~ ZHPDiag v2016.9.13.158 Par Nicolas Coolman (2016/09/13)
~ Démarré par acer (Administrator) (2016/09/14 15:38:38)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\acer\SkyDrive\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\acer\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601)

---\\ Navigateurs Internet (4) - 0s
GCIE: Google Chrome v53.0.2785.101
MFIE: Mozilla Firefox 48.0.2 (x86 en-US)
OPIE: Opera 12.12.1707
MSIE: Internet Explorer v9.0.8112.16421

---\\ Informations sur les produits Windows (5) - 0s
Windows Server License Manager Script : Absent (Not found)
Windows ID Activation : Inconnue (Unknown)
Windows Licence : Inconnue (Unknown)
Windows Automatic Updates : OK
Windows Activation Technologies : KO

---\\ Logiciels de protection (1) - 2s
Kaspersky Internet Security 2012 v12.0.0.374

---\\ Surveillance de Logiciels (2) - 3s
Adobe Flash Player ActiveX
Adobe Reader XI

---\\ Logiciels de partage P2P (1) - 3s
µTorrent v3.2.1

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4006.256 MB (47% free)
System Restore: Activé (Enable)
System drive C: has 8 GB () free of 99 GB =>Alerte espace disque inférieur à 20 Go

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: ACER-PC
~ User Name: acer
~ Logged in as Administrator

---\\ Enumération des unités disques (5) - 0s
~ Drive C: has 8 GB free of 99 GB (System)
~ Drive D: has 0 GB free of 0 GB
~ Drive E: has GB free of 0 GB
~ Drive F: has GB free of 3 GB
~ Drive H: has 28 GB free of 376 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (26) - 2s
[MD5.AC4C51EB24AA95B77F705AB159189E24] - 21/11/2010 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2872320] =>.Microsoft Corporation
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] =>.Microsoft Corporation
[MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [96256] =>.Microsoft Corporation
[MD5.A1236375B74EA63C75657D564890C436] - 13/02/2013 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1126912] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [0] =>.Microsoft Corporation
[MD5.E3AE23569749DE12D45BA3B489A036AE] - 21/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [193536] =>.Microsoft Corporation
[MD5.59DF156711A76BCB993253EC6C9BBF41] - 21/11/2010 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.59DF156711A76BCB993253EC6C9BBF41] - 21/11/2010 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - 20/11/2010 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [0] =>.Microsoft Windows®
[MD5.] - 0 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [0] =>.Microsoft Windows®
[MD5.] - 0 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [0] =>.Microsoft Windows®

---\\ Liste des services NT non Microsoft et non désactivés (28) - 3s
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) . (.Acronis - Acronis Scheduler 2.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe =>.Acronis, Inc®
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (...) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (.not file.)
O23 - Service: AppnormanetouQ (AppnormanetouQ) . (...) - C:\ProgramData\AppnormanetouQ\AppnormanetouQ.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe =>.Kaspersky Lab®
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe =>.BlueStack Systems, Inc.®
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc. - BlueStacks Updater Service.) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe =>.BlueStack Systems, Inc.®
O23 - Service: Command Service(CommandHandler) (CommandHandler) . (.Copyright (C) 2016 Firefox Authors - Firefox command.) - C:\Program Files (x86)\Firefox\bin\FirefoxCommand.exe {24CB15D77946800FB3E3CD45EDD5706F}
O23 - Service: Connectify (Connectify) . (...) - C:\Program Files (x86)\Connectify\ConnectifyService.exe
O23 - Service: DCHP (DCHP) . (...) - C:\ProgramData\DCHP\DCHP.exe =>PUP.Optional.Salus
O23 - Service: Update Service(FirefoxU) (FirefoxU) . (.Copyright (C) 2016 Firefox Authors - Firefox.) - C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe {24CB15D77946800FB3E3CD45EDD5706F} =>Adware.Firefox
O23 - Service: FLService (FLService) . (.New Softwares.net - Service Application.) - C:\Windows\SysWOW64\WinFLService.exe =>.Newsoftwares.net, Inc SDN BHD®
O23 - Service: خدمة Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: Hola Better Internet Engine (hola_svc) . (.Hola Networks Ltd. - Hola Better Internet Engine.) - C:\Program Files\Hola\app\hola_svc.exe =>.Hola Networks Ltd.®
O23 - Service: Hola Better Internet Updater (hola_updater) . (.Hola Networks Ltd. - Hola Better Internet Engine.) - C:\Program Files\Hola\app\hola_updater.exe =>.Hola Networks Ltd.®
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (...) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (.not file.)
O23 - Service: IhPul (IhPul) . (.Trend Corp. - Service.) - C:\Users\acer\AppData\Roaming\TSv\TSvr.exe {564E5E1AD62E2CF5ED065BD6D7D1ABD0}
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service®
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (...) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (.not file.)
O23 - Service: Lobiphghqocult Center (LbpCntAtapole.exe) . (...) - C:\Program Files (x86)\Gititysabpy\LbpCntAtapole.exe {4369AD8AA1FE687357EA459746AE5F8B}
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe (.not file.)
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: SoEasySvc (SoEasySvc) . (...) - C:\Program Files (x86)\SoEasySvc\SoEasySvc.exe (.not file.) =>PUP.Optional.SoEasySvc
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) . (.AVG Technologies - AVG PC TuneUp Service.) - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe =>.AVG Netherlands B.V.®
O23 - Service: UI Assistant Service (UI Assistant Service) . (...) - C:\Program Files (x86)\Mobiconnect\AssistantServices.exe (.not file.)
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
O23 - Service: Virtual CD v9 Management Service (VC9SecS) . (...) - C:\Program Files (x86)\Virtual CD v9\System\vc9secs.exe (.not file.)
O23 - Service: winsaber (winsaber) . (...) - C:\Program Files (x86)\WinSaber\WinSaber.exe {1B5D997D61943E8FF1BDF34C65EE5719} =>PUP.Optional.winsaber

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (29) - 63s

SR - Auto [21/08/2010] [ 1078968] Acronis Scheduler2 Service (AcrSch2Svc) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe =>.Acronis, Inc®
SS - Demand [13/02/2013] [ 257696] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [13/09/2016] [ 400384] AppnormanetouQ (AppnormanetouQ) . (...) - C:\ProgramData\AppnormanetouQ\AppnormanetouQ.exe
SR - Auto [24/04/2011] [ 202296] Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe =>.Kaspersky Lab®
SS - Demand [11/03/2016] [ 437784] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Service.exe =>.BlueStack Systems, Inc.®
SR - Auto [11/03/2016] [ 417304] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe =>.BlueStack Systems, Inc.®
SR - Auto [11/03/2016] [ 880152] BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe =>.BlueStack Systems, Inc.®
SR - Auto [08/09/2016] [ 268536] Command Service(CommandHandler) (CommandHandler) . (.Copyright (C) 2016 Firefox Authors.) - C:\Program Files (x86)\Firefox\bin\FirefoxCommand.exe {24CB15D77946800FB3E3CD45EDD5706F} =>Adware.Firefox
SR - Auto [09/11/2012] [ 65536] Connectify (Connectify) . (...) - C:\Program Files (x86)\Connectify\ConnectifyService.exe
SS - Demand [23/04/2012] [ 276248] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation®
SR - Auto [12/04/2016] [ 400384] DCHP (DCHP) . (...) - C:\ProgramData\DCHP\DCHP.exe =>PUP.Optional.Salus
SR - Auto [08/09/2016] [ 592120] Update Service(FirefoxU) (FirefoxU) . (.Copyright (C) 2016 Firefox Authors.) - C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe {24CB15D77946800FB3E3CD45EDD5706F} =>Adware.Firefox
SR - Auto [26/01/2016] [ 92360] FLService (FLService) . (.New Softwares.net.) - C:\Windows\SysWOW64\WinFLService.exe =>.Newsoftwares.net, Inc SDN BHD®
SS - Auto [02/09/2015] [ 144200] خدمة Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [02/09/2015] [ 144200] خدمة Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [31/08/2016] [ 5618864] Hola Better Internet Engine (hola_svc) . (.Hola Networks Ltd..) - C:\Program Files\Hola\app\hola_svc.exe =>.Hola Networks Ltd.®
SR - Auto [02/04/2016] [ 8127616] Hola Better Internet Updater (hola_updater) . (.Hola Networks Ltd..) - C:\Program Files\Hola\app\hola_updater.exe =>.Hola Networks Ltd.®
SR - Auto [28/07/2016] [ 210128] IhPul (IhPul) . (.Trend Corp..) - C:\Users\acer\AppData\Roaming\TSv\TSvr.exe {564E5E1AD62E2CF5ED065BD6D7D1ABD0}
SR - Auto [03/02/2012] [ 628448] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service®
SS - Auto [29/07/2016] [ 389856] Lobiphghqocult Center (LbpCntAtapole.exe) . (...) - C:\Program Files (x86)\Gititysabpy\LbpCntAtapole.exe {4369AD8AA1FE687357EA459746AE5F8B}
SS - Demand [22/07/2015] [ 625632] Lenovo EasyPlus Hotspot (Lenovo EasyPlus Hotspot) . (.Lenovo.) - C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe =>.LENOVO®
SR - Auto [08/02/2012] [ 277784] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
SS - Demand [03/09/2016] [ 146888] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SS - Demand [13/09/2016] [ 107998] (ShareItSvc) . (...) - C:\Program Files (x86)\Lenovo\SHAREit\Shareit.Service.exe
SS - Auto [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SR - Auto [04/08/2015] [ 2973400] AVG PC TuneUp Service (TuneUp.UtilitiesSvc) . (.AVG Technologies.) - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe =>.AVG Netherlands B.V.®
SR - Auto [08/02/2012] [ 363800] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
SR - Auto [02/08/2016] [ 443672] winsaber (winsaber) . (...) - C:\Program Files (x86)\WinSaber\WinSaber.exe {1B5D997D61943E8FF1BDF34C65EE5719} =>PUP.Optional.winsaber

