDITION_TWINS\Mes documents
O4 - GS\Desktop [Administrateur]: MP3 Audio Converter.lnk . (.EZ SoftMagic - MP3 Audio Converter.) C:\Program Files\MP3 Audio Converter\CvrtMate.exe
O4 - GS\Desktop [Administrateur]: UsbFix.lnk . (...) C:\UsbFix\UsbFix.exe
O4 - GS\Desktop [Administrateur]: WinRAR.lnk . (...) C:\Program Files\WinRAR\WinRAR.exe
O4 - GS\Desktop [Administrateur]: Youtube Downloader HD.lnk . (...) C:\Program Files\Youtube Downloader HD\YouTubeDownloaderHD.exe
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: Any Video to DVD Converter and Burner.lnk . (.DreamVideoSoft - .) C:\Program Files\Any Video to DVD Converter and Burner\DreamDVDCreator.exe
O4 - GS\Quicklaunch [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [Administrateur]: MP3 Audio Converter.lnk . (.EZ SoftMagic - MP3 Audio Converter.) C:\Program Files\MP3 Audio Converter\CvrtMate.exe
O4 - GS\Quicklaunch [Administrateur]: Spark Browser.lnk . (.Copyright (C) 2011 - spark.) C:\Program Files\baidu\Spark\Spark.exe
O4 - GS\Desktop [ASPNET]: Firefox Password Recovery Master.lnk . (.Rixler Software - Firefox Password Recovery Master.) C:\Program Files\Firefox Password Recovery Master\FFPasRec.exe
O4 - GS\Desktop [ASPNET]: Flvto Youtube Downloader.lnk . (.Hotger - Flvto Youtube Downloader.) C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Flvto Youtube Downloader\FlvtoYoutubeDownloader.exe {00B04AA73DCBC59123279CA151AE0A8EF7} =>.Hotger
O4 - GS\Desktop [ASPNET]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [ASPNET]: Mes documents.lnk . (...) C:\Documents and Settings\Administrateur.EDITION_TWINS\Mes documents
O4 - GS\Desktop [ASPNET]: MP3 Audio Converter.lnk . (.EZ SoftMagic - MP3 Audio Converter.) C:\Program Files\MP3 Audio Converter\CvrtMate.exe
O4 - GS\Desktop [ASPNET]: UsbFix.lnk . (...) C:\UsbFix\UsbFix.exe
O4 - GS\Desktop [ASPNET]: WinRAR.lnk . (...) C:\Program Files\WinRAR\WinRAR.exe
O4 - GS\Desktop [ASPNET]: Youtube Downloader HD.lnk . (...) C:\Program Files\Youtube Downloader HD\YouTubeDownloaderHD.exe
O4 - GS\Desktop [ASPNET]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [ASPNET]: Any Video to DVD Converter and Burner.lnk . (.DreamVideoSoft - .) C:\Program Files\Any Video to DVD Converter and Burner\DreamDVDCreator.exe
O4 - GS\Quicklaunch [ASPNET]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [ASPNET]: MP3 Audio Converter.lnk . (.EZ SoftMagic - MP3 Audio Converter.) C:\Program Files\MP3 Audio Converter\CvrtMate.exe
O4 - GS\Quicklaunch [ASPNET]: Spark Browser.lnk . (.Copyright (C) 2011 - spark.) C:\Program Files\baidu\Spark\Spark.exe
O4 - GS\Desktop [HelpAssistant]: Firefox Password Recovery Master.lnk . (.Rixler Software - Firefox Password Recovery Master.) C:\Program Files\Firefox Password Recovery Master\FFPasRec.exe
O4 - GS\Desktop [HelpAssistant]: Flvto Youtube Downloader.lnk . (.Hotger - Flvto Youtube Downloader.) C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Flvto Youtube Downloader\FlvtoYoutubeDownloader.exe {00B04AA73DCBC59123279CA151AE0A8EF7} =>.Hotger
O4 - GS\Desktop [HelpAssistant]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [HelpAssistant]: Mes documents.lnk . (...) C:\Documents and Settings\Administrateur.EDITION_TWINS\Mes documents
O4 - GS\Desktop [HelpAssistant]: MP3 Audio Converter.lnk . (.EZ SoftMagic - MP3 Audio Converter.) C:\Program Files\MP3 Audio Converter\CvrtMate.exe
O4 - GS\Desktop [HelpAssistant]: UsbFix.lnk . (...) C:\UsbFix\UsbFix.exe
O4 - GS\Desktop [HelpAssistant]: WinRAR.lnk . (...) C:\Program Files\WinRAR\WinRAR.exe
O4 - GS\Desktop [HelpAssistant]: Youtube Downloader HD.lnk . (...) C:\Program Files\Youtube Downloader HD\YouTubeDownloaderHD.exe
O4 - GS\Desktop [HelpAssistant]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [HelpAssistant]: Any Video to DVD Converter and Burner.lnk . (.DreamVideoSoft - .) C:\Program Files\Any Video to DVD Converter and Burner\DreamDVDCreator.exe
O4 - GS\Quicklaunch [HelpAssistant]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [HelpAssistant]: MP3 Audio Converter.lnk . (.EZ SoftMagic - MP3 Audio Converter.) C:\Program Files\MP3 Audio Converter\CvrtMate.exe
O4 - GS\Quicklaunch [HelpAssistant]: Spark Browser.lnk . (.Copyright (C) 2011 - spark.) C:\Program Files\baidu\Spark\Spark.exe
O4 - GS\Desktop [IUSR_EDITION_TWINS]: Firefox Password Recovery Master.lnk . (.Rixler Software - Firefox Password Recovery Master.) C:\Program Files\Firefox Password Recovery Master\FFPasRec.exe
O4 - GS\Desktop [IUSR_EDITION_TWINS]: Flvto Youtube Downloader.lnk . (.Hotger - Flvto Youtube Downloader.) C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Flvto Youtube Downloader\FlvtoYoutubeDownloader.exe {00B04AA73DCBC59123279CA151AE0A8EF7} =>.Hotger
O4 - GS\Desktop [IUSR_EDITION_TWINS]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [IUSR_EDITION_TWINS]: Mes documents.lnk . (...) C:\Documents and Settings\Administrateur.EDITION_TWINS\Mes documents
O4 - GS\Desktop [IUSR_EDITION_TWINS]: MP3 Audio Converter.lnk . (.EZ SoftMagic - MP3 Audio Converter.) C:\Program Files\MP3 Audio Converter\CvrtMate.exe
O4 - GS\Desktop [IUSR_EDITION_TWINS]: UsbFix.lnk . (...) C:\UsbFix\UsbFix.exe
O4 - GS\Desktop [IUSR_EDITION_TWINS]: WinRAR.lnk . (...) C:\Program Files\WinRAR\WinRAR.exe
O4 - GS\Desktop [IUSR_EDITION_TWINS]: Youtube Downloader HD.lnk . (...) C:\Program Files\Youtube Downloader HD\YouTubeDownloaderHD.exe
O4 - GS\Desktop [IUSR_EDITION_TWINS]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [IUSR_EDITION_TWINS]: Any Video to DVD Converter and Burner.lnk . (.DreamVideoSoft - .) C:\Program Files\Any Video to DVD Converter and Burner\DreamDVDCreator.exe
O4 - GS\Quicklaunch [IUSR_EDITION_TWINS]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [IUSR_EDITION_TWINS]: MP3 Audio Converter.lnk . (.EZ SoftMagic - MP3 Audio Converter.) C:\Program Files\MP3 Audio Converter\CvrtMate.exe
O4 - GS\Quicklaunch [IUSR_EDITION_TWINS]: Spark Browser.lnk . (.Copyright (C) 2011 - spark.) C:\Program Files\baidu\Spark\Spark.exe
O4 - GS\Desktop [IWAM_EDITION_TWINS]: Firefox Password Recovery Master.lnk . (.Rixler Software - Firefox Password Recovery Master.) C:\Program Files\Firefox Password Recovery Master\FFPasRec.exe
O4 - GS\Desktop [IWAM_EDITION_TWINS]: Flvto Youtube Downloader.lnk . (.Hotger - Flvto Youtube Downloader.) C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Flvto Youtube Downloader\FlvtoYoutubeDownloader.exe {00B04AA73DCBC59123279CA151AE0A8EF7} =>.Hotger
O4 - GS\Desktop [IWAM_EDITION_TWINS]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [IWAM_EDITION_TWINS]: Mes documents.lnk . (...) C:\Documents and Settings\Administrateur.EDITION_TWINS\Mes documents
O4 - GS\Desktop [IWAM_EDITION_TWINS]: MP3 Audio Converter.lnk . (.EZ SoftMagic - MP3 Audio Converter.) C:\Program Files\MP3 Audio Converter\CvrtMate.exe
O4 - GS\Desktop [IWAM_EDITION_TWINS]: UsbFix.lnk . (...) C:\UsbFix\UsbFix.exe
O4 - GS\Desktop [IWAM_EDITION_TWINS]: WinRAR.lnk . (...) C:\Program Files\WinRAR\WinRAR.exe
O4 - GS\Desktop [IWAM_EDITION_TWINS]: Youtube Downloader HD.lnk . (...) C:\Program Files\Youtube Downloader HD\YouTubeDownloaderHD.exe
O4 - GS\Desktop [IWAM_EDITION_TWINS]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [IWAM_EDITION_TWINS]: Any Video to DVD Converter and Burner.lnk . (.DreamVideoSoft - .) C:\Program Files\Any Video to DVD Converter and Burner\DreamDVDCreator.exe
O4 - GS\Quicklaunch [IWAM_EDITION_TWINS]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [IWAM_EDITION_TWINS]: MP3 Audio Converter.lnk . (.EZ SoftMagic - MP3 Audio Converter.) C:\Program Files\MP3 Audio Converter\CvrtMate.exe
O4 - GS\Quicklaunch [IWAM_EDITION_TWINS]: Spark Browser.lnk . (.Copyright (C) 2011 - spark.) C:\Program Files\baidu\Spark\Spark.exe
O4 - GS\Desktop [SUPPORT_388945a0]: Firefox Password Recovery Master.lnk . (.Rixler Software - Firefox Password Recovery Master.) C:\Program Files\Firefox Password Recovery Master\FFPasRec.exe
O4 - GS\Desktop [SUPPORT_388945a0]: Flvto Youtube Downloader.lnk . (.Hotger - Flvto Youtube Downloader.) C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Flvto Youtube Downloader\FlvtoYoutubeDownloader.exe {00B04AA73DCBC59123279CA151AE0A8EF7} =>.Hotger
O4 - GS\Desktop [SUPPORT_388945a0]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [SUPPORT_388945a0]: Mes documents.lnk . (...) C:\Documents and Settings\Administrateur.EDITION_TWINS\Mes documents
O4 - GS\Desktop [SUPPORT_388945a0]: MP3 Audio Converter.lnk . (.EZ SoftMagic - MP3 Audio Converter.) C:\Program Files\MP3 Audio Converter\CvrtMate.exe
O4 - GS\Desktop [SUPPORT_388945a0]: UsbFix.lnk . (...) C:\UsbFix\UsbFix.exe
O4 - GS\Desktop [SUPPORT_388945a0]: WinRAR.lnk . (...) C:\Program Files\WinRAR\WinRAR.exe
O4 - GS\Desktop [SUPPORT_388945a0]: Youtube Downloader HD.lnk . (...) C:\Program Files\Youtube Downloader HD\YouTubeDownloaderHD.exe
O4 - GS\Desktop [SUPPORT_388945a0]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Any Video to DVD Converter and Burner.lnk . (.DreamVideoSoft - .) C:\Program Files\Any Video to DVD Converter and Burner\DreamDVDCreator.exe
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [SUPPORT_388945a0]: MP3 Audio Converter.lnk . (.EZ SoftMagic - MP3 Audio Converter.) C:\Program Files\MP3 Audio Converter\CvrtMate.exe
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Spark Browser.lnk . (.Copyright (C) 2011 - spark.) C:\Program Files\baidu\Spark\Spark.exe
O4 - GS\CommonDesktop [Public]: Alcohol 120%.lnk . (.Alcohol Soft Development Team - Alcohol 120%.) C:\Program Files\Alcohol Soft\Alcohol 120\Alcohol.exe =>.Alcohol Soft®
O4 - GS\CommonDesktop [Public]: Any Video to DVD Converter and Burner.lnk . (.DreamVideoSoft - .) C:\Program Files\Any Video to DVD Converter and Burner\DreamDVDCreator.exe
O4 - GS\CommonDesktop [Public]: Baidu Browser.lnk . (.Copyright (C) 2011 - spark.) C:\Program Files\baidu\Spark\spark.exe
O4 - GS\CommonDesktop [Public]: DVDVideoSoft Free Studio.lnk . (.DVDVideoSoft Ltd. - Free Studio.) C:\Program Files\Fichiers communs\DVDVideoSoft\FreeStudioManager.exe =>.DVDVideoSoft Ltd.
