cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2013.10.2.3 - Nicolas Coolman (2/10/2013)
~ Lanc� par Jennifer (3/10/2013 15:53:09)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Activ�e par le programme
~ El�vation des Privil�ges : OK
~ User Account Control (UAC): Deactivate by program


---\\ Navigateurs Internet
MSIE: Internet Explorer v9.0.8112.16421
GCIE: Google Chrome v29.0.1547.76 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Fran�ais
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 6CJ97
Windows License : OK
Windows Automatic Updates : OK

---\\ Logiciels de protection du syst�me
Microsoft Security Essentials v1.0.2498.0

---\\ Logiciels d'optimisation du syst�me
CCleaner v4.06 =>Piriform Ltd

---\\ Logiciels de partage PeerToPeer
Pando Media Booster v2.6.0.8

---\\ Surveillance de Logiciels
Adobe Flash Player 10 Plugin
Adobe Reader 9.5.4 - Fran�ais
Java 7 Update 17

---\\ Informations sur le syst�me
~ Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3065 MB (60% free)
System Restore: Activ� (Enable)
System drive C: has 70 GB (49%) free of 143 GB

---\\ Mode de connexion au syst�me
~ Computer Name: PC-DE-JENNIFER
~ User Name: Jennifer
~ All Users Names: Jennifer, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Jennifer\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Jennifer\AppData\Roaming\
~ %Desktop% : C:\Users\Jennifer\Desktop\
~ %Favorites% : C:\Users\Jennifer\Favorites\
~ %LocalAppData% : C:\Users\Jennifer\AppData\Local\
~ %StartMenu% : C:\Users\Jennifer\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enum�ration des unit�s disques
C: Hard drive, Flash drive, Thumb drive (Free 70 Go of 143 Go)
D: Hard drive, Flash drive, Thumb drive (Free 142 Go of 143 Go)
E: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de S�curit� Windows
~ Security Center: 37 Legitimates Filtered in 00mn 00s



---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 7:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.21/01/2008 - 3:23:42.) -- C:\Windows\System32\Wininit.exe [96768]
[MD5.21A5424935A32080A58DD40F2712212C] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.31/07/2013 - 10:52:44.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 7:28:13.) -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 14:58:27.) -- C:\Windows\system32\Drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 7:32:26.) -- C:\Windows\system32\Drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 3:23:51.) -- C:\Windows\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 5:39:17.) -- C:\Windows\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 15:59:03.) -- C:\Windows\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 5:42:42.) -- C:\Windows\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 3:23:20.) -- C:\Windows\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 3:24:25.) -- C:\Windows\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:24:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 5:45:37.) -- C:\Windows\system32\Drivers\netBT.sys [185856]
[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.3/03/2013 - 20:07:52.) -- C:\Windows\system32\Drivers\ntfs.sys [1082232]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parall�le.) (.2/11/2006 - 9:51:30.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 3:24:55.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 3:23:01.) -- C:\Windows\system32\Drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 5:45:22.) -- C:\Windows\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 5:45:56.) -- C:\Windows\system32\Drivers\tdx.sys [72192]
[MD5.786DB5771F05EF300390399F626BF30A] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.21/08/2012 - 12:47:42.) -- C:\Windows\system32\Drivers\volsnap.sys [224640]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 1/204
~ Mes musiques (My Musics) : 3/5
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/89
~ Mes Documents (My Documents) : 5/3032
~ Mon Bureau (My Desktop) : 2/635
~ Menu demarrer (Programs) : 1/43
~ Hidden Files: Scanned in 00mn 01s



