Sujet Précédent Sujet Suivant

Probleme avec malwares / publicités

Fermé
faxy Messages postés 12 Date d'inscription mercredi 5 septembre 2012 Statut Membre Dernière intervention 19 juin 2016 - 19 août 2015 à 20:05
faxy Messages postés 12 Date d'inscription mercredi 5 septembre 2012 Statut Membre Dernière intervention 19 juin 2016 - 20 août 2015 à 17:40
Bonjour,

J'ai récemment téléchargé sur mon ordi (oui je sais je suis con mais je voulais powerpoint pour une presentation assez urgente...) et depuis ben j 'ai 12000 malware type crowbrowse ou compagnie et puis plein de pubs qui qui s'affichent sur mon écran d'acceuil et mon ordi est particulièrement lent (et mon Mozilla a disparu mais bon ...) . Bref c'est la cata complet

J'ai vidé avec ccleaner puis fait un rapport zpdiag que je voulais fixer avec zhpfix mais a priori ca a changé parce que je peux plus juste copier le rapport dans zhpfix comme avant... Et j 'ai également fait un rapport hijaclkThis (qui me retrouve mon Mozilla comme navigateur alors que je ne l'ai plus d'ailleurs bref)...
Cependant je suis clairement pas assez doué en informatique pour analysr ca alors si quelqu'un pouvait m'aider ce serait vrmt super sympa !
Je vous mets les rapports hijack pui zhpdiag
Merci +++
A voir également:

2 réponses

Réponse 1 / 2
faxy Messages postés 12 Date d'inscription mercredi 5 septembre 2012 Statut Membre Dernière intervention 19 juin 2016
19 août 2015 à 20:06
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:01:00, on 18/08/2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17937)
Boot mode: Safe mode

Running processes:
C:\windows\Explorer.EXE
C:\windows\system32\ctfmon.exe
C:\windows\system32\DllHost.exe
C:\Program Files\ZHPDiag\ZHPDiag.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/?type=hp&ts=1439919333&z=aefffe5cb3b79cce0a07cd3g5z3c3tat6gbt1cfccc&from=2sq&uid=WDCXWD5000BEVT-35A0RT0_WD-WXR1A305124551245
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://fr.yahoo.com/?fr=hp-avast&type=avastbcl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/?type=hp&ts=1439919333&z=aefffe5cb3b79cce0a07cd3g5z3c3tat6gbt1cfccc&from=2sq&uid=WDCXWD5000BEVT-35A0RT0_WD-WXR1A305124551245
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/web/?type=ds&ts=1439919333&z=aefffe5cb3b79cce0a07cd3g5z3c3tat6gbt1cfccc&from=2sq&uid=WDCXWD5000BEVT-35A0RT0_WD-WXR1A305124551245&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://fr.yahoo.com/?fr=hp-avast&type=avastbcl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/web/?type=ds&ts=1439919333&z=aefffe5cb3b79cce0a07cd3g5z3c3tat6gbt1cfccc&from=2sq&uid=WDCXWD5000BEVT-35A0RT0_WD-WXR1A305124551245&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/...
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [UpdatePDRShortCut] "C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "Software\CyberLink\PowerDirector\7.0"
O4 - HKLM\..\Run: [RemoteControl8] "C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe"
O4 - HKLM\..\Run: [PDVD8LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe"
O4 - HKLM\..\Run: [UpdatePPShortCut] "C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerProducer" UpdateWithCreateOnce "Software\CyberLink\PowerProducer\5.0"
O4 - HKLM\..\Run: [UpdatePSTShortCut] "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
O4 - HKLM\..\Run: [APLangApp] "C:\Program Files\AnyPC Client\APLangApp.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SpaceSoundPro] "C:\Program Files\SpaceSoundPro\SpaceSoundPro.exe"
O4 - HKLM\..\Run: [ospd_us_013010064] "C:\Program Files\ospd_us_013010064\ospd_us_013010064.exe"
O4 - HKLM\..\RunOnce: [SpaceSondPro_v57.1519] C:\Program Files\SpaceSondPro_v57.1519\SpaceSondPro_Service.exe ro
O4 - HKLM\..\RunOnce: [Update] C:\Users\darty\AppData\Roaming\VOPackage\VOPackage.exe /runonce
O4 - HKLM\..\RunOnce: [upospd_us_013010064.exe] C:\Users\darty\AppData\Local\ospd_us_013010064\upospd_us_013010064.exe -runonce
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [msnmsgr] ~"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [uTorrent] "C:\Users\darty\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [GreedyTorrent] "C:\Program Files\GreedyTorrent\GTor.exe" -tray
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [cacaoweb] "C:\Users\darty\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer
O4 - HKCU\..\Run: [WahOO] C:\Program Files\KowMedia\WahOO\WahOO.exe -a
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\darty\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [PCSpeedUp] C:\Program Files\Accelerer PC\PCSUNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Système')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: New Document Sort (buqumewu) - Unknown owner - C:\Program.exe (file missing)
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\UtcResources.dll,-3001 (DiagTrack) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files\globalUpdate\Update\globalupdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files\globalUpdate\Update\globalupdate.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\windows\system32\HPSIsvc.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: KMS Server Service (KMSServerService) - Unknown owner - C:\windows\KMSServerService\KMS Server Service.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\windows\system32\nvvsvc.exe
O23 - Service: Oberon Media Game Console service (OberonGameConsoleService) - Unknown owner - C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: PC Speed Up Service (PCSUService) - Optimal Software s.r.o. - C:\Program Files\Accelerer PC\PCSUService.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: Rezip - Unknown owner - C:\windows\SYSTEM32\Rezip.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: SpeedChecker Service (SCService) - Optimal Software s.r.o. - C:\Program Files\Accelerer PC\SpeedCheckerService.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe
O23 - Service: Service Software Update (Software_update) (Software_update) - Unknown owner - C:\Program Files\Software\Update\SoftwareUpdate.exe
O23 - Service: Service Software Update (Software_update_m) (Software_update_m) - Unknown owner - C:\Program Files\Software\Update\SoftwareUpdate.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: WajaInterEnhancer Service - Unknown owner - C:\Program Files\WajaInterEnhancer\WajaInterEnhancer Internet Enhancer\InternetEnhancerService.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) - DTools LIMITED - C:\ProgramData\DWinManProD\ProtectWindowsManager.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\windows\system32\svchost.exe
0
Réponse 2 / 2
faxy Messages postés 12 Date d'inscription mercredi 5 septembre 2012 Statut Membre Dernière intervention 19 juin 2016
19 août 2015 à 20:08
~ ZHPDiag v2015.8.19.121 Par Nicolas Coolman (2015/08/19)
~ Démarré par darty (Administrator) (2015/08/19 12:55:25)
~ Site: https://nicolascoolman.eu
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\darty\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\darty\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Home Premium, 32-bit Service Pack 1 (Build 7601)

---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v44.0.2403.155
MFIE: Mozilla Firefox 40.0.2 (x86 fr) v40.0.2
MSIE: Internet Explorer v11.0.9600.17959

---\\ Informations sur les produits Windows (4) - 20s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK

---\\ Logiciels de protection (3) - 3s
Avast Free Antivirus v10.3.2225
Malwarebytes Anti-Malware version 2.0.2.1012
Windows Defender W7 (Activate)

---\\ Logiciels d'optimisation (1) - 3s
CCleaner v4.05

---\\ Surveillance de Logiciels (2) - 3s
Adobe Flash Player 18 NPAPI
Adobe Reader XI