O4 - GS\CommonDesktop [Public]: Express Burn Disc Burning Software.lnk . (.NCH Software - Express Burn Disc Burning Software.) C:\Program Files\NCH Software\ExpressBurn\expressburn.exe =>.NCH Software
O4 - GS\CommonDesktop [Public]: Facebook.lnk . (.Copyright (C) 2011 - spark.) C:\Program Files\baidu\Spark\Spark.exe
O4 - GS\CommonDesktop [Public]: FIFA 11.lnk . (.Electronic Arts Canada - fifaconfig.) C:\Program Files\EA Sports\FIFA 11\Game\fifasetup\fifaconfig.exe =>.Electronic Arts®
O4 - GS\CommonDesktop [Public]: Free Audio CD Burner.lnk . (.DVDVideoSoft Ltd. - Free Audio CD Burner.) C:\Program Files\DVDVideoSoft\Free Audio CD Burner\FreeAudioCDBurner.exe =>.DVDVideoSoft Ltd.®
O4 - GS\CommonDesktop [Public]: Google.lnk . (.Copyright (C) 2011 - spark.) C:\Program Files\baidu\Spark\Spark.exe
O4 - GS\CommonDesktop [Public]: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee.) C:\Program Files\McAfee Security Scan\3.11.163\McUICnt.exe =>.McAfee, Inc.
O4 - GS\CommonDesktop [Public]: MobiConnect.lnk . (...) C:\Program Files\MobiConnect\UIMain.exe
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: NCH Suite.lnk . (.NCH Software - Express Burn Disc Burning Software.) C:\Program Files\NCH Software\ExpressBurn\expressburn.exe =>.NCH Software
O4 - GS\CommonDesktop [Public]: PowerISO.lnk . (.Power Software Ltd - PowerISO.) C:\Program Files\PowerISO\PowerISO.exe =>.Power Software Ltd
O4 - GS\CommonDesktop [Public]: qksee.lnk . (.Qksee Pvt Ltd. - qksee.) C:\Program Files\qksee\qksee.exe
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN
---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\..\{5B9228C2-C355-4ADD-A6A8-A22F89E1470E}: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CCS\Services\Tcpip\..\{B48811FD-4EDB-4D01-862F-90FEA8819654}: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
---\\ Protocole additionnel (30) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS.0\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS.0\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS.0\system32\msvidctl.dll =>.Microsoft Corporation
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS.0\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS.0\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS.0\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS.0\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS.0\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS.0\system32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS.0\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll =>.Microsoft Corporation®
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS.0\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS.0\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS.0\system32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS.0\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS.0\system32\itss.dll =>.Microsoft Corporation
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll =>.Microsoft Corporation®
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS.0\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS.0\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS.0\system32\msvidctl.dll =>.Microsoft Corporation
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS.0\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS.0\system32\wiascr.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS.0\system32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS.0\system32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS.0\system32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS.0\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS.0\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS.0\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS.0\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS.0\system32\shell32.dll =>.Microsoft Corporation
---\\ Logiciels installés (52) - 24s
O42 - Logiciel: .NET Reactor - (.Eziriz.) [HKLM] -- .NET Reactor
O42 - Logiciel: .NET Reactor - (.Eziriz.) [HKLM] -- {6732AE9F-CE1A-4DC7-A18D-A23CAA99724C}
O42 - Logiciel: 4Musics WAV to MP3 Converter 4.3 - (.NeSoft.) [HKLM] -- 4Musics WAV to MP3 Converter 4.3_is1
O42 - Logiciel: 7-Zip 15.12 - (.Igor Pavlov.) [HKLM] -- 7-Zip =>.Igor Pavlov
O42 - Logiciel: Ad Muncher v4.94.34121 (Free) - (...) [HKLM] -- Ad Muncher
O42 - Logiciel: Adobe Flash Player 20 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Any Video Converter Professional 5.5.7 - (.Any-Video-Converter.com.) [HKLM] -- Any Video Converter Professional_is1
O42 - Logiciel: Any Video to DVD Converter and Burner 5.1.1.0 - (.TopVideoSoft,Inc..) [HKLM] -- {66712EEE-ECBC-4CA6-A475-any-video-to-dvd}_is1
O42 - Logiciel: Baidu Browser - (.Baidu Inc..) [HKLM] -- Spark =>.Baidu Inc.
O42 - Logiciel: cFosSpeed v10.10 - (.cFos Software GmbH, Bonn.) [HKLM] -- cFosSpeed =>.cFos Software GmbH, Bonn
O42 - Logiciel: Complément Office 2007 - Microsoft Enregistrer en tant que PDF ou XPS (Beta - (.Microsoft Corporation.) [HKLM] -- {30120000-00B2-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Express Burn Disc Burning Software - (.NCH Software.) [HKLM] -- ExpressBurn =>.NCH Software
O42 - Logiciel: FIFA 11 - (.Electronic Arts.) [HKLM] -- {3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C} =>.Electronic Arts
O42 - Logiciel: Firefox Password Recovery Master 2.0 - (...) [HKLM] -- Firefox Password Recovery Master_is1
O42 - Logiciel: Flvto Youtube Downloader - (.Hotger.) [HKLM] -- Flvto Youtube Downloader =>.Hotger
O42 - Logiciel: Free Audio CD Burner version 2.0.32.1122 - (.DVDVideoSoft Ltd..) [HKLM] -- Free Audio CD Burner_is1 =>.DVDVideoSoft Ltd.
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM] -- Internet Download Manager =>.Tonec Inc.
O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: K-Lite Codec Pack 3.1.5 Full - (.KLTeam.) [HKLM] -- KLiteCodecPack_is1
O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {B4CB8D56-51E5-4A87-B901-8123ED990A8A} =>.CybelSoft
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM] -- McAfee Security Scan =>.McAfee, Inc.
O42 - Logiciel: MobiConnect - (.Huawei Technologies Co.,Ltd.) [HKLM] -- MobiConnect =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: Mobiconnect - (.ZTE Corporation.) [HKLM] -- {A9E5EDA7-2E6C-49E7-924B-A32B89C24A04} =>.ZTE Corporation
O42 - Logiciel: Mozilla Firefox 45.0.1 (x86 en-US) - (.Mozilla.) [HKLM] -- Mozilla Firefox 45.0.1 (x86 en-US) =>.Mozilla
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MP3 Audio Converter 4.00 - (...) [HKLM] -- MP3 Audio Converter_is1
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} =>.Microsoft
O42 - Logiciel: Nero 8 Micro 8.3.2.1 - (.Updatepack.nl.) [HKLM] -- Nero8Lite_is1
O42 - Logiciel: Package de pilotes Windows - Baidu.com (dg_usbccgp) USB (20/2/2014 2.9.50 - (.Baidu.com .) [HKLM] -- 0E63853950FE0489AF618977F04FF7C68AF95119
O42 - Logiciel: Package de pilotes Windows - Baidu.com (dg_usbccgp) USB (20/2/2014 2.9.50 - (.Baidu.com .) [HKLM] -- 324832392F691178AEC49DEC2EB3B1DE8C19FFBC
O42 - Logiciel: Package de pilotes Windows - Baidu.com (dg_usbccgp) USB (20/2/2014 2.9.50 - (.Baidu.com .) [HKLM] -- 36AAA11EBB931D3CD1533DEB4E8B6211B30D44F5
O42 - Logiciel: Package de pilotes Windows - Baidu.com (dg_usbccgp) USB (20/2/2014 2.9.50 - (.Baidu.com .) [HKLM] -- 8DDA20B1B74D115972FE9819CEC04FEE8DEF0CCD
O42 - Logiciel: Package de pilotes Windows - Baidu.com (dg_usbccgp) USB (20/2/2014 2.9.50 - (.Baidu.com .) [HKLM] -- B7E5B73AF9E802DFB0CCB4DCC81176B6ABF68D2A
O42 - Logiciel: Package de pilotes Windows - Baidu.com (dg_usbccgp) USB (20/2/2014 2.9.50 - (.Baidu.com .) [HKLM] -- C0D2F1EF9F2AAE90B758F65CE7733AA8B5DD6B63
O42 - Logiciel: Package de pilotes Windows - Baidu.com (dg_usbccgp) USB (20/2/2014 2.9.50 - (.Baidu.com .) [HKLM] -- DDB58EA97701F7F51A7D0BFA428F980766F04EE0
O42 - Logiciel: Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass ( - (.Google, Inc..) [HKLM] -- 30B2813B1F17EF6D99360A190E7F0D3BA2F0DC3C =>.Google, Inc.