---\\ Tâches planifiées en automatique (140) - 12s
[MD5.BE1A1E8EEA50BE1E1A78EB3D7F4CE8CF] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1110232] (.Activate.) =>.Adobe Systems, Incorporated®
[MD5.76D5A3D2A50402A0B9B6ED13C4371E79] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257696] (.Activate.) =>.Adobe Systems Incorporated®
[MD5.9056C9B5283D0513F17D3F42FBB092FF] [APT] [Buenosearch Updater] (...) -- C:\Users\acer\AppData\Local\Buenosearch\Buenosearch\2.1.0.0\Buenosearchupdt.exe [886176] (.Activate.) {019E7E421DD92BB6922755CD51B3A65C} =>PUP.Optional.BuenoSearch
[MD5.5BCE955CF12AF3417F055DADC0212920] [APT] [ChelfNotify Task] (.Tencent.) -- C:\ProgramData\ChelfNotify\BrowserUpdate.exe [690144] (.Activate.) =>.Superfluous.Tencent
[MD5.00000000000000000000000000000000] [APT] [EPUpdater] (...) -- C:\Users\acer\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe (.not file.) [0] (.Activate.) =>PUP.Optional.BabSolution
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-377656779-3435866410-2563390314-1000Core] (.Facebook Inc..) -- C:\Users\acer\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096] (.Activate.) =>.Facebook, Inc.®
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-377656779-3435866410-2563390314-1000UA] (.Facebook Inc..) -- C:\Users\acer\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096] (.Activate.) =>.Facebook, Inc.®
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] (.Activate.) =>.Google Inc®
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] (.Activate.) =>.Google Inc®
[MD5.662A877FA001C268B7F270E2B49E3067] [APT] [Lobiphghqocult Center] (...) -- C:\Program Files (x86)\Gititysabpy\LbpCntEwulypherwocult.exe [341216] (.Activate.) {4369AD8AA1FE687357EA459746AE5F8B}
[MD5.00000000000000000000000000000000] [APT] [psv_Bam-Tip] (...) -- C:\ProgramData\Quotenamron\UniStock.reg & del C:\ProgramData\Quotenamron\UniStock.reg & SCHTASKS /Delete /TN psv_Bam-Tip /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Betaflex] (...) -- C:\ProgramData\Quotenamron\Unitip.reg & del C:\ProgramData\Quotenamron\Unitip.reg & SCHTASKS /Delete /TN psv_Betaflex /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_BigSonfax] (...) -- C:\ProgramData\Quotenamron\Stattrax.reg & del C:\ProgramData\Quotenamron\Stattrax.reg & SCHTASKS /Delete /TN psv_BigSonfax /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Cof-Air] (...) -- C:\ProgramData\Quotenamron\Quadlam.reg & del C:\ProgramData\Quotenamron\Quadlam.reg & SCHTASKS /Delete /TN psv_Cof-Air /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Daltstrong] (...) -- C:\ProgramData\Quotenamron\Apity.reg & del C:\ProgramData\Quotenamron\Apity.reg & SCHTASKS /Delete /TN psv_Daltstrong /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_DonFan] (...) -- C:\ProgramData\Quotenamron\Rankdom.reg & del C:\ProgramData\Quotenamron\Rankdom.reg & SCHTASKS /Delete /TN psv_DonFan /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Dongcof] (...) -- C:\ProgramData\Quotenamron\Icetop.reg & del C:\ProgramData\Quotenamron\Icetop.reg & SCHTASKS /Delete /TN psv_Dongcof /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Dripzap] (...) -- C:\ProgramData\Quotenamron\New-Phase.reg & del C:\ProgramData\Quotenamron\New-Phase.reg & SCHTASKS /Delete /TN psv_Dripzap /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Ecotouch] (...) -- C:\ProgramData\Quotenamron\Over-Lex.reg & del C:\ProgramData\Quotenamron\Over-Lex.reg & SCHTASKS /Delete /TN psv_Ecotouch /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Faxis] (...) -- C:\ProgramData\Quotenamron\Blackla.reg & del C:\ProgramData\Quotenamron\Blackla.reg & SCHTASKS /Delete /TN psv_Faxis /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Fundom] (...) -- C:\ProgramData\Quotenamron\Santam.reg & del C:\ProgramData\Quotenamron\Santam.reg & SCHTASKS /Delete /TN psv_Fundom /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Gooding] (...) -- C:\ProgramData\Quotenamron\Spantop.reg & del C:\ProgramData\Quotenamron\Spantop.reg & SCHTASKS /Delete /TN psv_Gooding /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Greendox] (...) -- C:\ProgramData\Quotenamron\BlueDantrax.reg & del C:\ProgramData\Quotenamron\BlueDantrax.reg & SCHTASKS /Delete /TN psv_Greendox /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Hatfind] (...) -- C:\ProgramData\Quotenamron\Kondax.reg & del C:\ProgramData\Quotenamron\Kondax.reg & SCHTASKS /Delete /TN psv_Hatfind /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Hatmatphase] (...) -- C:\ProgramData\Quotenamron\Damity.reg & del C:\ProgramData\Quotenamron\Damity.reg & SCHTASKS /Delete /TN psv_Hatmatphase /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Hay-Dax] (...) -- C:\ProgramData\Quotenamron\Stringquoex.reg & del C:\ProgramData\Quotenamron\Stringquoex.reg & SCHTASKS /Delete /TN psv_Hay-Dax /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Hothome] (...) -- C:\ProgramData\Quotenamron\TrustJoysing.reg & del C:\ProgramData\Quotenamron\TrustJoysing.reg & SCHTASKS /Delete /TN psv_Hothome /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Jayzoofresh] (...) -- C:\ProgramData\Quotenamron\Cof-Cof.reg & del C:\ProgramData\Quotenamron\Cof-Cof.reg & SCHTASKS /Delete /TN psv_Jayzoofresh /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Lamphase] (...) -- C:\ProgramData\Quotenamron\HomeSoloair.reg & del C:\ProgramData\Quotenamron\HomeSoloair.reg & SCHTASKS /Delete /TN psv_Lamphase /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Lamron] (...) -- C:\ProgramData\Quotenamron\Domhold.reg & del C:\ProgramData\Quotenamron\Domhold.reg & SCHTASKS /Delete /TN psv_Lamron /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_LaSanlight] (...) -- C:\ProgramData\Quotenamron\Dentotom.reg & del C:\ProgramData\Quotenamron\Dentotom.reg & SCHTASKS /Delete /TN psv_LaSanlight /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_MedKeykix] (...) -- C:\ProgramData\Quotenamron\Jaydex.reg & del C:\ProgramData\Quotenamron\Jaydex.reg & SCHTASKS /Delete /TN psv_MedKeykix /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_New-Eco] (...) -- C:\ProgramData\Quotenamron\Graveis.reg & del C:\ProgramData\Quotenamron\Graveis.reg & SCHTASKS /Delete /TN psv_New-Eco /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Ozer-Nix] (...) -- C:\ProgramData\Quotenamron\Sunis.reg & del C:\ProgramData\Quotenamron\Sunis.reg & SCHTASKS /Delete /TN psv_Ozer-Nix /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Plusdox] (...) -- C:\ProgramData\Quotenamron\Flexstring.reg & del C:\ProgramData\Quotenamron\Flexstring.reg & SCHTASKS /Delete /TN psv_Plusdox /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Quotelux] (...) -- C:\ProgramData\Quotenamron\Hot-Flex.reg & del C:\ProgramData\Quotenamron\Hot-Flex.reg & SCHTASKS /Delete /TN psv_Quotelux /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Quotop] (...) -- C:\ProgramData\Quotenamron\Namdom.reg & del C:\ProgramData\Quotenamron\Namdom.reg & SCHTASKS /Delete /TN psv_Quotop /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Qvoplus] (...) -- C:\ProgramData\Quotenamron\Inchcof.reg & del C:\ProgramData\Quotenamron\Inchcof.reg & SCHTASKS /Delete /TN psv_Qvoplus /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Qvozap] (...) -- C:\ProgramData\Quotenamron\Triolamcof.reg & del C:\ProgramData\Quotenamron\Triolamcof.reg & SCHTASKS /Delete /TN psv_Qvozap /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Retech] (...) -- C:\ProgramData\Quotenamron\ZerCore.reg & del C:\ProgramData\Quotenamron\ZerCore.reg & SCHTASKS /Delete /TN psv_Retech /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Silcom] (...) -- C:\ProgramData\Quotenamron\Unitam.reg & del C:\ProgramData\Quotenamron\Unitam.reg & SCHTASKS /Delete /TN psv_Silcom /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Silhotlam] (...) -- C:\ProgramData\Quotenamron\Eco-Soft.reg & del C:\ProgramData\Quotenamron\Eco-Soft.reg & SCHTASKS /Delete /TN psv_Silhotlam /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Solnaming] (...) -- C:\ProgramData\Quotenamron\Solsilfresh.reg & del C:\ProgramData\Quotenamron\Solsilfresh.reg & SCHTASKS /Delete /TN psv_Solnaming /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Stimhome] (...) -- C:\ProgramData\Quotenamron\OzerFlex.reg & del C:\ProgramData\Quotenamron\OzerFlex.reg & SCHTASKS /Delete /TN psv_Stimhome /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_StringTax] (...) -- C:\ProgramData\Quotenamron\Zonity.reg & del C:\ProgramData\Quotenamron\Zonity.reg & SCHTASKS /Delete /TN psv_StringTax /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_TanCaneco] (...) -- C:\ProgramData\Quotenamron\VilaJob.reg & del C:\ProgramData\Quotenamron\VilaJob.reg & SCHTASKS /Delete /TN psv_TanCaneco /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Tree-Lam] (...) -- C:\ProgramData\Quotenamron\Tinfan.reg & del C:\ProgramData\Quotenamron\Tinfan.reg & SCHTASKS /Delete /TN psv_Tree-Lam /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_TrueTrax] (...) -- C:\ProgramData\Quotenamron\Ecoit.reg & del C:\ProgramData\Quotenamron\Ecoit.reg & SCHTASKS /Delete /TN psv_TrueTrax /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Trustfind] (...) -- C:\ProgramData\Quotenamron\Whitewarm.reg & del C:\ProgramData\Quotenamron\Whitewarm.reg & SCHTASKS /Delete /TN psv_Trustfind /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Vaiafresh] (...) -- C:\ProgramData\Quotenamron\SpanCom.reg & del C:\ProgramData\Quotenamron\SpanCom.reg & SCHTASKS /Delete /TN psv_Vaiafresh /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Vilatom] (...) -- C:\ProgramData\Quotenamron\Ventolight.reg & del C:\ProgramData\Quotenamron\Ventolight.reg & SCHTASKS /Delete /TN psv_Vilatom /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Villakeytough] (...) -- C:\ProgramData\Quotenamron\Sum-Warm.reg & del C:\ProgramData\Quotenamron\Sum-Warm.reg & SCHTASKS /Delete /TN psv_Villakeytough /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Viva-Flex] (...) -- C:\ProgramData\Quotenamron\Strongair.reg & del C:\ProgramData\Quotenamron\Strongair.reg & SCHTASKS /Delete /TN psv_Viva-Flex /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_VivaRancore] (...) -- C:\ProgramData\Quotenamron\Index.reg & del C:\ProgramData\Quotenamron\Index.reg & SCHTASKS /Delete /TN psv_VivaRancore /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Voljoylux] (...) -- C:\ProgramData\Quotenamron\Air-Nix.reg & del C:\ProgramData\Quotenamron\Air-Nix.reg & SCHTASKS /Delete /TN psv_Voljoylux /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Volt-Zap] (...) -- C:\ProgramData\Quotenamron\Zenquadeco.reg & del C:\ProgramData\Quotenamron\Zenquadeco.reg & SCHTASKS /Delete /TN psv_Volt-Zap /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [psv_Zonetough] (...) -- C:\ProgramData\Quotenamron\Bio-La.reg & del C:\ProgramData\Quotenamron\Bio-La.reg & SCHTASKS /Delete /TN psv_Zonetough /F (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.9C25525EA1271893013B685274CE628A] [APT] [ShdUpdate] (.Visual Tools.) -- C:\Users\acer\AppData\Local\ShdUpdate\shupd.exe [190464] (.Activate.) =>.Visual Tools
[MD5.00000000000000000000000000000000] [APT] [snf] (...) -- C:\ProgramData\Quotenamron\Quotenamron.exe (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.00000000000000000000000000000000] [APT] [snp] (...) -- C:\ProgramData\Quotenamron\Quotenamron.exe (.not file.) [0] (.Activate.) =>PUP.Optional.Salus
[MD5.5EDB796748C66806C97768EF3AE586C7] [APT] [TuneUpUtilities_Task_BkGndMaintenance2013] (.AVG Technologies.) -- C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [555736] (.Activate.) =>.AVG Netherlands B.V.®
[MD5.C0F046E0FB621EA76FD0B9E5AC95863D] [APT] [Update Service for Torrent Search] (...) -- C:\Program Files (x86)\Torrent Search\DUCfWuz.exe [145360] (.Activate.) =>PUP.Optional.YouTubeAdBlock
[MD5.C0F046E0FB621EA76FD0B9E5AC95863D] [APT] [Update Service for Torrent Search2] (...) -- C:\Program Files (x86)\Torrent Search\DUCfWuz.exe [145360] (.Activate.) =>PUP.Optional.YouTubeAdBlock
[MD5.00000000000000000000000000000000] [APT] [{28003025-A46E-4875-8FC2-E7A1CFB46CC5}] (...) -- H:\ESLAMIATE\ں«éںêïں¢\DreamAquariumXP.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{65247B2E-8F2A-4290-8FF9-ECB244E48B37}] (...) -- H:\tomb raider\SETUP.EXE (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.A6D5917AF99172B9E71F3DC1106F394E] [APT] [{67719235-E034-4C14-A82F-81B2964F205D}] (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [50615936] (.Activate.) =>.Skype Software Sarl®
[MD5.00000000000000000000000000000000] [APT] [{E6BBB39D-B472-43C3-B707-9EF1B4D41376}] (...) -- H:\programmes\‌«¢©¤ںم ںéêéهں¢\FinalData Enterprise v2.0.1.1028\setup.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.728935A0F1E0D2C2B5EEC2F3A1280B9D] [APT] [{F40F22C0-4971-48EC-979E-3C9EB2F090D5}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [392136] (.Activate.) =>.Mozilla Corporation®
[MD5.FCAA3FC6964A3012A2F725284CF6DDD5] [APT] [AVAST Software] (.AVAST Software.) -- C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [180096] (.Activate.) =>.AVAST Software a.s.®
[MD5.00000000000000000000000000000000] [APT] [Lenovo] (...) -- C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Systems Incorporated®
O39 - APT: FacebookUpdateTaskUserS-1-5-21-377656779-3435866410-2563390314-1000Core - (.Facebook Inc..) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-377656779-3435866410-2563390314-1000Core.job [902] =>.Facebook, Inc.®
O39 - APT: FacebookUpdateTaskUserS-1-5-21-377656779-3435866410-2563390314-1000UA - (.Facebook Inc..) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-377656779-3435866410-2563390314-1000UA.job [924] =>.Facebook, Inc.®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [894] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [898] =>.Google Inc®
O39 - APT: Update Service for Torrent Search - (...) -- C:\Windows\Tasks\Update Service for Torrent Search.job [332] =>PUP.Optional.YouTubeAdBlock
O39 - APT: Update Service for Torrent Search2 - (...) -- C:\Windows\Tasks\Update Service for Torrent Search2.job [332] =>PUP.Optional.YouTubeAdBlock
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [4476] =>.Adobe Systems, Incorporated®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] =>.Adobe Systems Incorporated®
O39 - APT: Buenosearch Updater - (...) -- C:\Windows\System32\Tasks\Buenosearch Updater [3576] {019E7E421DD92BB6922755CD51B3A65C} =>PUP.Optional.BuenoSearch
O39 - APT: ChelfNotify Task - (.Tencent.) -- C:\Windows\System32\Tasks\ChelfNotify Task [3438] =>.Superfluous.Tencent
O39 - APT: EPUpdater - (...) -- C:\Windows\System32\Tasks\EPUpdater [3382] (.Orphan.) =>PUP.Optional.BabSolution
O39 - APT: FacebookUpdateTaskUserS-1-5-21-377656779-3435866410-2563390314-1000Core - (.Facebook Inc..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-377656779-3435866410-2563390314-1000Core [3530] =>.Facebook, Inc.®
O39 - APT: FacebookUpdateTaskUserS-1-5-21-377656779-3435866410-2563390314-1000UA - (.Facebook Inc..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-377656779-3435866410-2563390314-1000UA [3898] =>.Facebook, Inc.®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3642] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3894] =>.Google Inc®
O39 - APT: Lobiphghqocult Center - (...) -- C:\Windows\System32\Tasks\Lobiphghqocult Center [9022] {4369AD8AA1FE687357EA459746AE5F8B}
O39 - APT: psv_Bam-Tip - (...) -- C:\Windows\System32\Tasks\psv_Bam-Tip [3280] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Betaflex - (...) -- C:\Windows\System32\Tasks\psv_Betaflex [3274] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_BigSonfax - (...) -- C:\Windows\System32\Tasks\psv_BigSonfax [3284] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Cof-Air - (...) -- C:\Windows\System32\Tasks\psv_Cof-Air [3276] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Daltstrong - (...) -- C:\Windows\System32\Tasks\psv_Daltstrong [3274] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_DonFan - (...) -- C:\Windows\System32\Tasks\psv_DonFan [3274] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Dongcof - (...) -- C:\Windows\System32\Tasks\psv_Dongcof [3272] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Dripzap - (...) -- C:\Windows\System32\Tasks\psv_Dripzap [3284] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Ecotouch - (...) -- C:\Windows\System32\Tasks\psv_Ecotouch [3282] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Faxis - (...) -- C:\Windows\System32\Tasks\psv_Faxis [3272] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Fundom - (...) -- C:\Windows\System32\Tasks\psv_Fundom [3270] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Gooding - (...) -- C:\Windows\System32\Tasks\psv_Gooding [3276] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Greendox - (...) -- C:\Windows\System32\Tasks\psv_Greendox [3294] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Hatfind - (...) -- C:\Windows\System32\Tasks\psv_Hatfind [3272] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Hatmatphase - (...) -- C:\Windows\System32\Tasks\psv_Hatmatphase [3280] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Hay-Dax - (...) -- C:\Windows\System32\Tasks\psv_Hay-Dax [3292] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Hothome - (...) -- C:\Windows\System32\Tasks\psv_Hothome [3296] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Jayzoofresh - (...) -- C:\Windows\System32\Tasks\psv_Jayzoofresh [3284] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Lamphase - (...) -- C:\Windows\System32\Tasks\psv_Lamphase [3294] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Lamron - (...) -- C:\Windows\System32\Tasks\psv_Lamron [3274] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_LaSanlight - (...) -- C:\Windows\System32\Tasks\psv_LaSanlight [3286] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_MedKeykix - (...) -- C:\Windows\System32\Tasks\psv_MedKeykix [3276] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_New-Eco - (...) -- C:\Windows\System32\Tasks\psv_New-Eco [3276] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Ozer-Nix - (...) -- C:\Windows\System32\Tasks\psv_Ozer-Nix [3270] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Plusdox - (...) -- C:\Windows\System32\Tasks\psv_Plusdox [3288] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Quotelux - (...) -- C:\Windows\System32\Tasks\psv_Quotelux [3282] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Quotop - (...) -- C:\Windows\System32\Tasks\psv_Quotop [3270] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Qvoplus - (...) -- C:\Windows\System32\Tasks\psv_Qvoplus [3276] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Qvozap - (...) -- C:\Windows\System32\Tasks\psv_Qvozap [3286] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Retech - (...) -- C:\Windows\System32\Tasks\psv_Retech [3274] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Silcom - (...) -- C:\Windows\System32\Tasks\psv_Silcom [3270] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Silhotlam - (...) -- C:\Windows\System32\Tasks\psv_Silhotlam [3284] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Solnaming - (...) -- C:\Windows\System32\Tasks\psv_Solnaming [3296] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Stimhome - (...) -- C:\Windows\System32\Tasks\psv_Stimhome [3282] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_StringTax - (...) -- C:\Windows\System32\Tasks\psv_StringTax [3276] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_TanCaneco - (...) -- C:\Windows\System32\Tasks\psv_TanCaneco [3280] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Tree-Lam - (...) -- C:\Windows\System32\Tasks\psv_Tree-Lam [3274] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_TrueTrax - (...) -- C:\Windows\System32\Tasks\psv_TrueTrax [3270] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Trustfind - (...) -- C:\Windows\System32\Tasks\psv_Trustfind [3288] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Vaiafresh - (...) -- C:\Windows\System32\Tasks\psv_Vaiafresh [3280] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Vilatom - (...) -- C:\Windows\System32\Tasks\psv_Vilatom [3288] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Villakeytough - (...) -- C:\Windows\System32\Tasks\psv_Villakeytough [3292] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Viva-Flex - (...) -- C:\Windows\System32\Tasks\psv_Viva-Flex [3288] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_VivaRancore - (...) -- C:\Windows\System32\Tasks\psv_VivaRancore [3276] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Voljoylux - (...) -- C:\Windows\System32\Tasks\psv_Voljoylux [3280] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Volt-Zap - (...) -- C:\Windows\System32\Tasks\psv_Volt-Zap [3290] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: psv_Zonetough - (...) -- C:\Windows\System32\Tasks\psv_Zonetough [3276] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: ShdUpdate - (.Visual Tools.) -- C:\Windows\System32\Tasks\ShdUpdate [3650] =>.Visual Tools
O39 - APT: snf - (...) -- C:\Windows\System32\Tasks\snf [3250] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: snp - (...) -- C:\Windows\System32\Tasks\snp [3636] (.Orphan.) =>PUP.Optional.Salus
O39 - APT: TuneUpUtilities_Task_BkGndMaintenance2013 - (.AVG Technologies.) -- C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 [2762] =>.AVG Netherlands B.V.®
O39 - APT: Update Service for Torrent Search - (...) -- C:\Windows\System32\Tasks\Update Service for Torrent Search [2652] =>PUP.Optional.YouTubeAdBlock
O39 - APT: Update Service for Torrent Search2 - (...) -- C:\Windows\System32\Tasks\Update Service for Torrent Search2 [2954] =>PUP.Optional.YouTubeAdBlock

---\\ Processus lancés (38) - 5s
[MD5.125CCA62EA497B3C3F45E8EEED8DBA36] - (.Acronis - Acronis Scheduler 2.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1078968] [PID.1696] =>.Acronis, Inc®
[MD5.16575D1049E33B849B4ED9854DA6DC1F] - (...) -- C:\ProgramData\AppnormanetouQ\AppnormanetouQ.exe [400384] [PID.1748]
[MD5.58332C83C4A329A744B0B98F934934BB] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe [288920] [PID.1992] =>.Google Inc®
[MD5.788321A2C0C45F16820E00A8BA8FD3DA] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe [366232] [PID.2016] =>.Google Inc®
[MD5.2718DC27571BD1E37813F5759D2DC118] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe [202296] [PID.1736] =>.Kaspersky Lab®
[MD5.690A4D6FF663CB1E6D3C904B351012D6] - (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) -- C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417304] [PID.1768] =>.BlueStack Systems, Inc.®
[MD5.8481DDD2DFFEB83BE4D6D7552A9C6B25] - (.BlueStack Systems, Inc. - BlueStacks Updater Service.) -- C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [880152] [PID.2076] =>.BlueStack Systems, Inc.®
[MD5.27A6C0D6DF4734852A9065624F3580D4] - (...) -- C:\Program Files (x86)\Connectify\ConnectifyService.exe [65536] [PID.2264]
[MD5.2A63F81CB49B2B90584EE90152BE6337] - (...) -- C:\ProgramData\DCHP\DCHP.exe [400384] [PID.2316] =>PUP.Optional.Salus
[MD5.E18418F0D4AC09111C8E684913B752FC] - (.Connectify - Connectifyd.) -- C:\Program Files (x86)\Connectify\ConnectifyD.exe [287592] [PID.2324] {0855405505DD76BBBC1941783142B1DC} =>.Connectify
[MD5.5EEDDA81DB73A1124F97B07A6A5FB2B1] - (.New Softwares.net - Service Application.) -- C:\Windows\SysWOW64\WinFLService.exe [92360] [PID.2388] =>.Newsoftwares.net, Inc SDN BHD®
[MD5.81BF4944D6ACEB552B115EBB90DC8DE7] - (.Hola Networks Ltd. - Hola Better Internet Engine.) -- C:\Program Files\Hola\app\hola_svc.exe [5618864] [PID.2408] =>.Hola Networks Ltd.®
[MD5.6FDFD5C55FD68757B3051650A2B2E2B6] - (.Hola Networks Ltd. - Hola Better Internet Engine.) -- C:\Program Files\Hola\app\hola_updater.exe [8127616] [PID.3016] =>.Hola Networks Ltd.®
[MD5.9C60B58EFDA08F0397825E6363576202] - (.Trend Corp. - Service.) -- C:\Users\acer\AppData\Roaming\TSv\TSvr.exe [210128] [PID.2140] {564E5E1AD62E2CF5ED065BD6D7D1ABD0}
[MD5.832CE330DD987227B7DEA8C03F22AEFA] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [628448] [PID.3140] =>.Intel® Upgrade Service®
[MD5.4645910BE6CB805DB15CC49D8B6BAA39] - (.AVG Technologies - AVG PC TuneUp Service.) -- C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400] [PID.3360] =>.AVG Netherlands B.V.®
[MD5.1F1ABE54AB582ACA2AB9B0FA6C358EB9] - (...) -- C:\Program Files (x86)\WinSaber\WinSaber.exe [443672] [PID.3424] {1B5D997D61943E8FF1BDF34C65EE5719} =>PUP.Optional.winsaber
[MD5.357CABBF155AFD1D3926E62539D2A3A7] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480] [PID.3548] =>.Microsoft Corporation®
[MD5.E785E8F4B6C6A0114E4925A73E2B280F] - (.AVG Technologies - AVG PC TuneUp.) -- C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe [2451672] [PID.3844] =>.AVG Netherlands B.V.®
[MD5.6522AA1BCFC503A2417B7358E31F4EB9] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12343400] [PID.4972] =>.Realtek Semiconductor Corp®
[MD5.00000000000000000000000000000000] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [0] [PID.4980] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [0] [PID.5112] =>.Intel Corporation
[MD5.6E6090BC2740E5700A8EFF6DCEA2A073] - (.Hola Networks Ltd. - Hola Better Internet.) -- C:\Program Files\Hola\app\hola.exe [2162864] [PID.4192] =>.Hola Networks Ltd.®
[MD5.B527105E8D98E523CB3CC79DB3415608] - (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [390736] [PID.3896] =>.Acronis, Inc®
[MD5.D2B93F26AD7E8D931981A25DA3FB1613] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3487128] [PID.1412] =>.Tonec Inc.
[MD5.F61E4CE3CFB28D19877ABE16D824CDDC] - (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe [912920] [PID.4272] =>.BlueStack Systems, Inc.®
[MD5.7FBA50D1D99F4D5F4676E1D06640E367] - (.http://www.zbshareware.com - Antivirus software.) -- C:\Program Files (x86)\USB Disk Security\USBGuard.exe [798720] [PID.4476]
[MD5.2718DC27571BD1E37813F5759D2DC118] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe [202296] [PID.4928] =>.Kaspersky Lab®
[MD5.FFB12A8D9FB4DE922A4224D9C9932F2E] - (...) -- C:\Users\acer\AppData\Local\ITSsoft\00054163.exe [148532] [PID.764]
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.2540] =>.Tonec Inc.®
[MD5.FCDBC7653B6F6FA90F1683D80F83F32D] - (.Copyright (C) 2016 Firefox Authors - Firefox command.) -- C:\Program Files (x86)\Firefox\bin\FirefoxCommand.exe [268536] [PID.3964] {24CB15D77946800FB3E3CD45EDD5706F} =>Adware.Firefox
[MD5.FA4A6A134D63C21538D06EDC805FC902] - (.Copyright (C) 2016 Firefox Authors - Firefox.) -- C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe [592120] [PID.2012] {24CB15D77946800FB3E3CD45EDD5706F} =>Adware.Firefox
[MD5.86E4CC39C953D11EF57CF54C4DC78238] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277784] [PID.1908] =>.Intel Corporation®
[MD5.D80B1075B69B57A3AB78F750CE463ECE] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [363800] [PID.4744] =>.Intel Corporation®
[MD5.222BE5D3E67C77AAE4457F94BABCAA83] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Firefox\Firefox.exe [383872] [PID.4956] {39F15C8237BF06AF7FBC5A9F8716762F} =>.Mozilla Corporation
[MD5.5F303BA355BDC9458EEE73320A32010D] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\acer\Downloads\ZHPDiag3.exe [2327552] [PID.7384] =>.Nicolas Coolman
[MD5.52F4695C53B02ADA7D648F95F2E2F8B4] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Users\acer\Downloads\Programs\mbam-setup-2.2.1.1043.exe [22851472] [PID.7088] =>.Malwarebytes Corporation®
[MD5.2C10DB017057DCE22651243244E4FEE6] - (. - Setup/Uninstall.) -- C:\Users\acer\AppData\Local\Temp\is-UM3ID.tmp\mbam-setup-2.2.1.1043.tmp [708608] [PID.7444]