---\\ Logiciels de partage P2P (1) - 4s
GreedyTorrent v1.01 beta build 170

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3134 MB (25% free)
~ System Restore: Activé (Enable)
~ System drive C: has 51 GB free of 230 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: DARTY-PC
~ User Name: darty
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 51 GB free of 230 GB (System)
~ Drive D: has 170 GB free of 230 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (23) - 3s
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\windows\Explorer.exe [2616320]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\windows\System32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\windows\System32\Wininit.exe [96256]
[MD5.0AC8CD2138FD10C4A0E2FF08F892359C] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\windows\System32\wininet.dll [1951232]
[MD5.52449FD429D6053B78AE564DEF303870] - (.Microsoft Corporation - Application d'ouverture de session Windows.) () -- C:\windows\System32\Winlogon.exe [304128]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\windows\System32\sppcomapi.dll [193536]
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (.Microsoft Corporation - DLL client de l'API uilisateur de Windows m.) () -- C:\windows\System32\fr-FR\user32.dll.mui [20480]
[MD5.D0B388DA1D111A34366E04EB4A5DD156] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\windows\System32\drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\windows\System32\drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\windows\System32\drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\windows\System32\drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\windows\System32\drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\windows\System32\drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\windows\System32\drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\windows\System32\drivers\IpNat.sys [101888]
[MD5.FEDAAB6716B44DE8B9EFC14DD9A26215] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\windows\System32\drivers\MRxSmb.sys [124416]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\windows\System32\drivers\netBT.sys [187904]
[MD5.C8DFF8D07755A66C7A4A738930F0FEAC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\windows\System32\drivers\ntfs.sys [1212352]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\windows\System32\drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\windows\System32\drivers\Rasl2tp.sys [78848]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\windows\System32\drivers\smb.sys [71168]
[MD5.7FE680A3DFA421C4A8E4879AE4C5AAB0] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\windows\System32\drivers\tdx.sys [74752]
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\windows\System32\drivers\volsnap.sys [245632]

---\\ Processus lancés (45) - 17s
[MD5.23855AA31E3FA7F4354DF5C4DA59A2D4] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 188.6.) -- C:\Windows\System32\nvvsvc.exe [219752] [PID.876]
[MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1456]
[MD5.579FD11E112542A0D5D43838CCA08309] - (.DTools LIMITED - DTools.) -- C:\ProgramData\DWinManProD\ProtectWindowsManager.exe [708264] [PID.1572]
[MD5.429B6EB563FFFDFB399FFCC591678A6B] - (.Cinema PlusV18.08 - CinemaPlus-3.2cV18.08 exe.) -- C:\Program Files\CinemaPlus-3.2cV18.08\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-6.exe [1464400] [PID.1920] =>PUP.Optional.CrossRider
[MD5.728B7907D1AEB5C1B7315CD74614E402] - (.Cinema PlusV18.08 - CinemaPlus-3.2cV18.08 exe.) -- C:\Program Files\CinemaPlus-3.2cV18.08\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-1-6.exe [1501264] [PID.1960] =>PUP.Optional.CrossRider
[MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.2960]
[MD5.20F6F19FE9E753F2780DC2FA083AD597] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664] [PID.2984]
[MD5.1C87705CCB2F60172B0FC86B5D82F00D] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [387944] [PID.3060]
[MD5.94D23D4F096F12CA42C2FE4196631F46] - (.HP - HP Smart-Install Service.) -- C:\Windows\System32\HPSIsvc.exe [99896] [PID.3268]
[MD5.E8C965A3FADE7CEA724BE2E561CCE0F3] - (...) -- C:\Windows\KMSServerService\KMS Server Service.exe [294912] [PID.3320]
[MD5.B5D5DA8230D3D3525839D939A9196C3E] - (.Copyright © 2009 - OberonGameConsoleService.) -- C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [44312] [PID.3380]
[MD5.F85AE59A52885F4B09AADAFB23001A3B] - (.Copyright (C) 2009 - .) -- C:\Windows\System32\Rezip.exe [311296] [PID.3480]
[MD5.7CCAEBCAB6FC1ED0206C07E083E79207] - (.Copyright 2004 - RichVideo Module.) -- C:\Program Files\CyberLink\Shared files\RichVideo.exe [247152] [PID.3512]
[MD5.919E69292BBAAF9582BD69769D20992A] - (...) -- C:\Program Files\WajaInterEnhancer\WajaInterEnhancer Internet Enhancer\InternetEnhancerService.exe [1199616] [PID.3772]
[MD5.FB01D4AE207B9EFDBABFC55DC95C7E31] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [1713536] [PID.3824]
[MD5.C649F293B8B047A2694F3C615D09BF17] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [193920] [PID.3988]
[MD5.A4C778C47836C9786C6A648C828DFF2B] - (.Avast Software - AvastVirtualBox Interface.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3218624] [PID.2880]
[MD5.0091E10E98C3D60914D8DA72F7C61CA0] - (...) -- C:\Users\darty\AppData\Roaming\VOPackage\VOPackage.exe [988234] [PID.4508] =>PUP.Optional.Downware
[MD5.23855AA31E3FA7F4354DF5C4DA59A2D4] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 188.6.) -- C:\Windows\System32\nvvsvc.exe [219752] [PID.5248]
[MD5.10CE69AEF070A0D8759CB2F64192DDC0] - (. - RCXQBN.) -- C:\Program Files\WajaInterEnhancer\WajaInterEnhancer Internet Enhancer\InternetEnhancer.exe [269312] [PID.3788]
[MD5.E3735DC796E5183D63F35921B058934C] - (.Samsung Electronics Co., Ltd. - EasySpeedUpManager.) -- C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe [716800] [PID.6008]
[MD5.A46796CCF032D35720347262998D1F90] - (.Samsung Electronics Co., Ltd. - Easy Display Manager.) -- C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe [835072] [PID.6052]
[MD5.167F9E5AF87B57763DAAA27D3144C2A0] - (.SEC - Samsung Recovery Solution 4.) -- C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2201192] [PID.5600]
[MD5.DC4BBD0A16557EC21CCA97390DD8D561] - (.DoctorSoft - APLanMgrC.) -- C:\Program Files\AnyPC Client\APLanMgrC.exe [79360] [PID.476]
[MD5.3D63383BCC234CC240652F6DDED8E4A3] - (...) -- C:\Users\darty\AppData\Local\ospd_us_013010064\upospd_us_013010064.exe [3333776] [PID.3016] =>PUP.OneSoftPerDay
[MD5.AB9990DB80EA3DAC0EAE50C906EF7ECA] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\darty\AppData\Roaming\uTorrent\uTorrent.exe [1693024] [PID.3044]
[MD5.5871EEBE3620F16FFD550CB57723FE5A] - (...) -- C:\Program Files\GreedyTorrent\GTor.exe [2526661] [PID.1884]
[MD5.FE5C5580C95274512A68A1944BF49B05] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [53661824] [PID.3304]
[MD5.775F47E28C96739D0B81DF8A46116EFB] - (...) -- C:\Users\darty\AppData\Roaming\cacaoweb\cacaoweb.exe [532784] [PID.2232] =>PUP.Optional.CacaoWeb
[MD5.ACC95F6325D4BC1F0E78041866D1C317] - (...) -- C:\Program Files\KowMedia\WahOO\Wahoo.exe [4298992] [PID.3680]
[MD5.3D558E2572EDF52FAD098AF2534B4E20] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe [279456] [PID.5972]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe [11322880] [PID.2900]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin [11314688] [PID.5812]
[MD5.153F088DFDB3F940AD9DAEB04A3ACC4D] - (.SoftBrain Technologies Ltd. - SmartWeb helper.) -- C:\Users\darty\AppData\Local\SmartWeb\SmartWebHelper.exe [270368] [PID.6772] =>PUP.Optional.SmartWebSearch
[MD5.44069C2AC699C8DAD80A96FB1C8DFE57] - (.SoftBrain Technologies Ltd. - SmartWeb Application.) -- C:\Users\darty\AppData\Local\SmartWeb\SmartWebApp.exe [557088] [PID.2292] =>PUP.Optional.SmartWebSearch
[MD5.FDD052AEB5B709BC2C39F8024B06BD10] - (...) -- C:\Program Files\gmsd_fr_005010064\gmsd_fr_005010064.exe [3979920] [PID.8132] =>PUP.Optional.CrossRider
[MD5.2A06DE988BC7AAC1D206E0804C4FFAAB] - (.WS - WS Client Service.) -- C:\Program Files\WordShark_1.10.0.20\Service\wssvc.exe [300120] [PID.1968] =>PUP.Optional.WordShark
[MD5.9F8CC0B84798CE0737A9061F4F5A6C76] - (.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [770048] [PID.15468] =>PUP.Optional.CrossBrowse
[MD5.9F8CC0B84798CE0737A9061F4F5A6C76] - (.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [770048] [PID.9872] =>PUP.Optional.CrossBrowse
[MD5.187B31F15DC94AC512D288418CF1003D] - (.PokerStars - PokerStars GUI.) -- C:\Program Files\PokerStars.FR\PokerStars.exe [13306296] [PID.8468]
[MD5.63AC6A65B63E91DDE02562528E50B9F8] - (...) -- C:\Program Files\PokerStars.FR\gameutil2.exe [1659672] [PID.8592]
[MD5.DBB0FFD7E8A5F954189858310FF45CD3] - (...) -- C:\Program Files\407B8840-1439919372-11B2-8000-BB95546F79AA\knsmF1E5.tmp [759296] [PID.11292] =>PUP.Optional.CrossRider
[MD5.7BAF9034214723F8DB0840A0A8B4032C] - (.Cinema PlusV18.08 - CinemaPlus-3.2cV18.08 exe.) -- C:\Program Files\CinemaPlus-3.2cV18.08\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-10.exe [1477200] [PID.17476] =>PUP.Optional.CrossRider
[MD5.E0A3E3BC4E710FEB0AE037475BD7A4CF] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\darty\Downloads\ZHPDiag3.exe [1894400] [PID.16348]
[MD5.9F8CC0B84798CE0737A9061F4F5A6C76] - (.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [770048] [PID.11660] =>PUP.Optional.CrossBrowse

