cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2014.4.11.17 - Nicolas Coolman (11/04/2014)
~ Lancé par seb (11/04/2014 13:43:26)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Activée par le programme
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 28.0 (Defaut)
GCIE: Google Chrome v31.0.1650.57

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Vista (TM) Home Premium, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Windows Operating System - Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : RPFFV
Windows License : OK
Windows Automatic Updates : OK

---\\ Logiciels de protection du système
avast! Free Antivirus v9.0.2016
Malwarebytes Anti-Malware version 1.75.0.1300

---\\ Logiciels d'optimisation du système
CCleaner v2.28 =>.Piriform Ltd

---\\ Logiciels de partage PeerToPeer
eMule

---\\ Surveillance de Logiciels
Adobe Flash Player 12 Plugin
Adobe Reader X
Java 7 Update 51

---\\ Informations sur le système
~ Processor: x86 Family 6 Model 23 Stepping 6, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3070 MB (55% free)
System Restore: Désactivé (Disabled)
System drive C: has 41 GB (27%) free of 149 GB

---\\ Mode de connexion au système
~ Computer Name: PC-DE-SEB
~ User Name: seb
~ All Users Names: seb, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\seb\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\seb\AppData\Roaming\
~ %Desktop% : C:\Users\seb\Desktop\
~ %Favorites% : C:\Users\seb\Favorites\
~ %LocalAppData% : C:\Users\seb\AppData\Local\
~ %StartMenu% : C:\Users\seb\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 41 Go of 149 Go)
D: Hard drive, Flash drive, Thumb drive (Free 117 Go of 139 Go)
E: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowPrinters: Modified
~ Security Center: 50 Legitimates Filtered in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 07:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:23:42.) -- C:\Windows\System32\Wininit.exe [96768]
[MD5.62077F806BC59CBD5A404338D710D133] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.08/03/2014 - 00:02:07.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 07:28:13.) -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 14:58:27.) -- C:\Windows\system32\Drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 07:32:26.) -- C:\Windows\system32\Drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:23:51.) -- C:\Windows\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 05:39:17.) -- C:\Windows\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 15:59:03.) -- C:\Windows\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 05:42:42.) -- C:\Windows\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:23:20.) -- C:\Windows\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:24:25.) -- C:\Windows\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:24:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 05:45:37.) -- C:\Windows\system32\Drivers\netBT.sys [185856]
[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.03/03/2013 - 20:07:52.) -- C:\Windows\system32\Drivers\ntfs.sys [1082232]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 03:24:55.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:23:01.) -- C:\Windows\system32\Drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 05:45:22.) -- C:\Windows\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 05:45:56.) -- C:\Windows\system32\Drivers\tdx.sys [72192]
[MD5.786DB5771F05EF300390399F626BF30A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/08/2012 - 12:47:42.) -- C:\Windows\system32\Drivers\volsnap.sys [224640]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/3448
~ Mes musiques (My Musics) : 2/930
~ Mes Videos (My Videos) : 1/45
~ Mes Favoris (My Favorites) : 1/75
~ Mes Documents (My Documents) : 0/6206