---\\ Google Chrome, Démarrage,Recherche,Extensions (14) - 0s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://146.185.135.170
G0 - GCSP: Preferences [User Data\Default][HomePage] http://api2.tracemonitors.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://api4.tracemonitors.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://api5.tracemonitors.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://files.tracemonitors.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://r3---sn-5abxgpxuxaxjvh-55xl.gvt1.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://redirector.gvt1.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients2.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.fr
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.googleapis.com
G2 - GCE: Preference [User Data\Default] [fcfenmboojpjinhpgggodefccipikbpd] MSN Homepage & Bing Search Engine =>.Microsoft Corp.
G2 - GCE: Preference [User Data\Default] [lifbcibllhkdhoafpjfnlhfpfgnpldfl] Skype
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.

---\\ Comodo Dragon, Démarrage,Recherche,Extensions (2) - 1s
C2 - CDE: Preference [User Data\Default] [bdeeamehdichghippjcneocjmgdckpfd] sAfeweb =>PUP.Optional.SafeWeb
C2 - CDE: Preference [User Data\Default] [hgogfkaafddgnbniojgjdeileidfhphm] safeoweb =>PUP.Optional.SafeWeb

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (10) - 2s
P2 - EXT FILE: (.Firefox Hotfix - Firefox Hotfix: avoid updates that wou.) -- C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\ikj6wg2x.default\extensions\firefox-hotfix@mozilla.org.xpi =>.Firefox Hotfix
P2 - EXT FILE: (.nice - nice Search.) -- C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\ikj6wg2x.default\searchplugins\nice.xml =>Adware.Firefox
P2 - EXT FILE: (.nuesearch - nuesearch Search.) -- C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\ikj6wg2x.default\searchplugins\nuesearch.xml =>Adware.Firefox
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\dlsecuretb.xml =>.Superfluous.VisicomMedia
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\findit.xml =>PUP.Optional.SmartBar
P2 - EXT: (.Jason Bourne - xRocket Toolbar.) -- C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\ikj6wg2x.default\extensions\arthurj8283@gmail.com =>Adware.Firefox
P2 - EXT: (.MAPIPSFactory - MAPIPSFactory.) -- C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\ikj6wg2x.default\extensions\{4D225238-00E7-4077-BA97-B25F7342212C} =>Adware.Firefox
P2 - FPN: [HKCU] [@hola.org/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Users\acer\AppData\Local\Hola\firefox_hola\app\flash\NPSWF32_18_0_0_232.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@hola.org/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Users\acer\AppData\Local\Hola\firefox_hola\app\flash\NPSWF32_18_0_0_232.dll =>.Adobe Systems Incorporated

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (23) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT2U8IlLY4zcmGPdcui2sIxvTLHzrPTGdy0rq8ZH2QXyT2WDb8eBi0utGhZ7jN1Em_C0BBdm3S6rd6efSYFc2magM0Uzn9PnNsz3OH3BnNiN1IVLjDqnulDMi-JWgTA8oqapxgypwa4284ED_xq-a8M3Ew1ijEEa8CtSgNj9LJt2r =>.Superfluous.Linkury
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbpxn5dj8gs0dgdt2u8illy4zcmgpdcui2sixvtlhzrptgdy0rq8zh2qxyt2wdb8ebi0utghz7jn1em_c0bbdm3s6rd6efexqoasohlwt8crtzmrl_kkug0gcfpcvmz5pavrulvicqofi-7kgfmk4ugb-ymo6kx0whss_bjxri0-qeifrcpecqujwlv&q={searchterms} =>.Superfluous.Linkury
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://smartsputnik.ru/ =>Hijacker.Browser
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbpxn5dj8gs0dgdt2u8illy4zcmgpdcui2sixvtlhzrptgdy0rq8zh2qxyt2wdb8ebi0utghz7jn1em_c0bbdm3s6rd6efexqoasohlwt8crtzmrl_kkug0gcfpcvmz5pavrulvicqofi-7kgfmk4ugb-ymo6kx0whss_bjxri0-qeifrcpecqujwlv&q={searchterms} =>.Superfluous.Linkury
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.nuesearch.com/ =>Hijacker.Browser
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbpxn5dj8gs0dgdt2u8illy4zcmgpdcui2sixvtlhzrptgdy0rq8zh2qxyt2wdb8ebi0utghz7jn1em_c0bbdm3s6rd6efexqoasohlwt8crtzmrl_kkug0gcfpcvmz5pavrulvicqofi-7kgfmk4ugb-ymo6kx0whss_bjxri0-qeifrcpecqujwlv&q={searchterms} =>.Superfluous.Linkury
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbpxn5dj8gs0dgdt2u8illy4zcmgpdcui2sixvtlhzrptgdy0rq8zh2qxyt2wdb8ebi0utghz7jn1em_c0bbdm3s6rd6efexqoasohlwt8crtzmrl_kkug0gcfpcvmz5pavrulvicqofi-7kgfmk4ugb-ymo6kx0whss_bjxri0-qeifrcpecqujwlv&q={searchterms} =>.Superfluous.Linkury
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.nuesearch.com/ =>Hijacker.Browser
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKEY_USERS\S-1-5-21-377656779-3435866410-2563390314-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbpxn5dj8gs0dgdt2u8illy4zcmgpdcui2sixvtlhzrptgdy0rq8zh2qxyt2wdb8ebi0utghz7jn1em_c0bbdm3s6rd6efexqoasohlwt8crtzmrl_kkug0gcfpcvmz5pavrulvicqofi-7kgfmk4ugb-ymo6kx0whss_bjxri0-qeifrcpecqujwlv&q={searchterms} =>.Superfluous.Linkury
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.nuesearch.com/ =>Hijacker.Browser

---\\ Internet Explorer,Proxy Management (9) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 10.142.1.240:8080
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object de navigateur (BHO) (9) - 1s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: IEVkbdBHO [64Bits] - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} . (.Kaspersky Lab ZAO - IE Virtual Keyboard.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll =>.Kaspersky Lab®
O2 - BHO: TSearch [64Bits] - {6E727987-C8EA-44DA-8749-310C0FBE3C3E} . (...) -- C:\Program Files (x86)\Torrent Search\IEEF\eN5CbaPduB.dll =>PUP.Optional.YouTubeAdBlock
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (Orphan)
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll =>.Microsoft Corporation®
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll =>.Skype Software Sarl®
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} (Orphan)
O2 - BHO: link filter bho [64Bits] - {E33CF602-D945-461A-83F0-819F76A199F8} . (.Kaspersky Lab ZAO - WebToolBar component.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll =>.Kaspersky Lab®

---\\ Internet Explorer, Barre d'outil (1) - 0s
O3 - Toolbar: 0x7F7C02D44A156640A1AD4243D8127440 - [HKCU]{D4027C7F-154A-4066-A1AD-4243D8127440} . (...) -- (.not file.)

---\\ Applications lancées au démarrage du système (39) - 2s
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe =>.Synaptics Incorporated®
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe =>.Intel Corporation
O4 - HKLM\..\Run: [mwlDaemon] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe (.not file.)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe =>.Intel Corporation
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe =>.Intel Corporation
O4 - HKLM\..\Run: [hola] . (.Hola Networks Ltd. - Hola Better Internet.) -- C:\Program Files\Hola\app\hola.exe =>.Hola Networks Ltd.®
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe =>.Acronis, Inc®
O4 - HKCU\..\Run: [SuperCopier2.exe] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe =>.SFX TEAM
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKCU\..\Run: [C] C:\Windows\system32\GroupPolicy\Machine\Registry.pol >nul)&(@copy/b/y C:\Windows\system32\GroupPolicy\Machine\R C:\Windows\system32\GroupPolicy\Machine\Registry.pol >nul)&(@attrib +R C:\Windows\system32\GroupPolicy\Machine\Registry.pol >nul)&(@start/b gpupdate.exe (.not file.)
O4 - HKCU\..\Run: [Buenosearch] C:\Users\acer\AppData\Local\Buenosearch\Buenosearch\2.1.0.0\babylon.exe (.not file.) =>PUP.Optional.BuenoSearch
O4 - HKCU\..\Run: [BlueStacks Agent] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe =>.BlueStack Systems, Inc.®
O4 - HKCU\..\Run: [{75660D19-2671-B169-A56B-97B9358C121A}] C:\Users\acer\AppData\Local\Temp\00054163.exe (.not file.)
O4 - HKCU\..\Run: [ITSsoft] . (...) -- C:\Users\acer\AppData\Local\ITSsoft\00054163.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [UPmedia] . (...) -- C:\Users\acer\AppData\Local\UPmedia\frkkamth.dll
O4 - HKCU\..\Run: [Idsoft] . (.Microsoft Corporation - Microsoft(C) Register Server.) -- C:\Windows\SysWOW64\regsvr32.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [txttopa] . (...) -- C:\Users\acer\AppData\Local\txttopa.dll
O4 - HKLM\..\Wow6432Node\Run: [USB Antivirus] . (.http://www.zbshareware.com - Antivirus software.) -- C:\Program Files (x86)\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Wow6432Node\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe =>.Kaspersky Lab®
O4 - HKLM\..\policies\Explorer\Run: [32867] . (...) -- C:\ProgramData\Local Settings\Temp\cctsyad.pif
O4 - HKUS\.DEFAULT\..\Run: [NvUpdSrv] C:\Windows\system32\config\systemprofile\AppData\Local\NVIDIA Corporation\Update\nvupd32.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [NvUpdSrv] C:\Windows\system32\config\systemprofile\AppData\Local\NVIDIA Corporation\Update\nvupd32.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-377656779-3435866410-2563390314-1000\..\Run: [SuperCopier2.exe] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe =>.SFX TEAM
O4 - HKUS\S-1-5-21-377656779-3435866410-2563390314-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKUS\S-1-5-21-377656779-3435866410-2563390314-1000\..\Run: [C] C:\Windows\system32\GroupPolicy\Machine\Registry.pol >nul)&(@copy/b/y C:\Windows\system32\GroupPolicy\Machine\R C:\Windows\system32\GroupPolicy\Machine\Registry.pol >nul)&(@attrib +R C:\Windows\system32\GroupPolicy\Machine\Registry.pol >nul)&(@start/b gpupdate.exe (.not file.)
O4 - HKUS\S-1-5-21-377656779-3435866410-2563390314-1000\..\Run: [Buenosearch] C:\Users\acer\AppData\Local\Buenosearch\Buenosearch\2.1.0.0\babylon.exe (.not file.) =>PUP.Optional.BuenoSearch
O4 - HKUS\S-1-5-21-377656779-3435866410-2563390314-1000\..\Run: [BlueStacks Agent] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe =>.BlueStack Systems, Inc.®
O4 - HKUS\S-1-5-21-377656779-3435866410-2563390314-1000\..\Run: [{75660D19-2671-B169-A56B-97B9358C121A}] C:\Users\acer\AppData\Local\Temp\00054163.exe (.not file.)
O4 - HKUS\S-1-5-21-377656779-3435866410-2563390314-1000\..\Run: [ITSsoft] . (...) -- C:\Users\acer\AppData\Local\ITSsoft\00054163.exe
O4 - HKUS\S-1-5-21-377656779-3435866410-2563390314-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-377656779-3435866410-2563390314-1000\..\Run: [UPmedia] . (...) -- C:\Users\acer\AppData\Local\UPmedia\frkkamth.dll
O4 - HKUS\S-1-5-21-377656779-3435866410-2563390314-1000\..\Run: [Idsoft] . (.Microsoft Corporation - Microsoft(C) Register Server.) -- C:\Windows\SysWOW64\regsvr32.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-377656779-3435866410-2563390314-1000\..\Run: [txttopa] . (...) -- C:\Users\acer\AppData\Local\txttopa.dll