O42 - Logiciel: Password Recovery Bundle 2015 - (.Top Password Software, Inc..) [HKLM] -- Password Recovery Bundle 2015_is1 =>.Top Password Software, Inc.
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM] -- PowerISO =>.Power Software Ltd
O42 - Logiciel: qksee - (.Taiwan Shui Mu Chih Ching Technology Limited.) [HKLM] -- qksee
O42 - Logiciel: Ralink RT3090 802.11b/g/n WiFi Adapter - (.Ralink.) [HKLM] -- {8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF} =>.Ralink
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.
O42 - Logiciel: Smart File Advisor 1.1.8 - (.Filefacts.net.) [HKLM] -- Smart File Advisor_is1 =>.Filefacts.net
O42 - Logiciel: SpeedFan (remove only) - (...) [HKLM] -- SpeedFan
O42 - Logiciel: Stellar Phoenix Windows Data Recovery - Professional - (.Stellar Information Systems Ltd.) [HKLM] -- Stellar Phoenix Windows Data Recovery - Professional_is1 =>.Stellar Information Systems Ltd
O42 - Logiciel: UsbFix - (.El Desaparecido - www.usb-antivirus.com - www.sosvirus.net.) [HKLM] -- Usbfix
O42 - Logiciel: Vista Drive Indicator! - (.KelCorp.) [HKLM] -- VDrive =>.KelCorp
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player =>.VideoLAN
O42 - Logiciel: WebFldrs XP - (.Microsoft Corporation.) [HKLM] -- {350C940c-3D7C-4EE8-BAA9-00BCB3D54227} =>.Microsoft Corporation
O42 - Logiciel: webssearches uninstall - (.webssearches.) [HKLM] -- webssearches uninstall =>PUP.Optional.WebsSearches
O42 - Logiciel: YAC(Yet Another Cleaner!) - (.ELEX DO BRASIL PARTICIPAÇÕES LTDA.) [HKLM] -- iSafe =>PUP.Optional.Elex
O42 - Logiciel: Youtube Downloader HD v. 2.9.9.27 - (.YoutubeDownloaderHD.com.) [HKLM] -- Youtube Downloader HD_is1 =>.YoutubeDownloaderHD.com
---\\ HKCU & HKLM Software Keys (170) - 24s
HKLM\SOFTWARE\7-Zip
HKLM\SOFTWARE\AdMuncher
HKLM\SOFTWARE\Ahead
HKLM\SOFTWARE\Alcohol Soft
HKLM\SOFTWARE\Alps
HKLM\SOFTWARE\AVAST Software
HKLM\SOFTWARE\Baidu
HKLM\SOFTWARE\Baidu Security
HKLM\SOFTWARE\Baidu_Drp_pos
HKLM\SOFTWARE\C07ft5Y
HKLM\SOFTWARE\cFos
HKLM\SOFTWARE\Codec tweak Tool
HKLM\SOFTWARE\cybelsoft
HKLM\SOFTWARE\CyberGhost
HKLM\SOFTWARE\Cyberlink
HKLM\SOFTWARE\Data Fellows
HKLM\SOFTWARE\delta-homesSoftware =>PUP.Optional.DeltaHomes
HKLM\SOFTWARE\DivXNetworks
HKLM\SOFTWARE\Doug
HKLM\SOFTWARE\DVDVideoSoft
HKLM\SOFTWARE\EA Games
HKLM\SOFTWARE\EA Sports
HKLM\SOFTWARE\Electronic Arts
HKLM\SOFTWARE\Elex-tech =>PUP.Optional.Elex
HKLM\SOFTWARE\Eset
HKLM\SOFTWARE\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Flvto Youtube Downloader
HKLM\SOFTWARE\FreeArc
HKLM\SOFTWARE\Gabest
HKLM\SOFTWARE\Gemplus
HKLM\SOFTWARE\GNU
HKLM\SOFTWARE\GoForFiles
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\hdcode
HKLM\SOFTWARE\Huawei technologies
HKLM\SOFTWARE\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\INTEL
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\InterVideo
HKLM\SOFTWARE\IObit
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\KasperskyLab
HKLM\SOFTWARE\KLCodecPack
HKLM\SOFTWARE\KRT settings
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\McAfee.com
HKLM\SOFTWARE\MimarSinan
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\NCH Software
HKLM\SOFTWARE\NCH Swift Sound
HKLM\SOFTWARE\Nero
HKLM\SOFTWARE\Nokia
HKLM\SOFTWARE\Nullsoft
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\PowerISO
HKLM\SOFTWARE\Program Groups
HKLM\SOFTWARE\qksee
HKLM\SOFTWARE\qkseeSvc
HKLM\SOFTWARE\Ralink
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\RollAround =>PUP.Optional.RollAround
HKLM\SOFTWARE\S3R521
HKLM\SOFTWARE\Schlumberger
HKLM\SOFTWARE\Secure
HKLM\SOFTWARE\Smart File Advisor
HKLM\SOFTWARE\SOSVirus
HKLM\SOFTWARE\SpeedFan
HKLM\SOFTWARE\Stellar information Systems ltd.
HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\supWindowsMangerProtect =>PUP.Optional.WpManager
HKLM\SOFTWARE\TSv
HKLM\SOFTWARE\TuneUp
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\webssearchesSoftware =>PUP.Optional.WebsSearches
HKLM\SOFTWARE\Windows 3.1 Migration Status
HKLM\SOFTWARE\WindowsDoctor
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\WiseCleaner
HKLM\SOFTWARE\Wondershare
HKLM\SOFTWARE\Wow6432Node
HKLM\SOFTWARE\ZTEUSBDriverFlag
HKCU\SOFTWARE\1ClickDownload =>PUP.Optional.1ClickDownloader
HKCU\SOFTWARE\3a6ad4c5-127f-4668-888b-e8e7a31031c2 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\AC3filter
HKCU\SOFTWARE\ACP
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Ahead
HKCU\SOFTWARE\Alcohol Soft
HKCU\SOFTWARE\Alps
HKCU\SOFTWARE\AnchorFree
HKCU\SOFTWARE\AnvSoft
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ApplianTechnologies
HKCU\SOFTWARE\Ares
HKCU\SOFTWARE\ASProtect
HKCU\SOFTWARE\Audacity
HKCU\SOFTWARE\Baidu
HKCU\SOFTWARE\Baidu Security
HKCU\SOFTWARE\Binary Noise
HKCU\SOFTWARE\cFos
HKCU\SOFTWARE\CoreVorbis
HKCU\SOFTWARE\cybelsoft
HKCU\SOFTWARE\Cyberlink
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\DVDVideoSoft
HKCU\SOFTWARE\EA Sports
HKCU\SOFTWARE\ExpressFiles =>PUP.Optional.ExpressFiles
HKCU\SOFTWARE\EZSoftMagic
HKCU\SOFTWARE\F-Secure Antibot
HKCU\SOFTWARE\FlvtoConverter
HKCU\SOFTWARE\Fobvexllmtqatp
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\GoforFiles
HKCU\SOFTWARE\GSpot Appliance Corp
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\hotger
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Informer Technologies, Inc.
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\KasperskyLabSetup
HKCU\SOFTWARE\Leadertech
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LSoft Technologies
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\McAfee
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\NCH Software
HKCU\SOFTWARE\NCH Swift Sound
HKCU\SOFTWARE\Nero
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NiXPS
HKCU\SOFTWARE\Nokia
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\PowerISO
HKCU\SOFTWARE\qksee
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Rixler Software
HKCU\SOFTWARE\SFX TEAM
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Smart File Advisor
HKCU\SOFTWARE\Softonic =>.Superfluous.Softonic
HKCU\SOFTWARE\SpeedFan
HKCU\SOFTWARE\Stellar information Systems ltd.