---\\ Processus lanc�s
[MD5.E7148BB584830E51AFD414CE9AEAE74C] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [829392] [PID.2436]
[MD5.61484FC1984AE69B4F4E300135C2330F] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8034304] [PID.3464]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.3304]
[MD5.578C809BF745608646EA338A9AC48158] - (.Microsoft Corporation - AntiMalware Service Executable.) -- C:\Program Files\Microsoft Security Essentials\MsMpEng.exe [17904] [PID.1000]
[MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.1320]
[MD5.1BC1A6B644D4CC1964CD851E92B604F4] - (.McAfee, Inc. - Framework Service.) -- C:\Program Files\McAfee\Common Framework\FrameworkService.exe [104000] [PID.1168]
[MD5.8726802EA4FBFFA3FD54FD2449BF51D4] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files\Google\Update\1.3.21.153\GoogleCrashHandler.exe [217992] [PID.2532]
[MD5.EFB1E30EA77C70704F1417E20CC4BF53] - (.McAfee, Inc. - NAI Product Manager.) -- C:\Program Files\McAfee\Common Framework\naPrdMgr.exe [136768] [PID.3040]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.searchgol.com =>Hijacker.SearchGol
G2 - GCE: Preference [User Data\Default] [eooncjejnppfjjklapaamhcdmjbilmde] Delta Toolbar v.1.4 (D�sactiv�) =>Toolbar.DeltaSearch
~ Google Browser: 14 Legitimates Filtered in 00mn 27s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@bittorrent.com/BitTorrentDNA] - (.BitTorrent, Inc. - Delivery Network Acceleration by BitTorrent�.) -- C:\Program Files\DNA\plugins\npbtdna.dll =>P2P.BitTorrent
P2 - FPN: [HKLM] [@t-immersion.com/DFusionHomeWebPlugIn] - (.Total Immersion - D'Fusion @Home Web Plug-In (2.20.10109.0).) -- C:\Program Files\Total Immersion\DFusionHomeWebPlugIn\NPDFusionWebFirefox.dll
P2 - FPN: [HKCU] [@bittorrent.com/BitTorrentDNA] - (.BitTorrent, Inc. - Delivery Network Acceleration by BitTorrent�.) -- C:\Program Files\DNA\plugins\npbtdna.dll =>P2P.BitTorrent
~ Firefox Browser: 21 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Pando Networks - Pando Web Plugin.) (No version) -- (.not file.)
~ IE Browser: 8 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 195.162.195.10:80
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 25