---\\ Raccourcis Global Startup (187) - 15s
O4 - GS\Desktop [acer]: acer.lnk . (...) C:\Users\acer
O4 - GS\Desktop [acer]: Car Mechanic Simulator 2015.lnk . (...) C:\Program Files (x86)\Car Mechanic Simulator 2015\cms2015.exe
O4 - GS\Desktop [acer]: Downloads.lnk . (...) C:\Users\acer\Downloads
O4 - GS\Desktop [acer]: Farming Simulator 15.lnk . (.GIANTS Software GmbH - GIANTS Startup.) C:\Program Files (x86)\Farming Simulator 15\FarmingSimulator2015.exe =>.GIANTS Software GmbH®
O4 - GS\Desktop [acer]: Format Factory.lnk . (.Free Time - FormatFactory.) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe =>.Free Time
O4 - GS\Desktop [acer]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [acer]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\Desktop [acer]: Qoran.lnk . (.Macromedia, Inc. - .) C:\Program Files (x86)\Qoran\Qoran.exe =>.Macromedia, Inc.
O4 - GS\Desktop [acer]: QQPlayer.lnk . (.Tencent Technology Company limited - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>.Superfluous.Tencent
O4 - GS\Desktop [acer]: UltraISO.lnk . (.EZB Systems, Inc. - UltraISO Premium Edition.) C:\Program Files (x86)\UltraISO\UltraISO.exe
O4 - GS\Desktop [acer]: user0 - Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.nuesearch.com/?type=sc&ts=1473433674&z=51a4ac850274ccd53de4a63g7z7m1c5z0c8cfq7m2o&from=che0812&uid=ST500LT012-9WS142_W0V4VMAJXXXXW0V4VMAJ =>.Google Inc®
O4 - GS\Desktop [acer]: YouCam.lnk . (.CyberLink Corp. - .) C:\Program Files (x86)\zab\YouCam.exe =>.CyberLink Corp.
O4 - GS\Desktop [acer]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\acer\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [acer]: BCL easyConverter Desktop 3 (Word Version).lnk . (.BCL Technologies - BCL easyConverter Desktop 3.0.) C:\Program Files (x86)\BCL Technologies\BCL easyConverter Desktop 3\RTF\EasyConverter.exe =>.BCL Technologies
O4 - GS\Quicklaunch [acer]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [acer]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [acer]: QQPlayer.lnk . (.Tencent Technology Company limited - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>.Superfluous.Tencent
O4 - GS\Quicklaunch [acer]: QQ影音.lnk . (.Tencent Technology Company limited - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>.Superfluous.Tencent
O4 - GS\Quicklaunch [acer]: Stock It Easy 7.lnk . (...) C:\Program Files (x86)\StockItEasy7\StockItEasy.exe
O4 - GS\Quicklaunch [acer]: Winamp.lnk . (.Nullsoft - Winamp.) C:\Program Files (x86)\Winamp\winamp.exe =>.Winamp®
O4 - GS\sendTo [acer]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [acer]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [acer]: Format Factory.lnk . (.Free Time - FormatFactory.) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe =>.Free Time
O4 - GS\sendTo [acer]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\TaskBar [acer]: BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks UpgradePopup App Player.) C:\ProgramData\BlueStacksGameManager\BlueStacks.exe =>.BlueStack Systems, Inc.®
O4 - GS\TaskBar [acer]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [acer]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Firefox\Firefox.exe %SNF% {39F15C8237BF06AF7FBC5A9F8716762F} =>.Mozilla Corporation
O4 - GS\TaskBar [acer]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [acer]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Startup [acer]: MustaphaCDRom.exe.lnk . (...) C:\mustaphaCDRom1\MustaphaCDRom.exe
O4 - GS\Startup [acer]: OneNote 2010 - Capture d’écran et lancement.lnk . (.Microsoft Corporation - Microsoft OneNote Quick Launcher.) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE /tsr =>.Microsoft Corporation®
O4 - GS\Programs [acer]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [acer]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [acer]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\acer\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Administrator]: acer.lnk . (...) C:\Users\acer
O4 - GS\Desktop [Administrator]: Car Mechanic Simulator 2015.lnk . (...) C:\Program Files (x86)\Car Mechanic Simulator 2015\cms2015.exe
O4 - GS\Desktop [Administrator]: Downloads.lnk . (...) C:\Users\acer\Downloads
O4 - GS\Desktop [Administrator]: Farming Simulator 15.lnk . (.GIANTS Software GmbH - GIANTS Startup.) C:\Program Files (x86)\Farming Simulator 15\FarmingSimulator2015.exe =>.GIANTS Software GmbH®
O4 - GS\Desktop [Administrator]: Format Factory.lnk . (.Free Time - FormatFactory.) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe =>.Free Time
O4 - GS\Desktop [Administrator]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Administrator]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\Desktop [Administrator]: Qoran.lnk . (.Macromedia, Inc. - .) C:\Program Files (x86)\Qoran\Qoran.exe =>.Macromedia, Inc.
O4 - GS\Desktop [Administrator]: QQPlayer.lnk . (.Tencent Technology Company limited - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>.Superfluous.Tencent
O4 - GS\Desktop [Administrator]: UltraISO.lnk . (.EZB Systems, Inc. - UltraISO Premium Edition.) C:\Program Files (x86)\UltraISO\UltraISO.exe
O4 - GS\Desktop [Administrator]: user0 - Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.nuesearch.com/?type=sc&ts=1473433674&z=51a4ac850274ccd53de4a63g7z7m1c5z0c8cfq7m2o&from=che0812&uid=ST500LT012-9WS142_W0V4VMAJXXXXW0V4VMAJ =>.Google Inc®
O4 - GS\Desktop [Administrator]: YouCam.lnk . (.CyberLink Corp. - .) C:\Program Files (x86)\zab\YouCam.exe =>.CyberLink Corp.
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\acer\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: BCL easyConverter Desktop 3 (Word Version).lnk . (.BCL Technologies - BCL easyConverter Desktop 3.0.) C:\Program Files (x86)\BCL Technologies\BCL easyConverter Desktop 3\RTF\EasyConverter.exe =>.BCL Technologies
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrator]: QQPlayer.lnk . (.Tencent Technology Company limited - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>.Superfluous.Tencent
O4 - GS\Quicklaunch [Administrator]: QQ影音.lnk . (.Tencent Technology Company limited - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>.Superfluous.Tencent
O4 - GS\Quicklaunch [Administrator]: Stock It Easy 7.lnk . (...) C:\Program Files (x86)\StockItEasy7\StockItEasy.exe
O4 - GS\Quicklaunch [Administrator]: Winamp.lnk . (.Nullsoft - Winamp.) C:\Program Files (x86)\Winamp\winamp.exe =>.Winamp®
O4 - GS\sendTo [Administrator]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Format Factory.lnk . (.Free Time - FormatFactory.) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe =>.Free Time
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\TaskBar [Administrator]: BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks UpgradePopup App Player.) C:\ProgramData\BlueStacksGameManager\BlueStacks.exe =>.BlueStack Systems, Inc.®
O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Firefox\Firefox.exe %SNF% {39F15C8237BF06AF7FBC5A9F8716762F} =>.Mozilla Corporation
O4 - GS\TaskBar [Administrator]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrator]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Startup [Administrator]: MustaphaCDRom.exe.lnk . (...) C:\mustaphaCDRom1\MustaphaCDRom.exe
O4 - GS\Startup [Administrator]: OneNote 2010 - Capture d’écran et lancement.lnk . (.Microsoft Corporation - Microsoft OneNote Quick Launcher.) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE /tsr =>.Microsoft Corporation®
O4 - GS\Programs [Administrator]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrator]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrator]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\acer\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Guest]: acer.lnk . (...) C:\Users\acer
O4 - GS\Desktop [Guest]: Car Mechanic Simulator 2015.lnk . (...) C:\Program Files (x86)\Car Mechanic Simulator 2015\cms2015.exe
O4 - GS\Desktop [Guest]: Downloads.lnk . (...) C:\Users\acer\Downloads
O4 - GS\Desktop [Guest]: Farming Simulator 15.lnk . (.GIANTS Software GmbH - GIANTS Startup.) C:\Program Files (x86)\Farming Simulator 15\FarmingSimulator2015.exe =>.GIANTS Software GmbH®
O4 - GS\Desktop [Guest]: Format Factory.lnk . (.Free Time - FormatFactory.) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe =>.Free Time
O4 - GS\Desktop [Guest]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Guest]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\Desktop [Guest]: Qoran.lnk . (.Macromedia, Inc. - .) C:\Program Files (x86)\Qoran\Qoran.exe =>.Macromedia, Inc.
O4 - GS\Desktop [Guest]: QQPlayer.lnk . (.Tencent Technology Company limited - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>.Superfluous.Tencent
O4 - GS\Desktop [Guest]: UltraISO.lnk . (.EZB Systems, Inc. - UltraISO Premium Edition.) C:\Program Files (x86)\UltraISO\UltraISO.exe
O4 - GS\Desktop [Guest]: user0 - Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.nuesearch.com/?type=sc&ts=1473433674&z=51a4ac850274ccd53de4a63g7z7m1c5z0c8cfq7m2o&from=che0812&uid=ST500LT012-9WS142_W0V4VMAJXXXXW0V4VMAJ =>.Google Inc®
O4 - GS\Desktop [Guest]: YouCam.lnk . (.CyberLink Corp. - .) C:\Program Files (x86)\zab\YouCam.exe =>.CyberLink Corp.
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\acer\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: BCL easyConverter Desktop 3 (Word Version).lnk . (.BCL Technologies - BCL easyConverter Desktop 3.0.) C:\Program Files (x86)\BCL Technologies\BCL easyConverter Desktop 3\RTF\EasyConverter.exe =>.BCL Technologies
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Guest]: QQPlayer.lnk . (.Tencent Technology Company limited - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>.Superfluous.Tencent
O4 - GS\Quicklaunch [Guest]: QQ影音.lnk . (.Tencent Technology Company limited - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>.Superfluous.Tencent
O4 - GS\Quicklaunch [Guest]: Stock It Easy 7.lnk . (...) C:\Program Files (x86)\StockItEasy7\StockItEasy.exe
O4 - GS\Quicklaunch [Guest]: Winamp.lnk . (.Nullsoft - Winamp.) C:\Program Files (x86)\Winamp\winamp.exe =>.Winamp®
O4 - GS\sendTo [Guest]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Format Factory.lnk . (.Free Time - FormatFactory.) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe =>.Free Time
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\TaskBar [Guest]: BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks UpgradePopup App Player.) C:\ProgramData\BlueStacksGameManager\BlueStacks.exe =>.BlueStack Systems, Inc.®
O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Firefox\Firefox.exe %SNF% {39F15C8237BF06AF7FBC5A9F8716762F} =>.Mozilla Corporation
O4 - GS\TaskBar [Guest]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Guest]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Startup [Guest]: MustaphaCDRom.exe.lnk . (...) C:\mustaphaCDRom1\MustaphaCDRom.exe
O4 - GS\Startup [Guest]: OneNote 2010 - Capture d’écran et lancement.lnk . (.Microsoft Corporation - Microsoft OneNote Quick Launcher.) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE /tsr =>.Microsoft Corporation®
O4 - GS\Programs [Guest]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Guest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Guest]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\acer\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [HelpAssistant]: acer.lnk . (...) C:\Users\acer
O4 - GS\Desktop [HelpAssistant]: Car Mechanic Simulator 2015.lnk . (...) C:\Program Files (x86)\Car Mechanic Simulator 2015\cms2015.exe
O4 - GS\Desktop [HelpAssistant]: Downloads.lnk . (...) C:\Users\acer\Downloads
O4 - GS\Desktop [HelpAssistant]: Farming Simulator 15.lnk . (.GIANTS Software GmbH - GIANTS Startup.) C:\Program Files (x86)\Farming Simulator 15\FarmingSimulator2015.exe =>.GIANTS Software GmbH®
O4 - GS\Desktop [HelpAssistant]: Format Factory.lnk . (.Free Time - FormatFactory.) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe =>.Free Time
O4 - GS\Desktop [HelpAssistant]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [HelpAssistant]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\Desktop [HelpAssistant]: Qoran.lnk . (.Macromedia, Inc. - .) C:\Program Files (x86)\Qoran\Qoran.exe =>.Macromedia, Inc.
O4 - GS\Desktop [HelpAssistant]: QQPlayer.lnk . (.Tencent Technology Company limited - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>.Superfluous.Tencent
O4 - GS\Desktop [HelpAssistant]: UltraISO.lnk . (.EZB Systems, Inc. - UltraISO Premium Edition.) C:\Program Files (x86)\UltraISO\UltraISO.exe
O4 - GS\Desktop [HelpAssistant]: user0 - Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.nuesearch.com/?type=sc&ts=1473433674&z=51a4ac850274ccd53de4a63g7z7m1c5z0c8cfq7m2o&from=che0812&uid=ST500LT012-9WS142_W0V4VMAJXXXXW0V4VMAJ =>.Google Inc®
O4 - GS\Desktop [HelpAssistant]: YouCam.lnk . (.CyberLink Corp. - .) C:\Program Files (x86)\zab\YouCam.exe =>.CyberLink Corp.
O4 - GS\Desktop [HelpAssistant]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\acer\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [HelpAssistant]: BCL easyConverter Desktop 3 (Word Version).lnk . (.BCL Technologies - BCL easyConverter Desktop 3.0.) C:\Program Files (x86)\BCL Technologies\BCL easyConverter Desktop 3\RTF\EasyConverter.exe =>.BCL Technologies
O4 - GS\Quicklaunch [HelpAssistant]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [HelpAssistant]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [HelpAssistant]: QQPlayer.lnk . (.Tencent Technology Company limited - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>.Superfluous.Tencent
O4 - GS\Quicklaunch [HelpAssistant]: QQ影音.lnk . (.Tencent Technology Company limited - QQ Player.) C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>.Superfluous.Tencent
O4 - GS\Quicklaunch [HelpAssistant]: Stock It Easy 7.lnk . (...) C:\Program Files (x86)\StockItEasy7\StockItEasy.exe
O4 - GS\Quicklaunch [HelpAssistant]: Winamp.lnk . (.Nullsoft - Winamp.) C:\Program Files (x86)\Winamp\winamp.exe =>.Winamp®
O4 - GS\sendTo [HelpAssistant]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [HelpAssistant]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [HelpAssistant]: Format Factory.lnk . (.Free Time - FormatFactory.) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe =>.Free Time
O4 - GS\sendTo [HelpAssistant]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\TaskBar [HelpAssistant]: BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks UpgradePopup App Player.) C:\ProgramData\BlueStacksGameManager\BlueStacks.exe =>.BlueStack Systems, Inc.®
O4 - GS\TaskBar [HelpAssistant]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [HelpAssistant]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Firefox\Firefox.exe %SNF% {39F15C8237BF06AF7FBC5A9F8716762F} =>.Mozilla Corporation
O4 - GS\TaskBar [HelpAssistant]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [HelpAssistant]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Startup [HelpAssistant]: MustaphaCDRom.exe.lnk . (...) C:\mustaphaCDRom1\MustaphaCDRom.exe
O4 - GS\Startup [HelpAssistant]: OneNote 2010 - Capture d’écran et lancement.lnk . (.Microsoft Corporation - Microsoft OneNote Quick Launcher.) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE /tsr =>.Microsoft Corporation®
O4 - GS\Programs [HelpAssistant]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [HelpAssistant]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [HelpAssistant]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\acer\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Acronis True Image Home 2011.lnk . (.Acronis - Acronis True Image.) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe =>.Acronis, Inc®
O4 - GS\CommonDesktop [Public]: Acronis Disk Director Home.lnk . (.Acronis - Disk Director 11 Management Console.) C:\Program Files (x86)\Acronis\DiskDirector\ManagementConsole.exe =>.Acronis, Inc®
O4 - GS\CommonDesktop [Public]: Adobe Reader XI.lnk . (.Adobe Systems Incorporated - Adobe Reader.) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: AVG 1-Click Maintenance.lnk . (.AVG Technologies - AVG Maintenance en 1 clic.) C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe =>.AVG Netherlands B.V.®
O4 - GS\CommonDesktop [Public]: AVG PC TuneUp 2015.lnk . (.AVG Technologies - AVG PC TuneUp - Interface de démarrage.) C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe =>.AVG Netherlands B.V.®
O4 - GS\CommonDesktop [Public]: BCL easyConverter Desktop 3 (Word Version).lnk . (.BCL Technologies - BCL easyConverter Desktop 3.0.) C:\Program Files (x86)\BCL Technologies\BCL easyConverter Desktop 3\RTF\EasyConverter.exe =>.BCL Technologies
O4 - GS\CommonDesktop [Public]: BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks UpgradePopup App Player.) C:\ProgramData\BlueStacksGameManager\BlueStacks.exe =>.BlueStack Systems, Inc.®
O4 - GS\CommonDesktop [Public]: Euro Truck Simulator 2.lnk . (.SCS Software - Euro Truck Simulator 2.) C:\Program Files (x86)\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe =>.SCS Software s.r.o.®
O4 - GS\CommonDesktop [Public]: Folder Lock.lnk . (.New Softwares.net. - Folder Lock Application.) C:\Program Files (x86)\NewSoftware's\Folder Lock\Folder Lock.exe =>.Newsoftwares.net, Inc SDN BHD®
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes - Malwarebytes Anti-Malware.) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Firefox\Firefox.exe %SNF% {39F15C8237BF06AF7FBC5A9F8716762F} =>.Mozilla Corporation
O4 - GS\CommonDesktop [Public]: Pro Evolution Soccer 2013.lnk . (.Copyright © 2011 - PESEDIT Selector.) C:\Program Files (x86)\AGB-GT\Pro Evolution Soccer 2013\PESEDIT.exe
O4 - GS\CommonDesktop [Public]: SHAREit.lnk . (...) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{FC965A47-4839-40CA-B618-18F486F042C6}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: Stock It Easy 7.lnk . (...) C:\Program Files (x86)\StockItEasy7\StockItEasy.exe
O4 - GS\CommonDesktop [Public]: USB Disk Security.lnk . (.http://www.zbshareware.com - Antivirus software.) C:\Program Files (x86)\USB Disk Security\USBGuard.exe
O4 - GS\CommonDesktop [Public]: Virtual CD v9.lnk . (.H+H Software GmbH - Toolbox.) C:\Program Files (x86)\Virtual CD v9\System\vc9start.exe {7D7886C85A165EBFC6B7F2E32253F30A}
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (...) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.nuesearch.com/?type=sc&ts=1473433674&z=51a4ac850274ccd53de4a63g7z7m1c5z0c8cfq7m2o&from=che0812&uid=ST500LT012-9WS142_W0V4VMAJXXXXW0V4VMAJ =>.Microsoft Corporation®
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Startup [Public]: SolidWorks Background Downloader.lnk . (.Dassault Systèmes SolidWorks Corp. - sldBgDwldresu.) C:\Program Files (x86)\Common Files\SolidWorks Installation Manager\BackgroundDownloading\sldBgDwld.exe /launch_from 0 =>.Dassault Systemes SolidWorks Corp.®
O4 - GS\Programs [Public]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\acer\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) C:\Windows\system32\NetProj.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\system32\rundll32.exe %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation

---\\ Modification Domaine/Adresses DNS (5) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{E69412D0-A894-4504-9F38-E6D1D2FDB551}: NameServer = 10.142.1.200,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{05E37BCC-68B7-40A7-B3BC-E584C73FDD2A}: DhcpNameServer = 192.168.8.1 192.168.8.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{27371E8B-0324-4C36-93A7-5EECD0E7F483}: DhcpNameServer = 192.168.1.1 0.0.0.0 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{3843DF40-4613-4396-A80C-DA3A9C3DCB37}: DhcpNameServer = 192.168.8.1 192.168.8.1 =>.Local IP Adress

---\\ Protocole additionnel (23) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: skypec2c [64Bits] - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll =>.Skype Software Sarl®
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s
O20 - AppInit_DLLs: . (...) - C:\ProgramData\AppnormanetouQ\Faxnix.dll

---\\ Enumère les données de BootExecute (1) - 1s
O34 - HKLM BootExecute: (aswBoot.exe /M:1c90496b /wow /dir:"C:\Program Files\AVAST Software\Avast")