---\\ Google Chrome, Démarrage,Recherche,Extensions (16) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ww7.staticwebdom.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cdn.visadd.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cdncache-a.akamaihd.net/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cjs.linkbolic.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://i.crbsjs.info/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.armandlamoureuxtechnology.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.oursurfing.com/ =>PUP.Optional.OurSurfing
G0 - GCSP: Preferences [User Data\Default][HomePage] https://www.google.com/chrome/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients2.google.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fin.flashinfonaut.com/ =>PUP.Optional.Infonaut
G2 - GCE: Preference [User Data\Default] [dnligehkhogpcngalffdoomehjcbecna] Baboom New Tab
G2 - GCE: Preference [User Data\Default] [gehmndecgbcffhmfjkenpamdgechcgpe] Baboom Search
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [papbadoldddalgcjcicnikcfenodpghp] CinemaPlus-3.2cV18.08 =>PUP.Optional.CrossRider

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (23) - 4s
M0 - MFSP: prefs.js [darty - 25z8gj41.default] http://www.oursurfing.com/?type=hp&ts=1439919333&z=aefffe5cb3b79cce0a07cd3g5z3c3tat6gbt1cfccc&from=2sq&uid=WDCXWD5000BEVT-35A0RT0_WD-WXR1A305124551245 =>PUP.Optional.OurSurfing
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\NPSibelius.dll
P2 - EXT: (.PDFTron Systems Inc. - PDFNet Dynamic Link Library for C/C++/JAVA.) -- C:\Program Files\Mozilla Firefox\Plugins\PDFNetC.dll
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\QuickTimePlugin.class
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\ScorchPDFWrapper.dll
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\WMP Firefox Plugin License.rtf
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\WMP Firefox Plugin RelNotes.txt
P2 - EXT FILE: (...) -- C:\Users\darty\AppData\Roaming\Mozilla\Firefox\Profiles\25z8gj41.default\extensions\fireform@mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\darty\AppData\Roaming\Mozilla\Firefox\Profiles\25z8gj41.default\extensions\tineye@ideeinc.com.xpi
P2 - EXT FILE: (...) -- C:\Users\darty\AppData\Roaming\Mozilla\Firefox\Profiles\25z8gj41.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT: (.http://www.cacaoweb.org/ - cacaoweb.) -- C:\Users\darty\AppData\Roaming\Mozilla\Firefox\Profiles\25z8gj41.default\extensions\cacaoweb@cacaoweb.org =>PUP.Optional.CacaoWeb
P2 - EXT: (.Cinema PlusV18.08 - CinemaPlus-3.2cV18.08.) -- C:\Users\darty\AppData\Roaming\Mozilla\Firefox\Profiles\25z8gj41.default\extensions\d4db60df25f14dae9dd18@185c395f9e794c9ab86be3eb.com
P2 - EXT: (.roc - Default SearchProtected .) -- C:\Users\darty\AppData\Roaming\Mozilla\Firefox\Profiles\25z8gj41.default\extensions\defsearchp@gmail.com
P2 - EXT: (.lightningnewtab.com - deskCut.) -- C:\Users\darty\AppData\Roaming\Mozilla\Firefox\Profiles\25z8gj41.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab
P2 - EXT: (.The Flashblock Team - Flashblock.) -- C:\Users\darty\AppData\Roaming\Mozilla\Firefox\Profiles\25z8gj41.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
P2 - EXT: (.WOT Services Oy - WOT.) -- C:\Users\darty\AppData\Roaming\Mozilla\Firefox\Profiles\25z8gj41.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_18_0_0_232.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll =>PUP.Optional.GlobalUpdate

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (6) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (7) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback>
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:50793;https=127.0.0.1:50793 =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Internet Explorer, Barre d'outil (1) - 0s
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (.not file.)