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} . (.Egis - ActiveToolBand Module.) -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
~ BHO: 14 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Acer eDataSecurity Management - [HKLM]{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} . (.Egis Incorporated. - Acer eDataSecurity Management Explorer Tool.) -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: (no name) - [HKLM]{D7293762-9884-48E2-B836-E0195B9D91D0} Cl� orpheline
O3 - Toolbar: Bing Bar - [HKLM]{8dcb7100-df86-4384-8842-8fa844297b3f} . (.Microsoft Corporation. - Extensions du client Bing.) -- C:\Program Files\Microsoft\BingBar\BingExt.dll =>Toolbar.Bing
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{21FA44EF-376D-4D53-9B0F-8A89D3229068} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{D7293762-9884-48E2-B836-E0195B9D91D0} Cl� orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: eID Viewer.lnk . (...) -- C:\Program Files\Belgium Identity Card\EidViewer\eID Viewer.exe
O4 - GS\Desktop [Public]: Empowering Technology.lnk . (...) -- C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe
O4 - GS\Desktop [Public]: EPSON File Manager.lnk . (.SEIKO EPSON CORPORATION - EPSON File Manager.) -- C:\Program Files\epson\Creativity Suite\File Manager\EFileManager.exe
O4 - GS\Desktop [Public]: EPSON Scan.lnk . (.SEIKO EPSON CORP. - EPSON Scan.) -- C:\Windows\twain_32\escndv\escndv.exe
O4 - GS\Desktop [Public]: EPSON Stylus CX7300_CX8300_DX7400_DX8400 Manuel.lnk . (...) -- C:\Program Files\epson\TPMANUAL\ES_CX_DX\FRA\USE_G\INDEX.HTM
O4 - GS\Desktop [Public]: Orion.lnk . (...) -- C:\Windows\Installer\{5B63A470-9334-44D1-AF61-6CE2DB565AE9}\_07175CDAAB0F651F1BE242.exe
O4 - GS\Desktop [Public]: Panorama Maker 4.lnk . (.ArcSoft, Inc. - ArcSoft Panorama Maker.) -- C:\Program Files\ArcSoft\Software Suite\Panorama Maker 4\PMK.exe
O4 - GS\Desktop [Public]: SimEdit.lnk . (.Realsil - SimEdit.) -- C:\Program Files\Realtek\Realtek USB 2.0 Card Reader\SimEdit.exe
O4 - GS\Desktop [Public]: WinZip.lnk . (.WinZip Computing, S.L. - WinZip.) -- C:\Program Files\WinZip\WINZIP32.exe
O4 - GS\Program [Public]: Orion.lnk . (...) -- C:\Windows\Installer\{5B63A470-9334-44D1-AF61-6CE2DB565AE9}\_F11DB55DE5A6C47655C84F.exe
O4 - GS\QuickLaunch [Jennifer]: Antimalware Doctor.lnk . (...) -- C:\Users\Jennifer\AppData\Roaming\8FAC14160BDA9829F0488D61F4793224\070700Setup.exe (.not file.)
O4 - GS\QuickLaunch [Jennifer]: CodeBlocks.lnk . (...) -- C:\Users\Jennifer\Documents\C++\codeblocks.exe
O4 - GS\QuickLaunch [Jennifer]: PDFTiger.lnk . (.PDFTiger.com - Pas de description.) -- C:\Program Files\qvPDF\PDFTiger.exe
O4 - GS\QuickLaunch [Jennifer]: WinAVI MP4 Converter.lnk . (...) -- C:\Program Files\WinAVI MP4 Converter\WinAVI MP4 Converter.exe (.not file.)
O4 - GS\QuickLaunch [Jennifer]: Xilisoft MP4 Converter.lnk . (...) -- C:\Users\Jennifer\Desktop\MP4 Converter\vcloader.exe (.not file.)
O4 - GS\Program [Jennifer]: Windows Install Clean Up.lnk . (...) -- C:\Users\Jennifer\AppData\Roaming\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
O4 - GS\Desktop [Jennifer]: CodeBlocks.lnk . (...) -- C:\Users\Jennifer\Documents\C++\codeblocks.exe
O4 - GS\Desktop [Jennifer]: M4V Player.lnk . (...) -- C:\Program Files\M4V Player\M4V Player.exe
O4 - GS\Desktop [Jennifer]: Sodalis VPN.lnk . (...) -- C:\Users\Jennifer\Documents\Sodalis VPN.RDP
O4 - GS\Desktop [Jennifer]: Sodalis.lnk . (...) -- C:\Users\Jennifer\Documents\sodalis.RDP
O4 - GS\Desktop [Jennifer]: Tgl0beSCRIPT.lnk . (.mIRC Co. Ltd. - mIRC.) -- C:\Tgl0beSCRIPT\mIRC.exe
~ Global Startup: 94 Legitimates Filtered in 00mn 15s



---\\ Applications lanc�es au d�marrage du syt�me (O4)
O4 - HKLM\..\Run: [eRecoveryService] Cl� orpheline
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll
~ Application: Scanned in 00mn 00s