HKCU\SOFTWARE\SupHpUISoft =>PUP.Optional.CrossRider
HKCU\SOFTWARE\sYk0
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\TuneUp
HKCU\SOFTWARE\UsbFix
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
---\\ Contenu des dossiers Programmes (346) - 139s
O43 - CFD: 22/02/2015 - [] D -- C:\Program Files\4Musics WAV to MP3 Converter
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\7-Zip
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\ACD Systems
O43 - CFD: 06/07/2015 - [] D -- C:\Program Files\Ad Muncher
O43 - CFD: 23/10/2014 - [0] D -- C:\Program Files\Adanak =>PUP.Optional.Adanak
O43 - CFD: 07/04/2012 - [] D -- C:\Program Files\Adobe
O43 - CFD: 15/11/2015 - [] D -- C:\Program Files\Alcohol Soft
O43 - CFD: 13/05/2012 - [] D -- C:\Program Files\AML Products
O43 - CFD: 18/03/2014 - [] D -- C:\Program Files\AnvSoft
O43 - CFD: 07/11/2014 - [] D -- C:\Program Files\Any Video Converter
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files\Any Video to DVD Converter and Burner
O43 - CFD: 11/10/2015 - [] D -- C:\Program Files\Apoint2K
O43 - CFD: 22/06/2011 - [] D -- C:\Program Files\Apple Software Update
O43 - CFD: 19/04/2011 - [] D -- C:\Program Files\Ares
O43 - CFD: 11/07/2014 - [] D -- C:\Program Files\AutoPass Full
O43 - CFD: 30/06/2014 - [] D -- C:\Program Files\AVG Secure Search
O43 - CFD: 08/04/2013 - [] D -- C:\Program Files\Avira
O43 - CFD: 13/05/2012 - [] D -- C:\Program Files\AviSynth 2.5
O43 - CFD: 08/03/2011 - [] D -- C:\Program Files\Babylon =>PUP.Optional.Babylon
O43 - CFD: 23/08/2015 - [] D -- C:\Program Files\baidu
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\Baidu Security
O43 - CFD: 12/08/2013 - [] D -- C:\Program Files\BinaryMark
O43 - CFD: 22/06/2011 - [] D -- C:\Program Files\Bonjour
O43 - CFD: 11/07/2014 - [0] D -- C:\Program Files\Camfrog
O43 - CFD: 17/10/2015 - [] D -- C:\Program Files\cFosSpeed
O43 - CFD: 18/09/2011 - [] D -- C:\Program Files\ChatVibes Toolbar
O43 - CFD: 14/03/2012 - [] D -- C:\Program Files\Complitly =>PUP.Optional.PredictAd
O43 - CFD: 20/01/2011 - [0] D -- C:\Program Files\ComPlus Applications
O43 - CFD: 14/03/2012 - [] D -- C:\Program Files\Conduit =>.Superfluous.Conduit
O43 - CFD: 11/10/2015 - [] D -- C:\Program Files\CyberGhost 5
O43 - CFD: 11/02/2012 - [] D -- C:\Program Files\DealBulldog Toolbar Toolbar =>PUP.Optional.SocialSkinz
O43 - CFD: 12/08/2013 - [] D -- C:\Program Files\Delta
O43 - CFD: 25/11/2014 - [] D -- C:\Program Files\DIFX
O43 - CFD: 29/06/2014 - [] D -- C:\Program Files\Driver 3
O43 - CFD: 25/11/2014 - [] D -- C:\Program Files\DVDVideoSoft
O43 - CFD: 07/07/2014 - [] D -- C:\Program Files\EA GAMES
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\EA Sports
O43 - CFD: 16/01/2012 - [] D -- C:\Program Files\Eidos Interactive
O43 - CFD: 06/05/2012 - [] D -- C:\Program Files\Electronic Arts
O43 - CFD: 24/03/2016 - [] D -- C:\Program Files\Elex-tech =>PUP.Optional.Elex
O43 - CFD: 16/04/2012 - [] D -- C:\Program Files\ExpressFiles =>PUP.Optional.ExpressFiles
O43 - CFD: 29/03/2012 - [] D -- C:\Program Files\Eziriz
O43 - CFD: 28/02/2015 - [] D -- C:\Program Files\Fichiers communs
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\FileZilla FTP Client
O43 - CFD: 24/03/2016 - [] D -- C:\Program Files\Firefox Password Recovery Master
O43 - CFD: 14/03/2012 - [] D -- C:\Program Files\flvto.com_Freecorder
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\Foxit Reader
O43 - CFD: 28/10/2014 - [] D -- C:\Program Files\Freecorder
O43 - CFD: 04/02/2016 - [] D -- C:\Program Files\Game
O43 - CFD: 28/05/2012 - [] D -- C:\Program Files\GGPO
O43 - CFD: 06/04/2012 - [] D -- C:\Program Files\Godlike Developers
O43 - CFD: 14/10/2014 - [] D -- C:\Program Files\GoForFiles =>PUP.Optional.YourFileDownloader
O43 - CFD: 29/06/2014 - [] D -- C:\Program Files\Grand Theft Auto San Andreas
O43 - CFD: 03/08/2014 - [0] D -- C:\Program Files\GUM54.tmp
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\HashTab Shell Extension
O43 - CFD: 28/07/2014 - [] D -- C:\Program Files\Hostless Modem
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\HPQ
O43 - CFD: 24/07/2012 - [] D -- C:\Program Files\HSPA USB Modem
O43 - CFD: 02/06/2011 - [] D -- C:\Program Files\iLike
O43 - CFD: 02/06/2011 - [] D -- C:\Program Files\Iminent =>PUP.Optional.IMBooster
O43 - CFD: 05/07/2011 - [] D -- C:\Program Files\IMinent Toolbar =>PUP.Optional.IMBooster
O43 - CFD: 03/03/2015 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Intel
O43 - CFD: 16/10/2015 - [] D -- C:\Program Files\Internet Download Manager
O43 - CFD: 11/10/2015 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 02/04/2012 - [] D -- C:\Program Files\IObit
O43 - CFD: 22/06/2011 - [] D -- C:\Program Files\iPod
O43 - CFD: 22/06/2011 - [] D -- C:\Program Files\iTunes
O43 - CFD: 06/07/2015 - [] D -- C:\Program Files\Java
O43 - CFD: 13/05/2012 - [] D -- C:\Program Files\K-Lite Codec Pack
O43 - CFD: 18/07/2012 - [] D -- C:\Program Files\King Of The Road
O43 - CFD: 15/01/2016 - [] D -- C:\Program Files\ma-config.com
O43 - CFD: 25/09/2015 - [] D -- C:\Program Files\McAfee Security Scan
O43 - CFD: 11/10/2015 - [] D -- C:\Program Files\Messenger
O43 - CFD: 26/12/2011 - [] D -- C:\Program Files\Messenger Plus! Live
O43 - CFD: 11/07/2014 - [] D -- C:\Program Files\Microsoft
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\microsoft frontpage
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 20/04/2011 - [] D -- C:\Program Files\Microsoft Office Outlook Connector
O43 - CFD: 18/03/2014 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 20/04/2011 - [] D -- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 20/04/2011 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 04/02/2016 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 21/03/2016 - [] D -- C:\Program Files\MiuiTab =>PUP.Optional.MiuiTab
O43 - CFD: 03/03/2015 - [] D -- C:\Program Files\MobiConnect
O43 - CFD: 11/10/2015 - [] D -- C:\Program Files\Movie Maker
O43 - CFD: 20/03/2016 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 20/03/2016 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 20/02/2015 - [] D -- C:\Program Files\MP3 Audio Converter
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 14/10/2015 - [] D -- C:\Program Files\MSECache
O43 - CFD: 29/01/2011 - [] D -- C:\Program Files\MSN
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\MSN Gaming Zone
O43 - CFD: 19/03/2014 - [0] D -- C:\Program Files\MSXML 4.0
O43 - CFD: 25/11/2014 - [] D -- C:\Program Files\NCH Software
O43 - CFD: 08/02/2011 - [] D -- C:\Program Files\Neoact
O43 - CFD: 18/08/2014 - [] D -- C:\Program Files\Nero
O43 - CFD: 11/10/2015 - [] D -- C:\Program Files\NetMeeting
O43 - CFD: 18/03/2012 - [] D -- C:\Program Files\NewLive All Media To Mp3 Converter
O43 - CFD: 06/07/2015 - [] D -- C:\Program Files\NewSoftware's
O43 - CFD: 21/06/2011 - [0] D -- C:\Program Files\NirSoft
O43 - CFD: 17/07/2012 - [] D -- C:\Program Files\NiXPS
O43 - CFD: 17/03/2014 - [] D -- C:\Program Files\Nokia
O43 - CFD: 20/06/2011 - [0] D -- C:\Program Files\nonosa
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\Notepad++
O43 - CFD: 01/11/2014 - [] D -- C:\Program Files\Online Services
O43 - CFD: 09/02/2011 - [] D -- C:\Program Files\Open Sea Fishing
O43 - CFD: 12/09/2014 - [] D -- C:\Program Files\Opera
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\Orbitdownloader
O43 - CFD: 11/10/2015 - [] D -- C:\Program Files\Outlook Express
O43 - CFD: 17/03/2014 - [] D -- C:\Program Files\PC Connectivity Solution
O43 - CFD: 09/04/2011 - [] D -- C:\Program Files\Pcsx2
O43 - CFD: 15/03/2011 - [] D -- C:\Program Files\PhotoFiltre
O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\PowerISO
O43 - CFD: 17/11/2014 - [] AD -- C:\Program Files\Process Explorer
O43 - CFD: 24/03/2016 - [] D -- C:\Program Files\qksee
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\QT Lite
O43 - CFD: 22/06/2011 - [] D -- C:\Program Files\QuickTime
O43 - CFD: 14/07/2014 - [] D -- C:\Program Files\Ralink
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\Real Alternative
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Realtek
O43 - CFD: 25/04/2011 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 23/11/2014 - [] D -- C:\Program Files\ReviverSoft
O43 - CFD: 13/07/2015 - [] D -- C:\Program Files\Roll Around =>PUP.Optional.RollAround
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Roxio
O43 - CFD: 17/07/2015 - [] D -- C:\Program Files\SecurityXploded
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Services en ligne
O43 - CFD: 16/08/2012 - [] D -- C:\Program Files\Sketch Master
O43 - CFD: 19/03/2014 - [] RD -- C:\Program Files\Skype
O43 - CFD: 15/11/2015 - [] D -- C:\Program Files\Smart File Advisor =>.Superfluous.Totalpc
O43 - CFD: 11/07/2014 - [0] D -- C:\Program Files\softendo.com
O43 - CFD: 18/03/2014 - [] D -- C:\Program Files\Software Informer
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Sonic
O43 - CFD: 08/02/2012 - [] D -- C:\Program Files\SpeedBit Video Accelerator
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files\SpeedFan
O43 - CFD: 14/10/2014 - [] D -- C:\Program Files\Stellar Phoenix Windows Data Recovery
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\SuperCopier2
O43 - CFD: 04/02/2016 - [] D -- C:\Program Files\Support
O43 - CFD: 03/03/2015 - [] D -- C:\Program Files\SupportAppCB
O43 - CFD: 26/12/2011 - [] D -- C:\Program Files\SweetIM =>PUP.Optional.SweetIM
O43 - CFD: 10/01/2012 - [] D -- C:\Program Files\SYSTEM 2K+
O43 - CFD: 05/01/2016 - [] D -- C:\Program Files\Top Password
O43 - CFD: 18/04/2012 - [] D -- C:\Program Files\UltraISO
O43 - CFD: 26/12/2011 - [] D -- C:\Program Files\Uniblue =>.Superfluous.Uniblue
O43 - CFD: 20/01/2011 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\USB Disk Security
O43 - CFD: 18/08/2014 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 04/09/2011 - [] D -- C:\Program Files\VirtualDJ
O43 - CFD: 14/05/2012 - [] D -- C:\Program Files\Webteh
O43 - CFD: 30/01/2011 - [] D -- C:\Program Files\Winamp
O43 - CFD: 30/01/2011 - [] D -- C:\Program Files\Winamp Detect
O43 - CFD: 04/02/2016 - [] D -- C:\Program Files\Windows Doctor
O43 - CFD: 12/01/2012 - [] D -- C:\Program Files\Windows Live =>.Microsoft Corporation®
O43 - CFD: 18/08/2014 - [] D -- C:\Program Files\Windows Live SkyDrive
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\Windows Media Connect 2
O43 - CFD: 11/10/2015 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 11/10/2015 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 20/01/2011 - [0] HD -- C:\Program Files\WindowsUpdate
O43 - CFD: 20/02/2015 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\xerox
O43 - CFD: 14/04/2011 - [] D -- C:\Program Files\Xilisoft