---\\ Logiciels installés (96) - 36s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000} =>.Igor Pavlov
O42 - Logiciel: Acronis Disk Director Home - (.Acronis.) [HKLM][64Bits] -- {9CCC78EF-027E-40E0-9B61-39932C65E3FE} =>.Acronis
O42 - Logiciel: Acronis True Image Home 2011 - (.Acronis.) [HKLM][64Bits] -- {04A3A6B0-8E19-49BB-82FF-65C5A55F917D} =>.Acronis
O42 - Logiciel: Adobe Flash Player 11 Plugin 64-bit - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Reader XI (11.0.17) - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AB0000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824191728} =>.Adobe Systems Incorporated
O42 - Logiciel: AVG PC TuneUp 2015 - (.AVG Technologies.) [HKLM][64Bits] -- {A996C182-3724-4DF1-A4BC-66154FE57DFE} =>.AVG Technologies
O42 - Logiciel: AVG PC TuneUp 2015 - (.AVG Technologies.) [HKLM][64Bits] -- AVG PC TuneUp =>.AVG Netherlands B.V.®
O42 - Logiciel: AVG PC TuneUp 2015 (en-US) - (.AVG Technologies.) [HKLM][64Bits] -- {4AC74ED1-719B-46DA-8B8A-340FBF892291} =>.AVG Technologies
O42 - Logiciel: Banished v1.0.0 32-bit - (.Shining Rock Software LLC.) [HKLM][64Bits] -- {2AB66B5F-2613-477F-A4B1-CB2E8C7A2943} =>.Shining Rock Software LLC
O42 - Logiciel: BCL easyConverter Desktop 3 (Word Version) - (.BCL Technologies.) [HKLM][64Bits] -- {8C5845B5-729F-40E3-A945-4454E67F65F4} =>.BCL Technologies
O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- {6693B491-7BA8-4A42-A40C-B1BABC8C5339} =>.BlueStack Systems, Inc.
O42 - Logiciel: Broadcom Card Reader Driver Installer - (.Broadcom Corporation.) [HKLM][64Bits] -- {4710662C-8204-4334-A977-B1AC9E547819} =>.Broadcom Corporation
O42 - Logiciel: Broadcom NetLink Controller - (.Broadcom Corporation.) [HKLM][64Bits] -- {C91DCB72-F5BB-410D-A91A-314F5D1B4284} =>.Broadcom Corporation
O42 - Logiciel: buenosearch toolbar - (.Montiera technologies LTD.) [HKLM][64Bits] -- buenosearch =>PUP.Optional.BuenoSearch
O42 - Logiciel: Car Mechanic Simulator 2015 - (...) [HKLM][64Bits] -- Car Mechanic Simulator 2015_is1
O42 - Logiciel: Connectify Hotspot - (.Connectify.) [HKLM][64Bits] -- Connectify =>.Connectify
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D} =>.CyberLink®
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D} =>.CyberLink®
O42 - Logiciel: Ela-Salaty - (.Ela-Salaty.) [HKLM][64Bits] -- Ela-Salaty =>.Ela-Salaty
O42 - Logiciel: Euro Truck Simulator 2 - (.SCS Software.) [HKLM][64Bits] -- {1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1 =>.SCS Software s.r.o.®
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM][64Bits] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7} =>.Skype Limited
O42 - Logiciel: Farming Simulator 15 - (...) [HKLM][64Bits] -- Farming Simulator 15_is1
O42 - Logiciel: Folder Lock - (.New Softwares.net.) [HKLM][64Bits] -- Folder Lock =>.Newsoftwares.net, Inc SDN BHD®
O42 - Logiciel: FormatFactory 3.0.1 - (.Free Time.) [HKLM][64Bits] -- FormatFactory =>.Free Time
O42 - Logiciel: Foxit Reader - (...) [HKLM][64Bits] -- Foxit Reader
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect
O42 - Logiciel: High-Definition Video Playback 10 - (.Nero AG.) [HKLM][64Bits] -- {237CCB62-8454-43E3-B158-3ACD0134852E} =>.Nero AG
O42 - Logiciel: Hola™ 1.16.66 - Better Internet - (.Hola Networks Ltd..) [HKLM][64Bits] -- Hola =>.Hola Networks Ltd.®
O42 - Logiciel: House, M.D. - (.Legacy Interactive.) [HKLM][64Bits] -- House, M.D. =>.Legacy Interactive
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation®
O42 - Logiciel: Intel(R) OpenCL CPU Runtime - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573} =>.Intel Corporation
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} =>.Intel Corporation®
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {09536BA1-E498-4CC3-B834-D884A67D7E34} =>.Intel Corporation
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: Java(TM) 7 Update 4 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86417004FF} =>.Oracle
O42 - Logiciel: Kaspersky Internet Security 2012 - (.Kaspersky Lab.) [HKLM][64Bits] -- {45E557D6-2271-4F13-8101-C620B4285AB0} =>.Kaspersky Lab
O42 - Logiciel: Kaspersky Internet Security 2012 - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{45E557D6-2271-4F13-8101-C620B4285AB0} =>.Kaspersky Lab
O42 - Logiciel: K-Lite Codec Pack 9.6.5 (Full) - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: Magic ISO Maker v5.5 (build 0281) - (...) [HKLM][64Bits] -- Magic ISO Maker v5.5 (build 0281)
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.1.1043 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes
O42 - Logiciel: Mario Forever - (...) [HKLM][64Bits] -- Mario Forever
O42 - Logiciel: Metric Collection SDK 35 - (.Lenovo Group Limited.) [HKLM][64Bits] -- {C2B5B5B0-2545-4E94-B4BA-548D4BF0B196} =>.Lenovo Group Limited
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Primary Interoperability Assemblies 2005 - (.Microsoft Corporation.) [HKLM][64Bits] -- {D24DB8B9-BB6C-4334-9619-BA1C650E13D3} =>.Microsoft Corporation
O42 - Logiciel: Microsoft ReportViewer 2010 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {C19B3EB6-B54C-3204-A4DF-88432E0C79F7} =>.Microsoft Corporation
O42 - Logiciel: Microsoft System CLR Types for SQL Server 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB} =>.Microsoft Corporation
O42 - Logiciel: Microsoft System CLR Types for SQL Server 2012 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F1949145-EB64-4DE7-9D81-E6D27937146C} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Text-to-Speech Engine 4.0 (English) - (...) [HKLM][64Bits] -- MSTTS
O42 - Logiciel: Mobiconnect - (.ZTE Corporation.) [HKLM][64Bits] -- {A9E5EDA7-2E6C-49E7-924B-A32B89C24A04} =>.ZTE CORPORATION®
O42 - Logiciel: Mozilla Firefox 48.0.2 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 48.0.2 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: mysites123 - (...) [HKLM][64Bits] -- mysites123 =>PUP.Optional.Mysites123
O42 - Logiciel: Nero 10 Menu TemplatePack Basic - (.Nero AG.) [HKLM][64Bits] -- {63AA3EAB-23BB-48B2-9AD0-44F878075604} =>.Nero AG
O42 - Logiciel: Nero 10 Movie ThemePack Basic - (.Nero AG.) [HKLM][64Bits] -- {F5CB822F-B365-43D1-BCC0-4FDA1A2017A7} =>.Nero AG
O42 - Logiciel: Nero Burning ROM 10 - (.Nero AG.) [HKLM][64Bits] -- {7A5D731D-B4B3-490E-B339-75685712BAAB} =>.Nero AG
O42 - Logiciel: Nero Control Center 10 - (.Nero AG.) [HKLM][64Bits] -- {6DFB899F-17A2-48F0-A533-ED8D6866CF38} =>.Nero AG
O42 - Logiciel: Nero Core Components 10 - (.Nero AG.) [HKLM][64Bits] -- {2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F} =>.Nero AG
O42 - Logiciel: Nero Dolby Files 10 - (.Nero AG.) [HKLM][64Bits] -- {C3580AC4-C827-4332-B935-9A282ED5BB97} =>.Nero AG
O42 - Logiciel: Nero Express 10 - (.Nero AG.) [HKLM][64Bits] -- {70550193-1C22-445C-8FA4-564E155DB1A7} =>.Nero AG
O42 - Logiciel: Nero Multimedia Suite 10 - (.Nero AG.) [HKLM][64Bits] -- {277C1559-4CF7-44FF-8D07-98AA9C13AABD} =>.Nero AG
O42 - Logiciel: NirSoft Wireless Network Watcher - (...) [HKLM][64Bits] -- NirSoft Wireless Network Watcher
O42 - Logiciel: Opera 12.12 - (.Opera Software ASA.) [HKLM][64Bits] -- Opera 12.12.1707 =>.Opera Software ASA®
O42 - Logiciel: Pompiers Simulator 2014 - Interventions spéciales Version 1.2 - (.rondomedia Marketing & Vertriebs GmbH.) [HKLM][64Bits] -- {8694B919-8C39-41FB-875E-0FC8E3EE3216}_is1
O42 - Logiciel: Pro Evolution Soccer 2013 - (...) [HKLM][64Bits] -- {B46682FC-8665-47D6-9BCF-378186C261AC}_is1
O42 - Logiciel: QQPlayer1.0 Beta2 - (.Tencent.) [HKCU][64Bits] -- QQPlayer =>.Superfluous.Tencent
O42 - Logiciel: Qualcomm Atheros WiFi Driver Installation - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33} =>.Qualcomm Atheros
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.
O42 - Logiciel: SHAREit - (.Lenovo.) [HKLM][64Bits] -- SHAREit_is1 =>.Lenovo
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} =>.Microsoft Corporation
O42 - Logiciel: Skype™ 7.18 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A.
O42 - Logiciel: StockItEasy - (.Stock It Easy.) [HKLM][64Bits] -- STOCKITEASY7Stock It Easy 7 - 32bits =>.Stock It Easy
O42 - Logiciel: StreetFighter2009_TheClash - (.Misterr07.) [HKLM][64Bits] -- StreetFighter2009_TheClash1.0
O42 - Logiciel: SuperCopier2 - (...) [HKLM][64Bits] -- SuperCopier2
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated
O42 - Logiciel: TeLL me More - (...) [HKLM][64Bits] -- TellmeMoreV50
O42 - Logiciel: Tomb Raider III - (...) [HKLM][64Bits] -- Tomb Raider III
O42 - Logiciel: TSearch - (.Company Inc..) [HKLM][64Bits] -- Torrent Search =>.Superfluous.SystemaLimited
O42 - Logiciel: Twin USB Gamepad - (.yanglx.) [HKLM][64Bits] -- {0AD1F05D-15F6-476D-A3BE-E3D5E3E0E023} =>.Macrovision Corporation®
O42 - Logiciel: UltraISO Premium V8.61 - (...) [HKLM][64Bits] -- UltraISO_is1
O42 - Logiciel: UmmyVideoDownloader - (...) [HKLM][64Bits] -- {E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1
O42 - Logiciel: USB Disk Security 5.0.0.72 - (.zbshareware, Inc..) [HKLM][64Bits] -- USB Disk Security_is1
O42 - Logiciel: USB Vibration Joystick - (...) [HKLM][64Bits] -- {4999B2F1-3E74-409A-B8B5-E94448AA9EA6}
O42 - Logiciel: Virtual CD v9 - (.H+H Software GmbH.) [HKLM][64Bits] -- {98A64C75-BFD6-4212-8746-8BADC7ABA79E} =>.Macrovision Corporation®
O42 - Logiciel: VLC media player 2.0.0 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp =>.Nullsoft, Inc
O42 - Logiciel: WinRAR 4.20 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH
O42 - Logiciel: Yahoo! Messenger - (.Yahoo! Inc..) [HKLM][64Bits] -- Yahoo! Messenger =>.Yahoo! Inc.
O42 - Logiciel: القاموس الجامع متعدد اللغات - (...) [HKLM][64Bits] -- ST6UNST #1
O42 - Logiciel: القاموس الجامع متعدد اللغات (C:\Program Files (x86)\القاموس الجامع متعدد ال - (...) [HKLM][64Bits] -- ST6UNST #2

---\\ HKCU & HKLM Software Keys (203) - 36s
HKLM\SOFTWARE\Wow6432Node\8A20D04A0BEC6ADF01CB9E9972984235 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Acronis =>.Acronis
HKLM\SOFTWARE\Wow6432Node\Activision =>.Activision
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Appli
HKLM\SOFTWARE\Wow6432Node\Auralog
HKLM\SOFTWARE\Wow6432Node\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\Wow6432Node\AVG
HKLM\SOFTWARE\Wow6432Node\AviSynth
HKLM\SOFTWARE\Wow6432Node\BCL Technologies =>.BCL Technologies
HKLM\SOFTWARE\Wow6432Node\BlueStacks
HKLM\SOFTWARE\Wow6432Node\BlueStacksGameManager
HKLM\SOFTWARE\Wow6432Node\buenosearch LTD =>PUP.Optional.BuenoSearch
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\CLSID
HKLM\SOFTWARE\Wow6432Node\Conduit =>.Superfluous.Conduit
HKLM\SOFTWARE\Wow6432Node\Core Design
HKLM\SOFTWARE\Wow6432Node\CyberLink =>.CyberLink
HKLM\SOFTWARE\Wow6432Node\Debug
HKLM\SOFTWARE\Wow6432Node\DT Soft
HKLM\SOFTWARE\Wow6432Node\EA GAMES =>.EA Games
HKLM\SOFTWARE\Wow6432Node\EasyBoot Systems
HKLM\SOFTWARE\Wow6432Node\ESET =>.ESET
HKLM\SOFTWARE\Wow6432Node\Firefox
HKLM\SOFTWARE\Wow6432Node\GlarySoft =>.Glarysoft
HKLM\SOFTWARE\Wow6432Node\GNU =>.GNU
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\GreyGray =>PUP.Optional.GreyGray
HKLM\SOFTWARE\Wow6432Node\H+H Software GmbH
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\hdcode
HKLM\SOFTWARE\Wow6432Node\ihpmserver =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Image-Line =>.Image-Line
HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\InterVideo =>.InterVideo
HKLM\SOFTWARE\Wow6432Node\KasperskyLab =>.KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Kaydara
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack
HKLM\SOFTWARE\Wow6432Node\KONAMI =>.Konami
HKLM\SOFTWARE\Wow6432Node\KONAMIPES6
HKLM\SOFTWARE\Wow6432Node\L&H
HKLM\SOFTWARE\Wow6432Node\LAV
HKLM\SOFTWARE\Wow6432Node\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\Wow6432Node\Lenovo =>.Lenovo
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\McAfee.com =>.McAfee.com
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugin
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\mtAppnormanetouQ
HKLM\SOFTWARE\Wow6432Node\mtApService =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\mtQuotenamron =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\Multisoft
HKLM\SOFTWARE\Wow6432Node\mysites123Software =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Nero
HKLM\SOFTWARE\Wow6432Node\Netscape =>.Netscape
HKLM\SOFTWARE\Wow6432Node\NewSoftware's
HKLM\SOFTWARE\Wow6432Node\Ntpad
HKLM\SOFTWARE\Wow6432Node\nuesearchSoftware
HKLM\SOFTWARE\Wow6432Node\Nullsoft =>.Nullsoft
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\ompndb
HKLM\SOFTWARE\Wow6432Node\Opera Software =>.Opera Software
HKLM\SOFTWARE\Wow6432Node\PIP =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Propellerhead Software
HKLM\SOFTWARE\Wow6432Node\Qualcomm Atheros WiFi Driver Installation
HKLM\SOFTWARE\Wow6432Node\Rainbow Technologies =>.Rainbow Technologies
HKLM\SOFTWARE\Wow6432Node\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\SCS Software =>.SCS Software
HKLM\SOFTWARE\Wow6432Node\SHAREit
HKLM\SOFTWARE\Wow6432Node\Skype =>.Skype
HKLM\SOFTWARE\Wow6432Node\SoftVoice
HKLM\SOFTWARE\Wow6432Node\SolidWorks =>.SolidWorks
HKLM\SOFTWARE\Wow6432Node\Synthesia
HKLM\SOFTWARE\Wow6432Node\Tencent =>.Superfluous.Tencent
HKLM\SOFTWARE\Wow6432Node\Toogame
HKLM\SOFTWARE\Wow6432Node\TuneUp =>.TuneUp
HKLM\SOFTWARE\Wow6432Node\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\Wow6432Node\VIS
HKLM\SOFTWARE\Wow6432Node\Voice
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WinRAR =>.WinRAR
HKLM\SOFTWARE\Wow6432Node\WinSaberSvc =>.Superfluous.WinSaber
HKLM\SOFTWARE\Wow6432Node\xvb`lj
HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo!
HKLM\SOFTWARE\Wow6432Node\yanglx
HKLM\SOFTWARE\Wow6432Node\youndooSoftware =>PUP.Optional.Youndoo
HKLM\SOFTWARE\Wow6432Node\zbshareware =>.Zbshareware
HKLM\SOFTWARE\Wow6432Node\zgametb
HKLM\SOFTWARE\Wow6432Node\ZTE Corporation =>.ZTE Corporation
HKLM\SOFTWARE\Wow6432Node\ZTEUSBDriverFlag
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\1ClickDownload =>PUP.Optional.1ClickDownloader
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\8A20D04A0BEC6ADF01CB9E9972984235 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Acronis =>.Acronis
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\APN PIP =>.Superfluous.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Auralog
HKCU\SOFTWARE\AVAST Software =>.AVAST Software
HKCU\SOFTWARE\AVG
HKCU\SOFTWARE\BabSolution =>PUP.Optional.BabSolution
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\buenosearch LTD =>PUP.Optional.BuenoSearch
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Connectify =>.Connectify
HKCU\SOFTWARE\CoreAAC
HKCU\SOFTWARE\csastats
HKCU\SOFTWARE\CyberLink =>.CyberLink
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\DSP-worx
HKCU\SOFTWARE\DT Soft
HKCU\SOFTWARE\EasyBoot Systems
HKCU\SOFTWARE\Ectaco
HKCU\SOFTWARE\Ela-Salaty =>.Ela-Salaty
HKCU\SOFTWARE\EOP Sheet Music
HKCU\SOFTWARE\epsxe
HKCU\SOFTWARE\Facebook =>.Facebook
HKCU\SOFTWARE\Folder Manager
HKCU\SOFTWARE\Foxit Software =>.Foxit Software
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\Gabest =>.Gabest
HKCU\SOFTWARE\GameHouse =>.GameHouse
HKCU\SOFTWARE\GlarySoft =>.Glarysoft
HKCU\SOFTWARE\Glyphic Entertainment, LLC
HKCU\SOFTWARE\GNU =>.GNU
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\GreyGray =>PUP.Optional.GreyGray
HKCU\SOFTWARE\H+H Software GmbH
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\IM
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Image-Line =>.Image-Line
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\KasperskyLab =>.KasperskyLab
HKCU\SOFTWARE\Legacy Interactive =>.Legacy Interactive
HKCU\SOFTWARE\Lenovo =>.Lenovo
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Lockdir
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Magicbit
HKCU\SOFTWARE\MagicISO =>.MagicISO
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\MCAFEE =>.McAfee
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\Multisoft
HKCU\SOFTWARE\NATATA eBook
HKCU\SOFTWARE\Nero
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\NewSoftware's
HKCU\SOFTWARE\Northcode Inc
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software =>.Opera Software
HKCU\SOFTWARE\PC SOFT =>.PC SOFT
HKCU\SOFTWARE\PCTuneUp
HKCU\SOFTWARE\PIP =>Toolbar.Ask
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
HKCU\SOFTWARE\Realtek =>.Realtek
HKCU\SOFTWARE\Red Dot Games
HKCU\SOFTWARE\Rtp
HKCU\SOFTWARE\SFX TEAM =>.SFX TEAM
HKCU\SOFTWARE\SHAREit
HKCU\SOFTWARE\ShieldBt
HKCU\SOFTWARE\Shining Rock Software LLC =>.Shining Rock Software LLC
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\SkypeRS
HKCU\SOFTWARE\SoftVoice
HKCU\SOFTWARE\SolidWorks =>.SolidWorks
HKCU\SOFTWARE\Stock It Easy =>.Stock It Easy
HKCU\SOFTWARE\Synaptics =>.Synaptics
HKCU\SOFTWARE\TeamViewer =>.TeamViewer
HKCU\SOFTWARE\Tencent =>.Superfluous.Tencent
HKCU\SOFTWARE\Toogame
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\undefined =>.Superfluous.Downloader
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\UPmedia
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\VIS
HKCU\SOFTWARE\Winamp
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\Yahoo =>.Yahoo!
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\MB_temp
HKCU\SOFTWARE\AppDataLow\Software