---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} . (.Microsoft Corporation - Windows Live Messenger Companion core resources.) -- C:\Program Files\Windows Live\Companion\companionres.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} ((no name)) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} ((no name)) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/mjss/MJSS.cab109791.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} ((no name)) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} ((no name)) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} ((no name)) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {FAB2BB9D-91E9-457E-9D42-75A7FCCBBC00} ((no name)) - http://www.ds3.citroen.com/reality/plugin/DFusionHomeWebPlugIn.Installer.exe
~ Objets ActiveX: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{8BC5F882-EFE6-40E0-AECF-CDC6791EC1F9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5C5E9FB-51FC-43A4-AC60-98C5DA45736E}: DhcpNameServer = 192.168.100.201 192.168.100.200
O17 - HKLM\System\CS1\Services\Tcpip\..\{8BC5F882-EFE6-40E0-AECF-CDC6791EC1F9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{E5C5E9FB-51FC-43A4-AC60-98C5DA45736E}: DhcpNameServer = 192.168.100.201 192.168.100.200
O17 - HKLM\System\CS2\Services\Tcpip\..\{8BC5F882-EFE6-40E0-AECF-CDC6791EC1F9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{E5C5E9FB-51FC-43A4-AC60-98C5DA45736E}: DhcpNameServer = 192.168.100.201 192.168.100.200
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files\bitguard\261673~1.238\{c16c1~1\bitguard.dll (.not file.) =>PUP.BitGuard
~ AppInit DLL: Scanned in 00mn 00s



---\\ Cl� de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Biblioth�que de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll
~ STS/SSO: Scanned in 00mn 00s



---\\ T�ches planifi�es en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [Express FilesUpdate] (...) -- C:\Program Files\ExpressFiles\EFUpdater.exe (.not file.) [0] =>Adware.ExpressFiles
[MD5.00000000000000000000000000000000] [APT] [Go for FilesUpdate] (...) -- C:\Program Files\GoforFiles\GFFUpdater.exe (.not file.) [0] =>P2P.GoforFiles
[MD5.00000000000000000000000000000000] [APT] [{002DE433-58D2-40BA-9A5E-06EEFA94569F}] (...) -- C:\Users\Jennifer\Downloads\Nokia_PC_Suite_7_1_30_9_fre_web(2).exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{246D004D-92A3-4CE0-BD50-975235BCDE32}] (...) -- C:\Users\Jennifer\Documents\sign4ever\sign4ever.exe (.not file.) [0]
[MD5.75D53F51D4928811096ABB6E2675AE55] [APT] [{D17BDD30-0075-43A4-8C17-A0C4AD84AD36}] (...) -- c:\users\Jennifer\appdata\local\lcifebsx.bat [93]
~ Scheduled Task: 15 Legitimates Filtered in 00mn 03s



