~ ZHPDiag v2017.7.6.115 Par Nicolas Coolman (2017/07/06) ~ Démarré par allah (Administrator) (2017/07/24 01:00:32) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Certificate ZHPDiag: Legal ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Users\allah\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\allah\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Démarrage du système: Normal (Normal boot) Windows 7 Home Basic, 32-bit (Build 7600) =>.Microsoft Corporation ---\\ Navigateurs Internet (2) - 0s ~ MFIE: Mozilla Firefox 54.0.1 (x86 fr) ~ MSIE: Internet Explorer v8.0.7600.16385 ---\\ Informations sur les produits Windows (4) - 3s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : KO Windows Activation Technologies : KO ---\\ Surveillance de Logiciels (1) - 1s ~ Adobe Flash Player 26 NPAPI (Surveillance) ---\\ Logiciels de partage P2P (1) - 2s ~ Vuze v5.7.5.0 (P2P) ---\\ Informations sur le système (6) - 0s ~ Operating System: x86 Family 6 Model 14 Stepping 8, GenuineIntel ~ Operating System: 32-bit ~ Boot mode: Normal (Normal boot) Total RAM: 1046.648 MB (14% free) : OK =>.RAM Value System Restore: Activé (Enable) System drive C: has 22 GB (44%) free of 49 GB : OK =>.Disk Space ---\\ Mode de connexion au système (3) - 0s ~ Computer Name: ALLAH-PC ~ User Name: allah ~ Logged in as Administrator ---\\ Enumération des unités disques (2) - 0s ~ Drive C: has 22 GB free of 49 GB (System) ~ Drive D: has 33 GB free of 64 GB ---\\ Etat du Centre de Sécurité Windows (11) - 0s [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] EnableShellExecuteHooks: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Recherche particulière de fichiers génériques (24) - 5s [MD5.B95EEB0F4E5EFBF1038A35B3351CF047] - 16/08/2009 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2613248] =>.Microsoft Corporation [MD5.51138BEEA3E2C21EC44D0932C71762A8] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] =>.Microsoft Corporation [MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [96256] =>.Microsoft Corporation [MD5.0D874F3BC751CC2198AF2E6783FB8B35] - 14/07/2009 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [977920] =>.Microsoft Corporation [MD5.8EC6A4AB12B8F3759E21F8E3A388F2CF] - 14/07/2009 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [285696] =>.Microsoft Corporation [MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - 14/07/2009 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [193024] =>.Microsoft Corporation [MD5.6D5A49D6479EB753C7879F73A4C35E0F] - 14/07/2009 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [269824] =>.Microsoft Corporation [MD5.D8714A5FB3141F8226D16861F20C5AC4] - 14/07/2009 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation [MD5.DDC040FDB01EF1712A6B13E52AFB104C] - 14/07/2009 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [338944] =>.Microsoft Corporation [MD5.338C86357871C167A96AB976519BF59E] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584] =>.Microsoft Windows® [MD5.77EA11B065E0A8AB902D78145CA51E10] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656] =>.Microsoft Corporation [MD5.BA6E70AA0E6091BC39DE29477D866A77] - 14/07/2009 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544] =>.Microsoft Corporation [MD5.8E09E52EE2E3CEB199EF3DD99CF9E3FB] - 14/07/2009 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [78336] =>.Microsoft Corporation [MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - 14/07/2009 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544] =>.Microsoft Corporation [MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] =>.Microsoft Corporation [MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [101888] =>.Microsoft Corporation [MD5.F4A054BE78AF7F410129C4B64B07DC9B] - 14/07/2009 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [123392] =>.Microsoft Corporation [MD5.DD52A733BF4CA5AF84562A5E2F963B91] - 14/07/2009 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [187904] =>.Microsoft Corporation [MD5.3795DCD21F740EE799FB7223234215AF] - 14/07/2009 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1210432] =>.Microsoft Windows® [MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [79360] =>.Microsoft Corporation [MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] =>.Microsoft Corporation [MD5.3E21C083B8A01CB70BA1F09303010FCE] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] =>.Microsoft Corporation [MD5.CB39E896A2A83702D1737BFD402B3542] - 14/07/2009 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74240] =>.Microsoft Corporation [MD5.58DF9D2481A56EDDE167E51B334D44FD] - 14/07/2009 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [245328] =>.Microsoft Windows® ---\\ Liste des services NT non Microsoft et non désactivés (14) - 12s O23 - Service: Service de configuration Atheros (ACS) . (...) - C:\Windows\System32\acs.exe O23 - Service: AdService (AdService) . (...) - C:\Users\allah\AppData\Local\AdService\AdService.dll =>Trojan.AdService O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.® O23 - Service: (Ati External Event Utility) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\Windows\System32\ati2evxx.exe =>.ATI Technologies Inc. O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\Windows\System32\ati2evxx.exe =>.ATI Technologies Inc. O23 - Service: Background Logic Handler (backlh) . (.Copyright © 2016 - ExtManager.) - C:\ProgramData\Logic Cramble\set.exe =>PUP.Optional.LogicHandler O23 - Service: Bluetooth Driver Management Service (BcmBtRSupport) . (.Broadcom Corporation. - Bluetooth Radio Management Support.) - C:\Windows\System32\BtwRSupportService.exe =>.Broadcom Corporation® O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.® O23 - Service: Service Mise à jour Dropbox (dbupdate) (dbupdate) . (.Dropbox, Inc. - Dropbox Update.) - C:\Program Files\Dropbox\Update\DropboxUpdate.exe =>.Dropbox, Inc® O23 - Service: DbxSvc (DbxSvc) . (.Dropbox, Inc. - Dropbox Service.) - C:\Windows\System32\DbxSvc.exe =>.Dropbox, Inc® O23 - Service: ihpmServer (ihpmServer) . (.RayDl - RayDl.) - C:\Program Files\RayDld\ihpmServer.exe {4ED098FE8A740C4647312AEF528CD667} =>Adware.CrossRider O23 - Service: (mediatek_86) . (...) - C:\Windows\TEMP\WS\mediatek_86.exe (.not file.) O23 - Service: Prefs Secure (Nettrans) . (.Copyright © 2015 - Network Packet Monitor.) - C:\ProgramData\PrefsSecure\Nettrans.exe =>PUP.Optional.LogicHandler O23 - Service: StarWind AE Service (StarWindServiceAE) . (.StarWind Software - StarWind iSCSI Target (Alcohol Edition).) - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe =>.StarWind Software ---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (18) - 48s SS - Auto [27/12/2004] [ 36864] Service de configuration Atheros (ACS) . (...) - C:\Windows\System32\acs.exe SS - Demand [17/06/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated® SR - Auto [08/07/2017] [ 978432] AdService (AdService) . (...) - C:\Users\allah\AppData\Local\AdService\AdService.dll =>Trojan.AdService SR - Auto [22/09/2016] [ 67384] Apple Mobile Device (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.® SS - Auto [02/12/2005] [ 393216] (Ati External Event Utility) . (.ATI Technologies Inc..) - C:\Windows\System32\ati2evxx.exe =>.ATI Technologies Inc. SS - Auto [02/12/2005] [ 393216] (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\Windows\System32\ati2evxx.exe =>.ATI Technologies Inc. SR - Auto [08/07/2017] [ 3780096] Background Logic Handler (backlh) . (.Copyright © 2016.) - C:\ProgramData\Logic Cramble\set.exe =>PUP.Optional.LogicHandler SR - Auto [23/10/2015] [ 1678040] Bluetooth Driver Management Service (BcmBtRSupport) . (.Broadcom Corporation..) - C:\Windows\System32\BtwRSupportService.exe =>.Broadcom Corporation® SR - Auto [12/08/2015] [ 390416] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.® SS - Auto [03/12/2016] [ 143144] Service Mise à jour Dropbox (dbupdate) (dbupdate) . (.Dropbox, Inc..) - C:\Program Files\Dropbox\Update\DropboxUpdate.exe =>.Dropbox, Inc® SS - Demand [03/12/2016] [ 143144] Service Mise à jour Dropbox (dbupdatem) (dbupdatem) . (.Dropbox, Inc..) - C:\Program Files\Dropbox\Update\DropboxUpdate.exe =>.Dropbox, Inc® SR - Auto [26/06/2017] [ 42824] DbxSvc (DbxSvc) . (.Dropbox, Inc..) - C:\Windows\System32\DbxSvc.exe =>.Dropbox, Inc® SR - Auto [22/12/2015] [ 265960] ihpmServer (ihpmServer) . (.RayDl.) - C:\Program Files\RayDld\ihpmServer.exe {4ED098FE8A740C4647312AEF528CD667} =>Adware.CrossRider SS - Demand [15/09/2015] [ 541456] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.® SS - Demand [08/07/2017] [ 175560] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation® SR - Auto [25/04/2017] [ 43520] Prefs Secure (Nettrans) . (.Copyright © 2015.) - C:\ProgramData\PrefsSecure\Nettrans.exe =>PUP.Optional.LogicHandler SR - Auto [23/12/2009] [ 370688] StarWind AE Service (StarWindServiceAE) . (.StarWind Software.) - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe =>.StarWind Software SS - Demand [20/01/2017] [ 33224] SHAREit Hotspot Service (uSHAREitSvc) . (.SHAREit Technologies Co.Ltd.) - C:\Program Files\SHAREit Technologies\SHAREit\SHAREit.Service.exe =>.SHAREit Technologies Co.Ltd® ---\\ Tâches planifiées en automatique (33) - 22s [MD5.7DE8B8AC559E16AEB388E7D098E7C288] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [272384] (.Activate.) =>.Adobe Systems Incorporated® [MD5.F1F9BF75012496816494A56D41DA51F1] [APT] [B3A986DC-C2DD-40A0-8C0C-FEF66B783511] (...) -- C:\Program Files\MediaSerchU\r62SNR6.dll [284160] (.Activate.) [MD5.00000000000000000000000000000000] [APT] [Driver Booster SkipUAC (allah)] (...) -- C:\Program Files\IObit\Driver Booster\DriverBooster.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty [MD5.A1F58FFF448E4099297D6EE0641D4D0E] [APT] [DropboxUpdateTaskMachineCore] (.Dropbox, Inc..) -- C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144] (.Activate.) =>.Dropbox, Inc® [MD5.A1F58FFF448E4099297D6EE0641D4D0E] [APT] [DropboxUpdateTaskMachineUA] (.Dropbox, Inc..) -- C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144] (.Activate.) =>.Dropbox, Inc® [MD5.F26F5E00F9D1104871A6FDF4D0061BA3] [APT] [Online Application V2G1] (.Microleaves LTD.) -- C:\Program Files\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [555120] (.Activate.) =>.Superfluous.Microleaves [MD5.F26F5E00F9D1104871A6FDF4D0061BA3] [APT] [Online Application V2G2] (.Microleaves LTD.) -- C:\Program Files\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [555120] (.Activate.) =>.Superfluous.Microleaves [MD5.F26F5E00F9D1104871A6FDF4D0061BA3] [APT] [Online Application V2G3] (.Microleaves LTD.) -- C:\Program Files\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [555120] (.Activate.) =>.Superfluous.Microleaves [MD5.B26CA4C3796C1E920F281A3A7BAECF9D] [APT] [RunAtStartup] (.Copyright (C) 2016. All rights reserved..) -- C:\Users\allah\AppData\Roaming\Event Monitor\em.exe [3325888] (.Activate.) {4E0CD45027AD37729ADB2358285DC961} =>.Superfluous.EventMonitor [MD5.E7C04EE12BEA149DEF10005C437A06EB] [APT] [The Sims 1-01 patch] (...) -- C:\Program Files\The Sims 1.01 patch\The Sims 1.01 patch.dll [2380288] (.Activate.) [MD5.77E4456AA3B85097E6F90298B97C9BE9] [APT] [Updater_Online_Application] (.Microleaves.) -- C:\Program Files\Microleaves\Online Application\Online Application Updater.exe [879984] (.Activate.) =>.Superfluous.Microleaves [MD5.00000000000000000000000000000000] [APT] [{FAC7C460-7E0C-459C-80E5-25CCA749075C}] (...) -- H:\TOUT\DVD UTILITAIRE\AutoPlay\AutoPlay\Docs\AntiVirus\USBAntiVirus\USBAntivirus.