~ Mon Bureau (My Desktop) : 0/1949
~ Menu demarrer (Programs) : 1/49
~ Hidden Files: Scanned in 00mn 09s



---\\ Processus lancés
[MD5.F4DCD4912B185C3AAEB92A7040832AD1] - (.Pas de propriétaire - ALU.) -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe [51768] [PID.2508]
[MD5.38595C19227D211B5A0932F6609A6C32] - (.ASUS - SmartLogon Application.) -- C:\Program Files\ASUS\SmartLogon\sensorsrv.exe [297528] [PID.2516]
[MD5.FE08498CD5D4FDCA970F6AC5EA20DED0] - (.Elex do Brasil Participações Ltda - YACTray.) -- C:\Program Files\iSafe\iSafeTray.exe [748712] [PID.2572] =>Trojan.Staser
[MD5.F979E2139F2DD221ECB8506EEAC9931F] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10996368] [PID.3092]
[MD5.4BFA1849DC7AA3CB99C160D9EB96C67B] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [3854640] [PID.3100]
[MD5.A0DB47CA97B27273C8DC472FBFAD8FF7] - (.Bose Corporation - SoundTouch Music Server.) -- C:\Program Files\SoundTouch\SoundTouchMusicServer\SoundTouch music server.exe [1323008] [PID.3108]
[MD5.BF08674925F151BD4537B89A493E3E0C] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe [125952] [PID.3124]
[MD5.B359E8976725CC3F045984851EB90284] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [1821984] [PID.3368]
[MD5.05C5CBE5C0C26EFF48AF60639F30F4F5] - (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2279712] [PID.1628]
[MD5.0F4195B9B348DE5CF9B822F81704B20E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376] [PID.2836]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.4960]
[MD5.8E556A72D54F7E3B7844AB9217F02DD7] - (.Mozilla Corporation - Firefox.) -- c:\program files\mozilla firefox\firefox.exe [275568] [PID.5632]
[MD5.909053C7518E06DED23E90054F7E809C] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8209920] [PID.5416]
[MD5.2784C071EC57DCDBA6D4A2A017F56CD4] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 320.4.) -- C:\Windows\system32\nvvsvc.exe [640288] [PID.1000]
[MD5.98C7BB03487099A053B904651A1DA197] - (.Elex do Brasil Participações Ltda - iSafeSvc.) -- C:\Program Files\iSafe\iSafeSvc.exe [117928] [PID.1180] =>Trojan.Staser
[MD5.1A964980917A1469C5126280871CB277] - (.Elex do Brasil Participações Ltda - iSafeSvc2.) -- C:\Program Files\iSafe\iSafeSvc2.exe [118056] [PID.1272] =>Trojan.Staser
[MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.1512]
[MD5.C5FE9DDA1A982FC3CBA26BB80EDDAE8A] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [875296] [PID.1592]
[MD5.609A6F49B6AF0F25837F8A0EDDDB0745] - (.Pas de propriétaire - ADSMSrv.) -- C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe [73728] [PID.1924]
[MD5.5A055A4777CBBC8845DD598CB2EEBF69] - (.Pas de propriétaire - ASLDR Service.) -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe [94208] [PID.1940]
[MD5.7C157574A181B19B9DCF5F339E25337E] - (.Pas de propriétaire - GFNEXSrv.) -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208] [PID.1992]
[MD5.BEA8D0FA8805CC2E6BB49728166699C7] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [50344] [PID.2040]
[MD5.23C3A0680042C0D1DE1F360F8B62BC57] - (.Microsoft Corporation - Infrastructure d'extensibilité pour les ser.) -- C:\Windows\system32\WLANExt.exe [74240] [PID.336]
[MD5.B362181ED3771DC03B4141927C80F801] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [65432] [PID.2324]
[MD5.A6B41F3044B2C099BBB5531CAA0551D5] - (.Canal+ Active - CanalPlus.VOD.Service.) -- C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe [188416] [PID.2488]
[MD5.83D3FB3D5649B92FAC8B73BCB32F82B5] - (.ATK0100 - HControl.) -- C:\Program Files\ATK Hotkey\Hcontrol.exe [233472] [PID.2580]
[MD5.8192CC6303ACA5BE84CBB7E7B323A0E9] - (.Pas de propriétaire - MsgTranAgt.) -- C:\Program Files\ATK Hotkey\MsgTranAgt.exe [106496] [PID.2588]
[MD5.BADBC0E13D7BD5B5E09324587041D8C9] - (.Pas de propriétaire - Wireless Console 2.) -- C:\Program Files\Wireless Console 2\wcourier.exe [1040384] [PID.2604]