O43 - CFD: 10/04/2015 - [] AD -- C:\Program Files\XYplorer
O43 - CFD: 08/02/2016 - [] D -- C:\Program Files\Youtube Downloader HD
O43 - CFD: 01/05/2011 - [] D -- C:\Program Files\Yuna Software
O43 - CFD: 13/07/2014 - [0] D -- C:\Program Files\ZvjIBLItz§Ï¼Ïdlpfvcrw.exe
O43 - CFD: 16/03/2016 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\.NET Reactor
O43 - CFD: 04/02/2016 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\2014-15 patch for FIFA 11
O43 - CFD: 22/02/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\4Musics WAV to MP3 Converter
O43 - CFD: 11/12/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\7-Zip
O43 - CFD: 11/10/2015 - [] RD -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 06/07/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Ad Muncher
O43 - CFD: 15/11/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Alcohol 120%
O43 - CFD: 16/05/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\AnvSoft
O43 - CFD: 30/11/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Any Video to DVD Converter and Burner
O43 - CFD: 25/11/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Audio Related Programs
O43 - CFD: 07/02/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Baidu Browser
O43 - CFD: 25/11/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\DVDVideoSoft
O43 - CFD: 20/03/2016 - [] RD -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 11/12/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\EA Sports
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Firefox Password Recovery Master
O43 - CFD: 26/10/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Internet Download Manager
O43 - CFD: 23/11/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Java
O43 - CFD: 18/08/2014 - [] RD -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Jeux
O43 - CFD: 18/08/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\K-Lite Codec Pack
O43 - CFD: 15/01/2016 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\ma-config.com
O43 - CFD: 25/09/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\McAfee Security Scan Plus
O43 - CFD: 18/08/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\MobiConnect
O43 - CFD: 19/11/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Mozilla Firefox
O43 - CFD: 25/11/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\MP3 Audio Converter
O43 - CFD: 25/11/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\NCH Software Suite
O43 - CFD: 18/08/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Nero
O43 - CFD: 11/10/2015 - [] RD -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Outils d'administration
O43 - CFD: 06/07/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Password Recovery Bundle 2015
O43 - CFD: 16/02/2016 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\PowerISO
O43 - CFD: 21/03/2016 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\qksee
O43 - CFD: 17/10/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Régulation dynamique de flux réseau (Traffic Shaping) de cFosSpeed
O43 - CFD: 15/11/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Smart File Advisor =>.Superfluous.Totalpc
O43 - CFD: 14/10/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Stellar Phoenix Windows Data Recovery - Professional
O43 - CFD: 23/04/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\VideoLAN
O43 - CFD: 18/08/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Windows Live
O43 - CFD: 03/07/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\WinRAR
O43 - CFD: 08/02/2016 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Youtube Downloader HD
O43 - CFD: 06/11/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\2a617352-d396-46a3-a71b-5d89535356cf
O43 - CFD: 06/07/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Ad Muncher
O43 - CFD: 25/09/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\AVAST Software
O43 - CFD: 07/02/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Baidu
O43 - CFD: 17/11/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Baidu Security
O43 - CFD: 17/10/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\cFos
O43 - CFD: 14/10/2014 - [] HD -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Common Files
O43 - CFD: 07/11/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\DatacardService
O43 - CFD: 23/08/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Electronic Arts
O43 - CFD: 05/10/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\F-Secure
O43 - CFD: 06/10/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\hsswpr
O43 - CFD: 03/07/2014 - [0] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\IDM
O43 - CFD: 09/10/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\IePluginServices =>Trojan.SProtector
O43 - CFD: 12/06/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\IHProtectUpDate =>PUP.Optional.AgentODR
O43 - CFD: 04/07/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Informer Technologies, Inc
O43 - CFD: 04/07/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\IObit
O43 - CFD: 18/09/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\log
O43 - CFD: 15/01/2016 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\ma-config.com
O43 - CFD: 06/07/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\McAfee
O43 - CFD: 06/07/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\McAfee Security Scan
O43 - CFD: 30/12/2015 - [] SD -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Microsoft
O43 - CFD: 18/08/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\MobiConnect
O43 - CFD: 21/08/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Mozilla
O43 - CFD: 25/11/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\NCH Software
O43 - CFD: 18/08/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Nero
O43 - CFD: 22/11/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Office Genuine Advantage
O43 - CFD: 18/09/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\OnlineUpdate
O43 - CFD: 06/07/2015 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Oracle
O43 - CFD: 29/06/2014 - [0] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Package Cache
O43 - CFD: 14/07/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Ralink Driver
O43 - CFD: 23/11/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\ReviverSoft
O43 - CFD: 23/11/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Sun
O43 - CFD: 14/10/2014 - [0] AD -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\TEMP
O43 - CFD: 17/03/2016 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\TuneUp Software
O43 - CFD: 21/03/2016 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\tWdMt =>PUP.Optional.WdsManPro
O43 - CFD: 19/11/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\Windows Genuine Advantage
O43 - CFD: 22/12/2014 - [] D -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\WindowsMangerProtect =>PUP.Optional.WpManager
O43 - CFD: 16/03/2016 - [] SHD -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\{32364CEA-7855-4A3C-B674-53D8E9B97936}
O43 - CFD: 16/03/2016 - [] HDC -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\{F7F9C4CA-5C13-4DF8-8814-05CD03655F11}
O43 - CFD: 14/10/2014 - [] SHD -- C:\Documents and Settings\All Users.WINDOWS.0\Application Data\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
O43 - CFD: 06/11/2015 - [] D -- C:\Program Files\Fichiers communs\2a617352-d396-46a3-a71b-5d89535356cf
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\Fichiers communs\ACD Systems
O43 - CFD: 14/03/2012 - [] D -- C:\Program Files\Fichiers communs\Adobe
O43 - CFD: 07/04/2012 - [] D -- C:\Program Files\Fichiers communs\Adobe AIR
O43 - CFD: 22/06/2011 - [] D -- C:\Program Files\Fichiers communs\Apple
O43 - CFD: 18/03/2014 - [] D -- C:\Program Files\Fichiers communs\AVG Secure Search
O43 - CFD: 02/06/2014 - [] D -- C:\Program Files\Fichiers communs\DESIGNER
O43 - CFD: 01/02/2011 - [] D -- C:\Program Files\Fichiers communs\DirectX
O43 - CFD: 25/11/2014 - [] D -- C:\Program Files\Fichiers communs\DVDVideoSoft
O43 - CFD: 18/04/2012 - [] D -- C:\Program Files\Fichiers communs\EZB Systems
O43 - CFD: 11/07/2014 - [] D -- C:\Program Files\Fichiers communs\InstallShield
O43 - CFD: 02/08/2013 - [] D -- C:\Program Files\Fichiers communs\Java
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\Fichiers communs\Microsoft Shared
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Fichiers communs\MSSoap
O43 - CFD: 18/08/2014 - [] D -- C:\Program Files\Fichiers communs\Nero
O43 - CFD: 17/03/2014 - [] D -- C:\Program Files\Fichiers communs\Nokia
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Fichiers communs\ODBC
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\Fichiers communs\Services
O43 - CFD: 19/03/2014 - [] D -- C:\Program Files\Fichiers communs\Skype
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Fichiers communs\Sonic Shared
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Fichiers communs\SpeechEngines
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Fichiers communs\SureThing Shared
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files\Fichiers communs\System
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Fichiers communs\TiVo Shared
O43 - CFD: 26/12/2011 - [] D -- C:\Program Files\Fichiers communs\Web Solution Mart
O43 - CFD: 20/01/2011 - [] D -- C:\Program Files\Fichiers communs\Windows Live
O43 - CFD: 14/10/2014 - [0] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\337Games
O43 - CFD: 03/07/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Adobe
O43 - CFD: 04/07/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\AnvSoft
O43 - CFD: 07/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Any Video Converter
O43 - CFD: 30/11/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\any-video-to-dvd-converter-and-burner
O43 - CFD: 07/10/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\baidu
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\DMCache
O43 - CFD: 07/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\dvdcss
O43 - CFD: 25/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\DVDVideoSoft
O43 - CFD: 21/03/2016 - [0] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\eCyber =>PUP.Optional.Elex
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Elex-tech =>PUP.Optional.Elex
O43 - CFD: 04/07/2014 - [0] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\ExpressFiles =>PUP.Optional.ExpressFiles
O43 - CFD: 23/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\FlvtoConverter
O43 - CFD: 14/10/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\GoforFiles =>PUP.Optional.YourFileDownloader
O43 - CFD: 16/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Google
O43 - CFD: 16/11/2014 - [0] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Help