---\\ Contenu des dossiers Programmes (370) - 61s
O43 - CFD: 19/07/2014 - [] D -- C:\Program Files\7-Zip
O43 - CFD: 13/01/2014 - [0] D -- C:\Program Files\Babylon =>PUP.Optional.Babylon
O43 - CFD: 10/07/2013 - [] D -- C:\Program Files\Broadcom =>.Broadcom
O43 - CFD: 01/08/2016 - [] D -- C:\Program Files\Common Files
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 02/04/2016 - [] D -- C:\Program Files\Hola =>.Hola Networks Ltd.®
O43 - CFD: 13/09/2016 - [0] D -- C:\Program Files\Image-Line =>.Image-Line
O43 - CFD: 10/07/2013 - [] D -- C:\Program Files\Intel =>.Intel® Upgrade Service®
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files\Java =>.Oracle America, Inc.®
O43 - CFD: 23/10/2015 - [] D -- C:\Program Files\LingvoSoft
O43 - CFD: 31/12/2010 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files\Microsoft SQL Server
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 07/01/2011 - [] AD -- C:\Program Files\Music
O43 - CFD: 02/01/2011 - [] D -- C:\Program Files\Qoran
O43 - CFD: 27/10/2015 - [] D -- C:\Program Files\Rainbow Dictionary
O43 - CFD: 10/07/2013 - [] D -- C:\Program Files\Realtek =>.Andrea Electronics®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 10/07/2013 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 07/06/2015 - [] D -- C:\Program Files\VID_0810&PID_0001
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 14/09/2016 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 02/01/2011 - [] D -- C:\Program Files\zab =>.CyberLink®
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Acronis =>.Acronis, Inc®
O43 - CFD: 13/09/2016 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 10/02/2015 - [] D -- C:\Program Files (x86)\AGB-GT
O43 - CFD: 10/07/2013 - [] D -- C:\Program Files (x86)\Atheros =>.Atheros
O43 - CFD: 13/10/2015 - [] D -- C:\Program Files (x86)\Auralog
O43 - CFD: 23/09/2015 - [] D -- C:\Program Files (x86)\AVG =>.AVG Netherlands B.V.®
O43 - CFD: 09/05/2015 - [] D -- C:\Program Files (x86)\Babylon =>PUP.Optional.Babylon
O43 - CFD: 29/07/2016 - [] D -- C:\Program Files (x86)\badu
O43 - CFD: 27/02/2011 - [] D -- C:\Program Files (x86)\BCL Technologies =>.BCL Technologies
O43 - CFD: 21/03/2016 - [] D -- C:\Program Files (x86)\BlueStacks
O43 - CFD: 13/01/2014 - [] D -- C:\Program Files (x86)\buenosearch LTD =>PUP.Optional.BuenoSearch
O43 - CFD: 29/07/2016 - [] D -- C:\Program Files (x86)\Car Mechanic Simulator 2015
O43 - CFD: 29/05/2016 - [0] D -- C:\Program Files (x86)\ChordPulse
O43 - CFD: 01/08/2016 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 07/08/2016 - [] D -- C:\Program Files (x86)\Connectify {0855405505DD76BBBC1941783142B1DC} =>.Connectify
O43 - CFD: 14/09/2016 - [] D -- C:\Program Files (x86)\ContentPush
O43 - CFD: 24/07/2014 - [] D -- C:\Program Files (x86)\Core Design
O43 - CFD: 11/07/2015 - [] D -- C:\Program Files (x86)\Counter-Strike 1.6
O43 - CFD: 14/09/2016 - [0] D -- C:\Program Files (x86)\dlsecuretb =>.Superfluous.VisicomMedia
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Ela-Salaty =>.Ela-Salaty
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files (x86)\Elaborate Bytes =>.Elaborate Bytes
O43 - CFD: 13/09/2016 - [] D -- C:\Program Files (x86)\EOPSheetMusic
O43 - CFD: 11/02/2011 - [] D -- C:\Program Files (x86)\Euro Truck Simulator 2 =>.SCS Software s.r.o.®
O43 - CFD: 13/09/2016 - [] D -- C:\Program Files (x86)\EveryonePiano
O43 - CFD: 28/07/2016 - [] D -- C:\Program Files (x86)\Farming Simulator 15 =>.GIANTS Software GmbH®
O43 - CFD: 03/02/2011 - [] D -- C:\Program Files (x86)\FileZilla FTP Client =>.CyberLink®
O43 - CFD: 09/09/2016 - [] AD -- C:\Program Files (x86)\Firefox {39F15C8237BF06AF7FBC5A9F8716762F} =>Adware.Firefox
O43 - CFD: 21/10/2014 - [] D -- C:\Program Files (x86)\Foxit Reader =>.Foxit Corporation®
O43 - CFD: 05/11/2015 - [] D -- C:\Program Files (x86)\FreeTime
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\GetData
O43 - CFD: 14/09/2016 - [] D -- C:\Program Files (x86)\Gititysabpy =>.Superfluous.Tencent
O43 - CFD: 03/02/2011 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 28/11/2015 - [] D -- C:\Program Files (x86)\GreyGray =>PUP.Optional.GreyGray
O43 - CFD: 13/09/2016 - [] D -- C:\Program Files (x86)\Image-Line =>.Image-Line
O43 - CFD: 14/09/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.Macrovision Corporation®
O43 - CFD: 10/07/2013 - [] D -- C:\Program Files (x86)\Intel =>.Intel
O43 - CFD: 04/12/2015 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 14/09/2016 - [] D -- C:\Program Files (x86)\Kaspersky Lab =>.Kaspersky Lab®
O43 - CFD: 03/08/2016 - [] D -- C:\Program Files (x86)\Legacy Interactive =>.Legacy Interactive
O43 - CFD: 15/08/2016 - [] D -- C:\Program Files (x86)\Lenovo =>.Lenovo
O43 - CFD: 01/08/2016 - [] D -- C:\Program Files (x86)\MagicISO =>.MagicISO
O43 - CFD: 14/09/2016 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes Corporation®
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 14/12/2015 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 07/12/2015 - [] D -- C:\Program Files (x86)\Microsoft OneDrive =>.Microsoft Corporation®
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Microsoft SDKs
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation®
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft.NET
O43 - CFD: 14/09/2016 - [] D -- C:\Program Files (x86)\Mobiconnect =>.ZTE CORPORATION®
O43 - CFD: 05/09/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 06/09/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Nero =>.Nero AG®
O43 - CFD: 26/01/2016 - [] D -- C:\Program Files (x86)\NewSoftware's =>.Newsoftwares.net, Inc SDN BHD®
O43 - CFD: 23/02/2014 - [] D -- C:\Program Files (x86)\NirSoft =>.NirSoft
O43 - CFD: 03/02/2011 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Opera =>.Opera Software ASA®
O43 - CFD: 03/08/2016 - [0] D -- C:\Program Files (x86)\p7pwzqp9
O43 - CFD: 07/08/2016 - [] D -- C:\Program Files (x86)\Plant Firefighter Simulator 2014
O43 - CFD: 12/08/2016 - [] D -- C:\Program Files (x86)\RAR Password Unlocker
O43 - CFD: 17/03/2016 - [] D -- C:\Program Files (x86)\RayDld {7139FCDFBCBE8B1F46CD4E50E4CA5E7D} =>PUP.Optional.CrossRider
O43 - CFD: 10/07/2013 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 31/07/2014 - [] D -- C:\Program Files (x86)\Shining Rock Software LLC =>.Shining Rock Software LLC
O43 - CFD: 24/01/2016 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 31/05/2014 - [] D -- C:\Program Files (x86)\StreetFighter2009_TheClash
O43 - CFD: 04/01/2011 - [] D -- C:\Program Files (x86)\SuperCopier2
O43 - CFD: 26/06/2014 - [] D -- C:\Program Files (x86)\SupportAppCB =>.ZTE CORPORATION®
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\TeamViewer =>.TeamViewer®
O43 - CFD: 10/07/2013 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 04/01/2011 - [] D -- C:\Program Files (x86)\Tencent =>.Superfluous.Tencent
O43 - CFD: 03/02/2011 - [] D -- C:\Program Files (x86)\Tennis Elbow 2011
O43 - CFD: 25/08/2016 - [] HD -- C:\Program Files (x86)\tn47D9F
O43 - CFD: 08/03/2014 - [] D -- C:\Program Files (x86)\TornTV.com =>PUP.Optional.TornTV
O43 - CFD: 10/09/2016 - [] D -- C:\Program Files (x86)\Torrent Search =>PUP.Optional.YouTubeAdBlock
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files (x86)\UltraISO
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\USB Disk Security
O43 - CFD: 07/06/2015 - [] D -- C:\Program Files (x86)\USB Vibration =>.InstallShield Software Corporation®
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\uTorrent =>.BitTorrent Inc®
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLAN
O43 - CFD: 13/10/2015 - [] D -- C:\Program Files (x86)\Virtual CD v9 {7D7886C85A165EBFC6B7F2E32253F30A}
O43 - CFD: 29/07/2016 - [0] D -- C:\Program Files (x86)\WeatherChickn =>.Superfluous.WeatherChickn
O43 - CFD: 01/03/2011 - [] D -- C:\Program Files (x86)\Winamp =>.Winamp®
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 07/01/2016 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 27/01/2011 - [] D -- C:\Program Files (x86)\WinRAR =>.WinRAR
O43 - CFD: 03/08/2016 - [] D -- C:\Program Files (x86)\WinSaber {1B5D997D61943E8FF1BDF34C65EE5719} =>PUP.Optional.winsaber
O43 - CFD: 12/08/2016 - [0] D -- C:\Program Files (x86)\WinZipper =>.Superfluous.TaiwanShuiMu
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Yahoo! =>.Yahoo!
O43 - CFD: 21/02/2016 - [] D -- C:\Program Files (x86)\القاموس الجامع متعدد اللغات
O43 - CFD: 13/02/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 13/02/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis =>.Acronis
O43 - CFD: 13/02/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 23/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015
O43 - CFD: 27/02/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BCL easyConverter Desktop 3
O43 - CFD: 23/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Buziol Games
O43 - CFD: 29/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Car Mechanic Simulator 2015
O43 - CFD: 07/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Collection TeLL me More
O43 - CFD: 24/07/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Design
O43 - CFD: 11/07/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
O43 - CFD: 01/01/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
O43 - CFD: 11/02/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2
O43 - CFD: 28/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farming Simulator 15
O43 - CFD: 26/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folder Lock
O43 - CFD: 13/02/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 14/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line =>.Image-Line
O43 - CFD: 10/07/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel =>.Intel
O43 - CFD: 04/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 13/02/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 14/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2012
O43 - CFD: 03/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Legacy Interactive =>.Legacy Interactive
O43 - CFD: 15/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LenovoSHAREit
O43 - CFD: 01/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MagicISO =>.MagicISO
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 14/09/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 14/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 26/06/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobiconnect
O43 - CFD: 12/02/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Multisoft
O43 - CFD: 13/02/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
O43 - CFD: 19/07/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PESEdit.com 2013 Patch
O43 - CFD: 07/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pompiers Simulator 2014 - Interventions spéciales
O43 - CFD: 18/07/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2013
O43 - CFD: 13/02/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
O43 - CFD: 12/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype =>.Skype
O43 - CFD: 03/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolidWorks Installation Manager
O43 - CFD: 14/09/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 08/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stock It Easy =>.Stock It Easy
O43 - CFD: 21/11/2010 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 04/01/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent =>.Superfluous.Tencent
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
O43 - CFD: 05/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UmmyVideoDownloader
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security
O43 - CFD: 27/01/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLAN
O43 - CFD: 13/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual CD v9
O43 - CFD: 01/03/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
O43 - CFD: 27/01/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 13/02/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
O43 - CFD: 14/09/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Èãðû
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\الزهري للبرمجيات
O43 - CFD: 18/03/2014 - [] D -- C:\ProgramData\3ccf32d7f7498017
O43 - CFD: 24/07/2014 - [0] D -- C:\ProgramData\4shared Desktop
O43 - CFD: 13/07/2013 - [] D -- C:\ProgramData\Acronis =>.Acronis
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 24/07/2014 - [] D -- C:\ProgramData\APN =>Toolbar.Ask
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 14/09/2016 - [] D -- C:\ProgramData\AppnormanetouQ
O43 - CFD: 14/09/2016 - [] D -- C:\ProgramData\AppnormanetouQs
O43 - CFD: 10/07/2013 - [] D -- C:\ProgramData\Atheros =>.Atheros
O43 - CFD: 04/09/2015 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 23/09/2015 - [] D -- C:\ProgramData\AVG =>.AVG Software
O43 - CFD: 21/03/2016 - [] D -- C:\ProgramData\BlueStacks
O43 - CFD: 08/06/2016 - [] D -- C:\ProgramData\BlueStacksGameManager
O43 - CFD: 14/09/2016 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 07/05/2015 - [] D -- C:\ProgramData\Bsoft
O43 - CFD: 10/09/2016 - [] D -- C:\ProgramData\ChelfNotify
O43 - CFD: 23/09/2015 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 07/08/2016 - [] D -- C:\ProgramData\Connectify =>.Connectify
O43 - CFD: 02/02/2011 - [] D -- C:\ProgramData\CyberLink =>.CyberLink
O43 - CFD: 13/02/2013 - [] D -- C:\ProgramData\DAEMON Tools Pro
O43 - CFD: 14/09/2016 - [] D -- C:\ProgramData\DCHP =>PUP.Optional.Salus
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 03/08/2016 - [] D -- C:\ProgramData\HouseDemo
O43 - CFD: 09/01/2014 - [0] D -- C:\ProgramData\IDM =>.IDM
O43 - CFD: 07/05/2015 - [] D -- C:\ProgramData\InstallMate =>.Superfluous.Tarma
O43 - CFD: 10/07/2013 - [] D -- C:\ProgramData\Intel =>.Intel
O43 - CFD: 14/09/2016 - [] D -- C:\ProgramData\Kaspersky Lab =>.Kaspersky Lab
O43 - CFD: 18/07/2014 - [] D -- C:\ProgramData\KONAMI =>.Konami
O43 - CFD: 05/04/2016 - [] D -- C:\ProgramData\Lavasoft =>.Lavasoft
O43 - CFD: 15/08/2016 - [] D -- C:\ProgramData\Lenovo =>.Lenovo
O43 - CFD: 01/05/2016 - [] D -- C:\ProgramData\Local Settings
O43 - CFD: 14/09/2016 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 13/01/2014 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 07/12/2015 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft
O43 - CFD: 14/12/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 13/02/2013 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 13/02/2013 - [] D -- C:\ProgramData\Mozilla =>.Mozilla
O43 - CFD: 13/02/2013 - [] D -- C:\ProgramData\Nero
O43 - CFD: 01/04/2015 - [] D -- C:\ProgramData\NFS Underground
O43 - CFD: 26/06/2014 - [0] D -- C:\ProgramData\PreventPlay
O43 - CFD: 07/04/2016 - [] D -- C:\ProgramData\Quotenamrons =>PUP.Optional.Salus
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 22/01/2016 - [] D -- C:\ProgramData\Skype =>.Skype
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 22/04/2016 - [] D -- C:\ProgramData\StockItEasy7
O43 - CFD: 14/09/2016 - [0] AD -- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 01/02/2011 - [] D -- C:\ProgramData\Tencent =>.Superfluous.Tencent
O43 - CFD: 27/05/2016 - [] D -- C:\ProgramData\Torrent_Search_PED
O43 - CFD: 03/02/2011 - [0] D -- C:\ProgramData\TuneUp Software =>.TuneUp Software
O43 - CFD: 13/02/2013 - [] D -- C:\ProgramData\Yahoo! =>.Yahoo!
O43 - CFD: 03/02/2011 - [0] D -- C:\ProgramData\Zbshareware Lab =>.Zbshareware Lab
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Common Files\Acronis =>.Acronis
O43 - CFD: 27/05/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 14/09/2016 - [0] D -- C:\Program Files (x86)\Common Files\Anron
O43 - CFD: 04/09/2015 - [] D -- C:\Program Files (x86)\Common Files\AV
O43 - CFD: 14/12/2015 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files (x86)\Common Files\EZB Systems
O43 - CFD: 14/09/2016 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 10/07/2013 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel
O43 - CFD: 10/07/2013 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation =>.Intel Corporation
O43 - CFD: 23/09/2015 - [] D -- C:\Program Files (x86)\Common Files\LENOVO =>.Lenovo
O43 - CFD: 16/01/2016 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 10/07/2013 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 01/08/2016 - [] D -- C:\Program Files (x86)\Common Files\Propellerhead Software
O43 - CFD: 01/03/2011 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 12/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Skype =>.Skype
O43 - CFD: 03/07/2016 - [] D -- C:\Program Files (x86)\Common Files\SolidWorks Installation Manager
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 13/02/2013 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 16/07/2013 - [] D -- C:\Users\acer\AppData\Roaming\Acronis =>.Acronis
O43 - CFD: 08/12/2015 - [] D -- C:\Users\acer\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 02/10/2015 - [] D -- C:\Users\acer\AppData\Roaming\APOX
O43 - CFD: 06/09/2015 - [] D -- C:\Users\acer\AppData\Roaming\AVAST Software =>.AVAST Software
O43 - CFD: 23/09/2015 - [] D -- C:\Users\acer\AppData\Roaming\AVG =>.AVG Software
O43 - CFD: 13/01/2014 - [] D -- C:\Users\acer\AppData\Roaming\BabSolution =>PUP.Optional.BabSolution
O43 - CFD: 12/07/2013 - [] D -- C:\Users\acer\AppData\Roaming\CyberLink =>.CyberLink
O43 - CFD: 14/09/2016 - [] D -- C:\Users\acer\AppData\Roaming\DMCache
O43 - CFD: 09/09/2016 - [] D -- C:\Users\acer\AppData\Roaming\Firefox =>Adware.Firefox
O43 - CFD: 20/07/2014 - [] D -- C:\Users\acer\AppData\Roaming\Foxit Software =>.Foxit Software
O43 - CFD: 14/09/2016 - [0] D -- C:\Users\acer\AppData\Roaming\gnupg
O43 - CFD: 14/09/2016 - [] D -- C:\Users\acer\AppData\Roaming\IDM =>.IDM
O43 - CFD: 14/09/2016 - [] D -- C:\Users\acer\AppData\Roaming\Intel Corporation =>.Intel Corporation
O43 - CFD: 14/09/2016 - [] D -- C:\Users\acer\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 03/06/2016 - [] SD -- C:\Users\acer\AppData\Roaming\Microsoft =>.Microsoft
O43 - CFD: 14/07/2013 - [] D -- C:\Users\acer\AppData\Roaming\Mozilla =>.Mozilla
O43 - CFD: 02/02/2016 - [] D -- C:\Users\acer\AppData\Roaming\mysites123 =>PUP.Optional.Mysites123
O43 - CFD: 04/01/2011 - [] D -- C:\Users\acer\AppData\Roaming\Nero
O43 - CFD: 05/04/2016 - [] D -- C:\Users\acer\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
O43 - CFD: 12/07/2013 - [] D -- C:\Users\acer\AppData\Roaming\Opera
O43 - CFD: 20/07/2013 - [] D -- C:\Users\acer\AppData\Roaming\PowerISO
O43 - CFD: 29/07/2016 - [] D -- C:\Users\acer\AppData\Roaming\Profiles
O43 - CFD: 23/09/2015 - [] D -- C:\Users\acer\AppData\Roaming\RHEng =>.Superfluous.Conduit
O43 - CFD: 14/09/2016 - [] D -- C:\Users\acer\AppData\Roaming\Skype =>.Skype
O43 - CFD: 03/07/2016 - [] D -- C:\Users\acer\AppData\Roaming\SolidWorks =>.SolidWorks
O43 - CFD: 28/07/2016 - [] D -- C:\Users\acer\AppData\Roaming\Steam
O43 - CFD: 13/09/2016 - [] D -- C:\Users\acer\AppData\Roaming\Synthesia
O43 - CFD: 03/06/2016 - [] D -- C:\Users\acer\AppData\Roaming\TeamViewer =>.TeamViewer
O43 - CFD: 01/02/2011 - [] D -- C:\Users\acer\AppData\Roaming\Tencent =>.Superfluous.Tencent
O43 - CFD: 08/10/2015 - [] D -- C:\Users\acer\AppData\Roaming\Tomabo =>.Tomabo
O43 - CFD: 03/08/2016 - [] D -- C:\Users\acer\AppData\Roaming\TSv =>.Superfluous.Elex
O43 - CFD: 03/02/2011 - [0] D -- C:\Users\acer\AppData\Roaming\TuneUp Software =>.TuneUp Software
O43 - CFD: 13/09/2016 - [] D -- C:\Users\acer\AppData\Roaming\uTorrent
O43 - CFD: 14/09/2016 - [] D -- C:\Users\acer\AppData\Roaming\vlc
O43 - CFD: 13/09/2016 - [] D -- C:\Users\acer\AppData\Roaming\Winamp
O43 - CFD: 13/07/2013 - [] D -- C:\Users\acer\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 04/08/2016 - [] D -- C:\Users\acer\AppData\Roaming\WinZiper =>.Superfluous.WinZipper
O43 - CFD: 16/07/2013 - [] D -- C:\Users\acer\AppData\Roaming\Yahoo! =>.Yahoo!
O43 - CFD: 23/09/2015 - [] D -- C:\Users\acer\AppData\Roaming\Youtube Downloader HD
O43 - CFD: 10/07/2013 - [] D -- C:\Users\acer\AppData\Roaming\Zbshareware Lab =>.Zbshareware Lab
O43 - CFD: 14/09/2016 - [] D -- C:\Users\acer\AppData\Roaming\ZHP
O43 - CFD: 08/12/2015 - [] D -- C:\Users\acer\AppData\Local\Adobe =>.Adobe
O43 - CFD: 10/07/2013 - [0] SHD -- C:\Users\acer\AppData\Local\Application Data
O43 - CFD: 01/10/2013 - [] D -- C:\Users\acer\AppData\Local\Apps
O43 - CFD: 10/07/2013 - [] D -- C:\Users\acer\AppData\Local\AutorunX2
O43 - CFD: 23/09/2015 - [] D -- C:\Users\acer\AppData\Local\Avg =>.AVG Software
O43 - CFD: 21/03/2016 - [] D -- C:\Users\acer\AppData\Local\Bluestacks
O43 - CFD: 11/03/2016 - [] D -- C:\Users\acer\AppData\Local\Buenosearch =>PUP.Optional.BuenoSearch
O43 - CFD: 18/03/2014 - [] D -- C:\Users\acer\AppData\Local\Comodo =>.COMODO
O43 - CFD: 12/07/2013 - [] D -- C:\Users\acer\AppData\Local\CyberLink =>.CyberLink
O43 - CFD: 10/01/2014 - [0] D -- C:\Users\acer\AppData\Local\Deployment
O43 - CFD: 14/09/2016 - [] D -- C:\Users\acer\AppData\Local\ElevatedDiagnostics
O43 - CFD: 16/01/2014 - [] D -- C:\Users\acer\AppData\Local\Facebook =>.Facebook
O43 - CFD: 09/09/2016 - [] D -- C:\Users\acer\AppData\Local\Firefox =>Adware.Firefox
O43 - CFD: 28/09/2015 - [] D -- C:\Users\acer\AppData\Local\Google =>.Google
O43 - CFD: 16/01/2014 - [0] D -- C:\Users\acer\AppData\Local\Help
O43 - CFD: 10/07/2013 - [0] SHD -- C:\Users\acer\AppData\Local\History
O43 - CFD: 02/04/2016 - [] D -- C:\Users\acer\AppData\Local\Hola =>PUP.Optional.HolaSearch
O43 - CFD: 14/09/2016 - [] D -- C:\Users\acer\AppData\Local\ITSsoft
O43 - CFD: 08/08/2016 - [0] D -- C:\Users\acer\AppData\Local\Lenovo =>.Lenovo
O43 - CFD: 07/12/2015 - [] D -- C:\Users\acer\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 11/01/2011 - [] D -- C:\Users\acer\AppData\Local\Microsoft Games
O43 - CFD: 11/01/2011 - [0] D -- C:\Users\acer\AppData\Local\Microsoft Help
O43 - CFD: 12/01/2014 - [] D -- C:\Users\acer\AppData\Local\Mozilla =>.Mozilla
O43 - CFD: 03/01/2011 - [0] D -- C:\Users\acer\AppData\Local\NFS Underground 2
O43 - CFD: 03/01/2011 - [] D -- C:\Users\acer\AppData\Local\NVIDIA Corporation =>.NVIDIA Corporation
O43 - CFD: 12/07/2013 - [] D -- C:\Users\acer\AppData\Local\Opera
O43 - CFD: 13/11/2014 - [0] D -- C:\Users\acer\AppData\Local\PackageAware =>PUP.Optional.BearShare
O43 - CFD: 29/07/2016 - [] D -- C:\Users\acer\AppData\Local\Profiles
O43 - CFD: 10/07/2015 - [] D -- C:\Users\acer\AppData\Local\Programs
O43 - CFD: 31/10/2015 - [] D -- C:\Users\acer\AppData\Local\PunkBuster
O43 - CFD: 27/05/2016 - [] D -- C:\Users\acer\AppData\Local\RtbSync
O43 - CFD: 15/08/2016 - [] D -- C:\Users\acer\AppData\Local\SHAREit
O43 - CFD: 11/03/2016 - [] D -- C:\Users\acer\AppData\Local\ShdUpdate
O43 - CFD: 12/12/2015 - [0] D -- C:\Users\acer\AppData\Local\Skype =>.Skype
O43 - CFD: 29/07/2016 - [] D -- C:\Users\acer\AppData\Local\stamitherstijiwardjge
O43 - CFD: 14/09/2016 - [] D -- C:\Users\acer\AppData\Local\Temp
O43 - CFD: 10/07/2013 - [0] SHD -- C:\Users\acer\AppData\Local\Temporary Internet Files
O43 - CFD: 18/03/2014 - [] D -- C:\Users\acer\AppData\Local\Torch =>.Superfluous.Torch
O43 - CFD: 05/04/2016 - [] D -- C:\Users\acer\AppData\Local\UmmyVideoDownloader
O43 - CFD: 14/09/2016 - [] D -- C:\Users\acer\AppData\Local\UPmedia
O43 - CFD: 27/05/2016 - [] D -- C:\Users\acer\AppData\Local\VLCUpdate
O43 - CFD: 08/03/2016 - [] D -- C:\Users\acer\AppData\Local\WDSetup
O43 - CFD: 10/07/2015 - [0] D -- C:\Users\acer\AppData\Local\Programs\Common
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 10/07/2013 - [] RD -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 23/07/2015 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Buziol Games
O43 - CFD: 07/08/2016 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Connectify Hotspot
O43 - CFD: 05/11/2015 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory =>.FormatFactory
O43 - CFD: 22/07/2016 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 14/09/2016 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line =>.Image-Line
O43 - CFD: 04/12/2015 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 03/08/2016 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Legacy Interactive =>.Legacy Interactive
O43 - CFD: 01/08/2016 - [0] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MagicISO =>.MagicISO
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 23/02/2014 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft Wireless Network Watcher
O43 - CFD: 31/07/2014 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Shining Rock Software LLC =>.Shining Rock Software LLC
O43 - CFD: 14/09/2016 - [] RD -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 01/04/2015 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StreetFighter2009_TheClash
O43 - CFD: 04/01/2011 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SuperCopier2
O43 - CFD: 04/01/2011 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tencent =>.Superfluous.Tencent
O43 - CFD: 27/01/2011 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 16/01/2016 - [0] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\الزهري للبرمجيات
O43 - CFD: 11/06/2014 - [] D -- C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
O43 - CFD: 23/09/2015 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Avg =>.AVG Software
O43 - CFD: 01/02/2011 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\Google =>.Google
O43 - CFD: 11/12/2015 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 04/03/2011 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\NVIDIA Corporation =>.NVIDIA Corporation
O43 - CFD: 30/07/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\Temp