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty [MD5.BC41666FF68C364CD3EAA486E50C9270] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [563000] (.Activate.) =>.Apple Inc.® O39 - APT: B3A986DC-C2DD-40A0-8C0C-FEF66B783511 - (...) -- C:\Windows\Tasks\B3A986DC-C2DD-40A0-8C0C-FEF66B783511.job [282] O39 - APT: DropboxUpdateTaskMachineCore - (.Dropbox, Inc..) -- C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job [1168] =>.Dropbox, Inc® O39 - APT: DropboxUpdateTaskMachineUA - (.Dropbox, Inc..) -- C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job [1172] =>.Dropbox, Inc® O39 - APT: Online Application V2G1 - (.Microleaves LTD.) -- C:\Windows\Tasks\Online Application V2G1.job [332] =>.Superfluous.Microleaves O39 - APT: Online Application V2G2 - (.Microleaves LTD.) -- C:\Windows\Tasks\Online Application V2G2.job [332] =>.Superfluous.Microleaves O39 - APT: Online Application V2G3 - (.Microleaves LTD.) -- C:\Windows\Tasks\Online Application V2G3.job [332] =>.Superfluous.Microleaves O39 - APT: Updater_Online_Application - (.Microleaves.) -- C:\Windows\Tasks\Updater_Online_Application.job [364] =>.Superfluous.Microleaves O39 - APT: 76ec549278529f1e5e469182f4c24b13 - (...) -- C:\Windows\System32\Tasks\76ec549278529f1e5e469182f4c24b13 [3158] (.Orphan.) =>.Superfluous.Orphan O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [4484] =>.Adobe Systems Incorporated® O39 - APT: B3A986DC-C2DD-40A0-8C0C-FEF66B783511 - (...) -- C:\Windows\System32\Tasks\B3A986DC-C2DD-40A0-8C0C-FEF66B783511 [2556] O39 - APT: Driver Booster SkipUAC (allah) - (...) -- C:\Windows\System32\Tasks\Driver Booster SkipUAC (allah) [2862] (.Orphan.) =>.Superfluous.Orphan O39 - APT: DropboxUpdateTaskMachineCore - (.Dropbox, Inc..) -- C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore [3916] =>.Dropbox, Inc® O39 - APT: DropboxUpdateTaskMachineUA - (.Dropbox, Inc..) -- C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA [4168] =>.Dropbox, Inc® O39 - APT: Online Application V2G1 - (.Microleaves LTD.) -- C:\Windows\System32\Tasks\Online Application V2G1 [3160] =>.Superfluous.Microleaves O39 - APT: Online Application V2G2 - (.Microleaves LTD.) -- C:\Windows\System32\Tasks\Online Application V2G2 [3160] =>.Superfluous.Microleaves O39 - APT: Online Application V2G3 - (.Microleaves LTD.) -- C:\Windows\System32\Tasks\Online Application V2G3 [3160] =>.Superfluous.Microleaves O39 - APT: RunAtStartup - (.Copyright (C) 2016. All rights reserved..) -- C:\Windows\System32\Tasks\RunAtStartup [3004] {4E0CD45027AD37729ADB2358285DC961} =>.Superfluous.EventMonitor O39 - APT: The Sims 1-01 patch - (...) -- C:\Windows\System32\Tasks\The Sims 1-01 patch [16732] O39 - APT: Updater_Online_Application - (.Microleaves.) -- C:\Windows\System32\Tasks\Updater_Online_Application [3196] =>.Superfluous.Microleaves O39 - APT: {FAC7C460-7E0C-459C-80E5-25CCA749075C} - (...) -- C:\Windows\System32\Tasks\{FAC7C460-7E0C-459C-80E5-25CCA749075C} [3168] (.Orphan.) =>.Superfluous.Orphan ---\\ Applications lancées au démarrage du système (15) - 5s O4 - HKLM\..\Run: [USBAntivirus.exe] . (...) -- C:\Program Files\USBAntivirus\USBAntivirus.exe O4 - HKCU\..\Run: [ccleaner] . (.Piriform Ltd - CCleaner.) -- C:\Windows\My 7 Add-On\My 7 Optimizer\Outils\Ccleaner\CCleaner.exe =>.Piriform Ltd® O4 - HKCU\..\Run: [bQ8tXgHZf.exe] . (...) -- C:\Users\allah\AppData\Roaming\67541eb7e7ef436d8c3612037a941c70\bQ8tXgHZf.exe O4 - HKCU\..\Run: [Interstatnogui] . (.IT Genius - Eth Dev.) -- C:\Users\allah\AppData\Roaming\Interstatnogui\interstatnogui.exe =>.Superfluous.WeatherChannel O4 - HKCU\..\RunOnce: [2aZos0912] . (.MS - System Manager.) -- C:\Users\allah\AppData\Local\aZos091\explorer.exe =>.MS O4 - HKCU\..\RunOnce: [zaJ4ZLz0Oj7.exe] . (...) -- C:\Users\allah\AppData\Local\Temp\1a45a7feeaa644e5bf96f2717db314d8\zaJ4ZLz0Oj7.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-2522502166-1401221412-796741390-1000\..\Run: [ccleaner] . (.Piriform Ltd - CCleaner.) -- C:\Windows\My 7 Add-On\My 7 Optimizer\Outils\Ccleaner\CCleaner.exe =>.Piriform Ltd® O4 - HKUS\S-1-5-21-2522502166-1401221412-796741390-1000\..\Run: [bQ8tXgHZf.exe] . (...) -- C:\Users\allah\AppData\Roaming\67541eb7e7ef436d8c3612037a941c70\bQ8tXgHZf.exe O4 - HKUS\S-1-5-21-2522502166-1401221412-796741390-1000\..\Run: [Interstatnogui] . (.IT Genius - Eth Dev.) -- C:\Users\allah\AppData\Roaming\Interstatnogui\interstatnogui.exe =>.Superfluous.WeatherChannel O4 - HKUS\S-1-5-21-2522502166-1401221412-796741390-1000\..\RunOnce: [2aZos0912] . (.MS - System Manager.) -- C:\Users\allah\AppData\Local\aZos091\explorer.exe =>.MS O4 - HKUS\S-1-5-21-2522502166-1401221412-796741390-1000\..\RunOnce: [zaJ4ZLz0Oj7.exe] . (...) -- C:\Users\allah\AppData\Local\Temp\1a45a7feeaa644e5bf96f2717db314d8\zaJ4ZLz0Oj7.exe ---\\ Processus lancés (18) - 9s [MD5.82812A27B150D765D03B0074A8257259] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [67384] [PID.1464] =>.Apple Inc.® [MD5.C72C5AA0D27145B2EAD061537DA3B87A] - (.Copyright © 2016 - ExtManager.) -- C:\ProgramData\Logic Cramble\set.exe [3780096] [PID.1524] [MD5.9B7D60D8F30F86826B600162FC5152CC] - (.Broadcom Corporation. - Bluetooth Radio Management Support.) -- C:\Windows\System32\BtwRSupportService.exe [1678040] [PID.1608] =>.Broadcom Corporation® [MD5.5EA9C80F18CBC393EA7D9A2991DED4B5] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [390416] [PID.1636] =>.Apple Inc.® [MD5.2BF3E8270D41E6392128B8ABDE57928C] - (.Dropbox, Inc. - Dropbox Service.) -- C:\Windows\System32\DbxSvc.exe [42824] [PID.1660] =>.Dropbox, Inc® [MD5.AE9E2F48FE842232B5CB857EA4F69574] - (.RayDl - RayDl.) -- C:\Program Files\RayDld\ihpmServer.exe [265960] [PID.1796] {4ED098FE8A740C4647312AEF528CD667} =>Adware.CrossRider [MD5.809A853EA58B8C15328B494D5622C602] - (.Copyright © 2015 - Network Packet Monitor.) -- C:\ProgramData\PrefsSecure\Nettrans.exe [43520] [PID.1900] [MD5.E5C796B621F6FBA8616511063D7F0FFE] - (.StarWind Software - StarWind iSCSI Target (Alcohol Edition).) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688] [PID.2008] =>.StarWind Software [MD5.F26F5E00F9D1104871A6FDF4D0061BA3] - (.Microleaves LTD - Online.io Application.) -- C:\Program Files\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [555120] [PID.1996] =>.Superfluous.Microleaves [MD5.98E452C289D611A78B66407DC8F4DB6C] - (...) -- C:\Program Files\USBAntivirus\USBAntivirus.exe [3930112] [PID.3060] [MD5.83B7FA3ABF94A1B0BEFE2347716EBB13] - (...) -- C:\Users\allah\AppData\Roaming\67541eb7e7ef436d8c3612037a941c70\bQ8tXgHZf.exe [139264] [PID.3404] [MD5.9C4F9DD9612FA215DCD6DB114C137E94] - (.MS - System Manager.) -- C:\Users\allah\AppData\Local\aZos091\explorer.exe [742400] [PID.3484] =>.MS [MD5.4564D7C151D2404AB24E9930A3C2F660] - (.Atomix Productions - VirtualDJ.) -- C:\Program Files\VirtualDJ\virtualdj8.exe [39223416] [PID.1848] =>.Atomix Productions [MD5.F132FDBBC0A040F07E10EA944FF57FEF] - (...) -- C:\Users\allah\AppData\Local\Temp\nsuA41E.tmp\nsC601.tmp [6656] [PID.300] [MD5.9E1358A6E921D204B018EFAC4F22482C] - (.IT Genius - Eth Dev.) -- C:\Users\allah\AppData\Roaming\Interstatnogui\interstatnogui.exe [3044696] [PID.2004] =>.Superfluous.WeatherChannel [MD5.F26F5E00F9D1104871A6FDF4D0061BA3] - (.Microleaves LTD - Online.io Application.) -- C:\Program Files\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [555120] [PID.4840] =>.Superfluous.Microleaves [MD5.4291DF1AFC16DF0335CD4DB51B943B9A] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\allah\Downloads\ZHPDiag3.exe [2769280] [PID.6084] =>.Nicolas Coolman [MD5.594F91C5985AC402ECD2D7F1376AFFFD] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [521160] [PID.5868] =>.Mozilla Corporation® ---\\ Google Chrome, Démarrage,Recherche,Extensions (1) - 1s G2 - GCE: Preference [User Data\Default] [aeppgfljjlhcnnbddcccndljodpdkpdh] 海淘1号 ---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (14) - 10s P2 - EXT FILE: (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll =>.Mozilla Corporation® P2 - EXT FILE: (. - __MSG_extDescription__.) -- C:\Users\allah\AppData\Roaming\Mozilla\Firefox\Profiles\xe4xy3fh.default\extensions\helper-sig@savefrom.net.xpi P2 - EXT FILE: (.Mega.nz Button - Open Mega.nz in new tab..) -- C:\Users\allah\AppData\Roaming\Mozilla\Firefox\Profiles\xe4xy3fh.default\extensions\mega@nz.invalid.xpi P2 - EXT FILE: (.Google Translator for Firefox - Translate the selected text and the fu.) -- C:\Users\allah\AppData\Roaming\Mozilla\Firefox\Profiles\xe4xy3fh.default\extensions\translator@zoli.bod.xpi =>.Google Translator for Firefox P2 - EXT FILE: (.uBlock Origin - Finally, an efficient blocker. Easy on.) -- C:\Users\allah\AppData\Roaming\Mozilla\Firefox\Profiles\xe4xy3fh.default\extensions\uBlock0@raymondhill.net.xpi =>.uBlock Origin P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi =>.Mozilla Corporation P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_26_0_0_131.dll =>.Adobe Systems Incorporated P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll =>.Apple Inc. P2 - FPN: [HKLM] [@haitao.com/npHaitaoPlugin] - (...) -- C:\Users\allah\AppData\Local\htyh\application\htwebHelper.dll P2 - FPN: [HKLM] [@itools.hk/npiTools, version=1.0.0] - (.itools.hk Copyright (C) 2012.) -- C:\Users\allah\Documents\iTools\Plugin\npiTools.dll ---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (13) - 1s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBEQo0lOCwIxrzs2Rcb6iYl2i9w-Vt6z7FJvybwqRgG2trl4x1MHfApDkj8auXStuybodjpsD9UKXbwAcNAdq3ahJb5QGswXmvMiX7VQQUWh1umLtN-JAdKg5eokAG6cJjZlEICa67FtCogb1Gay2sAXz1AAgEtmIPY2WS1uVzvec85ulz8F1dEV9ltRw4, =>.Superfluous.Linkury R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbeqo0locwixrzs2rcb6iyl2i9w-vt6z7fjvybwqrgg2trl4x1mhfapdkj8auxstuybodjpsd9ukxbwacnadq3ahjb5qgswxmvmhdff0tbmreidfrumjoecrswrq5to-3zxl-lsdxpzm_tkzgaepve0uibpjbg9ko5mbqbipgbevvugokgr4qn1qz_r2bq,&q={searchterms} =>.Superfluous.Linkury R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbeqo0locwixrzs2rcb6iyl2i9w-vt6z7fjvybwqrgg2trl4x1mhfapdkj8auxstuybodjpsd9ukxbwacnadq3ahjb5qgswxmvmhdff0tbmreidfrumjoecrswrq5to-3zxl-lsdxpzm_tkzgaepve0uibpjbg9ko5mbqbipgbevvugokgr4qn1qz_r2bq,&q={searchterms} =>.Superfluous.Linkury R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbeqo0locwixrzs2rcb6iyl2i9w-vt6z7fjvybwqrgg2trl4x1mhfapdkj8auxstuybodjpsd9ukxbwacnadq3ahjb5qgswxmvmhdff0tbmreidfrumjoecrswrq5to-3zxl-lsdxpzm_tkzgaepve0uibpjbg9ko5mbqbipgbevvugokgr4qn1qz_r2bq,&q={searchterms} =>.Superfluous.Linkury