Publicité
Publicité
Format du document : text/plain
Prévisualisation
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} . (.Yontoo LLC - Yontoo Runtime.) -- C:\Program Files\Yontoo\YontooIEClient.dll
O3 - Toolbar: Delta Toolbar - [HKLM]{82E1477C-B154-48D3-9891-33D83C26BCD3} . (.Delta-search.com - Pas de description.) -- C:\Program Files\Delta\delta\1.8.10.0\deltaTlbr.dll
O42 - Logiciel: Yontoo 1.12.02 - (.Yontoo LLC.) [HKLM] -- {889DF117-14D1-44EE-9F31-C5FB5D47F68B}
[HKCU\Software\AppDataLow\Software\PriceGong]
[HKCU\Software\AppDataLow\Software\Smartbar]
[HKCU\Software\InstallCore]
[HKCU\Software\SpeedMaxPc]
[HKLM\Software\Babylon]
[HKLM\Software\SpeedMaxPc]
O43 - CFD: 01/02/2013 - 13:01:46 - [0,326] ----D C:\Program Files\Yontoo
O43 - CFD: 01/02/2013 - 13:00:56 - [0] ----D C:\ProgramData\Babylon
O43 - CFD: 22/04/2013 - 16:22:12 - [0] ----D C:\ProgramData\SpeedMaxPc
O43 - CFD: 01/02/2013 - 13:00:56 - [0,005] ----D C:\Users\Alain\AppData\Roaming\Babylon
O43 - CFD: 16/04/2013 - 11:54:44 - [0] ----D C:\Users\Alain\AppData\Roaming\SpeedMaxPc
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}]
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}]
[HKLM\Software\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}]
[HKLM\Software\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}]
[HKLM\Software\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}]
[HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]
[HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]
[HKLM\Software\Classes\CLSID\{80922ee0-8a76-46ae-95d5-bd3c3fe0708d}]
[HKLM\Software\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}]
[HKLM\Software\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}]
[HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}]
[HKLM\Software\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}]
[HKLM\Software\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}]
[HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]
[HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}]
[HKLM\Software\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
[HKLM\Software\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
[HKLM\Software\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}]
[HKLM\Software\Classes\AppID\escort.dll]
[HKLM\Software\Classes\AppID\escortapp.dll]
[HKLM\Software\Classes\AppID\escorteng.dll]
[HKLM\Software\Classes\AppID\esrv.EXE]
[HKLM\Software\Classes\escort.escortIEPane]
[HKLM\Software\Classes\escort.escortIEPane.1]
[HKCU\Software\AppDataLow\Software\PriceGong]
[HKCU\Software\SpeedMaxPc]
[HKLM\Software\SpeedMaxPc]
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASAPI32]
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASMANCS]
[HKLM\Software\Classes\Prod.cap]
[HKCU\Software\InstallCore]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}]
[HKLM\Software\Classes\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3}]
[HKLM\Software\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8}]
[HKLM\Software\Classes\AppID\ESRV.EXE]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E5C8B5FB7CB5DD447A0BAAAF637FBD77]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF96568971BEAC14B8815883832BD484]
[HKLM\Software\Classes\YontooIEClient.Api]
[HKLM\Software\Classes\YontooIEClient.Api.1]
[HKLM\Software\Classes\YontooIEClient.Layers]
[HKLM\Software\Classes\YontooIEClient.Layers.1]
[HKLM\Software\Classes\AppID\escort.DLL]
[HKLM\Software\Classes\AppID\escortApp.DLL]
[HKLM\Software\Classes\AppID\escortEng.DLL]