[MD5.D142CB37F10ACF08E68D9A4A21E29059] - (.ASUS - ASPG application.) -- C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe [154168] [PID.2612]
[MD5.A8B7C92051FBF125D0907DE7CAABF342] - (.ATK - Power4Gear eXtreme.) -- C:\Program Files\P4G\BatteryLife.exe [191032] [PID.2624]
[MD5.8060AABB3722E360BDF17867A7BF7CEA] - (.ATK - ACMON.) -- C:\Program Files\ASUS\Splendid\ACMON.exe [851968] [PID.2632]
[MD5.A391896CD406E6377F5CEF31FDC12019] - (.ASUSTeK - ACEngSvr Module.) -- C:\Windows\System32\ACEngSvr.exe [155648] [PID.2708]
[MD5.CAF3BADEBBD50CAC421FB09AE80B6A56] - (.Pas de propriétaire - ATKOSD.) -- C:\Program Files\ATK Hotkey\ATKOSD.exe [2486272] [PID.2804]
[MD5.1F7BACA7D1DD1B3D73B4C3934148FAD3] - (.Devguru Co., Ltd. - Device Error Recovery SDK(x86).) -- C:\Windows\system32\dgdersvc.exe [95568] [PID.2880]
[MD5.7BBC817DDC46A9D5413CB91764E889E8] - (.Pas de propriétaire - KBFiltr Application.) -- C:\Program Files\ATK Hotkey\KBFiltr.exe [106496] [PID.2904]
[MD5.0796C1E47ADB9825269E64B9DAB4E741] - (.Teruten - FsUsbDevice.) -- C:\Windows\system32\FsUsbExService.exe [233472] [PID.2928]
[MD5.D3917821614CF44F8658B74DAFC59520] - (.Pas de propriétaire - WDC Application.) -- C:\Program Files\ATK Hotkey\WDC.exe [151552] [PID.2940]
[MD5.F08D9F81ED9A632A3E52BBDD0B8AECE3] - (.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe [1867600] [PID.3076]
[MD5.1C7C6D7481CABD4EF38A81F5B68F02E8] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304] [PID.3152]
[MD5.43079EC16722CBE9CE26D99CFB58B55B] - (.Clarus, Inc. - SZDrvSvc.) -- C:\Program Files\Clarus\Samsung Drive Manager\SZDrvSvc.exe [19456] [PID.3532]
~ Processes Running: Scanned in 00mn 01s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\seb\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] http://www.google.com
G0 - GCSP: Preference [User Data\Default][HomePage] about:blank
G2 - GCE: Preference [User Data\Default] [gaohomgkplmekmskucbkoskmmpgpmjgl] Websteroids v.2.6.49 (Activé) =>PUP.TubeDimmer
G2 - GCE: Preference [User Data\Default] [pbpohikckhbcljgombipcdoinkaedlfa] Smart Display v.1.7, (Activé) =>Spyware.SmartDisplay
G2 - GCE: Preference [User Data\Default] [pelmeidfhdlhlbjimpabfcbnnojbboma] Quick Start v.3.2.0, (Activé) =>PUP.QuickStart

---\\ Liste des dossiers d'extension Google Chrome

~ Google Lines Browser: 18 Legitimates Filtered in 00mn 02s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\seb\AppData\Roaming\Mozilla\Firefox\Profiles\6c6t8mk5.default\prefs.js
C:\Users\seb\AppData\Roaming\Mozilla\Firefox\Profiles\6c6t8mk5.default\user.js
C:\Users\seb\AppData\Roaming\Mozilla\Firefox\Profiles\t7og9jve.default-1381158163521\prefs.js
C:\Users\seb\AppData\Roaming\Mozilla\Firefox\Profiles\t7og9jve.default-1381158163521\user.js
M3 - MFPP: Plugins - [seb] -- C:\Users\seb\AppData\Roaming\Mozilla\Firefox\Profiles\6c6t8mk5.default\searchplugins\Mysearchdial.xml =>Adware.MyWebSearch
M3 - MFPP: Plugins - [seb] -- C:\Users\seb\AppData\Roaming\Mozilla\Firefox\Profiles\t7og9jve.default-1381158163521\searchplugins\buenosearch.xml =>PUP.BuenoSearch
M0 - MFSP: prefs.js [seb - t7og9jve.default-1381158163521] about:blank
P2 - FPN:Firefox Plugin Navigator . (.Pas de propriétaire - npsnapfish.) -- C:\Program Files\Mozilla Firefox\Plugins\npsnapfish.dll
P2 - FPN: [HKLM] [@tools.Software.com/Software Update;version=3] - (.The Software Group - Software Update.) -- C:\Program Files\Software\Update\1.3.25.0\npSoftwareUpdate3.dll =>Adware.Boxore
P2 - FPN: [HKLM] [@tools.Software.com/Software Update;version=9] - (.The Software Group - Software Update.) -- C:\Program Files\Software\Update\1.3.25.0\npSoftwareUpdate3.dll =>Adware.Boxore
P2 - FPN: [HKLM] [@virtools.com/3DviaPlayer] - (...) -- C:\Program Files\Virtools\3D Life Player\npvirtools.dll (.not file.)