---\\ Derniers fichiers créés dans Windows Prefetcher (3) - 7s
O45 - LFCP:[MD5.69715D8A1698915C7FE4702642828EF9] 14/09/2016 A -- C:\Windows\Prefetch\BABMAINT.EXE-55735BBB.pf =>PUP.Optional.BabSolution
O45 - LFCP:[MD5.222B13F2C8310DA5AB10AD0D53E45FC7] 14/09/2016 A -- C:\Windows\Prefetch\BUENOSEARCHUPDT.EXE-C9A86165.pf =>PUP.Optional.BuenoSearch
O45 - LFCP:[MD5.9547ABC0D50771334E996CDCB47698ED] 12/09/2016 A -- C:\Windows\Prefetch\FIREFOX.EXE-18ACFCFF.pf =>Adware.Firefox

---\\ ShellIconOverlayIdentifiers (SIOI) (12) - 1s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\acer\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\acer\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\acer\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\acer\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\acer\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation

---\\ Liste des pilotes du système (84) - 11s
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2013/02/13 13:58:30 A . (.Acronis - File Level CDP Kernel Helper.) -- C:\Windows\System32\drivers\afcdp.sys [279136] =>.Acronis, Inc®
O58 - SDL:2009/07/14 02:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2010/11/21 04:23:47 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2010/11/21 04:23:47 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2012/01/11 05:38:28 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\drivers\athrx.sys [2801664] =>.Atheros Communications, Inc.
O58 - SDL:2009/06/10 21:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2011/11/04 18:21:36 A . (.Broadcom Corporation - Broadcom xD Picture Card Bus Driver.) -- C:\Windows\System32\drivers\b57xdbd.sys [68648] =>.Broadcom Corporation®
O58 - SDL:2011/11/04 18:21:38 A . (.Broadcom Corporation - Broadcom xD Picture Card Miniport Driver.) -- C:\Windows\System32\drivers\b57xdmp.sys [19496] =>.Broadcom Corporation®
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 02:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2011/09/02 22:36:58 A . (.Broadcom Corporation - Broadcom Memory Stick Driver.) -- C:\Windows\System32\drivers\bScsiMSa.sys [51752] =>.Broadcom Corporation®
O58 - SDL:2012/06/02 01:35:58 A . (.Broadcom Corporation - Broadcom SD 3.0 Driver.) -- C:\Windows\System32\drivers\bScsiSDa.sys [83576] =>.Broadcom Corporation®
O58 - SDL:2009/06/10 21:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2016/07/20 14:41:02 A . (.Connectify - Connectify NDISRD helper driver.) -- C:\Windows\System32\drivers\cfywlan1.sys [36736] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2010/08/20 10:49:06 A . (.CyberLink Corporation - CyberLink WebCam Virtual Driver.) -- C:\Windows\System32\drivers\clwvd.sys [31088] =>.CyberLink®
O58 - SDL:2009/07/14 02:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2008/08/30 01:54:30 A . (.Mobile Connector - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\cmusbser.sys [118144] =>.Mobile Connector
O58 - SDL:2016/01/16 08:38:28 A . (.Connectify - NDIS filter driver.) -- C:\Windows\System32\drivers\cnnctfy2.sys [31344] =>.Connectify®
O58 - SDL:2016/07/20 14:41:02 A . (.Connectify - CNNCTFY helper driver.) -- C:\Windows\System32\drivers\cnnctfy3.sys [43872] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2009/07/14 02:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2009/06/10 21:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2009/06/10 21:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2011/11/10 10:04:14 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [60184] =>.Intel Corporation®
O58 - SDL:2007/01/23 10:40:04 A . (.H+H Software GmbH - H+H CDROM Helper 64-Bit Driver.) -- C:\Windows\System32\drivers\HH9Help.sys [24344] {7D7886C85A165EBFC6B7F2E32253F30A}
O58 - SDL:2010/11/21 04:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows®
O58 - SDL:2012/02/02 00:16:40 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [568600] =>.Intel Corporation®
O58 - SDL:2010/11/21 04:23:47 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows®
O58 - SDL:2015/06/12 03:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [197616] =>.Tonec Inc.®
O58 - SDL:2012/03/27 03:09:54 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [14748416] =>.Intel Corporation
O58 - SDL:2009/07/14 02:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2011/12/06 12:23:08 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [331264] =>.Intel(R) Corporation
O58 - SDL:2012/01/19 08:30:42 A . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS.) -- C:\Windows\System32\drivers\k57nd60a.sys [435240] =>.Broadcom Corporation®
O58 - SDL:2011/03/04 13:23:24 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\Windows\System32\drivers\kl1.sys [460888] =>.Kaspersky Lab®
O58 - SDL:2011/03/04 13:23:28 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\Windows\System32\drivers\kl2.sys [11864] =>.Kaspersky Lab®
O58 - SDL:2016/09/14 14:56:29 A . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_AMD64].) -- C:\Windows\System32\drivers\klif.sys [615728] =>.Kaspersky Lab®
O58 - SDL:2011/03/10 18:36:24 A . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) -- C:\Windows\System32\drivers\klim6.sys [29488] =>.Kaspersky Lab®
O58 - SDL:2009/11/02 20:27:10 A . (.Kaspersky Lab - KLMOUFLT Mouse Device Filter [fre_wlh_AMD64.) -- C:\Windows\System32\drivers\klmouflt.sys [22544] =>.Kaspersky Lab®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2011/08/29 11:42:56 A . (.MBB Incorporated - CDROM Filter.) -- C:\Windows\System32\drivers\massfilter.sys [11776] =>.MBB Incorporated
O58 - SDL:2016/03/10 14:08:54 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [27008] =>.Malwarebytes Corporation®
O58 - SDL:2016/03/10 14:08:58 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [140672] =>.Malwarebytes Corporation®
O58 - SDL:2016/09/14 15:40:31 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2016/03/10 14:09:06 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [64896] =>.Malwarebytes Corporation®
O58 - SDL:2009/06/02 19:15:30 A . (.Egis Technology Inc. - PSD Filter Driver.) -- C:\Windows\System32\drivers\mwlPSDFilter.sys [22576] =>.EGIS TECHNOLOGY INC.®
O58 - SDL:2009/06/02 19:15:30 A . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) -- C:\Windows\System32\drivers\mwlPSDNserv.sys [20016] =>.EGIS TECHNOLOGY INC.®
O58 - SDL:2009/06/02 19:15:30 A . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) -- C:\Windows\System32\drivers\mwlPSDVDisk.sys [60464] =>.EGIS TECHNOLOGY INC.®
O58 - SDL:2009/07/14 02:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2010/11/21 04:23:47 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows®
O58 - SDL:2010/11/21 04:23:47 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2012/01/03 11:55:54 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4730344] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/06/10 21:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 02:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2012/02/14 05:33:02 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver.sys [22800] =>.Synaptics Incorporated®
O58 - SDL:2013/02/13 13:58:22 A . (.Acronis - Acronis Snapshot API.) -- C:\Windows\System32\drivers\snapman.sys [277088] =>.Acronis, Inc®
O58 - SDL:2009/07/14 02:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2012/02/14 05:33:08 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\drivers\SynTP.sys [412944] =>.Synaptics Incorporated®
O58 - SDL:2013/02/13 13:58:28 A . (.Acronis - Acronis Try&Decide Volume Filter Driver.) -- C:\Windows\System32\drivers\tdrpm273.sys [1263200] =>.Acronis, Inc®
O58 - SDL:2013/02/13 13:58:27 A . (.Acronis - Acronis Backup Archive Explorer.) -- C:\Windows\System32\drivers\timntr.sys [970336] =>.Acronis, Inc®
O58 - SDL:2007/01/23 09:20:34 A . (.H+H Software GmbH - Virtual CD - BusEnumerator 64-Bit Driver.) -- C:\Windows\System32\drivers\vcd9bus.sys [40216] {7D7886C85A165EBFC6B7F2E32253F30A}
O58 - SDL:2013/07/24 16:02:55 A . (.Elaborate Bytes AG - Virtual CloneDrive storage miniport.) -- C:\Windows\System32\drivers\VClone.sys [34816] =>.Elaborate Bytes AG
O58 - SDL:2007/11/14 12:43:30 A . (.H+H Software GmbH - Virtual CD - XP / 2003 / Vista Driver 64-Bi.) -- C:\Windows\System32\drivers\vdrv9000.sys [128528] {7D7886C85A165EBFC6B7F2E32253F30A}
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys [123264] =>.ZTE Incorporated
O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbnmea.sys [123264] =>.ZTE Incorporated
O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbser6k.sys [123264] =>.ZTE Incorporated