---\\ Applications lancées au démarrage du système (30) - 2s
O4 - HKLM\..\Run: [SmartWeb] . (.SoftBrain Technologies Ltd. - SmartWeb helper.) -- C:\Users\darty\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - HKLM\..\Run: [gmsd_fr_005010064] . (...) -- C:\Program Files\gmsd_fr_005010064\gmsd_fr_005010064.exe =>PUP.Optional.CrossRider
O4 - HKLM\..\RunOnce: [upospd_us_013010064.exe] . (...) -- C:\Users\darty\AppData\Local\ospd_us_013010064\upospd_us_013010064.exe =>PUP.OneSoftPerDay
O4 - HKLM\..\RunOnce: [updpcc_en_009010064.exe] . (...) -- C:\Users\darty\AppData\Local\DailyPcClean Support\updpcc_en_009010064.exe =>PUP.Optional.DailyPCClean
O4 - HKLM\..\RunOnce: [upgmsd_fr_005010064.exe] . (...) -- C:\Users\darty\AppData\Local\gmsd_fr_005010064\upgmsd_fr_005010064.exe =>PUP.Optional.CrossRider
O4 - HKLM\..\RunOnce: [Update] . (...) -- C:\Users\darty\AppData\Roaming\VOPackage\VOPackage.exe =>PUP.Optional.Downware
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [msnmsgr] ~"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (.not file.)
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\darty\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [GreedyTorrent] . (...) -- C:\Program Files\GreedyTorrent\GTor.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [cacaoweb] . (...) -- C:\Users\darty\AppData\Roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O4 - HKCU\..\Run: [WahOO] . (...) -- C:\Program Files\KowMedia\WahOO\Wahoo.exe
O4 - HKCU\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\darty\AppData\Local\Dropbox\Update\DropboxUpdate.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_35566A9D164701ACC9267D234FF300BB] . (.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\spreview.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\spreview.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-2339853823-2107313754-116825072-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-2339853823-2107313754-116825072-1000\..\Run: [msnmsgr] ~"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (.not file.)
O4 - HKUS\S-1-5-21-2339853823-2107313754-116825072-1000\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\darty\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-2339853823-2107313754-116825072-1000\..\Run: [GreedyTorrent] . (...) -- C:\Program Files\GreedyTorrent\GTor.exe
O4 - HKUS\S-1-5-21-2339853823-2107313754-116825072-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-2339853823-2107313754-116825072-1000\..\Run: [cacaoweb] . (...) -- C:\Users\darty\AppData\Roaming\cacaoweb\cacaoweb.exe =>PUP.Optional.CacaoWeb
O4 - HKUS\S-1-5-21-2339853823-2107313754-116825072-1000\..\Run: [WahOO] . (...) -- C:\Program Files\KowMedia\WahOO\Wahoo.exe
O4 - HKUS\S-1-5-21-2339853823-2107313754-116825072-1000\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\darty\AppData\Local\Dropbox\Update\DropboxUpdate.exe
O4 - HKUS\S-1-5-21-2339853823-2107313754-116825072-1000\..\Run: [GoogleChromeAutoLaunch_35566A9D164701ACC9267D234FF300BB] . (.Crossbrowse - Crossbrowse.) -- C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse

---\\ Raccourcis Global Startup (13) - 8s
O4 - GS\Desktop [Administrateur]: Search.lnk . (...) C:\ProgramData\DSearchLink\DSearchLink.exe =>Toolbar.DeltaSearch
O4 - GS\Quicklaunch [Administrateur]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Administrateur]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Administrateur]: SmartWeb.lnk . (.SoftBrain Technologies Ltd. - SmartWeb helper.) C:\Users\darty\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\Desktop [darty]: Search.lnk . (...) C:\ProgramData\DSearchLink\DSearchLink.exe =>Toolbar.DeltaSearch
O4 - GS\Quicklaunch [darty]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [darty]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [darty]: SmartWeb.lnk . (.SoftBrain Technologies Ltd. - SmartWeb helper.) C:\Users\darty\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\Desktop [Invité]: Search.lnk . (...) C:\ProgramData\DSearchLink\DSearchLink.exe =>Toolbar.DeltaSearch
O4 - GS\Quicklaunch [Invité]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Invité]: crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse
O4 - GS\Startup [Invité]: SmartWeb.lnk . (.SoftBrain Technologies Ltd. - SmartWeb helper.) C:\Users\darty\AppData\Local\SmartWeb\SmartWebHelper.exe =>PUP.Optional.SmartWebSearch
O4 - GS\CommonDesktop [Public]: Crossbrowse.lnk . (.Crossbrowse - Crossbrowse.) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe =>PUP.Optional.CrossBrowse

---\\ Modification Domaine/Adresses DNS (6) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Protocole additionnel (1) - 0s
O18 - Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (.not file.)

---\\ Liste des services NT non Microsoft et non désactivés (17) - 2s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files\globalUpdate\Update\globalupdate.exe =>PUP.Optional.GlobalUpdate
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) . (.HP - HP Smart-Install Service.) - C:\Windows\System32\HPSIsvc.exe
O23 - Service: KMS Server Service (KMSServerService) . (...) - C:\Windows\KMSServerService\KMS Server Service.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 188.6.) - C:\Windows\System32\nvvsvc.exe
O23 - Service: Oberon Media Game Console service (OberonGameConsoleService) . (.Copyright © 2009 - OberonGameConsoleService.) - C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
O23 - Service: Rezip (Rezip) . (.Copyright (C) 2009 - .) - C:\Windows\System32\Rezip.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Copyright 2004 - RichVideo Module.) - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Bracket Flash Drive (tobywimy) . (...) - C:\Program Files\407B8840-1439919372-11B2-8000-BB95546F79AA\knsmF1E5.tmp =>PUP.Optional.CrossRider
O23 - Service: WajaInterEnhancer Service (WajaInterEnhancer Service) . (...) - C:\Program Files\WajaInterEnhancer\WajaInterEnhancer Internet Enhancer\InternetEnhancerService.exe
O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) . (.DTools LIMITED - DTools.) - C:\ProgramData\DWinManProD\ProtectWindowsManager.exe =>PUP.Optional.Fuyu
O23 - Service: WS 1.10.0.20 Client Service (wssvc_1.10.0.20) . (.WS - WS Client Service.) - C:\Program Files\WordShark_1.10.0.20\Service\wssvc.exe =>PUP.Optional.WS