~ Firefox Browser: 37 Legitimates Filtered in 00mn 01s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com =>Hijacker.WebsSearches
~ IE Browser: 13 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: eMule.lnk . (.http://www.emule-project.net - eMule.) -- C:\Program Files\eMule\emule.exe
O4 - GS\Desktop [Public]: InfraRecorder.lnk . (.Christian Kindahl - InfraRecorder.) -- C:\Program Files\InfraRecorder\infrarecorder.exe
O4 - GS\Desktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\Desktop [Public]: MP Navigator EX 2.0.lnk . (.CANON INC. - MP Navigator EX.) -- C:\Program Files\Canon\MP Navigator EX 2.0\mpnex20.exe
O4 - GS\Desktop [Public]: My Printer.lnk . (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.exe
O4 - GS\Desktop [Public]: OpenOffice 4.0.1.lnk . (.Apache Software Foundation - OpenOffice 4.0.1.) -- C:\Program Files\OpenOffice 4\program\soffice.exe
O4 - GS\Desktop [Public]: SoundTouch.lnk . (.Bose Corporation - SoundTouch Application.) -- C:\Program Files\SoundTouch\SoundTouch.exe
O4 - GS\Desktop [Public]: YAC.lnk . (.Elex do Brasil Participações Ltda - iStart.) -- C:\Program Files\iSafe\iStart.exe =>Trojan.Staser
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\QuickLaunch [seb]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [seb]: InfraRecorder.lnk . (.Christian Kindahl - InfraRecorder.) -- C:\Program Files\InfraRecorder\infrarecorder.exe
O4 - GS\QuickLaunch [seb]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [seb]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\QuickLaunch [seb]: MSN.lnk . (...) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.)
O4 - GS\QuickLaunch [seb]: XnView.lnk . (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files\XnView\xnview.exe
O4 - GS\Program [seb]: Crédit Mutuel.lnk . (.Microsoft Corporation - Microsoft Silverlight Out-of-Browser Launch.) -- C:\Program Files\Microsoft Silverlight\sllauncher.exe
O4 - GS\Program [seb]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Program [seb]: Lollipop.lnk . (...) -- C:\Users\seb\AppData\Local\Lollipop\Lollipop.exe (.not file.) =>Adware.Lollipop
O4 - GS\SystemTools [seb]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com =>Hijacker.WebsSearches
O4 - GS\Desktop [seb]: BMW M3 Challenge.lnk . (...) -- C:\BMW M3 Challenge\BMW.exe (.not file.)
O4 - GS\Desktop [seb]: Casino 770.lnk . (.Global Interactive Marketing Online - Casino770Updater.) -- C:\Casino770\Casino770.exe
O4 - GS\Desktop [seb]: Crédit Mutuel.lnk . (.Microsoft Corporation - Microsoft Silverlight Out-of-Browser Launch.) -- C:\Program Files\Microsoft Silverlight\sllauncher.exe
O4 - GS\Desktop [seb]: MPC-HC.lnk . (.MPC-HC Team - MPC-HC.) -- C:\Program Files\MPC-HC\mpc-hc.exe
O4 - GS\Desktop [seb]: XnView.lnk . (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files\XnView\xnview.exe
~ Global Startup: 85 Legitimates Filtered in 00mn 01s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
O4 - HKLM\..\Run: [fst_fr_125] Clé orpheline =>PUA.FSTfr9
O4 - HKLM\..\Run: [stv_fr_2] Clé orpheline
O4 - HKLM\..\Run: [SoundTouch Music Server] . (.Bose Corporation - SoundTouch Music Server.) -- C:\Program Files\SoundTouch\SoundTouchMusicServer\SoundTouch music server.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKUS\.DEFAULT\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] Clé orpheline
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] Clé orpheline