R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbeqo0locwixrzs2rcb6iyl2i9w-vt6z7fjvybwqrgg2trl4x1mhfapdkj8auxstuybodjpsd9ukxbwacnadq3ahjb5qgswxmvmhdff0tbmreidfrumjoecrswrq5to-3zxl-lsdxpzm_tkzgaepve0uibpjbg9ko5mbqbipgbevvugokgr4qn1qz_r2bq,&q={searchterms} =>.Superfluous.Linkury R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer ---\\ Internet Explorer,Proxy Management (6) - 0s R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft ---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 1s F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation ---\\ Etude du fichier hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (103) ---\\ Browser Helper Object de navigateur (BHO) (5) - 0s O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} (.Orphan.) O2 - BHO: YoutubeAdBlock - {2C6A44CB-AD42-4731-A544-3FBD3D83AB5B} . (...) -- C:\Program Files\YubeAlckIE\kMJ2ie8uB.dll =>PUP.Optional.YouTubeAdBlock O2 - BHO: º£ÌÔÄ£¿éÖúÊÖ - {97510FAC-ED50-46BF-B2A1-25F434BF1030} (.Orphan.) O2 - BHO: TSearch - {B3A986DC-C2DD-40A0-8C0C-FEF66B783511} . (...) -- C:\Program Files\MediaSerchIE\k0XD8acZ.dll =>.Superfluous.CloudAtlas O2 - BHO: iToolsBHO - {E1499FE7-129D-4B6E-B681-DDF21E14172C} . (.iTools.hk - .) -- C:\Users\allah\Documents\iTools\Plugin\iToolsBHO.dll =>.Shenzhen Thinksky Technology Co.,Ltd® ---\\ Raccourcis Global Startup (82) - 16s O4 - GS\Desktop [Administrateur]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) C:\Program Files\Adobe\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated® O4 - GS\Desktop [Administrateur]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\Desktop [Administrateur]: Dropbox.lnk . (.Dropbox, Inc. - Dropbox.) C:\Program Files\Dropbox\Client\Dropbox.exe /home =>.Dropbox, Inc® O4 - GS\Desktop [Administrateur]: iTools 3.lnk . (.深圳市创想天空科技股份有限公司 - iTools 3.) C:\Program Files\ThinkSky\iTools 3\iTools.exe =>.Shenzhen Thinksky Technology Co.,Ltd® O4 - GS\Desktop [Administrateur]: Total Video Converter.lnk . (...) D:\Total Video Converter\tvc.exe O4 - GS\Desktop [Administrateur]: UmmyVideoDownloader.lnk . (.Copyright © 2017 Magicbit, Inc - UmmyVideoDownloader.) C:\Users\allah\AppData\Local\UmmyVideoDownloader\UmmyVideoDownloader.exe {65FA5A5518239DCE52EB94EB} =>.Copyright © 2017 Magicbit, Inc O4 - GS\Desktop [Administrateur]: VirtualDJ 8.lnk . (.Atomix Productions - VirtualDJ.) C:\Program Files\VirtualDJ\virtualdj8.exe =>.Atomix Productions O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\allah\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Administrateur]: Vuze.lnk . (.Azureus Software, Inc - Vuze Launcher.) C:\Program Files\Vuze\Azureus.exe =>.Azureus Software, Inc.® O4 - GS\sendTo [Administrateur]: Dropbox.lnk . (...) C:\Users\allah\Dropbox O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe http://www.yeadesktopbr.com =>PUP.Optional.Zusy O4 - GS\TaskBar [Administrateur]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\Programs [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe http://www.yeadesktopbr.com =>PUP.Optional.Zusy O4 - GS\Programs [Administrateur]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\allah\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation® O4 - GS\Desktop [allah]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) C:\Program Files\Adobe\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated® O4 - GS\Desktop [allah]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\Desktop [allah]: Dropbox.lnk . (.Dropbox, Inc. - Dropbox.) C:\Program Files\Dropbox\Client\Dropbox.exe /home =>.Dropbox, Inc® O4 - GS\Desktop [allah]: iTools 3.lnk . (.深圳市创想天空科技股份有限公司 - iTools 3.) C:\Program Files\ThinkSky\iTools 3\iTools.exe =>.Shenzhen Thinksky Technology Co.,Ltd® O4 - GS\Desktop [allah]: Total Video Converter.lnk . (...) D:\Total Video Converter\tvc.exe O4 - GS\Desktop [allah]: UmmyVideoDownloader.lnk . (.Copyright © 2017 Magicbit, Inc - UmmyVideoDownloader.) C:\Users\allah\AppData\Local\UmmyVideoDownloader\UmmyVideoDownloader.exe {65FA5A5518239DCE52EB94EB} =>.Copyright © 2017 Magicbit, Inc O4 - GS\Desktop [allah]: VirtualDJ 8.lnk . (.Atomix Productions - VirtualDJ.) C:\Program Files\VirtualDJ\virtualdj8.exe =>.Atomix Productions O4 - GS\Desktop [allah]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\allah\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [allah]: Vuze.lnk . (.Azureus Software, Inc - Vuze Launcher.) C:\Program Files\Vuze\Azureus.exe =>.Azureus Software, Inc.® O4 - GS\sendTo [allah]: Dropbox.lnk . (...) C:\Users\allah\Dropbox O4 - GS\sendTo [allah]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [allah]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\TaskBar [allah]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe http://www.yeadesktopbr.com =>PUP.Optional.Zusy O4 - GS\TaskBar [allah]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\Programs [allah]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe http://www.yeadesktopbr.com =>PUP.Optional.Zusy O4 - GS\Programs [allah]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\allah\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation® O4 - GS\CommonDesktop [Public]: FlvPlayer.lnk . (.Web Generic - Program Setup.) C:\Users\allah\AppData\Roaming\FlvPlayer\FlvPlayerApp.exe =>PUP.Optional.FLVPlayer O4 - GS\CommonDesktop [Public]: ImgBurn.lnk . (.LIGHTNING UK! - ImgBurn - The Ultimate Image Burner!.) C:\Program Files\ImgBurn\ImgBurn.exe =>.LIGHTNING UK! O4 - GS\CommonDesktop [Public]: iTunes.lnk . (.Apple Inc. - iTunes.) C:\Program Files\iTunes\iTunes.exe =>.Apple Inc.® O4 - GS\CommonDesktop [Public]: jetAudio.lnk . (.JetAudio, Inc. - jetAudio.) C:\Program Files\JetAudio\JetAudio.exe =>.JetAudio, Inc. O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe http://www.yeadesktopbr.com =>PUP.Optional.Zusy O4 - GS\CommonDesktop [Public]: My 7 Optimizer.lnk . (.http://www.my7vision.fr - My7Optimizer.) C:\Windows\My 7 Add-On\My 7 Optimizer\My 7 Optimizer.exe O4 - GS\CommonDesktop [Public]: My MP3 Splitter.lnk . (.zxt2007.com - .) C:\Program Files\ZXT2007 Software\My MP3 Splitter\MP3Splitter.exe =>.zxt2007.com O4 - GS\CommonDesktop [Public]: OpenOffice 4.1.2.lnk . (.Apache Software Foundation - OpenOffice 4.1.2.) C:\Program Files\OpenOffice 4\program\soffice.exe =>.Apache Software Foundation O4 - GS\CommonDesktop [Public]: SHAREit.lnk . (.SHAREit Technologies Co.Ltd - SHAREit.) C:\Program Files\SHAREit Technologies\SHAREit\SHAREit.exe =>.SHAREit Technologies Co.Ltd® O4 - GS\CommonDesktop [Public]: SPD-SX Wave Manager.lnk . (...) C:\Program Files\Roland\SPD-SX Wave Manager\SPD-SX Wave Manager.exe O4 - GS\CommonDesktop [Public]: Switch - Convertisseur de fichiers audio.lnk . (.NCH Software - Switch - Convertisseur de fichiers audio.) C:\Program Files\NCH Software\Switch\switch.exe =>.NCH Software® O4 - GS\CommonDesktop [Public]: USBAntivirus.lnk . (...) C:\Program Files\USBAntivirus\USBAntivirus.exe O4 - GS\CommonDesktop [Public]: Vuze.lnk . (.Azureus Software, Inc - Vuze Launcher.) C:\Program Files\Vuze\Azureus.exe =>.Azureus Software, Inc.® O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe http://www.yeadesktopbr.com =>PUP.Optional.Zusy O4 - GS\Programs [Public]: Microsoft OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\allah\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation® O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\system32\rundll32.exe %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut =>.Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s =>..Microsoft Corporation O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) C:\Program Files\Adobe\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated® O4 - GS\ProgramsCommon [Public]: Apple Software Update.lnk . (...) C:\Windows\Installer\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}\AppleSoftwareUpdateIco.exe =>.Apple Inc. O4 - GS\ProgramsCommon [Public]: ImgBurn.lnk . (.LIGHTNING UK! - ImgBurn - The Ultimate Image Burner!.) C:\Program Files\ImgBurn\ImgBurn.exe =>.LIGHTNING UK! O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe http://www.yeadesktopbr.com =>PUP.Optional.Zusy O4 - GS\ProgramsCommon [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) C:\Program Files\Windows Sidebar\sidebar.exe /showgadgets =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Switch - Convertisseur de fichiers audio.lnk . (.NCH Software - Switch - Convertisseur de fichiers audio.) C:\Program Files\NCH Software\Switch\switch.exe =>.NCH Software® O4 - GS\ProgramsCommon [Public]: Vuze.lnk . (.Azureus Software, Inc - Vuze Launcher.) C:\Program Files\Vuze\Azureus.exe =>.Azureus Software, Inc.® O4 - GS\ProgramsCommon [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) C:\Windows\system32\WindowsAnytimeUpgradeUI.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation ---\\ Modification Domaine/Adresses DNS (2) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.76.224.172 89.2.0.1 89.2.0.2 =>.France Numéricable O17 - HKLM\System\CCS\Services\Tcpip\..\{5748A449-F336-4F38-B1C9-0286B6C53CE1}: DhcpNameServer = 212.76.224.172 89.2.0.1 89.2.0.2 =>.France Numéricable ---\\ Protocole additionnel (22) - 1s O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation ---\\ Logiciels installés (50) - 83s O42 - Logiciel: 1.0.0.1 - (..) [HKLM] -- YeaDesktop =>PUP.Optional.Zusy O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {FE23D063-934D-4829-A0D8-00634CE79B4A} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Audition CS6 - (.Adobe Systems Incorporated.) [HKLM] -- {30FD541D-3C9D-41C4-B240-A994EE4E0231} =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Flash Player 26 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Flash Player 26 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated® O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM] -- {9BA1A894-B42F-4805-BC8C-349C905A3930} =>.Apple Inc. O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {D9F3D66A-9885-4DDD-A800-9DDF488359A1} =>.Apple Inc. O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF} =>.Apple Inc. O42 - Logiciel: ATI - Utilitaire de désinstallation du logiciel - (.ATI Technologies.) [HKLM] -- All ATI Software =>.ATI Technologies O42 - Logiciel: ATI Display Driver - (.ATI Technologies.) [HKLM] -- ATI Display Driver =>.ATI Technologies O42 - Logiciel: bl - (.Your Company Name.) [HKLM] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0} =>.Your Company Name O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {D168AAD0-6686-47C1-B599-CDD4888B9D1A} =>.Apple Inc. O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKLM] -- Dropbox =>.Dropbox, Inc® O42 - Logiciel: Dropbox Update Helper - (.Dropbox, Inc..) [HKLM] -- {099218A5-A723-43DC-8DB5-6173656A1E94} =>.Dropbox, Inc. O42 - Logiciel: FlvPlayer - (..) [HKCU] -- FlvPlayer =>PUP.Optional.FLVPlayer O42 - Logiciel: iCloud - (.Apple Inc..) [HKLM] -- {B7BC92A8-B3E5-40A6-9B21-B25E4E1D98F1} =>.Apple Inc. O42 - Logiciel: ImgBurn - (.LIGHTNING UK!.) [HKLM] -- ImgBurn =>.LIGHTNING UK! O42 - Logiciel: iTools 3 3.3.9.6 - (.ThinkSky.) [HKLM] -- iTools 3 3.3.9.6 O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {9E9CFD9F-64D6-498F-8584-E5CD08BA60BE} =>.Apple Inc. O42 - Logiciel: jetAudio Basic VX - (.COWON.) [HKLM] -- {DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A} =>.COWON O42 - Logiciel: K-Lite Mega Codec Pack 11.5.5 - (.KLite Inc.) [HKLM] -- KLiteCodecPack_is1 =>.KLite Inc O42 - Logiciel: Micro Foundation version 1.2 - (.Micro Foundation, Inc..) [HKCU] -- {5c0db2d4-bc59-4623-bc29-9e14f08a867f}_is1 =>PUP.Optional.BitCoinMiner O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU] -- OneDriveSetup.exe =>.Microsoft Corporation® O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation O42 - Logiciel: Microsoft Windows Debugging Symbols - (.Microsoft.) [HKLM] -- {46EA439E-2D16-49B6-AA80-00DE992FE7CE} =>.Microsoft O42 - Logiciel: Mozilla Firefox 54.