---\\ Logiciels install�s (O42)
O42 - Logiciel: DNA - (.BitTorrent Inc..) [HKCU] -- BitTorrent DNA =>P2P.BitTorrent
O42 - Logiciel: Fast Browser Search (My Web Tattoo) - (.Make The Web Better, LLC.) [HKLM] -- TBSB07183.TBSB07183Toolbar =>PUP.FbSearch
O42 - Logiciel: Favorit (lcifebsx) - (...) [HKLM] -- lcifebsx =>Adware.Favorit
O42 - Logiciel: M4V Player 1.0 - (.vsevensoft.com.) [HKLM] -- M4V Player_is1
O42 - Logiciel: PDFTiger - (...) [HKLM] -- PDFTiger_is1
O42 - Logiciel: PDFTiger Kernel - (...) [HKLM] -- {DE252510-5687-4C60-A705-C43E19F12C9D}_is1
O42 - Logiciel: PDFTigerDriver - (...) [HKLM] -- {AEM384L1-28E3-1232-1233-1JD74JDIEK32}_is1
O42 - Logiciel: Tgl0beSCRIPT 9.8 - (.Xor.) [HKLM] -- Tgl0beSCRIPT
~ Logic: 146 Legitimates Filtered in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Antimalware Doctor Inc]
[HKCU\Software\Command Line Utility]
[HKCU\Software\DC3_FEXEC] =>Trojan.Fynloski
[HKCU\Software\Live-Player]
[HKCU\Software\SpeedTouch]
[HKCU\Software\fcn]
[HKLM\Software\Live-Player]
[HKLM\Software\aprentice]
[HKLM\Software\qvPDF]
~ Key Software: 246 Legitimates Filtered in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 14/12/2012 - 14:17:25 - [0] ----D C:\Program Files\Addobe
O43 - CFD: 23/06/2013 - 15:24:29 - [0] ----D C:\Program Files\BeID Minidriver
O43 - CFD: 17/05/2012 - 11:44:45 - [0,155] ----D C:\Program Files\BSmaxScript[7.2]
O43 - CFD: 10/01/2009 - 18:23:33 - [12,253] ----D C:\Program Files\Convesoft =>PUP.Convesoft
O43 - CFD: 10/05/2009 - 19:15:24 - [0,388] ----D C:\Program Files\DNA
O43 - CFD: 27/09/2013 - 19:53:47 - [99,360] ----D C:\Program Files\IXP256.TMP
O43 - CFD: 18/12/2010 - 23:49:51 - [13,925] ----D C:\Program Files\M4V Player
O43 - CFD: 14/04/2011 - 20:29:50 - [0] ----D C:\Program Files\Mobistar
O43 - CFD: 22/07/2010 - 18:19:28 - [16,768] ----D C:\Program Files\PDFTiger
O43 - CFD: 22/07/2010 - 18:19:52 - [41,991] ----D C:\Program Files\qvPDF
O43 - CFD: 26/05/2013 - 12:47:10 - [18,171] ----D C:\Program Files\Sites
O43 - CFD: 21/06/2012 - 18:22:42 - [0,464] ----D C:\Program Files\SSearch
O43 - CFD: 21/06/2012 - 18:22:31 - [0] ----D C:\Program Files\TorrentSearch
O43 - CFD: 4/05/2009 - 19:05:54 - [0] ----D C:\ProgramData\Effects
O43 - CFD: 19/07/2010 - 22:47:24 - [0,055] ----D C:\Users\Jennifer\AppData\Roaming\8FAC14160BDA9829F0488D61F4793224
O43 - CFD: 19/09/2013 - 11:04:52 - [0,007] ----D C:\Users\Jennifer\AppData\Roaming\DNA
O43 - CFD: 29/08/2010 - 17:33:27 - [0] ----D C:\Users\Jennifer\AppData\Roaming\Shareaza
O43 - CFD: 25/06/2012 - 16:56:18 - [0] ----D C:\Users\Jennifer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tgl0beSCRIPT
~ 1 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 233 Legitimates Filtered in 00mn 40s



---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.CEAF98D916D2B75B8704BEE7680EE0B5] - 1/10/2013 - 19:40:06 ---A- . (...) -- C:\Windows\System32\agent.log [147]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 1/10/2013 - 19:40:18 ---A- . (...) -- C:\Windows\System32\LogConfigTemp.xml [0]
O44 - LFC:[MD5.D565460647E3B6ACD69D2747699485AB] - 2/10/2013 - 16:00:38 ---A- . (...) -- C:\Windows\ntbtlog.txt [192326]
O44 - LFC:[MD5.FB59CA9EEDBC3F7B4A7B52A012F797CC] - 27/09/2013 - 17:40:12 ---A- . (...) -- C:\Windows\System32\OSSService.log [424]
O44 - LFC:[MD5.902B9FC065CA5A6AECF220625C5A7F4B] - 28/09/2013 - 10:05:33 --HA- . (...) -- C:\Windows\System32\mlfcache.dat [127772]
~ Files: 17 Legitimates Filtered in 00mn 15s



---\\ Cl� de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{42ee8815-3a40-11de-aea4-00238b80e03a}\AutoRun\command. (...) -- F:\LaunchU3.exe (.not file.)
O51 - MPSK:{737847f3-0ff9-11df-80ad-00238b80e03a}\AutoRun\command. (...) -- F:\LaunchU3.exe (.not file.)
O51 - MPSK:{86514e19-400b-11e0-8541-00238b80e03a}\AutoRun\command. (...) -- F:\AutoRunCardDetector.exe (.not file.)
O51 - MPSK:{f68d10be-383a-11de-a543-806e6f6e6963}\AutoRun\command. (...) -- E:\CDRun.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Enum�ration des cl�s de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\BitTorrent DNA [Key] . (.BitTorrent, Inc. - DNA.) -- C:\Program Files\DNA\btdna.exe =>P2P.BitTorrent
O53 - SMSR:HKLM\...\startupreg\Malwarebytes Anti-Malware (reboot) [Key] . (...) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Pando Media Booster [Key] . (.Pas de propri�taire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (...) -- C:\Program Files\Skype\Phone\Skype.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\WindowsUpdate [Key] . (...) -- C:\Users\Jennifer\WZKYR\YXEHV.vbs
~ SMSR Keys: 31 Legitimates Filtered in 00mn 01s