[HKLM\Software\Classes\AppID\escorTlbr.DLL]
[HKLM\Software\Classes\AppID\YontooIEClient.DLL]
C:\Program Files\yontoo
C:\ProgramData\Babylon
C:\ProgramData\SpeedMaxPc
C:\Users\Alain\AppData\Roaming\Babylon
C:\Users\Alain\AppData\Roaming\SpeedMaxPc
C:\Users\Alain\AppData\LocalLow\PriceGong
Malware (73)
O4 - HKLM\..\Run: [TrueImageMonitor.exe] . (.Acronis - Acronis True Image Monitor.) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
Inutile (2)
O4 - GS\Desktop: 802.11 USB Wireless LAN Adapter - Raccourci.lnk - Cl� orpheline
O4 - GS\Desktop: HP Photosmart C4700 series - Raccourci.lnk - Cl� orpheline
O4 - GS\Desktop: Microsoft Flight Simulator X.lnk - Cl� orpheline
O4 - GS\Desktop: Windows Update Troubleshooting Info.lnk . (...) -- C:\Users\Alain\AppData\Local\Temp\WUDiagTempFolder\2013_03_02T07_45_20
[MD5.00000000000000000000000000000000] [APT] [{3AD3C85A-2ECE-4EA1-9842-9567E3BA7E08}] (...) -- C:\Users\Alain\Desktop\Photoshop\Adobe CS3\Dreamweaver\Adobe CS3\Setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{71BFD511-2958-469E-BADD-8B1C6D5AA406}] (...) -- F:\photo shop\PhotoshopElements.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{9B8053C9-DBD4-4B87-8C49-5026A1378B65}] (...) -- C:\Borland Delphi Personal Installer\Install\instmsia.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{A07DB766-6200-4013-AED3-A4F23E4FBBD7}] (...) -- F:\photo shop\PhotoshopElements.exe (.not file.) [0]
O43 - CFD: 18/07/2012 - 01:26:28 - [0,000] ----D C:\Users\Alain\AppData\Local\OfficeDrop
O44 - LFC:[MD5.CA9D5826A58411E0095BA6D41E31FF9B] - 17/04/2013 - 06:49:10 ---A- . (...) -- C:\Windows\System32\jupdate-1.7.0_21-b11.log [4003]
O51 - MPSK:{da1bd2ce-deff-11e1-ba9d-0019d12a9594}\AutoRun\command. (...) -- H:\Startme.exe (.not file.)
[MD5.3E7A52653DA302A77C08A8F3D4BBDE70] [SPRF][10/02/2013] (...) -- C:\Users\Alain\AppData\Local\Temp\JSaHCMAPI_2.2.503326420090484141994.dll [266240]
[MD5.44FC805F297F74029945A92F9D5DC76C] [SPRF][09/04/2013] (.Rentabiliweb - YesMessenger installator.) -- C:\Users\Alain\AppData\Local\Temp\Messenger-full-installer.exe [7328192]
[MD5.B04F0E0352DB5B0FEE4C4A93630838B7] [SPRF][25/01/2013] (.Advanced Micro Devices, Inc. - 13-1_vista_win7_win8_32_dd_ccc_whql.) -- C:\Users\Alain\AppData\Local\Temp\tmp7F8C.exe [99315736]
[MD5.942B928805A943C26743F74A170A93E6] [SPRF][23/01/2013] (...) -- C:\Users\Alain\AppData\Local\Temp\__PDFCORE_FMP.dat [87403]
Superflu (15)
[HKCU\Software\Delta]
[HKLM\Software\Delta]
O43 - CFD: 01/02/2013 - 13:01:27 - [2,767] ----D C:\Program Files\Delta
O43 - CFD: 01/02/2013 - 13:01:59 - [0,276] ----D C:\Users\Alain\AppData\Roaming\Delta
Autres cochonneries (4)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} Cl� orpheline
O2 - BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} . (.Delta-search.com - Pas de description.) -- C:\Program Files\Delta\delta\1.8.10.0\bh\delta.dll
O42 - Logiciel: Delta Chrome Toolbar - (.DeltaInstaller.) [HKLM] -- {177586E7-E42E-4F38-83D1-D15B4AF5B714}
O42 - Logiciel: Delta toolbar - (.Delta.) [HKLM] -- delta
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\Conduit]
[HKLM\Software\Conduit]
[HKLM\Software\Tarma Installer]
O43 - CFD: 27/07/2012 - 15:40:51 - [0,609] ----D C:\Program Files\Conduit
O43 - CFD: 01/02/2013 - 13:01:36 - [3,161] ----D C:\ProgramData\Tarma Installer
O43 - CFD: 10/08/2012 - 18:15:38 - [0,169] ----D C:\Users\Alain\AppData\Local\APN
O43 - CFD: 13/08/2012 - 08:48:25 - [0] ----D C:\Users\Alain\AppData\Local\Conduit
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Delta Search) - http://www.delta-search.com