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 54.0.1 (x86 fr) =>.Mozilla Corporation® O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService =>.Mozilla O42 - Logiciel: My 7 Optimizer - (..) [HKLM] -- My 7 Optimizer O42 - Logiciel: My MP3 Splitter 2.3.1.0 - (.zxt2007.com.) [HKLM] -- {3B427388-6FDF-463E-B9C9-9AAE1EAEC503}_is1 =>.zxt2007.com O42 - Logiciel: Online Application - (.Microleaves.) [HKLM] -- {5266F634-7B7D-4537-BDDC-98DD6CFCBAA1} =>.Superfluous.Microleaves O42 - Logiciel: OpenOffice 4.1.2 - (.Apache Software Foundation.) [HKLM] -- {DCB1B348-C94E-4D6D-8CE0-7D9DA5CF663E} =>.Apache Software Foundation O42 - Logiciel: ph - (.Your Company Name.) [HKLM] -- {185F9795-9663-4F13-9EF9-307A282ADB5A} =>.Your Company Name O42 - Logiciel: Pilote SPD-SX - (.Roland Corporation.) [HKLM] -- RolandRDID0124 {74FEB9C063D0AED4CEA2C40EE76F1850} =>.Roland Corporation O42 - Logiciel: Programme d'installation d'Atheros Client - (.Atheros.) [HKLM] -- {92F31257-15BA-46EE-887D-3C18C0790ACE} =>.Atheros O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM] -- {FF59BD75-466A-4D5A-AD23-AAD87C5FD44C} =>Riskware.QuickTime O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp. O42 - Logiciel: SHAREit - (.SHAREit Technologies Co.Ltd.) [HKLM] -- www.ushareit.com_is1 =>.SHAREit Technologies Co.Ltd O42 - Logiciel: SMSC CIR HID V5.3.2600.2 - (..) [HKLM] -- {F1B8DB67-D30E-4FF9-A85F-3CEE51825AA2} O42 - Logiciel: SPD-SX Wave Manager - (.Roland Corporation.) [HKLM] -- {3F966873-BD1C-414A-A50F-AD9F2AD89949} =>.Roland Corporation O42 - Logiciel: Supercopier 1.2.0.4 - (.Supercopier.) [HKLM] -- Supercopier =>.Supercopier O42 - Logiciel: Switch - Convertisseur de fichiers audio - (.NCH Software.) [HKLM] -- Switch =>.NCH Software® O42 - Logiciel: Texas Instruments PCIxx21/x515 drivers. - (.Texas Instruments Inc..) [HKLM] -- InstallShield_{FF6F491D-BC82-4DCC-A72F-1824957C6466} =>.Texas Instruments Inc. O42 - Logiciel: TIxx21 - (.Texas Instruments Inc..) [HKLM] -- {FF6F491D-BC82-4DCC-A72F-1824957C6466} =>.Texas Instruments Inc. O42 - Logiciel: UmmyVideoDownloader - (..) [HKLM] -- {E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1 O42 - Logiciel: USB Drive Antivirus 3.0 - (.USB Antivirus.) [HKLM] -- USB Drive Antivirus_is1 O42 - Logiciel: VirtualDJ 8 - (.Atomix Productions.) [HKLM] -- {5A89A21C-6391-4AFC-8502-66F6F7250125} =>.Atomix Productions O42 - Logiciel: Vuze - (.Azureus Software, Inc..) [HKLM] -- 8461-7759-5462-8226 =>.Azureus Software, Inc.® O42 - Logiciel: WinRAR 4.00 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver =>.win.rar GmbH O42 - Logiciel: YoutubeAdBlock - (.Company Inc..) [HKLM] -- E3605470-291B-44EB-8648-745EE356599A =>PUP.Optional.YouTubeAdBlock ---\\ HKCU & HKLM Software Keys (135) - 83s HKLM\SOFTWARE\Adobe =>.Adobe HKLM\SOFTWARE\Alcohol Soft =>.Alcohol Software HKLM\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc. HKLM\SOFTWARE\Apple Inc. =>.Apple Inc. HKLM\SOFTWARE\ASIO =>.Steinberg Media Technologies HKLM\SOFTWARE\Atheros =>.Qualcomm Atheros HKLM\SOFTWARE\ATI Technologies =>.ATI Technologies HKLM\SOFTWARE\Azureus HKLM\SOFTWARE\Cakewalk Music Software =>.Cakewalk Music Software HKLM\SOFTWARE\Caphyon =>.Caphyon HKLM\SOFTWARE\COWON =>.COWON HKLM\SOFTWARE\CXT =>.CXT Software HKLM\SOFTWARE\Dropbox =>.Dropbox HKLM\SOFTWARE\DropboxUpdate =>.Dropbox Inc. HKLM\SOFTWARE\ej-technologies =>.ej-technologies HKLM\SOFTWARE\ESET =>.ESET HKLM\SOFTWARE\Event Monitor HKLM\SOFTWARE\FlvPlayer =>PUP.Optional.FLVPlayer HKLM\SOFTWARE\GEAR Software =>.GEAR Software HKLM\SOFTWARE\GNU =>.GNU HKLM\SOFTWARE\Google =>.Google HKLM\SOFTWARE\HaaliMkx =>.Haali Media HKLM\SOFTWARE\Icaros =>.Icaros HKLM\SOFTWARE\ihpmserver =>Adware.CrossRider HKLM\SOFTWARE\ImgBurn =>.Lightning UK HKLM\SOFTWARE\InstallShield =>.InstallShield HKLM\SOFTWARE\Intel =>.Intel HKLM\SOFTWARE\Internet Download Manager =>.Tonec Inc HKLM\SOFTWARE\IObit =>.IObit HKLM\SOFTWARE\iTinySoft =>.iTinySoft HKLM\SOFTWARE\JavaSoft =>.JavaSoft HKLM\SOFTWARE\Jawego =>.Superfluous.JawegoPartners HKLM\SOFTWARE\KLCodecPack =>.KLite Inc HKLM\SOFTWARE\LAV =>.LAV Inc HKLM\SOFTWARE\Logitech =>.Logitech HKLM\SOFTWARE\Macromedia =>.Macromedia HKLM\SOFTWARE\Microleaves =>.Superfluous.Microleaves HKLM\SOFTWARE\Mozilla =>.Mozilla HKLM\SOFTWARE\mozilla.org =>.mozilla.org HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins HKLM\SOFTWARE\mtSubair HKLM\SOFTWARE\NCH Software =>.NCH Software HKLM\SOFTWARE\NCH Swift Sound =>.NCH Swift Sound HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions HKLM\SOFTWARE\OpenOffice =>.SourceForge HKLM\SOFTWARE\Opera Software =>.Opera Software HKLM\SOFTWARE\PC HKLM\SOFTWARE\Printers HKLM\SOFTWARE\RayDld =>Adware.CrossRider HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation HKLM\SOFTWARE\Roland HKLM\SOFTWARE\SHAREit Technologies HKLM\SOFTWARE\SmartPCFixer HKLM\SOFTWARE\Speedchecker Limited =>PUP.Optional.InternetSpeedChecker HKLM\SOFTWARE\Syntrillium HKLM\SOFTWARE\SystemSafe HKLM\SOFTWARE\VirtualDJ =>.Atomix Production HKLM\SOFTWARE\WinRAR =>.WinRAR HKLM\SOFTWARE\Wow6432Node =>.Microsoft Corporation HKLM\SOFTWARE\yoursearchingSoftware =>PUP.Optional.YourSearching HKCU\SOFTWARE\Adobe =>.Adobe HKCU\SOFTWARE\Alcohol Soft =>.Alcohol Software HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. =>.Apple Inc. HKCU\SOFTWARE\Atheros =>.Qualcomm Atheros HKCU\SOFTWARE\ATI Technologies Inc. =>.ATI Technologies Inc. HKCU\SOFTWARE\Azureus HKCU\SOFTWARE\Baidu =>.Baidu HKCU\SOFTWARE\Chromium =>.Chromium HKCU\SOFTWARE\ciskt HKCU\SOFTWARE\COWON =>.COWON HKCU\SOFTWARE\csastats =>Adware.InstallCore HKCU\SOFTWARE\DownloadManager =>.DownloadManager HKCU\SOFTWARE\Dropbox =>.Dropbox HKCU\SOFTWARE\DropboxUpdate =>.Dropbox Inc. HKCU\SOFTWARE\drpsu =>.Driver PackSolution HKCU\SOFTWARE\ej-technologies =>.ej-technologies HKCU\SOFTWARE\ESET =>.ESET HKCU\SOFTWARE\Event Monitor =>.Superfluous.EventMonitor HKCU\SOFTWARE\FastDataX =>Adware.FastDataX HKCU\SOFTWARE\GNU =>.GNU HKCU\SOFTWARE\Google =>.Google HKCU\SOFTWARE\Haali =>.Haali Media HKCU\SOFTWARE\i-FunBox.com =>.i-Funbox.com HKCU\SOFTWARE\Icaros =>.Icaros HKCU\SOFTWARE\IM =>Adware.InstallCore HKCU\SOFTWARE\ImgBurn =>.Lightning UK HKCU\SOFTWARE\Installer HKCU\SOFTWARE\Interstatnogui =>Adware.UserMon HKCU\SOFTWARE\JavaSoft =>.JavaSoft HKCU\SOFTWARE\jawego =>.Superfluous.JawegoPartners HKCU\SOFTWARE\Kingsoft =>.Kingosoft Technology Ltd HKCU\SOFTWARE\Licenses =>.Microsoft Corporation HKCU\SOFTWARE\Macromedia =>.Macromedia HKCU\SOFTWARE\Magicbit =>.Superfluous.Magicbit HKCU\SOFTWARE\Magnet =>.Magnet HKCU\SOFTWARE\MediaInfo =>.Jérôme Martinez HKCU\SOFTWARE\Mozilla =>.Mozilla HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins HKCU\SOFTWARE\MPC-HC =>.MPC-HC Team HKCU\SOFTWARE\NCH Software =>.NCH Software HKCU\SOFTWARE\NCH Swift Sound =>.NCH Swift Sound HKCU\SOFTWARE\OpenOffice =>.SourceForge HKCU\SOFTWARE\Opera Software =>.Opera Software HKCU\SOFTWARE\PC HKCU\SOFTWARE\PopWnd =>.Lenovo Group Limited HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore HKCU\SOFTWARE\QtProject =>.QtProject HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKCU\SOFTWARE\roamingdevice =>.Unknown HKCU\SOFTWARE\Roland HKCU\SOFTWARE\Rtp =>.RTP Software HKCU\SOFTWARE\SaurikIT =>.SaurikIT, LLC HKCU\SOFTWARE\SHAREit Technologies HKCU\SOFTWARE\StarSynergy HKCU\SOFTWARE\SWiSHzone.com =>.SWiSHzone.com HKCU\SOFTWARE\Sysinternals =>.Sysinternals HKCU\SOFTWARE\System Healer =>PUP.Optional.SystemHealer HKCU\SOFTWARE\SystemSafe HKCU\SOFTWARE\Tencent =>.Superfluous.Tencent HKCU\SOFTWARE\The Silicon Realms Toolworks =>.The Silicon Realms Toolworks HKCU\SOFTWARE\Trolltech =>.Trolltech HKCU\SOFTWARE\Ultracopier =>.Herman Brule HKCU\SOFTWARE\undefined =>.Superfluous.Downloader HKCU\SOFTWARE\VirtualDJ =>.Atomix Production HKCU\SOFTWARE\WinRAR =>.WinRAR HKCU\SOFTWARE\WinRAR SFX =>.RarLab HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation HKCU\SOFTWARE\YeaDesktop =>PUP.Optional.Zusy HKCU\SOFTWARE\ZHP =>.Nicolas Coolman HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation HKCU\SOFTWARE\AppDataLow\Yandex =>.Yandex HKCU\SOFTWARE\AppDataLow\Software\AppTrailers =>Adware.AppTrailers ---\\ Contenu des dossiers Programmes (253) - 84s O43 - CFD: 13/06/2017 - [] D -- C:\Program Files\Adobe =>.Adobe Systems Incorporated® O43 - CFD: 16/12/2016 - [] D -- C:\Program Files\Alcohol Soft =>.Alcohol Software O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Apple Software Update =>.Apple Inc. O43 - CFD: 17/10/2015 - [] D -- C:\Program Files\Atheros =>.Qualcomm Atheros O43 - CFD: 17/10/2015 - [] D -- C:\Program Files\ATI Technologies =>.ATI Technologies O43 - CFD: 03/12/2016 - [] D -- C:\Program Files\BdTips =>.Baidu Online Network Technology (Beijing)Co., Ltd® O43 - CFD: 18/06/2017 - [] D -- C:\Program Files\Bonjour =>.Apple Inc. O43 - CFD: 25/10/2015 - [] D -- C:\Program Files\Carambis =>.Rostpay Ltd O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation O43 - CFD: 07/07/2017 - [] D -- C:\Program Files\Dropbox =>.Dropbox, Inc® O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\DVD Maker =>.Aone Software O43 - CFD: 16/10/2015 - [] D -- C:\Program Files\ESET =>.ESET O43 - CFD: 16/10/2015 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation O43 - CFD: 20/10/2015 - [] D -- C:\Program Files\ImgBurn =>.Lightning UK O43 - CFD: 20/10/2015 - [] HD -- C:\Program Files\InstallShield Installation Information =>.InstallShield Software O43 - CFD: 17/10/2015 - [] D -- C:\Program Files\Intel =>.Intel Corporation O43 - CFD: 24/10/2015 - [] D -- C:\Program Files\Internet Download Manager =>.Tonec Inc O43 - CFD: 16/08/2009 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation O43 - CFD: 18/06/2017 - [] D -- C:\Program Files\iPod =>.Apple Inc.