---\\ Tâches planifiées en automatique (81) - 7s
[MD5.728B7907D1AEB5C1B7315CD74614E402] [APT] [0b5ed929-91fa-4f2d-84cc-7e04deba5d90-1-6] (.Cinema PlusV18.08.) -- C:\Program Files\CinemaPlus-3.2cV18.08\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-1-6.exe [1501264] =>PUP.Optional.CrossRider
[MD5.1D4A529EFDC174A1A2BE91022CE2EBCD] [APT] [0b5ed929-91fa-4f2d-84cc-7e04deba5d90-1-7] (.Cinema PlusV18.08.) -- C:\Program Files\CinemaPlus-3.2cV18.08\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-1-7.exe [1106512] =>PUP.Optional.CrossRider
[MD5.7BAF9034214723F8DB0840A0A8B4032C] [APT] [0b5ed929-91fa-4f2d-84cc-7e04deba5d90-10_user] (.Cinema PlusV18.08.) -- C:\Program Files\CinemaPlus-3.2cV18.08\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-10.exe [1477200] =>PUP.Optional.CrossRider
[MD5.60B2735E43F8995479B8221B6CD3ED3C] [APT] [0b5ed929-91fa-4f2d-84cc-7e04deba5d90-3] (.Cinema PlusV18.08.) -- C:\Program Files\CinemaPlus-3.2cV18.08\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-3.exe [1438800] =>PUP.Optional.CrossRider
[MD5.B91E13DBD5247F50DE3DA90CF0C2825C] [APT] [0b5ed929-91fa-4f2d-84cc-7e04deba5d90-4] (.Cinema PlusV18.08.) -- C:\Program Files\CinemaPlus-3.2cV18.08\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-4.exe [1457744] =>PUP.Optional.CrossRider
[MD5.ACD4DE0CBF319935763FC05CC8E6BAA0] [APT] [0b5ed929-91fa-4f2d-84cc-7e04deba5d90-5] (.Cinema PlusV18.08.) -- C:\Program Files\CinemaPlus-3.2cV18.08\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-5.exe [1167952] =>PUP.Optional.CrossRider
[MD5.ACD4DE0CBF319935763FC05CC8E6BAA0] [APT] [0b5ed929-91fa-4f2d-84cc-7e04deba5d90-5_user] (.Cinema PlusV18.08.) -- C:\Program Files\CinemaPlus-3.2cV18.08\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-5.exe [1167952] =>PUP.Optional.CrossRider
[MD5.429B6EB563FFFDFB399FFCC591678A6B] [APT] [0b5ed929-91fa-4f2d-84cc-7e04deba5d90-6] (.Cinema PlusV18.08.) -- C:\Program Files\CinemaPlus-3.2cV18.08\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-6.exe [1464400] =>PUP.Optional.CrossRider
[MD5.1D4A529EFDC174A1A2BE91022CE2EBCD] [APT] [0b5ed929-91fa-4f2d-84cc-7e04deba5d90-7] (.Cinema PlusV18.08.) -- C:\Program Files\CinemaPlus-3.2cV18.08\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-7.exe [1106512] =>PUP.Optional.CrossRider
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104]
[MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [269000]
[MD5.167F9E5AF87B57763DAAA27D3144C2A0] [APT] [advSRS4] (.SEC.) -- C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2201192]
[MD5.DC4BBD0A16557EC21CCA97390DD8D561] [APT] [APSchedulerC] (.DoctorSoft.) -- C:\Program Files\AnyPC Client\APLanMgrC.exe [79360]
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP1] (...) -- C:\Program Files\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.Optional.AnyProtect
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP2] (...) -- C:\Program Files\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.Optional.AnyProtect
[MD5.00000000000000000000000000000000] [APT] [APSnotifierPP3] (...) -- C:\Program Files\AnyProtectEx\AnyProtect.exe (.not file.) [0] =>PUP.Optional.AnyProtect
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-1-6 - (.Cinema PlusV18.08.) -- C:\windows\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-1-6.job [3126] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-1-7 - (.Cinema PlusV18.08.) -- C:\windows\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-1-7.job [3462] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-10_user - (.Cinema PlusV18.08.) -- C:\windows\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-10_user.job [2100] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-3 - (.Cinema PlusV18.08.) -- C:\windows\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-3.job [4482] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-4 - (.Cinema PlusV18.08.) -- C:\windows\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-4.job [4482] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-5 - (.Cinema PlusV18.08.) -- C:\windows\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-5.job [2434] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-5_user - (.Cinema PlusV18.08.) -- C:\windows\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-5_user.job [2434] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-6 - (.Cinema PlusV18.08.) -- C:\windows\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-6.job [5506] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-7 - (.Cinema PlusV18.08.) -- C:\windows\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-7.job [5506] =>PUP.Optional.CrossRider
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\windows\Tasks\Adobe Flash Player Updater.job [1002] =>.Adobe Systems Incorporated
O39 - APT: APSnotifierPP1 - (...) -- C:\windows\Tasks\APSnotifierPP1.job [366] =>PUP.Optional.AnyProtect
O39 - APT: APSnotifierPP2 - (...) -- C:\windows\Tasks\APSnotifierPP2.job [364] =>PUP.Optional.AnyProtect
O39 - APT: APSnotifierPP3 - (...) -- C:\windows\Tasks\APSnotifierPP3.job [364] =>PUP.Optional.AnyProtect
O39 - APT: Orphean - (...) -- C:\windows\Tasks\Crossbrowse.job [1044] =>PUP.Optional.CrossBrowse
O39 - APT: Orphean - (...) -- C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2339853823-2107313754-116825072-1000Core.job [1144]
O39 - APT: Orphean - (...) -- C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2339853823-2107313754-116825072-1000UA.job [1196]
O39 - APT: Orphean - (...) -- C:\windows\Tasks\globalUpdateUpdateTaskMachineCore.job [958] =>PUP.Optional.GlobalUpdate
O39 - APT: Orphean - (...) -- C:\windows\Tasks\globalUpdateUpdateTaskMachineUA.job [962] =>PUP.Optional.GlobalUpdate
O39 - APT: Orphean - (...) -- C:\windows\Tasks\GoogleUpdateTaskMachineCore.job [1054]
O39 - APT: Orphean - (...) -- C:\windows\Tasks\GoogleUpdateTaskMachineUA.job [1058]
O39 - APT: Orphean - (...) -- C:\windows\Tasks\jhpb6qsZXjAD5.job [998]
O39 - APT: Orphean - (...) -- C:\windows\Tasks\Tvi5JBr7z2.job [992]
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-1-6 - (.Cinema PlusV18.08.) -- C:\windows\System32\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-1-6 [6154] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-1-7 - (.Cinema PlusV18.08.) -- C:\windows\System32\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-1-7 [6492] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-10_user - (.Cinema PlusV18.08.) -- C:\windows\System32\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-10_user [5124] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-3 - (.Cinema PlusV18.08.) -- C:\windows\System32\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-3 [7512] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-4 - (.Cinema PlusV18.08.) -- C:\windows\System32\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-4 [7512] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-5 - (.Cinema PlusV18.08.) -- C:\windows\System32\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-5 [5464] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-5_user - (.Cinema PlusV18.08.) -- C:\windows\System32\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-5_user [5460] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-6 - (.Cinema PlusV18.08.) -- C:\windows\System32\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-6 [8534] =>PUP.Optional.CrossRider
O39 - APT: 0b5ed929-91fa-4f2d-84cc-7e04deba5d90-7 - (.Cinema PlusV18.08.) -- C:\windows\System32\Tasks\0b5ed929-91fa-4f2d-84cc-7e04deba5d90-7 [8536] =>PUP.Optional.CrossRider
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\windows\System32\Tasks\Adobe Acrobat Update Task [3874] =>.Adobe Systems Incorporated
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\windows\System32\Tasks\Adobe Flash Player Updater [3940] =>.Adobe Systems Incorporated
O39 - APT: advSRS4 - (.SEC.) -- C:\windows\System32\Tasks\advSRS4 [3294]
O39 - APT: APSchedulerC - (.DoctorSoft.) -- C:\windows\System32\Tasks\APSchedulerC [3048] =>.DoctorSoft
O39 - APT: APSnotifierPP1 - (...) -- C:\windows\System32\Tasks\APSnotifierPP1 [2816] =>PUP.Optional.AnyProtect
O39 - APT: APSnotifierPP2 - (...) -- C:\windows\System32\Tasks\APSnotifierPP2 [2814] =>PUP.Optional.AnyProtect
O39 - APT: APSnotifierPP3 - (...) -- C:\windows\System32\Tasks\APSnotifierPP3 [2814] =>PUP.Optional.AnyProtect
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\avast! Emergency Update [4182]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\BatteryLifeExtender [3088]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\CCleanerSkipUAC [2772]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\Crossbrowse [4070] =>PUP.Optional.CrossBrowse
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2339853823-2107313754-116825072-1000Core [3770]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2339853823-2107313754-116825072-1000UA [4166]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\EasyBatteryManager [3224]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\EasyDisplayMgr [3156]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\EasySpeedUpManager [3272]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\globalUpdateUpdateTaskMachineCore [3706] =>PUP.Optional.GlobalUpdate
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\globalUpdateUpdateTaskMachineUA [3960] =>PUP.Optional.GlobalUpdate
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore [3802]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA [4054]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\jhpb6qsZXjAD5 [4024]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\SidebarExecute [3148]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\SmartWeb Upgrade Trigger Task [4034] =>PUP.Optional.SmartWebSearch
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\SUPBackground [3158]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\Tvi5JBr7z2 [4018]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\WordShark Auto Updater 1.10.0.20 Core [4154] =>PUP.Optional.WordShark
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\WordShark Auto Updater 1.10.0.20 Pending Update [4164] =>PUP.Optional.WordShark
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\{0ECF4FBC-DE25-462C-BC4F-EAD873027F35} [2992]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\{1F15C829-901D-4DBE-A5D0-61591EDF1C89} [2992]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\{34B200E1-151D-4278-A6F3-CA94266AF985} [3172]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\{3CECFE6E-F5D3-4756-BB85-59ABE1046913} [3110]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\{8E0D176C-B222-4C51-8973-4A5C9BD9A6B1} [2992]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\{A038D51E-BE61-46B7-BC50-0443B20464FB} [3218]
O39 - APT: Orphean - (...) -- C:\windows\System32\Tasks\{DD91CDDF-3B85-4AE7-AA18-EA056C898D10} [2992]