O43 - CFD: 06/10/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Hotspot Shield
O43 - CFD: 18/08/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Identities
O43 - CFD: 16/11/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\IDM
O43 - CFD: 14/07/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\InstallShield
O43 - CFD: 04/07/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\IObit
O43 - CFD: 14/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Leadertech
O43 - CFD: 07/09/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Macromedia
O43 - CFD: 29/03/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Media Player Classic
O43 - CFD: 17/11/2014 - [] SD -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Microsoft
O43 - CFD: 21/08/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Mozilla
O43 - CFD: 28/08/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Nero
O43 - CFD: 03/07/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\NiXPS
O43 - CFD: 21/08/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Opera
O43 - CFD: 11/12/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Oracle
O43 - CFD: 22/08/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\PhotoFiltre
O43 - CFD: 16/02/2016 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\PowerISO
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\qksee
O43 - CFD: 28/02/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\RHEng =>.Superfluous.Conduit
O43 - CFD: 04/02/2016 - [] RHD -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\SecuROM
O43 - CFD: 26/07/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Skype
O43 - CFD: 04/07/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Software Informer
O43 - CFD: 23/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Sun
O43 - CFD: 14/10/2014 - [0] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\SupTab =>PUP.Optional.SupTab
O43 - CFD: 21/03/2016 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\TSv =>PUP.Optional.Elex
O43 - CFD: 16/03/2016 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\TuneUp Software
O43 - CFD: 23/03/2016 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\vlc
O43 - CFD: 17/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\webssearches =>PUP.Optional.WebsSearches
O43 - CFD: 14/01/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Winamp
O43 - CFD: 03/07/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\WinRAR
O43 - CFD: 15/03/2016 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Youtube Downloader HD
O43 - CFD: 25/03/2016 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\ZHP
O43 - CFD: 06/07/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Adobe
O43 - CFD: 17/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 14/10/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Ares
O43 - CFD: 17/10/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\cFos
O43 - CFD: 23/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Facebook
O43 - CFD: 06/10/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\FLVService
O43 - CFD: 24/09/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Flvto Youtube Downloader
O43 - CFD: 06/10/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Geckofx
O43 - CFD: 16/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Help
O43 - CFD: 23/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Hotger
O43 - CFD: 23/08/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Identities
O43 - CFD: 29/07/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Inverse_Karma
O43 - CFD: 16/03/2016 - [] SD -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Microsoft
O43 - CFD: 21/08/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Mozilla
O43 - CFD: 04/03/2016 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Nokia
O43 - CFD: 04/03/2016 - [0] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\NokiaAccount
O43 - CFD: 21/08/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Opera
O43 - CFD: 15/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\PCHealth
O43 - CFD: 16/03/2016 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\SkinSoft
O43 - CFD: 23/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Sun
O43 - CFD: 16/11/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\Temp
O43 - CFD: 14/10/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Local Settings\Application Data\TuneUp Software
O43 - CFD: 18/08/2014 - [] RD -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 13/07/2014 - [] RD -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 01/05/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Menu Démarrer\Programmes\Flvto Youtube Downloader
O43 - CFD: 26/10/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Menu Démarrer\Programmes\Internet Download Manager
O43 - CFD: 21/12/2014 - [] RD -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Menu Démarrer\Programmes\Outils d'administration
O43 - CFD: 27/10/2015 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Menu Démarrer\Programmes\SpeedFan
O43 - CFD: 03/07/2014 - [] D -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Menu Démarrer\Programmes\WinRAR
---\\ Derniers fichiers créés dans Windows Prefetcher (1) - 9s
O45 - LFCP:[MD5.45465C2BBA55CED4E156ACBFF6C01DE4] 21/03/2016 A -- C:\WINDOWS.0\Prefetch\REGCUREPROSETUP_F4AD4EF4-EED6-1205DB78.pf =>.Superfluous.Paretologic
---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: Offline Files Menu [Fichiers hors connexion] - {750fdf0e-2a26-11d1-a3ea-080036587f03}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS.0\system32\cscui.dll =>.Microsoft Corporation
O106 - SIOI: IDM Shell Extension [IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files\Internet Download Manager\IDMShellExt.dll =>.Tonec Inc.®
---\\ Enumération des clés StartupReg (23) - 2s
O53 - SMSR:HKLM\...\startupreg\Ad Muncher [Key] . (.Murray Hurps Software Pty Ltd - Ad Muncher.) -- C:\Program Files\Ad Muncher\AdMunch.exe =>.Murray Hurps Software Pty Ltd
O53 - SMSR:HKLM\...\startupreg\AlcoholAutomount [Key] . (.Alcohol Soft Development Team - Alcohol Virtual Drive Auto-mount Service.) -- C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O53 - SMSR:HKLM\...\startupreg\AntiWormUpdate [Key] . (.AutoIt Team - AutoIt v3 Script.) -- C:\Google\AutoIt3.exe =>.AutoIt Team
O53 - SMSR:HKLM\...\startupreg\Apoint [Key] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe =>.Alps Electric Co., Ltd.
O53 - SMSR:HKLM\...\startupreg\ares [Key] . (.Ares Development Group - Ares p2p for windows.) -- C:\Program Files\Ares\Ares.exe
O53 - SMSR:HKLM\...\startupreg\CancelAutoPlay_byt [Key] . (...) -- C:\Program Files\Mobiconnect\CancelAutoPlay_byt.exe
O53 - SMSR:HKLM\...\startupreg\cFosSpeed [Key] . (.cFos Software GmbH - cFosSpeed Window.) -- C:\Program Files\cFosSpeed\cFosSpeed.exe
O53 - SMSR:HKLM\...\startupreg\ctfmon.exe [Key] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS.0\system32\ctfmon.exe =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\Freecorder FLV Service [Key] . (.Applian Technologies, Inc. - FLV Service for Freecorder.) -- C:\Program Files\Freecorder\FLVSrvc.exe
O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS.0\system32\hkcmd.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\IDMan [Key] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O53 - SMSR:HKLM\...\startupreg\IgfxTray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS.0\system32\igfxtray.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\MSMSGS [Key] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\NokiaSuite.exe [Key] . (.Nokia - Nokia Suite.) -- C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe =>.Nokia
O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS.0\system32\igfxpers.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\PWRISOVM.EXE [Key] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE =>.Power Software Ltd
O53 - SMSR:HKLM\...\startupreg\RTHDCPL [Key] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- RTHDCPL.EXE (.not file.) =>.Realtek Semiconductor Corp.
O53 - SMSR:HKLM\...\startupreg\SFAUpdater [Key] . (.Filefacts.net - Smart File Advisor.) -- C:\Program Files\Smart File Advisor\SFAUpdater.exe =>.Filefacts.net =>.Superfluous.Totalpc
O53 - SMSR:HKLM\...\startupreg\Smart File Advisor [Key] . (.Filefacts.net - Smart File Advisor.) -- C:\Program Files\Smart File Advisor\sfa.exe =>.Filefacts.net =>.Superfluous.Totalpc
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe =>.Oracle Corporation
O53 - SMSR:HKLM\...\startupreg\UIExec [Key] . (...) -- C:\Program Files\Mobiconnect\UIExec.exe
O53 - SMSR:HKLM\...\startupreg\VistaDrive [Key] . (...) -- C:\WINDOWS.0\VistaDrive\VistaDrive.exe
O53 - SMSR:HKLM\...\startupreg\WinampAgent [Key] . (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files\Winamp\winampa.exe =>.Nullsoft, Inc.
---\\ Liste des pilotes du système (64) - 12s
O58 - SDL:2008/10/30 15:05:12 A . (.Advanced Micro Devices, Inc. - AMD Win2000 AGP Filter.) -- C:\WINDOWS.0\System32\drivers\amdagp.sys [43008] =>.Advanced Micro Devices, Inc.
O58 - SDL:2008/06/02 00:08:32 A . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\WINDOWS.0\System32\drivers\Apfiltr.sys [101833] =>.Alps Electric Co., Ltd.
O58 - SDL:2002/07/17 09:05:10 A . (.Adaptec - ASPI for WIN32 Kernel Driver.) -- C:\WINDOWS.0\System32\drivers\ASPI32.SYS [16512] =>.Adaptec
O58 - SDL:2014/03/11 04:14:02 A . (.Baidu, Inc. - Baidu Antivirus Hook Base.) -- C:\WINDOWS.0\System32\drivers\Bhbase.sys [47456] =>.Baidu Online Network Technology (Beijing)Co., Ltd®
O58 - SDL:2015/09/09 16:42:26 A . (.cFos Software GmbH - cFosSpeed Driver.) -- C:\WINDOWS.0\System32\drivers\cfosspeed.sys [1395112] {112197A57D474DC4BAF80DE77A350780D798}
O58 - SDL:2008/04/14 13:00:00 A . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS.0\System32\drivers\cinemst2.sys [262528] =>.RAVISENT Technologies Inc.
O58 - SDL:2008/04/14 13:00:00 A . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS.0\System32\drivers\cpqdap01.sys [11776] =>.Compaq Computer Corporation
O58 - SDL:2008/04/14 13:00:00 A . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) -- C:\WINDOWS.0\System32\drivers\dmboot.sys [800256] =>.Microsoft Corp., Veritas Software
O58 - SDL:2008/04/14 13:00:00 A . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS.0\System32\drivers\dmio.sys [154496] =>.Microsoft Corp., Veritas Software
O58 - SDL:2008/04/14 13:00:00 A . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS.0\System32\drivers\dmload.sys [5888] =>.Microsoft Corp., Veritas Software.
O58 - SDL:2010/10/08 09:55:06 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\WINDOWS.0\System32\drivers\ewdcsc.sys [25856] =>.Huawei Tech. Co., Ltd.