[MD5.ACA50E4D25A1E881762F068393BC0959] [SPRF][23/04/2013] (.Conduit - Setup.exe.) -- C:\Users\Alain\Desktop\WiseConvert_1.5.exe [1295448]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{177586E7-E42E-4F38-83D1-D15B4AF5B714}]
[HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}]
[HKLM\Software\Tarma Installer]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]
[HKLM\Software\Classes\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]
[HKLM\Software\Classes\Installer\Features\7E685771E24E83F4381D1DB5A45F7B41]
[HKLM\Software\Classes\Installer\Products\7E685771E24E83F4381D1DB5A45F7B41]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7E685771E24E83F4381D1DB5A45F7B41]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}]
[HKLM\Software\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}]
[HKLM\Software\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}]
[HKLM\Software\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}]
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}]
[HKLM\Software\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}]
[HKLM\Software\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}]
[HKLM\Software\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}]
[HKLM\Software\Classes\delta.deltaappCore]
[HKLM\Software\Classes\delta.deltaappCore.1]
[HKLM\Software\Classes\delta.deltadskBnd]
[HKLM\Software\Classes\delta.deltadskBnd.1]
[HKLM\Software\Classes\delta.deltaHlpr]
[HKLM\Software\Classes\delta.deltaHlpr.1]
[HKLM\Software\Classes\esrv.deltaESrvc]
[HKLM\Software\Classes\esrv.deltaESrvc.1]
[HKLM\Software\Classes\Toolbar.CT3196716]
C:\Program Files\Conduit
C:\Users\Alain\AppData\Local\Conduit
C:\Users\Alain\AppData\LocalLow\Conduit
C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
C:\Users\Alain\Desktop\WiseConvert_1.5.exe
O90 - PUC: "7E685771E24E83F4381D1DB5A45F7B41" . (.Delta Chrome Toolbar.) -- C:\Windows\Installer\{177586E7-E42E-4F38-83D1-D15B4AF5B714}\Delta.ico
Superflu (52) Toolbars
O3 - Toolbar: Delta Toolbar - [HKLM]{82E1477C-B154-48D3-9891-33D83C26BCD3} . (.Delta-search.com - Pas de description.) -- C:\Program Files\Delta\delta\1.8.10.0\deltaTlbr.dll
O42 - Logiciel: Yontoo 1.12.02 - (.Yontoo LLC.) [HKLM] -- {889DF117-14D1-44EE-9F31-C5FB5D47F68B}
[HKCU\Software\AppDataLow\Software\PriceGong]
[HKCU\Software\AppDataLow\Software\Smartbar]
[HKCU\Software\InstallCore]
[HKCU\Software\SpeedMaxPc]
[HKLM\Software\Babylon]
[HKLM\Software\SpeedMaxPc]
O43 - CFD: 01/02/2013 - 13:01:46 - [0,326] ----D C:\Program Files\Yontoo
O43 - CFD: 01/02/2013 - 13:00:56 - [0] ----D C:\ProgramData\Babylon
O43 - CFD: 22/04/2013 - 16:22:12 - [0] ----D C:\ProgramData\SpeedMaxPc
O43 - CFD: 01/02/2013 - 13:00:56 - [0,005] ----D C:\Users\Alain\AppData\Roaming\Babylon
O43 - CFD: 16/04/2013 - 11:54:44 - [0] ----D C:\Users\Alain\AppData\Roaming\SpeedMaxPc
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}]
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}]
[HKLM\Software\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}]
[HKLM\Software\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}]
[HKLM\Software\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}]
[HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]
[HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]
[HKLM\Software\Classes\CLSID\{80922ee0-8a76-46ae-95d5-bd3c3fe0708d}]
[HKLM\Software\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}]
[HKLM\Software\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}]
[HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}]
[HKLM\Software\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}]
[HKLM\Software\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}]
[HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]
[HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}]
[HKLM\Software\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
[HKLM\Software\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
[HKLM\Software\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}]
[HKLM\Software\Classes\AppID\escort.dll]
[HKLM\Software\Classes\AppID\escortapp.dll]
[HKLM\Software\Classes\AppID\escorteng.dll]
[HKLM\Software\Classes\AppID\esrv.EXE]
[HKLM\Software\Classes\escort.escortIEPane]
[HKLM\Software\Classes\escort.escortIEPane.1]
[HKCU\Software\AppDataLow\Software\PriceGong]
[HKCU\Software\SpeedMaxPc]
[HKLM\Software\SpeedMaxPc]
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASAPI32]
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASMANCS]
[HKLM\Software\Classes\Prod.cap]
[HKCU\Software\InstallCore]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}]
[HKLM\Software\Classes\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3}]
[HKLM\Software\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8}]
[HKLM\Software\Classes\AppID\ESRV.EXE]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E5C8B5FB7CB5DD447A0BAAAF637FBD77]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF96568971BEAC14B8815883832BD484]
[HKLM\Software\Classes\YontooIEClient.Api]
[HKLM\Software\Classes\YontooIEClient.Api.1]
[HKLM\Software\Classes\YontooIEClient.Layers]
[HKLM\Software\Classes\YontooIEClient.Layers.1]
[HKLM\Software\Classes\AppID\escort.DLL]
[HKLM\Software\Classes\AppID\escortApp.DLL]
[HKLM\Software\Classes\AppID\escortEng.DLL]
[HKLM\Software\Classes\AppID\escorTlbr.DLL]
[HKLM\Software\Classes\AppID\YontooIEClient.DLL]
C:\Program Files\yontoo
C:\ProgramData\Babylon
C:\ProgramData\SpeedMaxPc
C:\Users\Alain\AppData\Roaming\Babylon
C:\Users\Alain\AppData\Roaming\SpeedMaxPc
C:\Users\Alain\AppData\LocalLow\PriceGong
Malware (73)
O4 - HKLM\..\Run: [TrueImageMonitor.exe] . (.Acronis - Acronis True Image Monitor.) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
Inutile (2)
O4 - GS\Desktop: 802.11 USB Wireless LAN Adapter - Raccourci.lnk - Cl� orpheline
O4 - GS\Desktop: HP Photosmart C4700 series - Raccourci.lnk - Cl� orpheline
O4 - GS\Desktop: Microsoft Flight Simulator X.lnk - Cl� orpheline
O4 - GS\Desktop: Windows Update Troubleshooting Info.lnk . (...) -- C:\Users\Alain\AppData\Local\Temp\WUDiagTempFolder\2013_03_02T07_45_20
[MD5.00000000000000000000000000000000] [APT] [{3AD3C85A-2ECE-4EA1-9842-9567E3BA7E08}] (...) -- C:\Users\Alain\Desktop\Photoshop\Adobe CS3\Dreamweaver\Adobe CS3\Setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{71BFD511-2958-469E-BADD-8B1C6D5AA406}] (...) -- F:\photo shop\PhotoshopElements.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{9B8053C9-DBD4-4B87-8C49-5026A1378B65}] (...) -- C:\Borland Delphi Personal Installer\Install\instmsia.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{A07DB766-6200-4013-AED3-A4F23E4FBBD7}] (...) -- F:\photo shop\PhotoshopElements.exe (.not file.) [0]
O43 - CFD: 18/07/2012 - 01:26:28 - [0,000] ----D C:\Users\Alain\AppData\Local\OfficeDrop
O44 - LFC:[MD5.CA9D5826A58411E0095BA6D41E31FF9B] - 17/04/2013 - 06:49:10 ---A- . (...) -- C:\Windows\System32\jupdate-1.7.0_21-b11.log [4003]
O51 - MPSK:{da1bd2ce-deff-11e1-ba9d-0019d12a9594}\AutoRun\command. (...) -- H:\Startme.exe (.not file.)