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (11) - 19s
O61 - LFC: 2016/09/13 23:14:59 A . (..) -- C:\Users\acer\Downloads\Shareit\Document\IDM 6.11 Build 7\idman611.exe [107928]
O61 - LFC: 2016/09/13 23:15:00 A . (..) -- C:\Users\acer\Downloads\Shareit\Document\IDM 6.11 Build 7\Patch\IDMan.exe [107838]
O61 - LFC: 2016/09/13 23:14:50 A . (..) -- C:\Users\acer\AppData\Roaming\BabSolution\Shared\GUninstaller.exe [107738] =>PUP.Optional.BabSolution
O61 - LFC: 2016/09/14 15:32:36 A . (..) -- C:\Users\acer\AppData\Local\txttopa.dll [41472]
O61 - LFC: 2016/09/14 15:26:15 N . (..) -- C:\Users\acer\AppData\Local\UPmedia\frkkamth.dll [1353728]
O61 - LFC: 2016/09/12 22:28:03 A . (..) -- C:\Users\acer\AppData\Local\UPmedia\jzwdepmx.dll [1338880]
O61 - LFC: 2016/09/14 14:44:01 ASH . (..) -- C:\Users\acer\AppData\Local\ITSsoft\00054163.exe [148532]
O61 - LFC: 2016/09/12 22:26:37 ASH . (..) -- C:\Users\acer\AppData\Local\ITSsoft\0aa5e2a8.exe [151552]
O61 - LFC: 2016/09/14 15:26:47 A . (..) -- C:\Users\acer\AppData\Local\ITSsoft\kfvtabkh.dll [1330688]
O61 - LFC: 2016/09/12 22:33:06 A . (..) -- C:\Users\acer\AppData\Local\ITSsoft\nbmzomms.dll [1366016]
O61 - LFC: 2016/09/14 15:01:48 A . (..) -- C:\Users\acer\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin [120686]

---\\ Associations Shell Spawning (11) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Firefox\Firefox.exe {39F15C8237BF06AF7FBC5A9F8716762F} =>.Mozilla Corporation

---\\ Menu de démarrage Internet (19) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- c:\program files (x86)\mozilla firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- c:\program files (x86)\google\chrome\application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- c:\program files (x86)\internet explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- c:\program files (x86)\opera\opera.exe =>.Opera Software ASA®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Firefox\Firefox.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\opera.exe =>.Opera Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Firefox\Firefox.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\opera.exe =>.Opera Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Firefox\Firefox.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\opera.exe =>.Opera Software

---\\ Recherche d'infection sur les navigateurs (10) - 8s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3C} - (>) - http://smartsputnik.ru/ =>Hijacker.Browser
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3D} - (>) - http://smartsputnik.ru/ =>Hijacker.Browser
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (nuesearch) - http://www.nuesearch.com/ =>Hijacker.Browser
O69 - SBI: SearchScopes [HKCU] {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} - (Search The Web) - http://www.mystart.com/ =>PUP.Optional.StartSearch
O69 - SBI: SearchScopes [HKCU] {BDA5B4BE-A236-4C89-B516-CF4517910F7E} - (Bueno Search) - http://www.buenosearch.com/ =>PUP.Optional.BuenoSearch
O69 - SBI: SearchScopes [HKCU] {ielnksrch} [DefaultScope] - (Search the web) - http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT2U8IlLY4zcmGPdcui2sIxvTLHzrPTGdy0rq8ZH2QXyT2WDb8eBi0utGhZ7jN1Em_C0BBdm3S6rd6efeXqOasOhlwT8CRtZMRL_KkuG0GCfPCVMZ5pavRUlVicQOFi-7kGfmk4ugB-Ymo6kx0wHSS_BJXrI0-QEIFRCpecqUjWLV&q={searchTerms} =>.Superfluous.Linkury
O69 - SBI: SearchScopes [HKLM] ielnksrch - (Search the web) - http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT2U8IlLY4zcmGPdcui2sIxvTLHzrPTGdy0rq8ZH2QXyT2WDb8eBi0utGhZ7jN1Em_C0BBdm3S6rd6efeXqOasOhlwT8CRtZMRL_KkuG0GCfPCVMZ5pavRUlVicQOFi-7kGfmk4ugB-Ymo6kx0wHSS_BJXrI0-QEIFRCpecqUjWLV&q={searchTerms} =>.Superfluous.Linkury
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (nuesearch) - http://www.nuesearch.com/ =>Hijacker.Browser

---\\ Enumère les services démarrés par Svchost (34) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation
O83 - Search Svchost Services: UxTuneUp (UxTuneUp) . (.AVG Technologies - AVG Theme Extension.) -- C:\Windows\System32\uxtuneup.dll [44760] =>.AVG Netherlands B.V.®
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [680960] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2420736] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136192] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1110016] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [209920] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536] =>.Microsoft Corporation

---\\ Recherche de clés de registre Tracing (15) - 6s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_mysites123_RASAPI32 =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_mysites123_RASMANCS =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ApnStub_RASAPI32 =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ApnStub_RASDLG =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ApnStub_RASMANCS =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskPartnerCobrandingTool_RASAPI32 =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskPartnerCobrandingTool_RASMANCS =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BabMaint_RASAPI32 =>PUP.Optional.BabSolution
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BabMaint_RASMANCS =>PUP.Optional.BabSolution
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Babylon_RASAPI32 =>PUP.Optional.Babylon
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Babylon_RASMANCS =>PUP.Optional.Babylon
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Buenosearchupdt_RASAPI32 =>PUP.Optional.BuenoSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Buenosearchupdt_RASMANCS =>PUP.Optional.BuenoSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DCHP_RASAPI32 =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DCHP_RASMANCS =>PUP.Optional.Salus

---\\ Scan Additionnel (161) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\DCHP =>PUP.Optional.Salus
C:\ProgramData\DCHP\DCHP.exe =>PUP.Optional.Salus
C:\Program Files (x86)\Firefox =>Adware.Firefox
HKLM\SOFTWARE\Wow6432Node\Firefox =>Adware.Firefox
HKLM\SOFTWARE\Firefox =>Adware.Firefox
HKLM\SYSTEM\CurrentControlSet\Services\FirefoxU =>Adware.Firefox
C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe =>Adware.Firefox
HKLM\SYSTEM\CurrentControlSet\Services\SoEasySvc =>PUP.Optional.SoEasySvc
C:\Program Files (x86)\winsaber =>PUP.Optional.winsaber
HKLM\SYSTEM\CurrentControlSet\Services\winsaber =>PUP.Optional.winsaber
C:\Program Files (x86)\WinSaber\WinSaber.exe =>PUP.Optional.winsaber
HKLM\SYSTEM\CurrentControlSet\Services\CommandHandler =>Adware.Firefox
C:\Program Files (x86)\Firefox\bin\FirefoxCommand.exe =>Adware.Firefox
C:\Users\acer\AppData\Local\Buenosearch\Buenosearch\2.1.0.0\Buenosearchupdt.exe =>PUP.Optional.BuenoSearch
C:\Windows\System32\Tasks\Buenosearch Updater =>PUP.Optional.BuenoSearch
C:\Windows\System32\Tasks\EPUpdater =>PUP.Optional.BabSolution
C:\Windows\System32\Tasks\psv_Bam-Tip =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Betaflex =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_BigSonfax =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Cof-Air =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Daltstrong =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_DonFan =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Dongcof =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Dripzap =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Ecotouch =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Faxis =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Fundom =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Gooding =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Greendox =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Hatfind =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Hatmatphase =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Hay-Dax =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Hothome =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Jayzoofresh =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Lamphase =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Lamron =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_LaSanlight =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_MedKeykix =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_New-Eco =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Ozer-Nix =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Plusdox =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Quotelux =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Quotop =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Qvoplus =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Qvozap =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Retech =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Silcom =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Silhotlam =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Solnaming =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Stimhome =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_StringTax =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_TanCaneco =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Tree-Lam =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_TrueTrax =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Trustfind =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Vaiafresh =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Vilatom =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Villakeytough =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Viva-Flex =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_VivaRancore =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Voljoylux =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Volt-Zap =>PUP.Optional.Salus
C:\Windows\System32\Tasks\psv_Zonetough =>PUP.Optional.Salus
C:\Windows\System32\Tasks\snf =>PUP.Optional.Salus
C:\Windows\System32\Tasks\snp =>PUP.Optional.Salus
C:\Users\acer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdeeamehdichghippjcneocjmgdckpfd =>PUP.Optional.SafeWeb
C:\Users\acer\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hgogfkaafddgnbniojgjdeileidfhphm =>PUP.Optional.SafeWeb
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\ikj6wg2x.default\searchplugins\nice.xml =>Adware.Firefox
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\ikj6wg2x.default\searchplugins\nuesearch.xml =>Adware.Firefox
C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\dlsecuretb.xml =>.Superfluous.VisicomMedia
C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\findit.xml =>PUP.Optional.SmartBar
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\ikj6wg2x.default\extensions\arthurj8283@gmail.com =>Adware.Firefox
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\ikj6wg2x.default\extensions\{4D225238-00E7-4077-BA97-B25F7342212C} =>Adware.Firefox
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\buenosearch =>PUP.Optional.BuenoSearch
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mysites123 =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Torrent Search =>.Superfluous.SystemaLimited
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\buenosearch =>PUP.Optional.BuenoSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\mysites123 =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Torrent Search =>.Superfluous.SystemaLimited
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\QQPlayer =>.Superfluous.Tencent
HKLM\SOFTWARE\Wow6432Node\8A20D04A0BEC6ADF01CB9E9972984235 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\buenosearch LTD =>PUP.Optional.BuenoSearch
HKLM\SOFTWARE\Wow6432Node\Conduit =>.Superfluous.Conduit
HKLM\SOFTWARE\Wow6432Node\GreyGray =>PUP.Optional.GreyGray
HKLM\SOFTWARE\Wow6432Node\ihpmserver =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\mtApService =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\mtQuotenamron =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\mysites123Software =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\PIP =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Tencent =>.Superfluous.Tencent
HKLM\SOFTWARE\Wow6432Node\WinSaberSvc =>.Superfluous.WinSaber
HKLM\SOFTWARE\Wow6432Node\youndooSoftware =>PUP.Optional.Youndoo
HKCU\SOFTWARE\1ClickDownload =>PUP.Optional.1ClickDownloader
HKCU\SOFTWARE\8A20D04A0BEC6ADF01CB9E9972984235 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\APN PIP =>.Superfluous.Conduit
HKCU\SOFTWARE\BabSolution =>PUP.Optional.BabSolution
HKCU\SOFTWARE\buenosearch LTD =>PUP.Optional.BuenoSearch
HKCU\SOFTWARE\GreyGray =>PUP.Optional.GreyGray
HKCU\SOFTWARE\PIP =>Toolbar.Ask
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
HKCU\SOFTWARE\Tencent =>.Superfluous.Tencent
HKCU\SOFTWARE\undefined =>.Superfluous.Downloader
C:\Program Files\Babylon =>PUP.Optional.Babylon
C:\Program Files (x86)\Babylon =>PUP.Optional.Babylon
C:\Program Files (x86)\buenosearch LTD =>PUP.Optional.BuenoSearch
C:\Program Files (x86)\dlsecuretb =>.Superfluous.VisicomMedia
C:\Program Files (x86)\GreyGray =>PUP.Optional.GreyGray
C:\Program Files (x86)\RayDld =>PUP.Optional.CrossRider
C:\Program Files (x86)\TornTV.com =>PUP.Optional.TornTV
C:\Program Files (x86)\WeatherChickn =>.Superfluous.WeatherChickn
C:\Program Files (x86)\WinZipper =>.Superfluous.TaiwanShuiMu
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent =>.Superfluous.Tencent
C:\ProgramData\APN =>Toolbar.Ask
C:\ProgramData\DCHP =>PUP.Optional.Salus
C:\ProgramData\InstallMate =>.Superfluous.Tarma
C:\ProgramData\Quotenamrons =>PUP.Optional.Salus
C:\ProgramData\Tencent =>.Superfluous.Tencent
C:\Users\acer\AppData\Roaming\BabSolution =>PUP.Optional.BabSolution
C:\Users\acer\AppData\Roaming\Firefox =>Adware.Firefox
C:\Users\acer\AppData\Roaming\mysites123 =>PUP.Optional.Mysites123
C:\Users\acer\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
C:\Users\acer\AppData\Roaming\RHEng =>.Superfluous.Conduit
C:\Users\acer\AppData\Roaming\Tencent =>.Superfluous.Tencent
C:\Users\acer\AppData\Roaming\TSv =>.Superfluous.Elex
C:\Users\acer\AppData\Roaming\WinZiper =>.Superfluous.WinZipper
C:\Users\acer\AppData\Local\Buenosearch =>PUP.Optional.BuenoSearch
C:\Users\acer\AppData\Local\Firefox =>Adware.Firefox
C:\Users\acer\AppData\Local\Hola =>PUP.Optional.HolaSearch
C:\Users\acer\AppData\Local\PackageAware =>PUP.Optional.BearShare
C:\Users\acer\AppData\Local\Torch =>.Superfluous.Torch
C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tencent =>.Superfluous.Tencent
C:\Windows\Prefetch\BABMAINT.EXE-55735BBB.pf =>PUP.Optional.BabSolution
C:\Windows\Prefetch\BUENOSEARCHUPDT.EXE-C9A86165.pf =>PUP.Optional.BuenoSearch
C:\Windows\Prefetch\FIREFOX.EXE-18ACFCFF.pf =>Adware.Firefox
C:\Users\acer\AppData\Roaming\BabSolution\Shared\GUninstaller.exe =>PUP.Optional.BabSolution
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3C} =>Hijacker.Browser
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3D} =>Hijacker.Browser
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} =>Hijacker.Browser
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} =>PUP.Optional.StartSearch
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BDA5B4BE-A236-4C89-B516-CF4517910F7E} =>PUP.Optional.BuenoSearch
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} =>.Superfluous.Linkury
HKLM\Software\Microsoft\Internet Explorer\SearchScopes\ielnksrch =>.Superfluous.Linkury
HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} =>Hijacker.Browser
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_mysites123_RASAPI32 =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_mysites123_RASMANCS =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ApnStub_RASAPI32 =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ApnStub_RASDLG =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ApnStub_RASMANCS =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskPartnerCobrandingTool_RASAPI32 =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskPartnerCobrandingTool_RASMANCS =>Toolbar.AskBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BabMaint_RASAPI32 =>PUP.Optional.BabSolution
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BabMaint_RASMANCS =>PUP.Optional.BabSolution
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Babylon_RASAPI32 =>PUP.Optional.Babylon
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Babylon_RASMANCS =>PUP.Optional.Babylon
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Buenosearchupdt_RASAPI32 =>PUP.Optional.BuenoSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Buenosearchupdt_RASMANCS =>PUP.Optional.BuenoSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DCHP_RASAPI32 =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DCHP_RASMANCS =>PUP.Optional.Salus

---\\ Récapitulatif des éléments trouvés sur votre station (38) - 0s
https://www.nicolascoolman.com/fr/pup-salus/ =>PUP.Optional.Salus
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>Adware.Firefox
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.SoEasySvc
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.winsaber
https://www.nicolascoolman.com/fr/pup-buenosearch/ =>PUP.Optional.BuenoSearch
https://www.nicolascoolman.com/fr/adware-tencentaddressbar/ =>.Superfluous.Tencent
https://www.nicolascoolman.com/fr/hijacker-babsolution/ =>PUP.Optional.BabSolution
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.YouTubeAdBlock
https://www.nicolascoolman.com/fr/hijacker-browser/ =>Hijacker.Browser
https://www.nicolascoolman.com/fr/pup-safeweb/ =>PUP.Optional.SafeWeb
https://www.anti-malware.top/2016/05/06/superfluous-visicommedia/ =>.Superfluous.VisicomMedia
https://www.nicolascoolman.com/fr/hijacker-smartbar/ =>PUP.Optional.SmartBar
https://www.anti-malware.top/2016/08/02/superfluous-linkury/ =>.Superfluous.Linkury
https://www.nicolascoolman.com/fr/pup-optional-mysites123 =>PUP.Optional.Mysites123
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.SystemaLimited
https://www.anti-malware.top/2016/04/22/heuristic-suspect/ =>Heuristic.Suspect
https://www.anti-malware.top/2016/04/30/pup-optional-crossrider/ =>PUP.Optional.CrossRider
https://www.nicolascoolman.com/fr/toolbar-conduit/ =>.Superfluous.Conduit
https://www.nicolascoolman.com/fr/pup-greygray/ =>PUP.Optional.GreyGray
https://www.nicolascoolman.com/fr/toolbar-ask/ =>Toolbar.Ask
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.WinSaber
https://www.anti-malware.top/2016/06/18/superfluous-youndoo/ =>PUP.Optional.Youndoo
https://www.nicolascoolman.com/fr/pup-1clickdownloader/ =>PUP.Optional.1ClickDownloader
https://www.anti-malware.top/2016/04/22/adware-installcore/ =>Adware.InstallCore
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Downloader
https://www.nicolascoolman.com/fr/pup-babylon/ =>PUP.Optional.Babylon
https://www.nicolascoolman.com/fr/hijacker-torntv/ =>PUP.Optional.TornTV
https://www.anti-malware.top/2016/04/23/superfluous-weatherchickn/ =>.Superfluous.WeatherChickn
https://www.anti-malware.top/2016/05/05/superfluous-taiwanshuimu/ =>.Superfluous.TaiwanShuiMu
https://www.nicolascoolman.com/fr/pup-tarma/ =>.Superfluous.Tarma
https://www.nicolascoolman.com/fr/adware-opencandy/ =>PUP.Optional.OpenCandy
https://www.anti-malware.top/2016/05/18/superfluous-elex/ =>.Superfluous.Elex
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.WinZipper
https://www.nicolascoolman.com/fr/hijacker-holasearch/ =>PUP.Optional.HolaSearch
https://www.nicolascoolman.com/fr/pup-bearshare/ =>PUP.Optional.BearShare
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Torch
https://www.nicolascoolman.com/fr/pup-optional-startsearch/ =>PUP.Optional.StartSearch
https://www.nicolascoolman.com/fr/les-toolbars/ =>Toolbar.AskBar

~ End of the scan, 43908 items in 00h07mn08s (1794)