---\\ Enum�ration des cl�s de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
~ MWPS: 16 Legitimates Filtered in 00mn 00s



---\\ Liste des pilotes du syst�me (SDL) (O58)
O58 - SDL:[MD5.F35B5D0CC142B87E687FC504BAA69D82] - 8/02/2007 - 14:45:14 ---A- . (.Thesycon GmbH, Germany - USBIO Driver.) -- C:\Windows\System32\Drivers\dsiarhwprog.sys [29184]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 2/11/2006 - 8:09:42 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
~ Drivers: 16 Legitimates Filtered in 00mn 00s



---\\ Liste des outils de d�sinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.)
~ FASS Keys: 21 Legitimates Filtered in 00mn 00s



---\\ Menu de d�marrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {5EF5022B-27AD-47E6-987C-6ED2ABAB68C3} - (Search) - http://www.startsearcher.com =>PUP.StartSearch
O69 - SBI: SearchScopes [HKCU] {73ccfd25-abe2-4bdf-ac5d-28a470a4d234} - (Live Search) - http://search.live.com
~ Keys: Scanned in 00mn 00s



---\\ Recherche particuli�re � la racine du syst�me (SPRF) (O84)
[MD5.3AD76B3D6E18BEF26DF7261E08482C73] [SPRF][5/05/2009] (...) -- C:\ProgramData\ezsidmv.dat [56]
[MD5.7A0434898C693FE835A9BAE86946C254] [SPRF][30/09/2013] (...) -- C:\ProgramData\nvModes.dat [32156]
[MD5.EC43C1B46B9E9A5A9FF5CF0B20910CA7] [SPRF][26/03/2010] (...) -- C:\Users\Jennifer\AppData\Local\d3d8caps.dat [552]
[MD5.655FAA4BD22978B419A991CB00ACA4D0] [SPRF][29/09/2013] (...) -- C:\Users\Jennifer\AppData\Local\d3d9caps.dat [7592]
[MD5.75D53F51D4928811096ABB6E2675AE55] [SPRF][1/03/2010] (...) -- C:\Users\Jennifer\AppData\Local\lcifebsx.bat [93]
[MD5.B9B0ABB41ABA16E2562B261F5F9D9323] [SPRF][27/08/2009] (...) -- C:\Users\Jennifer\AppData\Roaming\init.dll [701]
[MD5.B9B0ABB41ABA16E2562B261F5F9D9323] [SPRF][10/09/2009] (...) -- C:\Users\Jennifer\AppData\Roaming\sound.dll [701]
[MD5.11131A291823134CFB0092926438DAA1] [SPRF][11/09/2009] (...) -- C:\Users\Jennifer\AppData\Roaming\SYSTEM32.dll [6]
[MD5.93102F4766C7001734AE0244CDFE32CF] [SPRF][28/09/2010] (.Total Immersion - D'Fusion @Home Web Plug-In Installer.) -- C:\Windows\Downloaded Program Files\DFusionHomeWebPlugIn.Installer.exe [815576]
~ Files: 15 Legitimates Filtered in 00mn 03s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "{ECF3FB16-4B40-4AFA-B77A-E4332E0339BD}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\RelevantKnowledge\rlvknlg.exe (.not file.) =>Adware.RelevantKnowledge
O87 - FAEL: "{AD1E3B73-54A0-44E1-99EC-DA08E2A60178}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\RelevantKnowledge\rlvknlg.exe (.not file.) =>Adware.RelevantKnowledge
O87 - FAEL: "TCP Query User{A3A562F4-C884-4DFE-B664-E75FFEB0DB50}C:\program files\relevantknowledge\rlvknlg.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\relevantknowledge\rlvknlg.exe (.not file.) =>Adware.RelevantKnowledge
O87 - FAEL: "UDP Query User{0EE54A66-F00C-410E-9E6F-1071C17A8094}C:\program files\relevantknowledge\rlvknlg.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\relevantknowledge\rlvknlg.exe (.not file.) =>Adware.RelevantKnowledge
~ Firewall: 216 Legitimates Filtered in 00mn 02s