[MD5.3E7A52653DA302A77C08A8F3D4BBDE70] [SPRF][10/02/2013] (...) -- C:\Users\Alain\AppData\Local\Temp\JSaHCMAPI_2.2.503326420090484141994.dll [266240]
[MD5.44FC805F297F74029945A92F9D5DC76C] [SPRF][09/04/2013] (.Rentabiliweb - YesMessenger installator.) -- C:\Users\Alain\AppData\Local\Temp\Messenger-full-installer.exe [7328192]
[MD5.B04F0E0352DB5B0FEE4C4A93630838B7] [SPRF][25/01/2013] (.Advanced Micro Devices, Inc. - 13-1_vista_win7_win8_32_dd_ccc_whql.) -- C:\Users\Alain\AppData\Local\Temp\tmp7F8C.exe [99315736]
[MD5.942B928805A943C26743F74A170A93E6] [SPRF][23/01/2013] (...) -- C:\Users\Alain\AppData\Local\Temp\__PDFCORE_FMP.dat [87403]
Superflu (15)
[HKCU\Software\Delta]
[HKLM\Software\Delta]
O43 - CFD: 01/02/2013 - 13:01:27 - [2,767] ----D C:\Program Files\Delta
O43 - CFD: 01/02/2013 - 13:01:59 - [0,276] ----D C:\Users\Alain\AppData\Roaming\Delta
Autres cochonneries (4)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} Cl� orpheline
O2 - BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} . (.Delta-search.com - Pas de description.) -- C:\Program Files\Delta\delta\1.8.10.0\bh\delta.dll
O42 - Logiciel: Delta Chrome Toolbar - (.DeltaInstaller.) [HKLM] -- {177586E7-E42E-4F38-83D1-D15B4AF5B714}
O42 - Logiciel: Delta toolbar - (.Delta.) [HKLM] -- delta
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\Conduit]
[HKLM\Software\Conduit]
[HKLM\Software\Tarma Installer]
O43 - CFD: 27/07/2012 - 15:40:51 - [0,609] ----D C:\Program Files\Conduit
O43 - CFD: 01/02/2013 - 13:01:36 - [3,161] ----D C:\ProgramData\Tarma Installer
O43 - CFD: 10/08/2012 - 18:15:38 - [0,169] ----D C:\Users\Alain\AppData\Local\APN
O43 - CFD: 13/08/2012 - 08:48:25 - [0] ----D C:\Users\Alain\AppData\Local\Conduit
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Delta Search) - http://www.delta-search.com
[MD5.ACA50E4D25A1E881762F068393BC0959] [SPRF][23/04/2013] (.Conduit - Setup.exe.) -- C:\Users\Alain\Desktop\WiseConvert_1.5.exe [1295448]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{177586E7-E42E-4F38-83D1-D15B4AF5B714}]
[HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}]
[HKLM\Software\Tarma Installer]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]
[HKLM\Software\Classes\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]
[HKLM\Software\Classes\Installer\Features\7E685771E24E83F4381D1DB5A45F7B41]
[HKLM\Software\Classes\Installer\Products\7E685771E24E83F4381D1DB5A45F7B41]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7E685771E24E83F4381D1DB5A45F7B41]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}]
[HKLM\Software\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}]
[HKLM\Software\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}]
[HKLM\Software\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}]
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}]
[HKLM\Software\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}]
[HKLM\Software\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}]
[HKLM\Software\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}]
[HKLM\Software\Classes\delta.deltaappCore]
[HKLM\Software\Classes\delta.deltaappCore.1]
[HKLM\Software\Classes\delta.deltadskBnd]
[HKLM\Software\Classes\delta.deltadskBnd.1]
[HKLM\Software\Classes\delta.deltaHlpr]
[HKLM\Software\Classes\delta.deltaHlpr.1]
[HKLM\Software\Classes\esrv.deltaESrvc]
[HKLM\Software\Classes\esrv.deltaESrvc.1]
[HKLM\Software\Classes\Toolbar.CT3196716]
C:\Program Files\Conduit
C:\Users\Alain\AppData\Local\Conduit
C:\Users\Alain\AppData\LocalLow\Conduit
C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
C:\Users\Alain\Desktop\WiseConvert_1.5.exe
O90 - PUC: "7E685771E24E83F4381D1DB5A45F7B41" . (.Delta Chrome Toolbar.) -- C:\Windows\Installer\{177586E7-E42E-4F38-83D1-D15B4AF5B714}\Delta.ico
Superflu (52) Toolbars