---\\ Logiciels installés (108) - 12s
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI
O42 - Logiciel: AnyProtect - (.CMI Limited.) [HKLM] -- AnyProtect =>PUP.Optional.AnyProtect
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM] -- avast
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: CinemaPlus-3.2cV18.08 - (.Cinema PlusV18.08.) [HKLM] -- CinemaPlus-3.2cV18.08 =>PUP.Optional.CrossRider
O42 - Logiciel: Crossbrowse - (.The Crossbrowse Authors.) [HKLM] -- Crossbrowse =>PUP.Optional.CrossBrowse
O42 - Logiciel: DailyPcClean Support - (.Tuto4PC.Com.) [HKLM] -- dpcc_en_009010064_is1 =>PUP.Optional.DailyPCClean
O42 - Logiciel: GIMP 2.8.6 - (.The GIMP Team.) [HKLM] -- GIMP-2_is1
O42 - Logiciel: GamesDesktop 001.005010064 - (.GAMESDESKTOP.) [HKLM] -- gmsd_fr_005010064_is1 =>PUP.Optional.GamesDesktop
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: GreedyTorrent v1.01 beta build 170 - (.Alex N J (www.alexnj.com).) [HKLM] -- GreedyTorrent_is1
O42 - Logiciel: HP LaserJet Professional P1100-P1560-P1600 Series - (...) [HKLM] -- HP LaserJet Professional P1100-P1560-P1600 Series
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink PowerDVD 8 - (.CyberLink Corp..) [HKLM] -- InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: CyberLink PowerProducer - (.CyberLink Corp..) [HKLM] -- InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM] -- League of Legends 3.0.1
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.2.1012 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Marvell Miniport Driver - (.Marvell.) [HKLM] -- Marvell Miniport Driver
O42 - Logiciel: Medieval Total War - (...) [HKLM] -- Medieval Total War
O42 - Logiciel: Mozilla Firefox 40.0.2 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 40.0.2 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: OneSoftPerDay 025.013010064 - (.ONESOFTPERDAY.) [HKLM] -- ospd_us_013010064_is1 =>PUP.OneSoftPerDay
O42 - Logiciel: oursurfing uninstall - (.oursurfing.) [HKLM] -- oursurfing uninstall =>PUP.Optional.OurSurfing
O42 - Logiciel: PokerStars.fr - (.PokerStars.fr.) [HKLM] -- PokerStars.fr
O42 - Logiciel: SmartWeb - (.SoftBrain Technologies Ltd..) [HKLM] -- SmartWeb =>PUP.Optional.SmartWebSearch
O42 - Logiciel: StarCraft II - (.Blizzard Entertainment.) [HKLM] -- StarCraft II
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: VLC media player 1.1.11 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Remote Desktop Access (VuuPC) - (.CMI Limited.) [HKLM] -- VOPackage =>PUP.Optional.Downware
O42 - Logiciel: Wajam - (.WajaInterEnhancer.) [HKLM] -- WajaInterEnhancer =>PUP.Optional.Wajam
O42 - Logiciel: Winamax Poker - (.Table 14.) [HKLM] -- wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1
O42 - Logiciel: WinDjView 1.0.3 - (.Andrew Zhezherun.) [HKLM] -- WinDjView
O42 - Logiciel: WordShark 1.10.0.20 - (.WordShark.) [HKLM] -- WordShark_1.10.0.20 =>PUP.Optional.WordShark
O42 - Logiciel: ZHPDiag 1.31 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPFix_is1
O42 - Logiciel: SpaceSoundPro Service - (.CSDI.) [HKLM] -- zz.1519.ssp =>PUP.Optional.SpaceSoundPro
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: WahOO - (.Kow Media.) [HKLM] -- {0271A4CB-D48C-4CDF-826F-62EE8D91663F}_is1
O42 - Logiciel: Movie Subtitles Searcher 1.0 - (.OpenSubtitles.org.) [HKLM] -- {0428932D-FEAE-4FA2-953B-0437ABE9ADF3}_is1
O42 - Logiciel: Samsung Support Center - (.Samsung.) [HKLM] -- {0A353130-D22C-41DD-8C67-1B02A05F2CE0}
O42 - Logiciel: Winamax Poker - (.Table 14.) [HKLM] -- {0CF4CFF5-61BD-D0FA-BCA4-43B5DE31A2F4}
O42 - Logiciel: Sibelius Scorch (Firefox, Opera, Netscape only) - (.Sibelius Software.) [HKLM] -- {10ABE49D-343A-463E-9753-C4C5A05ECEF9}
O42 - Logiciel: Samsung Recovery Solution 4 - (.Samsung.) [HKLM] -- {145DE957-0679-4A2A-BB5C-1D3E9808FAB2}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {14DC0059-00F1-4F62-BD1A-AB23CD51A95E}
O42 - Logiciel: Easy Display Manager - (.Samsung Electronics Co., Ltd..) [HKLM] -- {17283B95-21A8-4996-97DA-547A48DB266F}
O42 - Logiciel: EasyBatteryManager - (.Samsung.) [HKLM] -- {178EE5F4-0F86-4BF0-A0D1-9790AFF409D1}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: AnyPC Client - (.Doctorsoft.) [HKLM] -- {1AFA1FEF-8CF9-4A51-AC46-64FAA7F3D9E2}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Skype(TM) 7.7 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Java(TM) 6 Update 30 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF}
O42 - Logiciel: CyberLink PowerDVD 8 - (.CyberLink Corp..) [HKLM] -- {2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}
O42 - Logiciel: Easy Network Manager - (.Samsung.) [HKLM] -- {34B76DCB-BF7C-440F-B058-C84172C1E338}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM] -- {3E75652D-99B1-417E-B163-BEF33CAD3F16}
O42 - Logiciel: Samsung R-Series - (.Samsung.) [HKLM] -- {3EED7541-55F8-4DC6-B9CD-28762D71310E}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: HiJackThis - (.Trend Micro.) [HKLM] -- {45A66726-69BC-466B-A7A4-12FCBA4883D7}
O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM] -- {4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}
O42 - Logiciel: Newshosting - (.Newshosting.) [HKLM] -- {5D1B9A3B-13AC-4904-9AC2-F3BE6A90D630}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Game Pack - (.Oberon Media, Inc..) [HKLM] -- {63eafc52-b963-4297-a7eb-d412944e7065}_is1
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {69995C7A-062A-4A90-A4DF-8C22895DF522}
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {6A3F9D74-BB80-4451-8CA1-4B3A857F1359}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM] -- {77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM] -- {7E0610A2-E336-40B3-B685-C4905E97EC9A}
O42 - Logiciel: Alice Greenfingers - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}
O42 - Logiciel: Go-Go Gourmet - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114072167}
O42 - Logiciel: Dairy Dash - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}
O42 - Logiciel: Farm Frenzy 2 - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}
O42 - Logiciel: BatteryLifeExtender - (.Samsung.) [HKLM] -- {853F8A41-A3C9-43FA-87FA-1AE74FC6F3F7}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824147215}
O42 - Logiciel: Adobe Reader XI (11.0.12) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: CyberLink PowerProducer - (.CyberLink Corp..) [HKLM] -- {B7A0CE06-068E-11D6-97FD-0050BACBF861}
O42 - Logiciel: User Guide - (...) [HKLM] -- {BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {C23CD6DA-1958-43A5-ADD0-59396572E02E}
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {C9E14402-3631-4182-B377-6B0DFB1C0339}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {D03482C5-9AD8-496D-B388-692AE04C93AF}
O42 - Logiciel: Atheros Client Installation Program - (.Atheros.) [HKLM] -- {D1434266-0486-4469-B338-A60082CC04E1}
O42 - Logiciel: Samsung Update Plus - (.Samsung Electronics Co., Ltd..) [HKLM] -- {D3F2FAA5-FEC4-42AA-9ABA-1F763919A2B5}
O42 - Logiciel: Intel(R) Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Easy SpeedUp Manager - (.Samsung Electronics Co.,Ltd..) [HKLM] -- {EF367AA4-070B-493C-9575-85BE59D789C9}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: REALTEK Wireless LAN Software - (.REALTEK Semiconductor Corp..) [HKLM] -- {F2BC3383-F000-410C-A038-3846ADBE8D90}
O42 - Logiciel: BetclicPoker.fr - (...) [HKCU] -- BetclicPoker.fr
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU] -- Dropbox
O42 - Logiciel: eType - (.eType.) [HKCU] -- eType
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU] -- uTorrent