® O43 - CFD: 18/06/2017 - [] D -- C:\Program Files\iTunes =>.Apple Inc. O43 - CFD: 20/10/2015 - [] D -- C:\Program Files\JetAudio =>.JetAudio, Inc. O43 - CFD: 22/10/2015 - [] D -- C:\Program Files\K-Lite Codec Pack =>.KLite Inc O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\MediaSerchIE O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\MediaSerchU O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\MediaSerchUn O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Microleaves =>.Superfluous.Microleaves O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Microsoft Games =>.Microsoft Corporation O43 - CFD: 13/06/2017 - [] D -- C:\Program Files\Microsoft OneDrive =>.Microsoft Corporation O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation O43 - CFD: 23/05/2016 - [] D -- C:\Program Files\Mono O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Mozilla Maintenance Service =>.Mozilla O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation O43 - CFD: 11/12/2016 - [] D -- C:\Program Files\My Company Name =>.My Company Name O43 - CFD: 16/12/2016 - [] D -- C:\Program Files\NCH Software =>.NCH Software O43 - CFD: 22/06/2016 - [] D -- C:\Program Files\OpenOffice 4 =>.OpenOffice.org O43 - CFD: 23/10/2015 - [] D -- C:\Program Files\Opera =>.Opera Software O43 - CFD: 23/07/2017 - [0] D -- C:\Program Files\PC Speed Maximizer =>.Superfluous.PCSpeedMaximizer O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\pccleanplus =>.Superfluous.EventMonitor O43 - CFD: 23/03/2016 - [] D -- C:\Program Files\QuickTime =>.Apple Inc.® O43 - CFD: 24/12/2015 - [] D -- C:\Program Files\RayDld {4ED098FE8A740C4647312AEF528CD667} =>Adware.CrossRider O43 - CFD: 17/10/2015 - [] D -- C:\Program Files\RdDrv001 {74FEB9C063D0AED4CEA2C40EE76F1850} O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 17/10/2015 - [] D -- C:\Program Files\Roland =>.Roland O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\SHAREit Technologies =>.SHAREit Technologies Co.Ltd® O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Supercopier =>.SFX Team O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\The Sims 1.01 patch O43 - CFD: 19/06/2017 - [] D -- C:\Program Files\ThinkSky =>.ThinkSky Inc O43 - CFD: 30/05/2016 - [] D -- C:\Program Files\Total Video Converter O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation O43 - CFD: 16/10/2015 - [] D -- C:\Program Files\USBAntivirus O43 - CFD: 03/12/2016 - [] D -- C:\Program Files\VirtualDJ =>.Atomix Production O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Vuze =>.Azureus Software, Inc.® O43 - CFD: 23/10/2015 - [] D -- C:\Program Files\WIDCOMM =>.Widcomm O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation O43 - CFD: 16/10/2015 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 16/08/2009 - [] D -- C:\Program Files\Windows Virtual PC =>.Microsoft Corporation O43 - CFD: 15/06/2017 - [] D -- C:\Program Files\WinRAR =>.WinRAR O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\YeaDesktop =>PUP.Optional.Zusy O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\YubeAlckIE O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\YubeAlckU O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\YubeAlckU2 O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\YubeAlckUn O43 - CFD: 23/10/2015 - [] D -- C:\Program Files\ZXT2007 Software O43 - CFD: 24/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 17/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atheros =>.Qualcomm Atheros O43 - CFD: 07/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox =>.Dropbox O43 - CFD: 16/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET =>.ESET O43 - CFD: 24/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlvPlayer =>PUP.Optional.FLVPlayer O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation O43 - CFD: 13/06/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud =>.Apple Inc. O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn =>.Lightning UK O43 - CFD: 17/06/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc O43 - CFD: 18/06/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes =>.Apple Inc. O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\jetAudio =>.JetAudio, Inc. O43 - CFD: 22/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack =>.KLite Inc O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight =>.Microsoft Corporation O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox =>.Mozilla O43 - CFD: 17/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\My MP3 Splitter O43 - CFD: 22/06/2016 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2 =>.SourceForge O43 - CFD: 16/12/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes audio O43 - CFD: 23/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime O43 - CFD: 17/06/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHAREit =>.Lenovo Group Limited O43 - CFD: 17/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SPD-SX Wave Manager O43 - CFD: 23/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 16/12/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite NCH Software =>.NCH Software O43 - CFD: 30/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video Converter O43 - CFD: 16/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USBAntivirus O43 - CFD: 16/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC =>.Microsoft Corporation O43 - CFD: 15/06/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR O43 - CFD: 08/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YeaDesktop =>PUP.Optional.Zusy O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\247c28e0-1995-1 =>.Superfluous.Polluteware O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\247c28e0-3807-0 =>.Superfluous.Polluteware O43 - CFD: 24/07/2017 - [] D -- C:\ProgramData\6ed10dc6-2967-0 =>.Superfluous.Polluteware O43 - CFD: 24/07/2017 - [] D -- C:\ProgramData\6ed10dc6-3781-0 =>.Superfluous.Polluteware O43 - CFD: 24/07/2017 - [] D -- C:\ProgramData\6ed10dc6-3da5-1 =>.Superfluous.Polluteware O43 - CFD: 11/12/2016 - [] D -- C:\ProgramData\Adobe =>.Adobe O43 - CFD: 18/06/2017 - [] D -- C:\ProgramData\Apple =>.Apple Inc. O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Apple Computer =>.Apple Inc. O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation O43 - CFD: 16/06/2017 - [] D -- C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB O43 - CFD: 16/10/2015 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Dropbox =>.Dropbox O43 - CFD: 16/10/2015 - [0] SHD -- C:\ProgramData\Favoris =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation O43 - CFD: 23/10/2015 - [0] D -- C:\ProgramData\IDM =>.IDM O43 - CFD: 22/10/2015 - [] D -- C:\ProgramData\IObit =>.IObit O43 - CFD: 22/06/2016 - [0] D -- C:\ProgramData\Kingsoft =>.Kingosoft Technology Ltd O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\Logic Cramble O43 - CFD: 07/07/2017 - [] D -- C:\ProgramData\Logs =>.ABBYY Software O43 - CFD: 16/10/2015 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation O43 - CFD: 08/07/2017 - [] D -- C:\ProgramData\Micro Foundation O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\Microleaves =>.Superfluous.Microleaves O43 - CFD: 23/07/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation O43 - CFD: 13/06/2017 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation O43 - CFD: 16/10/2015 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation O43 - CFD: 16/12/2016 - [] D -- C:\ProgramData\NCH Software =>.NCH Software O43 - CFD: 16/12/2016 - [] D -- C:\ProgramData\Oracle =>.Oracle O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\PrefsSecure O43 - CFD: 27/06/2017 - [] D -- C:\ProgramData\ProductData =>.Microsoft Corporation O43 - CFD: 11/12/2016 - [] D -- C:\ProgramData\regid.1986-12.com.adobe =>.Adobe Inc. O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation O43 - CFD: 23/07/2017 - [] D -- C:\ProgramData\Subairs O43 - CFD: 07/07/2017 - [] D -- C:\ProgramData\TEMP =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation O43 - CFD: 19/06/2017 - [] D -- C:\ProgramData\Thinksky =>.ThinkSky Inc O43 - CFD: 16/10/2015 - [] D -- C:\ProgramData\USBSecurity O43 - CFD: 23/05/2016 - [] D -- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521} =>.Apple Inc. O43 - CFD: 11/12/2016 - [] D -- C:\Program Files\Common Files\Adobe =>.Adobe O43 - CFD: 11/12/2016 - [] D -- C:\Program Files\Common Files\Adobe AIR =>.Adobe Inc. O43 - CFD: 18/06/2017 - [] D -- C:\Program Files\Common Files\Apple =>.Apple Inc. O43 - CFD: 20/10/2015 - [] D -- C:\Program Files\Common Files\COWON =>.COWON O43 - CFD: 17/10/2015 - [] D -- C:\Program Files\Common Files\InstallShield =>.InstallShield O43 - CFD: 20/10/2015 - [] D -- C:\Program Files\Common Files\microsoft shared =>.Microsoft Corporation O43 - CFD: 11/12/2016 - [] D -- C:\Program Files\Common Files\PX Storage Engine =>.Sonic Solutions O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\Services =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\System =>.Microsoft Corporation O43 - CFD: 25/12/2015 - [0] HD -- C:\Users\allah\AppData\Roaming\.ACEStream O43 - CFD: 23/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\360se6 O43 - CFD: 23/07/2017 - [] D -- C:\Users\allah\AppData\Roaming\67541eb7e7ef436d8c3612037a941c70 O43 - CFD: 14/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\Adobe =>.Adobe O43 - CFD: 05/07/2017 - [] D -- C:\Users\allah\AppData\Roaming\Apple Computer =>.Apple Inc. O43 - CFD: 24/07/2017 - [] D -- C:\Users\allah\AppData\Roaming\AppTrailers =>Adware.AppTrailers O43 - CFD: 18/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\Azureus O43 - CFD: 23/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\baidu =>.Baidu O43 - CFD: 23/10/2015 - [] D -- C:\Users\allah\AppData\Roaming\Carambis =>.Rostpay Ltd O43 - CFD: 20/10/2015 - [] D -- C:\Users\allah\AppData\Roaming\COWON =>.COWON O43 - CFD: 24/07/2017 - [] D -- C:\Users\allah\AppData\Roaming\devnull O43 - CFD: 17/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\DMCache =>.DMCache O43 - CFD: 20/10/2015 - [] D -- C:\Users\allah\AppData\Roaming\Dropbox =>.Dropbox O43 - CFD: 23/10/2015 - [] D -- C:\Users\allah\AppData\Roaming\DRPSu =>.Driver PackSolution O43 - CFD: 01/07/2017 - [0] D -- C:\Users\allah\AppData\Roaming\EncryptStick =>.EncryptStick O43 - CFD: 24/07/2017 - [] D -- C:\Users\allah\AppData\Roaming\Event Monitor O43 - CFD: 24/12/2015 - [] D -- C:\Users\allah\AppData\Roaming\FlvPlayer =>PUP.Optional.FLVPlayer O43 - CFD: 18/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\IDM =>.IDM O43 - CFD: 18/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\iFunbox_UserCache =>.iFunbox DevTeam O43 - CFD: 08/07/2017 - [] D -- C:\Users\allah\AppData\Roaming\importantupdates O43 - CFD: 24/07/2017 - [] D -- C:\Users\allah\AppData\Roaming\Interstatnogui =>Adware.UserMon O43 - CFD: 22/10/2015 - [] D -- C:\Users\allah\AppData\Roaming\IObit =>.IObit O43 - CFD: 14/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\kingsoft =>.Kingosoft Technology Ltd O43 - CFD: 17/10/2015 - [] D -- C:\Users\allah\AppData\Roaming\Macromedia =>.Macromedia O43 - CFD: 08/07/2017 - [] D -- C:\Users\allah\AppData\Roaming\Microleaves =>.Superfluous.Microleaves O43 - CFD: 17/06/2017 - [] SD -- C:\Users\allah\AppData\Roaming\Microsoft =>.Microsoft Corporation O43 - CFD: 14/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\Mozilla =>.Mozilla Corporation O43 - CFD: 24/10/2015 - [] D -- C:\Users\allah\AppData\Roaming\MPC-HC =>.MPC-HC Team O43 - CFD: 22/06/2016 - [] D -- C:\Users\allah\AppData\Roaming\OpenOffice =>.SourceForge O43 - CFD: 19/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\Tencent =>.Superfluous.Tencent O43 - CFD: 18/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\ThinkSky =>.ThinkSky Inc O43 - CFD: 27/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\Umeng O43 - CFD: 16/12/2016 - [] D -- C:\Users\allah\AppData\Roaming\WinRAR =>.WinRAR O43 - CFD: 24/07/2017 - [] D -- C:\Users\allah\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 23/06/2017 - [] D -- C:\Users\allah\AppData\Local\2345explorer O43 - CFD: 23/06/2017 - [] D -- C:\Users\allah\AppData\Local\360chrome O43 - CFD: 13/06/2017 - [] D -- C:\Users\allah\AppData\Local\Adobe =>.Adobe O43 - CFD: 08/07/2017 - [] D -- C:\Users\allah\AppData\Local\AdService O43 - CFD: 24/07/2017 - [] D -- C:\Users\allah\AppData\Local\AdvinstAnalytics O43 - CFD: 23/10/2015 - [] D -- C:\Users\allah\AppData\Local\Apple =>.Apple Inc. O43 - CFD: 07/04/2016 - [] D -- C:\Users\allah\AppData\Local\Apple Computer =>.Apple Inc. O43 - CFD: 16/10/2015 - [0] SHD -- C:\Users\allah\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 24/07/2017 - [] D -- C:\Users\allah\AppData\Local\AppTrailers =>Adware.AppTrailers O43 - CFD: 08/07/2017 - [] D -- C:\Users\allah\AppData\Local\aZos091 O43 - CFD: 23/10/2015 - [] D -- C:\Users\allah\AppData\Local\Carambis =>.Rostpay Ltd O43 - CFD: 23/10/2015 - [] D -- C:\Users\allah\AppData\Local\Chromium =>.Chromium O43 - CFD: 24/07/2017 - [] D -- C:\Users\allah\AppData\Local\CrashRpt =>.Superfluous.CrashReports O43 - CFD: 18/06/2017 - [] D -- C:\Users\allah\AppData\Local\Diagnostics =>.Microsoft Corporation O43 - CFD: 17/06/2017 - [] D -- C:\Users\allah\AppData\Local\Dropbox =>.Dropbox O43 - CFD: 18/12/2015 - [0] D -- C:\Users\allah\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation O43 - CFD: 16/10/2015 - [] D -- C:\Users\allah\AppData\Local\ESET =>.ESET O43 - CFD: 17/10/2015 - [] D -- C:\Users\allah\AppData\Local\Google =>.Google O43 - CFD: 16/10/2015 - [0] SHD -- C:\Users\allah\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 08/07/2017 - [] D -- C:\Users\allah\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk =>Hijacker.Browser O43 - CFD: 22/06/2016 - [] D -- C:\Users\allah\AppData\Local\Kingsoft =>.Kingosoft Technology Ltd O43 - CFD: 20/10/2015 - [] D -- C:\Users\allah\AppData\Local\Macromedia =>.Macromedia O43 - CFD: 13/06/2017 - [] D -- C:\Users\allah\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 22/10/2015 - [] D -- C:\Users\allah\AppData\Local\Mozilla =>.Mozilla Corporation O43 - CFD: 23/10/2015 - [] D -- C:\Users\allah\AppData\Local\Nichrome O43 - CFD: 23/10/2015 - [0] D -- C:\Users\allah\AppData\Local\Opera Software =>.Opera Software O43 - CFD: 24/12/2015 - [] D -- C:\Users\allah\AppData\Local\PriceFountain =>PUP.Optional.PriceFountain O43 - CFD: 22/10/2015 - [] D -- C:\Users\allah\AppData\Local\Programs =>.Microsoft Corporation O43 - CFD: 17/10/2015 - [] D -- C:\Users\allah\AppData\Local\Roland =>.Roland O43 - CFD: 17/06/2017 - [] D -- C:\Users\allah\AppData\Local\SHAREit Technologies O43 - CFD: 24/07/2017 - [] D -- C:\Users\allah\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 16/10/2015 - [0] SHD -- C:\Users\allah\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 23/06/2017 - [] D -- C:\Users\allah\AppData\Local\Tencent =>.Superfluous.Tencent O43 - CFD: 23/06/2017 - [] D -- C:\Users\allah\AppData\Local\UCBrowser O43 - CFD: 08/07/2017 - [] D -- C:\Users\allah\AppData\Local\UmmyVideoDownloader =>.UmmyVideoDownloader O43 - CFD: 17/06/2017 - [] D -- C:\Users\allah\AppData\Local\VirtualStore =>.Microsoft Corporation O43 - CFD: 23/10/2015 - [] D -- C:\Users\allah\AppData\Local\Xpom O43 - CFD: 24/07/2017 - [] D -- C:\Users\allah\AppData\Local\ZHP =>.Nicolas Coolman O43 - CFD: 06/12/2016 - [0] D -- C:\Users\allah\AppData\Local\{0F376500-DFBE-47DE-A1F0-B86761A82BF2} O43 - CFD: 06/12/2016 - [0] D -- C:\Users\allah\AppData\Local\{6859D162-847E-4525-84F5-77CE958BACA9} O43 - CFD: 06/12/2016 - [0] D -- C:\Users\allah\AppData\Local\{C1C46F64-CDA0-44F3-B198-D652F918E413} O43 - CFD: 22/10/2015 - [0] D -- C:\Users\allah\AppData\Local\Programs\Common =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] RD -- C:\Users\allah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 16/10/2015 - [] RD -- C:\Users\allah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 17/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc O43 - CFD: 14/07/2009 - [] RD -- C:\Users\allah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 08/07/2017 - [0] D -- C:\Users\allah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Registry Trash Keys Finder =>.SNC O43 - CFD: 23/07/2017 - [] RD -- C:\Users\allah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 08/07/2017 - [] D -- C:\Users\allah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Supercopier =>.SFX Team O43 - CFD: 08/07/2017 - [] D -- C:\Users\allah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UmmyVideoDownloader =>.UmmyVideoDownloader O43 - CFD: 03/12/2016 - [] D -- C:\Users\allah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ =>.Atomix Production O43 - CFD: 15/06/2017 - [] D -- C:\Users\allah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 16/10/2015 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 16/10/2015 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 14/06/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Dropbox =>.Dropbox O43 - CFD: 17/10/2015 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\ESET =>.ESET O43 - CFD: 16/10/2015 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 23/10/2015 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Apple Computer =>.Apple Inc. O43 - CFD: 18/12/2015 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Dropbox =>.Dropbox O43 - CFD: 14/07/2009 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation User empty folders CLSID founds (3). Clean with ZHPFix 'EmptyCLSID' command =>.Superfluous.Empty.CLSID ---\\ Derniers fichiers créés dans Windows Prefetcher (5) - 47s O45 - LFCP:[MD5.EE44DE7423F70D09CB1FB955E5EDDB73] 24/07/2017 A -- C:\Windows\Prefetch\APPTRAILERS.EXE-A3261E95.pf =>Adware.AppTrailers O45 - LFCP:[MD5.F16B92E0CD38E1FD08EE02908A6E0FB8] 24/07/2017 A -- C:\Windows\Prefetch\INTERSTATNOGUI.EXE-C459FCFF.pf =>Adware.UserMon O45 - LFCP:[MD5.86773FC12F5EFFF6FF40EB7D71F4BF6C] 24/07/2017 A -- C:\Windows\Prefetch\SYSTEMHEALER.EXE-0C9019B7.pf =>PUP.Optional.SystemHealer O45 - LFCP:[MD5.BE745405FAD88327D86B0808D82F6DFE] 24/07/2017 A -- C:\Windows\Prefetch\SYSTEMHEALER.EXE-339DC052.pf =>PUP.Optional.SystemHealer O45 - LFCP:[MD5.E3EEE7B1D78D48F0D70386B89FD794F5] 24/07/2017 A -- C:\Windows\Prefetch\SYSTEMHEALER.EXE-EF88FFA5.pf =>PUP.Optional.SystemHealer ---\\ ShellExecuteHook (1) - 3s O46 - SEH:ShellExecuteHooks - (no name) - [HKLM] - {5F51FFFE-7463-4220-B711-E5B9ACB8EDFE} . (.Micrasaft Carparation - Windows Image Helper.) -- C:\Windows\C_02iu47.dat ---\\ ShellIconOverlayIdentifiers (SIOI) (16) - 1s O106 - SIOI: DropboxExt1 Class [ DropboxExt01] - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll =>.Dropbox, Inc® O106 - SIOI: DropboxExt7 Class [ DropboxExt02] - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll =>.Dropbox, Inc® O106 - SIOI: DropboxExt9 Class [ DropboxExt03] - {FB314EE1-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll =>.Dropbox, Inc® O106 - SIOI: DropboxExt3 Class [ DropboxExt04] - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll =>.Dropbox, Inc® O106 - SIOI: DropboxExt2 Class [ DropboxExt05] - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll =>.Dropbox, Inc® O106 - SIOI: DropboxExt4 Class [ DropboxExt06] - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll =>.Dropbox, Inc® O106 - SIOI: DropboxExt5 Class [ DropboxExt07] - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll =>.Dropbox, Inc® O106 - SIOI: DropboxExt8 Class [ DropboxExt08] - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll =>.Dropbox, Inc® O106 - SIOI: DropboxExt10 Class [ DropboxExt09] - {FB314EE2-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll =>.Dropbox, Inc® O106 - SIOI: DropboxExt6 Class [ DropboxExt10] - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Program Files\Dropbox\Client\DropboxExt.16.0.dll =>.Dropbox, Inc® O106 - SIOI: IDM Shell Extension [ IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Users\allah\AppData\Local\Temp\Rar$EXb0.066\IDMShellExt.dll =>.Tonec Inc.® O106 - SIOI: UpToDateOverlayHandler Class [ SkyDrive1] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\allah\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328_1\SkyDriveShell.dll =>.Microsoft Corporation® O106 - SIOI: SyncingOverlayHandler Class [ SkyDrive2] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\allah\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328_1\SkyDriveShell.dll =>.Microsoft Corporation® O106 - SIOI: ErrorOverlayHandler Class [ SkyDrive3] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\allah\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328_1\SkyDriveShell.dll =>.Microsoft Corporation® O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation ---\\ Image File Execution Options (1) - 0s O50 - IFEO:C:\Windows\System32\FlashPlayerApp.exe - (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) [DisableExceptionChainValidation\\0] =>.Adobe Systems Incorporated® ---\\ Enumération des clés StartupReg (9) - 3s O53 - SMSR:HKLM\...\startupreg\APSDaemon [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe =>.Apple Inc. O53 - SMSR:HKLM\...\startupreg\Dropbox [Key] . (.Dropbox, Inc. - Dropbox.) -- C:\Program Files\Dropbox\Client\Dropbox.exe =>.Dropbox, Inc. O53 - SMSR:HKLM\...\startupreg\G#Nf#CLçtO.exe [Key] . (...) -- C:\Program Files\Apple Software Update\YL5EYTX\G#Nf#CLçtO.exe O53 - SMSR:HKLM\...\startupreg\IDMan [Key] . (...) -- C:\Users\allah\AppData\Local\Temp\Rar$EXb0.066\IDMan.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\iFunBox [Key] . (...) -- C:\Program Files\i-Funbox DevTeam\iFunBox.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\importantupdates [Key] . (...) -- C:\Users\allah\AppData\Roaming\importantupdates\importantupdates.exe O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe =>.Apple Inc. O53 - SMSR:HKLM\...\startupreg\msiql [Key] . (...) -- C:\Users\allah\AppData\Local\Temp\00011293\msiql.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\YeaDesktop [Key] . (.Copyright (C) 2017 - .) -- C:\Program Files\YeaDesktop\YeaDesktop.exe =>PUP.Optional.Zusy ---\\ Liste des pilotes du système (90) - 17s O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [79952] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [23616] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608] =>.Microsoft Windows® O58 - SDL:2005/12/02 00:49:20 A . (.ATI Technologies Inc. - ATI Radeon WindowsNT Miniport Driver.) -- C:\Windows\System32\drivers\ati2mtag.sys [1412608] =>.ATI Technologies Inc. O58 - SDL:2015/10/23 03:53:40 A . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [2313216] =>.ATI Technologies Inc. O58 - SDL:2015/10/22 23:45:14 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60x.sys [414488] =>.Broadcom Corporation® O58 - SDL:2015/10/23 03:46:20 A . (.Broadcom Corporation. - Broadcom Bluetooth Firmware Download Filter.) -- C:\Windows\System32\drivers\bcbtums.sys [174936] =>.Broadcom Corporation® O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568] =>.Brother Industries, Ltd. O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248] =>.Brother Industries, Ltd. O58 - SDL:2009/07/14 02:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128] =>.Brother Industries Ltd. O58 - SDL:2009/07/14 00:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336] =>.Brother Industries Ltd. O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160] =>.Brother Industries Ltd. O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904] =>.Brother Industries Ltd. O58 - SDL:2015/10/23 03:54:44 A . (.IVT Corporation. - Bluetooth USB Device Driver.) -- C:\Windows\System32\drivers\btcusb.sys [44992] =>.IVT CORPORATION® O58 - SDL:2015/10/23 03:46:20 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\Windows\System32\drivers\btwampfl.sys [144600] =>.Broadcom Corporation® O58 - SDL:2015/10/23 03:54:20 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys [84008] =>.Broadcom Corporation® O58 - SDL:2006/11/29 11:00:38 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys [80688] =>.Broadcom Corporation® O58 - SDL:2006/11/29 11:03:30 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys [16560] =>.Broadcom Corporation® O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080] =>.Broadcom Corporation O58 - SDL:2011/10/17 04:00:00 A . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see Px.) -- C:\Windows\System32\drivers\cdr4_xp.sys [9072] =>.Sonic Solutions® O58 - SDL:2011/10/17 04:00:00 A . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\Windows\System32\drivers\cdralw2k.sys [9200] =>.Sonic Solutions® O58 - SDL:2009/07/14 03:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952] =>.Microsoft Windows® O58 - SDL:2017/06/26 12:27:10 A . (.Dropbox, Inc. - Dropbox Filter Driver.) -- C:\Windows\System32\drivers\dbx-canary.sys [35408] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2017/06/26 12:27:10 A . (.Dropbox, Inc. - Dropbox Filter Driver.) -- C:\Windows\System32\drivers\dbx-dev.sys [35408] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2017/06/26 12:27:10 A . (.Dropbox, Inc. - Dropbox Filter Driver.) -- C:\Windows\System32\drivers\dbx-stable.sys [35408] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2009/07/14 03:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712] =>.Microsoft Windows® O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160] =>.Broadcom Corporation O58 - SDL:2012/10/03 16:14:58 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\drivers\GEARAspiWDM.sys [26840] =>.GEAR Software Inc.® O58 - SDL:2009/07/14 00:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624] =>.Hauppauge Computer Works, Inc. O58 - SDL:2005/12/06 17:50:10 A . (.SMSC - SMSC CIR Hid Driver.) -- C:\Windows\System32\drivers\hidsmsc.sys [15744] =>.SMSC O58 - SDL:2009/07/14 03:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152] =>.Microsoft Windows® O58 - SDL:2015/10/22 23:26:28 A . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) -- C:\Windows\System32\drivers\HWiNFO32.SYS [23840] =>.Martin Malik - REALiX® O58 - SDL:2009/07/14 03:20:36 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332352] =>.Microsoft Windows® O58 - SDL:2016/10/17 17:35:48 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [147120] =>.Tonec Inc.® O58 - SDL:2009/07/14 03:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95824] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89168] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848] =>.Microsoft Windows® O58 - SDL:2015/10/24 19:11:45 A . (.Logitech Inc. - USB Camera Driver.) -- C:\Windows\System32\drivers\lv321av.sys [1170976] =>.Logitech Inc® O58 - SDL:2006/06/19 15:16:16 A . (.Logitech - USB Statistic Driver.) -- C:\Windows\System32\drivers\LVUSBSta.sys [39424] =>.Logitech O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584] =>.Microsoft Windows® O58 - SDL:2009/07/14 00:02:51 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\netw5v32.sys [4231168] =>.Intel Corporation O58 - SDL:2015/10/22 23:43:54 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETwLv32.sys [6639616] =>.Intel Corporation O58 - SDL:2009/07/14 03:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:44 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117312] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:44 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [142416] =>.Microsoft Windows® O58 - SDL:2015/10/23 03:54:57 A . (.Point Grey Research - PGR1394b Device Driver.) -- C:\Windows\System32\drivers\PGR1394.sys [92672] =>.Point Grey Research O58 - SDL:2011/11/03 04:01:00 A . (.Rovi Corporation - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\System32\drivers\pxhelp20.sys [45968] =>.Sonic Solutions® O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064] =>.Microsoft Windows® O58 - SDL:2011/07/01 03:13:00 A . (.Roland Corporation - .) -- C:\Windows\System32\drivers\RDWM1124.sys [145792] =>.Roland Corporation O58 - SDL:2005/11/17 17:45:40 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RtkHDAud.sys [4069888] =>.Realtek Semiconductor Corp. O58 - SDL:2009/07/13 22:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] =>.Macrovision Corporation, Macrovision Europe Limited, O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888] =>.Microsoft Windows® O58 - SDL:2004/12/09 16:54:12 A . (.SMSC - SMSC IrCC NDIS 5.0 IrDA FIR Device Driver.) -- C:\Windows\System32\drivers\smcirda.sys [46592] =>.SMSC O58 - SDL:2016/12/16 07:38:34 A . (...) -- C:\Windows\System32\drivers\sptd.sys [436792] O58 - SDL:2009/07/14 03:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072] =>.Microsoft Windows® O58 - SDL:2009/06/19 16:44:14 A . (.Texas Instruments - tifm21.sys.) -- C:\Windows\System32\drivers\tifm21.sys [290816] =>.Texas Instruments O58 - SDL:2015/06/17 17:04:22 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl.sys [45056] =>.Apple, Inc. O58 - SDL:2009/07/14 03:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904] =>.Microsoft Windows® O58 - SDL:2009/07/14 00:13:45 A . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\System32\drivers\VSTAZL3.SYS [207360] =>.Conexant Systems, Inc. O58 - SDL:2009/07/14 00:13:45 A . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\System32\drivers\VSTCNXT3.SYS [661504] =>.Conexant Systems, Inc. O58 - SDL:2009/07/14 00:13:46 A . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\System32\drivers\VSTDPV3.SYS [980992] =>.Conexant Systems, Inc. O58 - SDL:2009/07/13 23:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029] =>.Microsoft Corporation O58 - SDL:2005/01/10 15:47:14 A . (.Atheros Communications, Inc. - Driver for Atheros AR5001 Wireless Network.) -- C:\Windows\System32\ar5211.sys [449888] =>.Atheros Communications, Inc. O58 - SDL:2009/07/13 23:40:44 A . (...) -- C:\Windows\System32\country.sys [27097] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672] =>.Microsoft Corporation ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (7) - 91s O61 - LFC: 2017/07/23 08:04:36 A . (.TODO: .) -- C:\Users\allah\AppData\Local\BigString.exe [2465280] O61 - LFC: 2017/07/23 08:07:33 A . (..) -- C:\Users\allah\AppData\Local\Jobhotdom.bin [1895383] O61 - LFC: 2017/07/23 08:06:33 A . (..) -- C:\Users\allah\AppData\Local\Lotfind.bin [278509] O61 - LFC: 2017/07/23 08:00:12 A . (..) -- C:\Users\allah\AppData\Roaming\67541eb7e7ef436d8c3612037a941c70\bQ8tXgHZf.exe [139264] O61 - LFC: 2017/07/23 01:59:16 A . (.Secure Driver Updater.) -- C:\Users\allah\AppData\Roaming\Event Monitor\productSetup_Setup_7_23_2017.exe [4575448] {4E0CD45027AD37729ADB2358285DC961} O61 - LFC: 2017/07/24 00:35:05 A . (.IT Genius.) -- C:\Users\allah\AppData\Roaming\Interstatnogui\interstatnogui.exe [3044696] =>.Superfluous.WeatherChannel O61 - LFC: 2017/07/23 01:05:43 A . (..) -- C:\Users\allah\Downloads\JavaSetup_0132817137.exe [1473288] ---\\ Associations Shell Spawning (11) - 1s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® ---\\ Menu de démarrage Internet (8) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation ---\\ Recherche d'infection sur les navigateurs (5) - 48s O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com O69 - SBI: SearchScopes [HKCU] {9f7967c1-7f73-4306-a03c-e96772657105} - (Globallysearch) - http://globallysearch.com?q={searchTerms}&srcid=100_FF&src=pt_1_y17w27 O69 - SBI: SearchScopes [HKCU] {ielnksrch} - (Search the web) - http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBEQo0lOCwIxrzs2Rcb6iYl2i9w-Vt6z7FJvybwqRgG2trl4x1MHfApDkj8auXStuybodjpsD9UKXbwAcNAdq3ahJb5QGswXmvMhdFf0TbMrEiDfrUmjOecRSWrQ5TO-3Zxl-LSdxpZM_tKZgAePVe0uibpJbg9KO5mBqbIpGbeVvUGOKGr4Qn1qz_r2BQ,&q={searchTerms} =>.Superfluous.Linkury O69 - SBI: SearchScopes [HKLM] ielnksrch - (Search the web) - http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBEQo0lOCwIxrzs2Rcb6iYl2i9w-Vt6z7FJvybwqRgG2trl4x1MHfApDkj8auXStuybodjpsD9UKXbwAcNAdq3ahJb5QGswXmvMhdFf0TbMrEiDfrUmjOecRSWrQ5TO-3Zxl-LSdxpZM_tKZgAePVe0uibpJbg9KO5mBqbIpGbeVvUGOKGr4Qn1qz_r2BQ,&q={searchTerms} =>.Superfluous.Linkury O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com ---\\ Enumère les services démarrés par Svchost (33) - 1s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464] =>.Microsoft Corporation O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168448] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [591360] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [667136] =>.Microsoft Corporation O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [473088] =>.Microsoft Corporation O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\System32\irmon.dll [19968] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [285184] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [241664] =>.Microsoft Corporation O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [543232] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [1912832] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [589312] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [497152] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [46592] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688] =>.Microsoft Corporation O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [162816] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [743424] =>.Microsoft Corporation O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [99328] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102400] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800] =>.Microsoft Corporation ---\\ Liste des exceptions du parefeu Windows (2) - 2s O87 - FAEL: "{E0E9D1ED-EF2E-4DFC-881D-5D2893E08F7E}" [In-None-P6-TRUE] .(...) -- C:\Program Files\RelevantKnowledge\rlvknlg.exe (.not file.) =>PUP.Optional.RelevantKnowledge O87 - FAEL: "{5E03ECC1-0D59-40AD-BC57-CB0179C1F0ED}" [In-None-P17-TRUE] .