O58 - SDL:2011/08/16 10:17:19 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS.0\System32\drivers\ewusbmdm.sys [195200] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2011/08/16 10:18:27 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\WINDOWS.0\System32\drivers\ewusbnet.sys [239104] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2010/09/26 11:09:22 A . (.Huawei Technologies Co., Ltd. - ew_hwupgrade Driver.) -- C:\WINDOWS.0\System32\drivers\ew_hwupgrade.sys [19200] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2010/07/27 02:52:02 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS.0\System32\drivers\ew_hwusbdev.sys [102784] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2011/09/09 04:50:09 A . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\WINDOWS.0\System32\drivers\ew_jubusenum.sys [73984] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2011/09/09 04:50:09 A . (.Huawei Technologies Co., Ltd. - ew_jucdcacm Driver.) -- C:\WINDOWS.0\System32\drivers\ew_jucdcacm.sys [89856] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2011/09/09 04:50:09 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\WINDOWS.0\System32\drivers\ew_jucdcecm.sys [66688] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2011/09/09 04:50:10 A . (.Huawei Technologies Co., Ltd. - ew_juextctrl Driver.) -- C:\WINDOWS.0\System32\drivers\ew_juextctrl.sys [26624] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2010/03/20 05:06:58 A . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\WINDOWS.0\System32\drivers\ew_usbenumfilter.sys [11136] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2008/04/14 13:00:00 A . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS.0\System32\drivers\hdaudbus.sys [144384]
O58 - SDL:2009/03/27 14:01:22 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\WINDOWS.0\System32\drivers\iaStor.sys [312344] =>.Intel Corporation®
O58 - SDL:2013/11/28 01:24:18 A . (.Tonec Inc. - Internet Download Manager TDI Driver.) -- C:\WINDOWS.0\System32\drivers\idmtdi.sys [121184] =>.Tonec Inc.®
O58 - SDL:2009/03/27 14:04:30 A . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS.0\System32\drivers\igxpmp32.sys [6048768] =>.Intel Corporation
O58 - SDL:2015/08/19 08:02:05 A . (.Elex do Brasil Participações Ltda - iSafe Kernel Boot Driver.) -- C:\WINDOWS.0\System32\drivers\iSafeKrnlBoot.sys [50280] =>PUP.Optional.Elex
O58 - SDL:2016/02/19 04:21:03 A . (.Elex do Brasil Participações Ltda - iSafeNetFilter SDK TDI Hook Driver (WPP).) -- C:\WINDOWS.0\System32\drivers\iSafeNetFilter.sys [67288] =>PUP.Optional.Elex
O58 - SDL:2011/08/29 11:42:56 A . (.MBB Incorporated - CDROM Filter.) -- C:\WINDOWS.0\System32\drivers\massfilter.sys [9216] =>.MBB Incorporated
O58 - SDL:2010/08/06 00:42:34 A . (.DiBcom SA - DiBcom AVSTREAM BDA driver.) -- C:\WINDOWS.0\System32\drivers\mod7700.sys [861696]
O58 - SDL:2008/04/14 13:00:00 A . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS.0\System32\drivers\nikedrv.sys [12032] =>.S3/Diamond Multimedia Systems
O58 - SDL:2008/04/14 13:00:00 A . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS.0\System32\drivers\ptilink.sys [17792] =>.Parallel Technologies, Inc.
O58 - SDL:2008/04/14 13:00:00 A . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS.0\System32\drivers\rio8drv.sys [12032] =>.S3/Diamond Multimedia Systems
O58 - SDL:2008/04/14 13:00:00 A . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS.0\System32\drivers\riodrv.sys [12032] =>.S3/Diamond Multimedia Systems
O58 - SDL:2012/03/07 17:08:52 A . (.Ralink Technology, Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\WINDOWS.0\System32\drivers\rt2860.sys [2687552] =>.Ralink Technology Corporation®
O58 - SDL:2009/03/27 14:18:46 A . (.Realtek Semiconductor Corporation - Realtek 10/100/1000 NDIS 5.1 Driver.) -- C:\WINDOWS.0\System32\drivers\Rtenicxp.sys [117888] =>.Realtek Semiconductor Corporation
O58 - SDL:2013/12/10 21:20:44 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS.0\System32\drivers\RtkHDAud.sys [5630168] =>.Realtek Semiconductor Corp®
O58 - SDL:2015/10/08 08:00:30 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\WINDOWS.0\System32\drivers\scdemu.sys [114368] =>.Power Software Limited®
O58 - SDL:2008/04/14 13:00:00 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS.0\System32\drivers\secdrv.sys [20480] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2008/10/30 14:27:10 A . (.Silicon Image, Inc - SATA Controller miniport driver.) -- C:\WINDOWS.0\System32\drivers\si3531.sys [210736] =>.Silicon Image, Inc.®
O58 - SDL:2008/10/30 15:05:12 A . (.Silicon Integrated Systems Corporation - SiS NT AGP Filter.) -- C:\WINDOWS.0\System32\drivers\sisagp.sys [40960] =>.Silicon Integrated Systems Corporation
O58 - SDL:2015/11/15 13:59:01 A . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\WINDOWS.0\System32\drivers\sptd.sys [329384] =>.Disc Soft Ltd®
O58 - SDL:2013/08/22 13:40:22 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\WINDOWS.0\System32\drivers\tap0901.sys [35288] =>.OpenVPN Technologies, Inc.®
O58 - SDL:2008/04/14 13:00:00 A . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS.0\System32\drivers\tsbvcap.sys [21376] =>.Toshiba Corporation
O58 - SDL:2007/11/01 18:53:20 A . (.Eugene V. Muzychenko - Kernel-mode WDM driver.) -- C:\WINDOWS.0\System32\drivers\vacs2xkd.sys [42880] =>.Eugene V. Muzychenko
O58 - SDL:2008/04/14 13:00:00 A . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS.0\System32\drivers\vdmindvd.sys [58112] =>.RAVISENT Technologies Inc.
O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\WINDOWS.0\System32\drivers\ZTEusbmdm6k.sys [107520] =>.ZTE Incorporated
O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\WINDOWS.0\System32\drivers\ZTEusbnmea.sys [107520] =>.ZTE Incorporated
O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\WINDOWS.0\System32\drivers\ZTEusbser6k.sys [107520] =>.ZTE Incorporated
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\ansi.sys [9037]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\country.sys [27097]
O58 - SDL:1996/04/03 20:33:26 A . (...) -- C:\WINDOWS.0\System32\giveio.sys [5248]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\himem.sys [4912]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\key01.sys [42809]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\keyboard.sys [42537]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\ntdos.sys [27916]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\ntdos404.sys [29146]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\ntdos411.sys [29370]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\ntdos412.sys [29274]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\ntdos804.sys [29146]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\ntio.sys [34000]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\ntio404.sys [34560]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\ntio411.sys [35648]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\ntio412.sys [35424]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS.0\System32\ntio804.sys [34560]
O58 - SDL:2012/12/29 21:59:38 A . (.Almico Software - SpeedFan x32 Driver.) -- C:\WINDOWS.0\System32\speedfan.sys [24184] =>.SOKNO S.R.L.®
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (3) - 69s
O61 - LFC: 2016/03/21 00:04:23 A . (..) -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Mes documents\Downloads\Programs\RegCureProSetup_F4AD4EF4-EED6-4905-A38C-EC60B601D948_.exe [10966280] =>.Superfluous.Paretologic
O61 - LFC: 2016/03/24 03:10:30 A . (.equal max.) -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\qksee\update\qks_update_v3.2.0.exe [365176] =>.Superfluous.WinZipper
O61 - LFC: 2016/03/21 00:17:02 A . (..) -- C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\IDM\DwnlData\Administrateur\KVRT_1203\KVRT.exe [3578986]
---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS.0\system32\shell32.dll =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Spark\spark.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS.0\system32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS.0\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
---\\ Menu de démarrage Internet (14) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Copyright (C) 2011 - spark.) -- c:\program files\baidu\spark\spark.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- c:\program files\mozilla firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- c:\program files\internet explorer\iexplore.exe =>.Microsoft Corporation
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- c:\program files\opera\opera.exe =>.Opera Software
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Copyright (C) 2011 - spark.) -- c:\program files\baidu\spark\spark.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Spark\spark.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS.0\system32\shmgrate.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Spark\spark.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS.0\system32\shmgrate.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Spark\spark.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS.0\system32\shmgrate.exe =>.Microsoft Corporation
---\\ Recherche d'infection sur les navigateurs (13) - 8s
O69 - SBI: prefs.js [Administrateur - 8qj5rm9o.default-1435582655953] user_pref("browser.newtab.url", "http://www.yoursites123.com/newtab/?type=nt&ts=1458590004&z=21e223b3f0c97db3c281da1g7zccaefozzjck[...] =>PUP.Optional.YourSites123
O69 - SBI: prefs.js [Administrateur - 8qj5rm9o.default-1435582655953] user_pref("browser.startup.homepage", "http://www.yoursites123.com/?type=hp&ts=1458590004&z=21e223b3f0c97db3c281da1g7zccaefozzjckt[...] =>PUP.Optional.YourSites123
O69 - SBI: prefs.js [Administrateur - 8qj5rm9o.default-1435582655953] user_pref("extensions.RollAround.cg", "1f404763-5b31-4c10-a381-dd4ac202d45e"); =>PUP.Optional.RollAround
O69 - SBI: prefs.js [Administrateur - 8qj5rm9o.default-1435582655953] user_pref("keyword.URL", "http://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQheVQlFFgMQbQxaUghcFVYScBRZUgFADFFHdFhbUwlDR[...] =>PUP.Optional.Browser
O69 - SBI: SearchScopes [HKCU] OldSearch - (Google) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKCU] {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} - (Default) - http://searchinterneat-a.akamaihd.net/ =>PUP.Optional.Browser
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} [DefaultScope] - (yoursites123) - http://yoursites123.com/ =>PUP.Optional.YourSites123
O69 - SBI: SearchScopes [HKCU] {4FC1B895-E129-4345-B101-CF4EF5EF80C8} - (Default) - http://searchinterneat-a.akamaihd.net/ =>PUP.Optional.Browser
O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} - (Google) - http://do-search.com/ =>PUP.Optional.DoSearches
O69 - SBI: SearchScopes [HKLM] OldSearch - (@ieframe.dll,-12512) - http://search.live.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Default) - http://searchinterneat-a.akamaihd.net/ =>PUP.Optional.Browser
O69 - SBI: SearchScopes [HKLM] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (webssearches) - http://istart.webssearches.com/ =>PUP.Optional.IsStart
---\\ Enumère les services démarrés par Svchost (39) - 1s
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS.0\system32\appmgmts.dll [176640] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS.0\system32\audiosrv.dll [42496] =>.Microsoft Corporation
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS.0\system32\browser.dll [77824] =>.Microsoft Corporation
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS.0\system32\cryptsvc.dll [62464] =>.Microsoft Corporation
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS.0\system32\dmserver.dll [24576] =>.Microsoft Corp.