---\\ Enum�re les codes produits des logiciels (PUC) (O90)
O90 - PUC: "6CB8D6F663ECB39499F640DCC8CC538A" . (.Bing Bar.) -- C:\Windows\Installer\{6F6D8BC6-CE36-493B-996F-04CD8CCC35A8}\icon_installer_ico =>Toolbar.Bing
~ Update Products: 108 Legitimates Filtered in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.9B589A07DFD629A308884D576F7C3C7D] [WIS][10/01/2009] (.NewTech Infosystems - Media Maker.) -- C:\Windows\Installer\149cbf.msi [2836480]
~ WIS: 111 Legitimates Filtered in 00mn 07s



---\\ Etat g�n�ral des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Disabled 18/03/2010 113152 | (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
SS - | Disabled 23/09/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Disabled 18/03/2008 13312 | (AgereModemAudio) . (.Agere Systems.) - C:\Windows\system32\agrsmsvc.exe
SS - | Demand 15/03/2011 183560 | (BBSvc) . (.Microsoft Corporation..) - C:\Program Files\Microsoft\BingBar\BBSvc.exe
SS - | Disabled 3/03/2008 16384 | (BUNAgentSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
SS - | Disabled 16/01/2008 81504 | (CLHNService) . (...) - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
SS - | Disabled 4/03/2008 500784 | (eDataSecurity Service) . (.Egis Incorporated.) - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
SS - | Disabled 21/03/2008 24576 | (ETService) . (...) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
SS - | Disabled 18/06/2012 116648 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Disabled 18/06/2012 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Disabled 20/07/2008 354840 | (IAANTMON) . (.Intel Corporation.) - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
SS - | Disabled 3/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SS - | Disabled 17/01/2007 61440 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
SS - | Disabled 7/10/2009 154136 | (LVPrcSrv) . (.Logitech Inc..) - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
SR - | Auto 17/11/2006 104000 | (McAfeeFramework) . (.McAfee, Inc..) - C:\Program Files\McAfee\Common Framework\FrameworkService.exe
SS - | Disabled 6/12/2007 110592 | (MobilityService) . (...) - C:\Acer\Mobility Center\MobilityService.exe
SS - | Disabled 6/04/2008 50424 | (NTIBackupSvc) . (.NewTech InfoSystems, Inc..) - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
SS - | Disabled 4/04/2008 131072 | (NTISchedulerSvc) . (...) - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
SS - | Disabled 29/12/2008 203296 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe
SS - | Disabled 9/01/2007 272024 | (RichVideo) . (...) - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
SR - | Auto 15/03/2011 249648 | (SeaPort) . (.Microsoft Corporation.) - C:\Program Files\Microsoft\BingBar\SeaPort.exe
SS - | Disabled 2/06/2009 637952 | (ServiceLayer) . (.Nokia..) - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
SS - | Auto 10/07/1658 0 | (SkypeUpdate) . (...) - C:\Program Files\Skype\Updater\Updater.exe
SS - | Auto 21/01/2008 21504 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 21/01/2008 21504 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 9/05/2008 61424 | ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) . (.Cyberlink Corp..) - C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl
~ Services: Scanned in 00mn 08s