O4 - HKUS\S-1-5-21-549229800-2313244492-1149451891-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-549229800-2313244492-1149451891-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
~ Application: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{B9758D57-A313-4A87-B41A-0197B35B08C8}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{B9758D57-A313-4A87-B41A-0197B35B08C8}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{B9758D57-A313-4A87-B41A-0197B35B08C8}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{B9758D57-A313-4A87-B41A-0197B35B08C8}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll
~ STS/SSO: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ADSM Service (ADSMService) . (.Pas de propriétaire - ADSMSrv.) - C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: ASLDR Service (ASLDRService) . (.Pas de propriétaire - ASLDR Service.) - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: iSafeService (iSafeService) . (.Elex do Brasil Participações Ltda - iSafeSvc.) - C:\Program Files\iSafe\iSafeSvc.exe =>Trojan.Staser
O23 - Service: Samsung Drive Manager Service (SZDrvSvc) . (.Clarus, Inc. - SZDrvSvc.) - C:\Program Files\Clarus\Samsung Drive Manager\SZDrvSvc.exe
~ Services: 14 Legitimates Filtered in 00mn 04s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Desktop General: BackupWallPaper - .(...) - C:\Windows\web\wallpaper\img24.jpg
O24 - Desktop General: WallPaper - .(...) - C:\Windows\web\wallpaper\img24.jpg
~ Desktop Component: 4 Legitimates Filtered in 00mn 00s



---\\ Clés Session Manager (AppCertDlls,KnownDLLs) (O36)
O36 - AppCertDlls: (x86) . (...) -- C:\Program Files\Movies Toolbar\SafetyNut\safetycrt.dll =>PUP.MoviesToolbar
O36 - AppCertDlls: (x64) . (...) -- c:\program files\movies toolbar\safetynut\x64\safetycrt.dll =>PUP.MoviesToolbar
~ Keys: Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\MySearchDial.job [284] =>Adware.MyWebSearch
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job [900]
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (...) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [BoxSoftwareUpdate] (...) -- C:\ProgramData\BoxUpdChk\updchk.exe (.not file.) [0] =>Adware.Boxore
[MD5.00000000000000000000000000000000] [APT] [MySearchDial] (...) -- C:\Users\seb\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.exe (.not file.) [0] =>Adware.MyWebSearch
[MD5.00000000000000000000000000000000] [APT] [PrivacyDR_Popup] (...) -- C:\Program Files\Privacy DR\Splash.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [PrivacyDR_Start] (...) -- C:\Program Files\Privacy DR\PrivacyDR.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [SoftwareUpdateTaskMachineUA] (...) -- C:\Program Files\Software\Update\SoftwareUpdate.exe (.not file.) [0] =>Adware.Boxore
[MD5.00000000000000000000000000000000] [APT] [SomotoUpdateCheckerAutoStart] (...) -- C:\Users\seb\AppData\Local\FilesFrog Update Checker\update_checker.exe (.not file.) [0] =>Adware.MegaSearch
[MD5.00000000000000000000000000000000] [APT] [{1F767527-D899-4025-B62A-1B0A570C12FC}] (...) -- C:\Users\seb\Downloads\wmp11-windowsxp-x86-FR-FR.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{29572FD4-C06F-4E56-801F-35E5594905AF}] (...) -- c:\Users\seb\T?l?chargements\eMule0.50a-Installer.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{314B59D7-F193-46CA-8BA6-7006B6EA6540}] (...) -- C:\Users\seb\Downloads\mp10setup.exe (.not file.) [0]