---\\ HKCU & HKLM Software Keys (167) - 12s
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\AdwCleaner
HKLM\SOFTWARE\America Online
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc.
HKLM\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\ASK
HKLM\SOFTWARE\Atheros
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\AVAST Software
HKLM\SOFTWARE\Blizzard Entertainment
HKLM\SOFTWARE\Bunndle
HKLM\SOFTWARE\BVRP Software
HKLM\SOFTWARE\C07ft5Y
HKLM\SOFTWARE\Caphyon
HKLM\SOFTWARE\CHECKINSTALLER
HKLM\SOFTWARE\CinemaPlus-3.2cV18.08 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV18.08-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\CinemaPlus-3.2cV18.08-nv-ie =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKLM\SOFTWARE\CyberLink
HKLM\SOFTWARE\DAILYPCCLEAN =>PUP.Optional.DailyPCClean
HKLM\SOFTWARE\dd027767-4543-444e-8432-58b45239ca9e =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Digital River
HKLM\SOFTWARE\Dr.Soft
HKLM\SOFTWARE\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\GAMESDESKTOP =>PUP.Optional.GamesDesktop
HKLM\SOFTWARE\GEAR Software
HKLM\SOFTWARE\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\Hewlett-Packard
HKLM\SOFTWARE\HewlettPackard
HKLM\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\InstalledOptions
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Lake
HKLM\SOFTWARE\Loader
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Malwarebytes' Anti-Malware (Trial)
HKLM\SOFTWARE\Marvell
HKLM\SOFTWARE\McAfeeInstaller
HKLM\SOFTWARE\mcafeeupdater
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\MyBrowser 1.0.2V18.08
HKLM\SOFTWARE\NVIDIA Corporation
HKLM\SOFTWARE\Oberon Media
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\ONESOFTPERDAY =>PUP.OneSoftPerDay
HKLM\SOFTWARE\OpenOffice.org
HKLM\SOFTWARE\oursurfingSoftware =>PUP.Optional.OurSurfing
HKLM\SOFTWARE\Phoenix Technologies
HKLM\SOFTWARE\Piriform
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Realtek Semiconductor Corp.
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Riot Games
HKLM\SOFTWARE\RtWLan
HKLM\SOFTWARE\Samsung
HKLM\SOFTWARE\Samsung Electronics Co., Ltd.
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\Software
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\SpaceSondPro =>PUP.Optional.SpaceSoundPro
HKLM\SOFTWARE\SPPDCOM =>PUP.Optional.PCSpeedUp
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\supWindowsMangerProtect =>PUP.Optional.Fuyu
HKLM\SOFTWARE\Synaptics
HKLM\SOFTWARE\Total War
HKLM\SOFTWARE\TrendMicro
HKLM\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\WajaInterEnhancer
HKLM\SOFTWARE\Waves Audio
HKLM\SOFTWARE\Windows
HKLM\SOFTWARE\WordShark_1.10.0.20 =>PUP.Optional.WordShark
HKLM\SOFTWARE\Wow6432Node
HKLM\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Andrew Zhezherun
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ArenaHD =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\BetclicPoker.fr
HKCU\SOFTWARE\Bitberry
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\BugSplat
HKCU\SOFTWARE\BVRP Software
HKCU\SOFTWARE\cacaoweb =>PUP.Optional.CacaoWeb
HKCU\SOFTWARE\Caphyon
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CinemaPlus-3.2cV18.08 =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV18.08-nv =>PUP.Optional.CrossRider
HKCU\SOFTWARE\CinemaPlus-3.2cV18.08-nv-ie =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Crossbrowse =>PUP.Optional.CrossBrowse
HKCU\SOFTWARE\CrossBrowser =>PUP.Optional.CrossBrowser
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DailyPCClean =>PUP.Optional.DailyPCClean
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\DropboxUpdate
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GreedyTorrent
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HighDefAction =>PUP.Optional.CrossRider
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JEDI-VCL
HKCU\SOFTWARE\jhpb6qsZXjAD5
HKCU\SOFTWARE\KowMedia
HKCU\SOFTWARE\Lake
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\Marvell
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Newshosting
HKCU\SOFTWARE\Northcode Inc
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\OB
HKCU\SOFTWARE\Oberon Media
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OpenOffice.org
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\PTECH
HKCU\SOFTWARE\Razer
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\Shared Components
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\Trend Micro
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\TutoTag =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\Tvi5JBr7z2
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\WahOO
HKCU\SOFTWARE\WajaInterEnhancer
HKCU\SOFTWARE\WajIEnhance =>PUP.Optional.Wajam
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\YorkNewCin =>PUP.Optional.CrossRider
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Google
HKCU\SOFTWARE\AppDataLow\Software\SmartWeb =>PUP.Optional.SmartWebSearch