---\\ Scan Additionnel (O88)
Database Version : 12932 - (2/10/2013)
Cl�s trouv�es (Keys found) : 17
Valeurs trouv�es (Values found) : 1
Dossiers trouv�s (Folders found) : 1
Fichiers trouv�s (Files found) : 3

[HKLM\Software\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde] =>Toolbar.DeltaSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\TBSB07183.TBSB07183Toolbar] =>PUP.FbSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\lcifebsx] =>Adware.Favorit^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5B63A470-9334-44D1-AF61-6CE2DB565AE9}] =>PUP.Convesoft
[HKCU\Software\Antimalware Doctor Inc] =>Rogue.Multiple
[HKCU\Software\DC3_FEXEC] =>Trojan.Fynloski
[HKCU\Software\fcn] =>Rogue.Multiple
[HKCU\Software\live-player] =>Adware.Navipromo
[HKLM\Software\live-player] =>Adware.Navipromo
[HKLM\Software\Classes\Installer\Features\074A36B543391D44FA16C62EBD65A59E] =>PUP.Convesoft
[HKLM\Software\Classes\Installer\Products\074A36B543391D44FA16C62EBD65A59E] =>PUP.Convesoft
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\074A36B543391D44FA16C62EBD65A59E] =>PUP.Convesoft
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity
[HKLM\Software\Classes\CLSID\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] =>Toolbar.eDataSecurity
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\TBSB07183.TBSB07183Toolbar] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011441179}] =>PUP.CrossRider
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{8dcb7100-df86-4384-8842-8fa844297b3f} =>Toolbar.Bing^
C:\Program Files\Convesoft =>PUP.Convesoft^
C:\Users\Jennifer\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde =>Toolbar.DeltaSearch^
C:\Program Files\Microsoft\BingBar\BingExt.dll =>Toolbar.Bing^
C:\Windows\Installer\{6F6D8BC6-CE36-493B-996F-04CD8CCC35A8}\icon_installer_ico =>Toolbar.Bing^
~ Additionnel Scan: 308208 Items scanned in 00mn 39s



---\\ R�capitulatif des d�tections trouv�es sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/33216982-hijacker-searchgol =>Hijacker.SearchGol
~ http://nicolascoolman.webs.com/apps/blog/show/27875657-toolbar-deltasearch =>Toolbar.DeltaSearch
~ http://nicolascoolman.webs.com/apps/blog/show/31536787-toolbar-bing =>Toolbar.Bing
~ http://nicolascoolman.webs.com/apps/blog/show/32979753-pup-bitguard =>PUP.BitGuard
~ http://nicolascoolman.webs.com/apps/blog/show/26753274-adware-expressfiles =>Adware.ExpressFiles
~ http://nicolascoolman.webs.com/apps/blog/show/27629963-pup-fbsearch =>PUP.Fbsearch
~ http://nicolascoolman.webs.com/apps/blog/show/29439557-adware-favorit =>Adware.Favorit
~ http://nicolascoolman.webs.com/apps/blog/show/32240257-trojan-fynloski =>Trojan.Fynloski
~ http://nicolascoolman.webs.com/apps/blog/show/31039710-pup-convesoft =>PUP.Convesoft
~ http://nicolascoolman.webs.com/apps/blog/show/28085716-pup-startsearch =>PUP.StartSearch
~ http://nicolascoolman.webs.com/apps/blog/show/27456165-adware-relevantknowledge =>Adware.RelevantKnowledge
~ http://nicolascoolman.webs.com/apps/blog/show/27191871-adware-navipromo =>Adware.Navipromo
~ http://nicolascoolman.webs.com/apps/blog/show/27583526-pup-crossrider =>PUP.CrossRider
~ MSI: 13 link(s) detected in 00mn 39s



~ 1356 Legitimates filtered by white list
End of the scan (529 lines in 03mn 23s)(0)

Publicité


Signaler le contenu de ce document

Publicité