[MD5.23A458E8EB269A71A29ADA0CB3E22E65] [APT] [{43E613C9-AA3D-44B0-A3EE-A9864B35186E}] (.MindVision.) -- C:\Windows\unvise32qt.exe [86016]
[MD5.00000000000000000000000000000000] [APT] [{C8ED11B7-9275-45BF-B06C-31ADCD8D9C6D}] (...) -- C:\Users\seb\Downloads\nzd_FroggySetup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{CBFC3B26-41E6-429E-8C56-D86134665565}] (...) -- C:\Users\seb\T‚l‚chargements\eMule0.50a-Installer.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{D7F449D4-ED51-41B1-A15F-2A264EBB5AB9}] (...) -- C:\Users\seb\Downloads\eMule0.50a-Installer.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{F4498523-9F84-4B67-95C5-EC8D74D7CF9A}] (...) -- C:\Users\seb\Downloads\mp3gain_mp3gain_1.2.5_francais_10867.exe (.not file.) [0]
~ Scheduled Task: 29 Legitimates Filtered in 00mn 02s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: (iSafeNetFilter) . (.Elex do Brasil Participações Ltda - iSafeNetFilter SDK TDI Hook Driver (WPP).) - C:\Program Files\iSafe\iSafeNetFilter.sys =>Trojan.Staser
~ Drivers: 88 Legitimates Filtered in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM] -- {4C6F4EE5-F42F-4288-B970-2B5FAD1D85BD} =>Adware.Boxore
O42 - Logiciel: Casino 770 - (.Global Interactive Limited.) [HKCU] -- Casino 770
O42 - Logiciel: SoundTouch - (.BOSE.) [HKLM] -- {CD307C28-1559-4F72-89E0-23EF94C553E2}
O42 - Logiciel: YAC - (.ELEX DO BRASIL PARTICIPAÇÕES LTDA.) [HKLM] -- iSafe =>Trojan.Staser
~ Logic: 8 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Boxore] =>Adware.Boxore
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\ELIGCHK]
[HKCU\Software\Filseclab]
[HKCU\Software\IncrediMail]
[HKCU\Software\LC Technology]
[HKCU\Software\OB]
[HKCU\Software\PrivacyDRLanguage]
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Somoto] =>Adware.MegaSearch
[HKCU\Software\SoundTouch]
[HKCU\Software\TutoTag] =>AgenceExclusive
[HKCU\Software\freesofttoday] =>Adware.FreeSoftToday
[HKCU\Software\lollipop] =>Adware.Lollipop
[HKLM\Software\Filseclab]
[HKLM\Software\SoundTouchMusic]
[HKLM\Software\Toolbar Cleaner] =>Adware.ToolbarCleaner
[HKLM\Software\Tutorials] =>AgenceExclusive
[HKLM\Software\Wellala]
[HKLM\Software\anset]
[HKLM\Software\supTab] =>PUP.SupTab
[HKLM\Software\supWPM] =>PUP.WpManager
~ Key Software: 360 Legitimates Filtered in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 04/04/2014 - 10:39:34 - [0,925] ----D C:\Program Files\Boxore =>Adware.Boxore
O43 - CFD: 20/07/2012 - 07:19:42 - [4,507] ----D C:\Program Files\GUM6DA5.tmp
O43 - CFD: 29/08/2012 - 23:55:28 - [0,141] ----D C:\Program Files\Heimdall
O43 - CFD: 11/04/2014 - 13:33:43 - [226,737] ----D C:\Program Files\iSafe =>Trojan.Staser
O43 - CFD: 07/04/2014 - 12:02:31 - [0] ----D C:\Program Files\PlurPush
O43 - CFD: 07/04/2014 - 20:24:12 - [100,437] ----D C:\Program Files\SoundTouch
O43 - CFD: 16/03/2014 - 14:41:11 - [0] ----D C:\Program Files\Uninstaller
O43 - CFD: 17/03/2014 - 11:40:00 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 01/10/2011 - 17:48:40 - [0] ----D C:\ProgramData\IM
O43 - CFD: 01/10/2011 - 17:46:45 - [0,009] ----D C:\ProgramData\IncrediMail
O43 - CFD: 07/04/2014 - 14:26:43 - [0] ----D C:\ProgramData\WPM =>PUP.WpManager
O43 - CFD: 06/01/2014 - 23:57:26 - [27,641] -SH-D C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
O43 - CFD: 10/04/2014 - 08:56:25 - [7,419] ----D C:\Users\seb\AppData\Roaming\iSafe =>Trojan.Staser