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS.0\system32\dhcpcsvc.dll [127488] =>.Microsoft Corporation
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS.0\system32\ersvc.dll [23040] =>.Microsoft Corporation
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - .) -- C:\WINDOWS.0\system32\es.dll [246272] =>.Microsoft Corporation
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS.0\system32\shsvcs.dll [135680] =>.Microsoft Corporation
O83 - Search Svchost Services: HidServ (HidServ) . (...) -- C:\WINDOWS.0\System32\hidserv.dll [0]
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS.0\system32\srvsvc.dll [96768] =>.Microsoft Corporation
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS.0\system32\wkssvc.dll [132096] =>.Microsoft Corporation
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS.0\system32\msgsvc.dll [33792] =>.Microsoft Corporation
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS.0\system32\netman.dll [198144] =>.Microsoft Corporation
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\WINDOWS.0\system32\mswsock.dll [247808] =>.Microsoft Corporation
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS.0\system32\ntmssvc.dll [438272] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS.0\system32\rasauto.dll [88576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS.0\system32\rasmans.dll [186368] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS.0\system32\mprdim.dll [53248] =>.Microsoft Corporation
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS.0\system32\schedsvc.dll [194560] =>.Microsoft Corporation
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\WINDOWS.0\system32\seclogon.dll [18944] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS.0\system32\sens.dll [39424] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\WINDOWS.0\system32\ipnathlp.dll [332800] =>.Microsoft Corporation
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS.0\system32\srsvc.dll [171520] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS.0\system32\tapisrv.dll [249856] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS.0\system32\shsvcs.dll [135680] =>.Microsoft Corporation
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS.0\system32\trkwks.dll [90112] =>.Microsoft Corporation
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS.0\system32\w32time.dll [178176] =>.Microsoft Corporation
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS.0\system32\wzcsvc.dll [483840] =>.Microsoft Corporation
O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\WINDOWS.0\system32\advapi32.dll [685568] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS.0\system32\wbem\wmisvc.dll [145408] =>.Microsoft Corporation
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS.0\system32\wscsvc.dll [80896] =>.Microsoft Corporation
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS.0\system32\xmlprov.dll [129024] =>.Microsoft Corporation
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS.0\system32\qagentrt.dll [293376] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS.0\system32\kmsvc.dll [61440] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS.0\system32\qmgr.dll [409088] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS.0\system32\wuauserv.dll [6656] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS.0\system32\shsvcs.dll [135680] =>.Microsoft Corporation
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS.0\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400] =>.Microsoft Corporation
---\\ Scan Additionnel (69) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\IHProtect Service =>PUP.Optional.AgentODR
C:\Program Files\MiuiTab\ProtectService.exe =>PUP.Optional.AgentODR
HKLM\SYSTEM\CurrentControlSet\Services\WdMan =>PUP.Optional.WdsManPro
C:\Documents and Settings\All Users.WINDOWS.0\Application Data\tWdMt\WdMan.exe =>PUP.Optional.WdsManPro
C:\WINDOWS.0\Temp\winbjbvs.exe =>Heuristic.Suspect
C:\WINDOWS.0\Temp\winwcav.exe =>Heuristic.Suspect
C:\WINDOWS.0\Temp\winsjlgr.exe =>Heuristic.Suspect
C:\Program Files\MiuiTab\ProtectService.exe =>PUP.Optional.MiuiTab
C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Mozilla\Firefox\Profiles\8qj5rm9o.default-1435582655953\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo
C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Mozilla\Firefox\Profiles\8qj5rm9o.default-1435582655953\searchplugins\yoursites123.xml =>PUP.Optional.YourSites123
C:\Program Files\Mozilla Firefox\browser\searchplugins\webssearches.xml =>PUP.Optional.WebsSearches
C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Mozilla\Firefox\Profiles\8qj5rm9o.default-1435582655953\extensions\default_newtabff@gmail.com =>PUP.Optional.LightningNewTab
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83c0e288-8fa0-43d3-acc7-c1e839d85abc} =>PUP.Optional.RollAround
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\webssearches uninstall =>PUP.Optional.WebsSearches
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\webssearches uninstall =>PUP.Optional.WebsSearches
HKLM\SOFTWARE\delta-homesSoftware =>PUP.Optional.DeltaHomes
HKLM\SOFTWARE\Elex-tech =>PUP.Optional.Elex
HKLM\SOFTWARE\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\RollAround =>PUP.Optional.RollAround
HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\supWindowsMangerProtect =>PUP.Optional.WpManager
HKLM\SOFTWARE\webssearchesSoftware =>PUP.Optional.WebsSearches
HKCU\SOFTWARE\1ClickDownload =>PUP.Optional.1ClickDownloader
HKCU\SOFTWARE\3a6ad4c5-127f-4668-888b-e8e7a31031c2 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ExpressFiles =>PUP.Optional.ExpressFiles
HKCU\SOFTWARE\Softonic =>.Superfluous.Softonic
HKCU\SOFTWARE\SupHpUISoft =>PUP.Optional.CrossRider
C:\Program Files\Adanak =>PUP.Optional.Adanak
C:\Program Files\Babylon =>PUP.Optional.Babylon
C:\Program Files\Complitly =>PUP.Optional.PredictAd
C:\Program Files\Conduit =>.Superfluous.Conduit
C:\Program Files\DealBulldog Toolbar Toolbar =>PUP.Optional.SocialSkinz
C:\Program Files\ExpressFiles =>PUP.Optional.ExpressFiles
C:\Program Files\GoForFiles =>PUP.Optional.YourFileDownloader
C:\Program Files\Iminent =>PUP.Optional.IMBooster
C:\Program Files\IMinent Toolbar =>PUP.Optional.IMBooster
C:\Program Files\MiuiTab =>PUP.Optional.MiuiTab
C:\Program Files\Roll Around =>PUP.Optional.RollAround
C:\Program Files\Smart File Advisor =>.Superfluous.Totalpc
C:\Program Files\SweetIM =>PUP.Optional.SweetIM
C:\Program Files\Uniblue =>.Superfluous.Uniblue
C:\Documents and Settings\All Users.WINDOWS.0\Menu Démarrer\Programmes\Smart File Advisor =>.Superfluous.Totalpc
C:\Documents and Settings\All Users.WINDOWS.0\Application Data\IePluginServices =>Trojan.SProtector
C:\Documents and Settings\All Users.WINDOWS.0\Application Data\IHProtectUpDate =>PUP.Optional.AgentODR
C:\Documents and Settings\All Users.WINDOWS.0\Application Data\tWdMt =>PUP.Optional.WdsManPro
C:\Documents and Settings\All Users.WINDOWS.0\Application Data\WindowsMangerProtect =>PUP.Optional.WpManager
C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\eCyber =>PUP.Optional.Elex
C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\Elex-tech =>PUP.Optional.Elex
C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\ExpressFiles =>PUP.Optional.ExpressFiles
C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\GoforFiles =>PUP.Optional.YourFileDownloader
C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\RHEng =>.Superfluous.Conduit
C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\SupTab =>PUP.Optional.SupTab
C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\TSv =>PUP.Optional.Elex
C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\webssearches =>PUP.Optional.WebsSearches
C:\WINDOWS.0\Prefetch\REGCUREPROSETUP_F4AD4EF4-EED6-1205DB78.pf =>.Superfluous.Paretologic
C:\Program Files\Smart File Advisor\SFAUpdater.exe =>.Superfluous.Totalpc
C:\Program Files\Smart File Advisor\sfa.exe =>.Superfluous.Totalpc
C:\Documents and Settings\Administrateur.EDITION_TWINS\Mes documents\Downloads\Programs\RegCureProSetup_F4AD4EF4-EED6-4905-A38C-EC60B601D948_.exe =>.Superfluous.Paretologic
C:\Documents and Settings\Administrateur.EDITION_TWINS\Application Data\qksee\update\qks_update_v3.2.0.exe =>.Superfluous.WinZipper
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\OldSearch =>PUP.Optional.DoSearches
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} =>PUP.Optional.DoSearches
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} =>PUP.Optional.Browser
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} =>PUP.Optional.YourSites123
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4FC1B895-E129-4345-B101-CF4EF5EF80C8} =>PUP.Optional.Browser
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C} =>PUP.Optional.DoSearches
HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} =>PUP.Optional.Browser
HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} =>PUP.Optional.IsStart
---\\ Récapitulatif des éléments trouvés sur votre station (34) - 0s
http://www.nicolascoolman.fr/pup-agentodr/ =>PUP.Optional.AgentODR
http://www.nicolascoolman.fr/?p=996 =>PUP.Optional.Elex
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.WdsManPro
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.MiuiTab
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.YourSites123
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BDYahoo
http://www.nicolascoolman.fr/?p=248 =>PUP.Optional.WebsSearches
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.LightningNewTab
http://www.nicolascoolman.fr/?p=721 =>PUP.Optional.Qvo6
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.RollAround
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.DeltaHomes
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SweetSearch
http://www.nicolascoolman.fr/?p=297 =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/?p=173 =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/?p=668 =>PUP.Optional.1ClickDownloader
http://www.nicolascoolman.fr/?p=180 =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/?p=1272 =>PUP.Optional.ExpressFiles
http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.Softonic
http://www.nicolascoolman.fr/pup-adanak/ =>PUP.Optional.Adanak
http://www.nicolascoolman.fr/?p=170 =>PUP.Optional.Babylon
http://www.nicolascoolman.fr/?p=370 =>PUP.Optional.PredictAd
http://www.nicolascoolman.fr/?p=210 =>.Superfluous.Conduit
http://www.nicolascoolman.fr/?p=195 =>PUP.Optional.SocialSkinz
http://www.nicolascoolman.fr/?p=1128 =>PUP.Optional.YourFileDownloader
http://www.nicolascoolman.fr/?p=224 =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.Totalpc
http://www.nicolascoolman.fr/?p=332 =>PUP.Optional.SweetIM
http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.Uniblue
http://www.nicolascoolman.fr/?p=187 =>Trojan.SProtector
http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.Paretologic
http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.WinZipper
http://www.nicolascoolman.fr/?p=546 =>PUP.Optional.Browser
http://www.nicolascoolman.fr/?p=579 =>PUP.Optional.DoSearches
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
~ End of the scan, 14990 items in 00h05mn49s (1166)(0)