(...) -- C:\Program Files\RelevantKnowledge\rlvknlg.exe (.not file.) =>PUP.Optional.RelevantKnowledge ---\\ Recherche des packages WindowsInstaller (1) - 4s [MD5.] [WIS][2017/04/18 15:02:59] (.Microleaves - Advanced Installer 13.8.1 build 77369.) -- C:\Windows\Installer\6a07e1.msi [2752000] =>.Superfluous.Microleaves ---\\ Liste des émulateurs de CD/DVD (MBR Hook) (14) - 24s HKLM\SOFTWARE\Microsoft\Tracing\FlvPlayerApp_RASAPI32 =>PUP.Optional.FLVPlayer HKLM\SOFTWARE\Microsoft\Tracing\FlvPlayerApp_RASMANCS =>PUP.Optional.FLVPlayer HKLM\SOFTWARE\Microsoft\Tracing\FlvPlayerSetup_RASAPI32 =>PUP.Optional.FLVPlayer HKLM\SOFTWARE\Microsoft\Tracing\FlvPlayerSetup_RASMANCS =>PUP.Optional.FLVPlayer HKLM\SOFTWARE\Microsoft\Tracing\HiSuiteDownLoader_RASAPI32 =>PUP.Optional.SoftwareEngine HKLM\SOFTWARE\Microsoft\Tracing\HiSuiteDownLoader_RASMANCS =>PUP.Optional.SoftwareEngine HKLM\SOFTWARE\Microsoft\Tracing\ihpmServer_RASAPI32 =>Adware.CrossRider HKLM\SOFTWARE\Microsoft\Tracing\ihpmServer_RASMANCS =>Adware.CrossRider HKLM\SOFTWARE\Microsoft\Tracing\interstatnogui_RASAPI32 =>Adware.UserMon HKLM\SOFTWARE\Microsoft\Tracing\interstatnogui_RASMANCS =>Adware.UserMon HKLM\SOFTWARE\Microsoft\Tracing\Offercast36_NDV__RASAPI32 =>Toolbar.Ask HKLM\SOFTWARE\Microsoft\Tracing\Offercast36_NDV__RASMANCS =>Toolbar.Ask HKLM\SOFTWARE\Microsoft\Tracing\PCSpeedMaximizer_RASAPI32 =>.Superfluous.PCSpeedMaximizer HKLM\SOFTWARE\Microsoft\Tracing\PCSpeedMaximizer_RASMANCS =>.Superfluous.PCSpeedMaximizer ---\\ Scan Additionnel (83) - 1s [HKLM\SYSTEM\CurrentControlSet\Services\AdService] =>Trojan.AdService C:\Users\allah\AppData\Local\AdService\AdService.dll =>Trojan.AdService [HKLM\SYSTEM\CurrentControlSet\Services\backlh] =>PUP.Optional.LogicHandler C:\ProgramData\Logic Cramble\set.exe =>PUP.Optional.LogicHandler [HKLM\SYSTEM\CurrentControlSet\Services\ihpmServer] =>Adware.CrossRider C:\Program Files\RayDld\ihpmServer.exe =>Adware.CrossRider [HKLM\SYSTEM\CurrentControlSet\Services\Nettrans] =>PUP.Optional.LogicHandler C:\ProgramData\PrefsSecure\Nettrans.exe =>PUP.Optional.LogicHandler C:\Users\allah\AppData\Roaming\Event Monitor\em.exe =>.Superfluous.EventMonitor C:\Windows\System32\Tasks\RunAtStartup =>.Superfluous.EventMonitor C:\Users\allah\AppData\Roaming\Interstatnogui\interstatnogui.exe =>.Superfluous.WeatherChannel [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}] =>.Superfluous.Orphan [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0055C089-8582-441B-A0BF-17B458C2A3A8}] =>.Superfluous.Orphan [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0055C089-8582-441B-A0BF-17B458C2A3A8}] =>.Superfluous.Orphan C:\Program Files\YubeAlckIE\kMJ2ie8uB.dll =>PUP.Optional.YouTubeAdBlock [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2C6A44CB-AD42-4731-A544-3FBD3D83AB5B}] =>PUP.Optional.YouTubeAdBlock [HKLM\Software\Classes\CLSID\{2C6A44CB-AD42-4731-A544-3FBD3D83AB5B}] =>PUP.Optional.YouTubeAdBlock [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2C6A44CB-AD42-4731-A544-3FBD3D83AB5B}] =>PUP.Optional.YouTubeAdBlock [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{97510FAC-ED50-46BF-B2A1-25F434BF1030}] =>.Superfluous.Orphan [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{97510FAC-ED50-46BF-B2A1-25F434BF1030}] =>.Superfluous.Orphan C:\Program Files\MediaSerchIE\k0XD8acZ.dll =>.Superfluous.CloudAtlas [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B3A986DC-C2DD-40A0-8C0C-FEF66B783511}] =>.Superfluous.CloudAtlas [HKLM\Software\Classes\CLSID\{B3A986DC-C2DD-40A0-8C0C-FEF66B783511}] =>.Superfluous.CloudAtlas [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B3A986DC-C2DD-40A0-8C0C-FEF66B783511}] =>.Superfluous.CloudAtlas [HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\E3605470-291B-44EB-8648-745EE356599A] =>PUP.Optional.YouTubeAdBlock [HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\YeaDesktop] =>PUP.Optional.Zusy [HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}] =>.Superfluous.Microleaves [HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}] =>Riskware.QuickTime [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\E3605470-291B-44EB-8648-745EE356599A] =>PUP.Optional.YouTubeAdBlock [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\YeaDesktop] =>PUP.Optional.Zusy [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}] =>.Superfluous.Microleaves [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}] =>Riskware.QuickTime [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FlvPlayer] =>PUP.Optional.FLVPlayer [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5c0db2d4-bc59-4623-bc29-9e14f08a867f}_is1] =>PUP.Optional.BitCoinMiner C:\Program Files\PC Speed Maximizer =>.Superfluous.PCSpeedMaximizer C:\Program Files\RayDld =>Adware.CrossRider C:\Program Files\YeaDesktop =>PUP.Optional.Zusy C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlvPlayer =>PUP.Optional.FLVPlayer C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YeaDesktop =>PUP.Optional.Zusy C:\ProgramData\247c28e0-1995-1 =>.Superfluous.Polluteware C:\ProgramData\247c28e0-3807-0 =>.Superfluous.Polluteware C:\ProgramData\6ed10dc6-2967-0 =>.Superfluous.Polluteware C:\ProgramData\6ed10dc6-3781-0 =>.Superfluous.Polluteware C:\ProgramData\6ed10dc6-3da5-1 =>.Superfluous.Polluteware C:\ProgramData\Microleaves =>.Superfluous.Microleaves C:\Users\allah\AppData\Roaming\AppTrailers =>Adware.AppTrailers C:\Users\allah\AppData\Roaming\FlvPlayer =>PUP.Optional.FLVPlayer C:\Users\allah\AppData\Roaming\Interstatnogui =>Adware.UserMon C:\Users\allah\AppData\Roaming\Microleaves =>.Superfluous.Microleaves C:\Users\allah\AppData\Roaming\Tencent =>.Superfluous.Tencent C:\Users\allah\AppData\Local\AppTrailers =>Adware.AppTrailers C:\Users\allah\AppData\Local\CrashRpt =>.Superfluous.CrashReports C:\Users\allah\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk =>Hijacker.Browser C:\Users\allah\AppData\Local\PriceFountain =>PUP.Optional.PriceFountain C:\Users\allah\AppData\Local\Tencent =>.Superfluous.Tencent C:\Windows\Prefetch\APPTRAILERS.EXE-A3261E95.pf =>Adware.AppTrailers C:\Windows\Prefetch\INTERSTATNOGUI.EXE-C459FCFF.pf =>Adware.UserMon C:\Windows\Prefetch\SYSTEMHEALER.EXE-0C9019B7.pf =>PUP.Optional.SystemHealer C:\Windows\Prefetch\SYSTEMHEALER.EXE-339DC052.pf =>PUP.Optional.SystemHealer C:\Windows\Prefetch\SYSTEMHEALER.EXE-EF88FFA5.pf =>PUP.Optional.SystemHealer C:\Program Files\YeaDesktop\YeaDesktop.exe =>PUP.Optional.Zusy [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\YeaDesktop] =>PUP.Optional.Zusy [HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch}] =>.Superfluous.Linkury [HKLM\Software\Microsoft\Internet Explorer\SearchScopes\ielnksrch] =>.Superfluous.Linkury [[HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{E0E9D1ED-EF2E-4DFC-881D-5D2893E08F7E}] =>PUP.Optional.RelevantKnowledge [[HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{5E03ECC1-0D59-40AD-BC57-CB0179C1F0ED}] =>PUP.Optional.RelevantKnowledge C:\Windows\Installer\6a07e1.msi =>.Superfluous.Microleaves [HKLM\SOFTWARE\Microsoft\Tracing\FlvPlayerApp_RASAPI32] =>PUP.Optional.FLVPlayer [HKLM\SOFTWARE\Microsoft\Tracing\FlvPlayerApp_RASMANCS] =>PUP.Optional.FLVPlayer [HKLM\SOFTWARE\Microsoft\Tracing\FlvPlayerSetup_RASAPI32] =>PUP.Optional.FLVPlayer [HKLM\SOFTWARE\Microsoft\Tracing\FlvPlayerSetup_RASMANCS] =>PUP.Optional.FLVPlayer [HKLM\SOFTWARE\Microsoft\Tracing\HiSuiteDownLoader_RASAPI32] =>PUP.Optional.SoftwareEngine [HKLM\SOFTWARE\Microsoft\Tracing\HiSuiteDownLoader_RASMANCS] =>PUP.Optional.SoftwareEngine [HKLM\SOFTWARE\Microsoft\Tracing\ihpmServer_RASAPI32] =>Adware.CrossRider [HKLM\SOFTWARE\Microsoft\Tracing\ihpmServer_RASMANCS] =>Adware.CrossRider [HKLM\SOFTWARE\Microsoft\Tracing\interstatnogui_RASAPI32] =>Adware.UserMon [HKLM\SOFTWARE\Microsoft\Tracing\interstatnogui_RASMANCS] =>Adware.UserMon [HKLM\SOFTWARE\Microsoft\Tracing\Offercast36_NDV__RASAPI32] =>Toolbar.Ask [HKLM\SOFTWARE\Microsoft\Tracing\Offercast36_NDV__RASMANCS] =>Toolbar.Ask [HKLM\SOFTWARE\Microsoft\Tracing\PCSpeedMaximizer_RASAPI32] =>.Superfluous.PCSpeedMaximizer [HKLM\SOFTWARE\Microsoft\Tracing\PCSpeedMaximizer_RASMANCS] =>.Superfluous.PCSpeedMaximizer [HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6] =>PUM.Misplaced.Certificate [Avast Software] [HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931] =>PUM.Misplaced.Certificate [Avast Software] ---\\ Récapitulatif des éléments trouvés sur votre station (33) - 0s https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Trojan.AdService https://nicolascoolman.eu/2017/01/04/pup-optional-logichandler/ =>PUP.Optional.LogicHandler https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Microleaves https://www.anti-malware.top/2016/06/04/superfluous-eventmonitor/ =>.Superfluous.EventMonitor https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.WeatherChannel https://www.anti-malware.top/2016/08/02/superfluous-linkury/ =>.Superfluous.Linkury https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.YouTubeAdBlock https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.CloudAtlas https://www.anti-malware.top/2016/05/17/adware-zusy/ =>PUP.Optional.Zusy https://nicolascoolman.eu/2017/01/15/riskware-quicktime/ =>Riskware.QuickTime https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.FLVPlayer https://www.nicolascoolman.com/fr/trojan-bitcoinminer/ =>PUP.Optional.BitCoinMiner https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.JawegoPartners https://www.anti-malware.top/2016/05/02/pup-optional-internetspeedchecker/ =>PUP.Optional.InternetSpeedChecker https://www.nicolascoolman.com/fr/pup-optional-yoursearching =>PUP.Optional.YourSearching https://nicolascoolman.eu/2017/03/12/adware-installcore-2/ =>Adware.InstallCore https://nicolascoolman.eu/2017/06/21/adware-fastdatax/ =>Adware.FastDataX https://nicolascoolman.eu/2017/04/07/adware-usermon/ =>Adware.UserMon https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Magicbit https://www.nicolascoolman.com/fr/pup-optional-systemhealer/ =>PUP.Optional.SystemHealer https://nicolascoolman.eu/2017/02/23/tencentadressbar/ =>.Superfluous.Tencent https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Downloader https://nicolascoolman.eu/2017/01/18/adware-apptrailers/ =>Adware.AppTrailers https://www.nicolascoolman.com/fr/rogue-pcspeedmaximizer/ =>.Superfluous.PCSpeedMaximizer https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Polluteware https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.CrashReports https://nicolascoolman.eu/2017/02/02/hijacker-browser-2/ =>Hijacker.Browser https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.PriceFountain https://www.nicolascoolman.com/fr/adware-relevantknowledge/ =>PUP.Optional.RelevantKnowledge https://www.nicolascoolman.com/fr/hijacker-trovigo/ =>PUP.Optional.SoftwareEngine https://nicolascoolman.eu/2017/02/28/toolbar-ask/ =>Toolbar.Ask https://nicolascoolman.eu/2017/06/26/trojan-certlock/ =>PUM.Misplaced.Certificate ~ Unselected Options: O82, ~ End of the scan, 14374 items in 09mn11s (1160)(0)