---\\ Contenu des dossiers Programmes (264) - 10s
O43 - CFD: 2015/08/19 12:27:14 - [] D -- C:\Program Files\407B8840-1439919372-11B2-8000-BB95546F79AA =>PUP.Optional.CrossRider
O43 - CFD: 2013/06/13 15:48:34 - [] D -- C:\Program Files\Adobe
O43 - CFD: 2010/03/05 06:56:09 - [] D -- C:\Program Files\AnyPC Client
O43 - CFD: 2011/07/24 19:01:39 - [] D -- C:\Program Files\Apple Software Update
O43 - CFD: 2010/03/05 06:29:27 - [] D -- C:\Program Files\Atheros Client Installation Program
O43 - CFD: 2011/04/04 15:59:10 - [] D -- C:\Program Files\AVAST Software
O43 - CFD: 2011/07/24 19:00:36 - [] D -- C:\Program Files\Bonjour
O43 - CFD: 2013/09/15 18:58:01 - [] D -- C:\Program Files\CCleaner
O43 - CFD: 2015/08/18 19:38:33 - [] D -- C:\Program Files\CinemaPlus-3.2cV18.08 =>PUP.Optional.CrossRider
O43 - CFD: 2014/11/10 00:12:37 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2015/08/18 22:59:36 - [] D -- C:\Program Files\Crossbrowse =>PUP.Optional.CrossBrowse
O43 - CFD: 2010/07/31 22:50:20 - [] D -- C:\Program Files\CyberLink
O43 - CFD: 2013/05/01 14:21:21 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 2013/09/06 20:12:57 - [] D -- C:\Program Files\GIMP 2
O43 - CFD: 2015/08/18 19:36:52 - [] D -- C:\Program Files\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2015/08/18 23:00:34 - [] D -- C:\Program Files\gmsd_fr_005010064 =>PUP.Optional.CrossRider
O43 - CFD: 2013/12/17 22:58:19 - [] D -- C:\Program Files\Google
O43 - CFD: 2014/04/16 08:56:43 - [] D -- C:\Program Files\GreedyTorrent
O43 - CFD: 2015/07/29 21:16:03 - [] D -- C:\Program Files\GUM74A7.tmp
O43 - CFD: 2013/02/08 08:43:48 - [] D -- C:\Program Files\HP
O43 - CFD: 2010/07/31 22:50:46 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2010/03/05 06:26:18 - [] D -- C:\Program Files\Intel
O43 - CFD: 2015/08/17 09:15:02 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2011/08/28 12:09:43 - [] D -- C:\Program Files\iPod
O43 - CFD: 2011/08/28 12:10:32 - [] D -- C:\Program Files\iTunes
O43 - CFD: 2011/12/26 23:25:00 - [] D -- C:\Program Files\Java
O43 - CFD: 2015/05/10 20:52:34 - [] D -- C:\Program Files\KowMedia
O43 - CFD: 2014/10/17 12:03:29 - [] D -- C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 2014/10/17 12:03:23 - [0] D -- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 2010/03/05 06:27:59 - [] D -- C:\Program Files\Marvell
O43 - CFD: 2014/05/30 15:33:51 - [] D -- C:\Program Files\McAfee Security Scan
O43 - CFD: 2012/11/15 23:01:56 - [] D -- C:\Program Files\Microsoft
O43 - CFD: 2010/03/06 00:03:21 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 2011/12/26 23:26:30 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2010/07/31 22:45:11 - [] D -- C:\Program Files\Microsoft Office Suite Activation Assistant
O43 - CFD: 2015/08/17 01:12:15 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 2010/07/31 22:48:14 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 2012/10/13 11:51:27 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 2010/12/15 09:15:09 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2012/09/05 15:39:58 - [] D -- C:\Program Files\Movie Subtitles Searcher
O43 - CFD: 2015/08/17 09:53:44 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2015/08/17 09:53:45 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2009/07/14 06:52:30 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2015/08/19 00:10:10 - [] D -- C:\Program Files\MyBrowser 1.0.2V18.08
O43 - CFD: 2013/05/08 17:57:10 - [] D -- C:\Program Files\Newshosting
O43 - CFD: 2011/10/27 19:47:05 - [] D -- C:\Program Files\OpenOffice.org 3
O43 - CFD: 2015/08/18 19:34:52 - [0] D -- C:\Program Files\Opera
O43 - CFD: 2015/08/18 19:37:18 - [] D -- C:\Program Files\ospd_us_013010064 =>PUP.OneSoftPerDay
O43 - CFD: 2010/07/31 22:51:23 - [] D -- C:\Program Files\Phoenix Technologies Ltd
O43 - CFD: 2015/08/08 15:45:21 - [] D -- C:\Program Files\PokerStars.FR
O43 - CFD: 2011/08/28 12:05:24 - [] D -- C:\Program Files\QuickTime
O43 - CFD: 2010/03/05 06:27:00 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2010/03/05 06:29:46 - [] D -- C:\Program Files\REALTEK Wireless LAN Software
O43 - CFD: 2009/07/14 06:52:30 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2010/03/05 06:40:04 - [] D -- C:\Program Files\Samsung
O43 - CFD: 2010/07/31 22:35:10 - [] D -- C:\Program Files\Samsung Casual Games
O43 - CFD: 2011/12/26 13:26:40 - [] D -- C:\Program Files\Sibelius Software
O43 - CFD: 2015/07/31 21:55:47 - [] RD -- C:\Program Files\Skype
O43 - CFD: 2015/08/18 22:39:10 - [] D -- C:\Program Files\Software =>PUP.Optional.Boxore
O43 - CFD: 2015/08/18 22:34:33 - [] D -- C:\Program Files\SpaceSoundPro =>PUP.Optional.SpaceSoundPro
O43 - CFD: 2012/09/27 09:53:58 - [] D -- C:\Program Files\StarCraft II
O43 - CFD: 2010/03/05 06:30:02 - [] D -- C:\Program Files\Synaptics
O43 - CFD: 2010/03/05 06:27:35 - [0] HD -- C:\Program Files\Temp
O43 - CFD: 2012/09/05 15:19:12 - [] D -- C:\Program Files\Trend Micro
O43 - CFD: 2009/07/14 06:53:23 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2011/07/31 22:25:45 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 2015/08/18 19:39:03 - [] D -- C:\Program Files\WajaInterEnhancer
O43 - CFD: 2015/08/18 19:38:37 - [] D -- C:\Program Files\Wajam =>PUP.Optional.Wajam
O43 - CFD: 2011/07/21 14:49:24 - [] D -- C:\Program Files\Winamax Poker
O43 - CFD: 2013/03/04 22:41:53 - [] D -- C:\Program Files\WinDjView
O43 - CFD: 2013/07/14 19:45:21 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2015/05/15 08:05:35 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 2012/08/13 09:14:32 - [] D -- C:\Program Files\Windows Live
O43 - CFD: 2013/05/01 14:21:21 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2015/08/02 13:15:47 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2009/07/14 06:52:30 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2013/05/01 14:21:20 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 2013/05/01 14:21:20 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2013/05/01 14:21:21 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 2015/08/18 18:38:10 - [0] D -- C:\Program Fil
0
faxy Messages postés 12 Date d'inscription mercredi 5 septembre 2012 Statut Membre Dernière intervention 19 juin 2016
20 août 2015 à 17:40
J'ai vraiment besoin d'aide svp... je ne peux quasiment plus rien faire sur mon pc ...
0

Discussions similaires

Publicité s'ouvre toute seule ! ?
RRD91 -
crisgoss -

51 réponses
Message "Un bloqueur de publicité empêche la lecture..."
pistouri -
pistouri -

0 réponse
Impossible de créer un compte Facebook Business Manager
Lely -
Malkii -

35 réponses