O43 - CFD: 26/07/2013 - 21:11:56 - [0] ----D C:\Users\seb\AppData\Roaming\main
O43 - CFD: 23/03/2014 - 23:14:13 - [0] ----D C:\Users\seb\AppData\Roaming\Mediatronic
O43 - CFD: 07/04/2014 - 20:24:56 - [4,840] ----D C:\Users\seb\AppData\Roaming\SoundTouch
O43 - CFD: 07/04/2014 - 21:14:08 - [0] ----D C:\Users\seb\AppData\Roaming\SoundTouchMusicServer
O43 - CFD: 07/04/2014 - 12:02:30 - [0] ----D C:\Users\seb\AppData\Roaming\SupTab =>PUP.SupTab
O43 - CFD: 15/03/2014 - 19:19:56 - [0] ----D C:\Users\seb\AppData\Roaming\ValueApps =>Toolbar.Conduit
O43 - CFD: 04/04/2014 - 10:35:36 - [0,282] ----D C:\Users\seb\AppData\Local\41
O43 - CFD: 16/03/2014 - 11:22:28 - [0,003] ----D C:\Users\seb\AppData\Local\4540
O43 - CFD: 22/11/2013 - 12:44:13 - [0] ----D C:\Users\seb\AppData\Local\AppsHat Mobile Apps =>PUP.CrossRider
O43 - CFD: 04/04/2014 - 10:41:26 - [0,001] ----D C:\Users\seb\AppData\Local\EuroTrade_A.L._Ltd
O43 - CFD: 01/10/2011 - 17:51:38 - [204,247] ----D C:\Users\seb\AppData\Local\IM
O43 - CFD: 22/11/2013 - 13:28:52 - [0] ----D C:\Users\seb\AppData\Local\Minibar =>PUP.Minibar
O43 - CFD: 18/11/2013 - 17:19:41 - [0,004] ----D C:\Users\seb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat =>PUP.CrossRider
O43 - CFD: 19/01/2014 - 22:11:39 - [0] ----D C:\Users\seb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Casino770
~ Program Folder: 311 Legitimates Filtered in 00mn 13s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.D6EEA0E4BA7CCC161FDACD2D4E659D1C] - 04/04/2014 - 13:30:39 ---A- . (...) -- C:\Windows\win.ini [230]
O44 - LFC:[MD5.6927607B980EAE71C9CC49C910CED785] - 07/04/2014 - 19:24:31 ---A- . (...) -- C:\Windows\DPINST.LOG [9678]
O44 - LFC:[MD5.6BCAF46E2B7FA9ACE92B4D39F3037C5C] - 11/04/2014 - 12:30:02 ---A- . (...) -- C:\Windows\System32\acovcnt.exe [45056]
~ Files: 30 Legitimates Filtered in 00mn 01s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.7753392C83F78489578CDBDA96EDFC63] - 07/04/2014 - 13:54:44 ---A- - C:\Windows\Prefetch\ACCASTART.EXE-97F81A11.pf
O45 - LFCP:[MD5.03DB06BA8CD579F3B97182033E23D879] - 07/04/2014 - 13:54:55 ---A- - C:\Windows\Prefetch\DRIVE MANAGER.EXE-17887C34.pf
O45 - LFCP:[MD5.9F7C1A567D364347F380E7EF962A0584] - 07/04/2014 - 13:54:56 ---A- - C:\Windows\Prefetch\SZDRVMON.EXE-3FD2EA6A.pf
O45 - LFCP:[MD5.4845861EBB71EF0061E33EC2DDF4440F] - 07/04/2014 - 19:02:18 ---A- - C:\Windows\Prefetch\CANALPLUS.VOD.EXE-EEBC3AB8.pf
O45 - LFCP:[MD5.E74ADA98024B8092DB926FC486026562] - 07/04/2014 - 19:02:18 ---A- - C:\Windows\Prefetch\DGDERSVC.EXE-D4DF3B32.pf
O45 - LFCP:[MD5.B6DA0DD324AC3C3864FA594D483A6AED] - 07/04/2014 - 19:02:18 ---A- - C:\Windows\Prefetch\FSUSBEXSERVICE.EXE-9369F335.pf
O45 - LFCP:[MD5.CFC0AE0C45718C2D9E3BB8F69AB8EA8F] - 07/04/2014 - 19:02:18 ---A- - C:\Windows\Prefetch\NVNETWORKSERVICE.EXE-2FBFFE7C.pf
O45 - LFCP:[MD5.6C60D5C2D2E5132E6654B0A5804185FD] - 07/04/2014 - 19:02:21 ---A- - C:\Windows\Prefetch\SZDRVSVC.EXE-37425A9C.pf
O45 - LFCP:[MD5.2A72FE81DF219F5743A1917209D7093F] - 07/04/2014 - 19:24:53 ---A- - C:\Windows\Prefetch\SOUNDTOUCH MUSIC SERVER.EXE-2AF5C6EE.pf
O45 - LFCP:[MD5.E6FA2E361AAA1E93C53F4BB9E6ACEA1E] - 07/04/2014 - 20:31:09 ---A- - C:\Windows\Prefetch\WMPCONFIG.EXE-58E757A0.pf
O45 - LFCP:[MD5.57CD2DE18B7056DDAA72A688251AAF28] - 07/04/2014 - 23:17:57 ---A- - C:\Windows\Prefetch\MPNSCAN.EXE-B99953A6.pf
O45 - LFCP:[MD5.DC55B858424FF8A2610D8707432A0773] - 07/04/2014 - 23:24:17 ---A- - C:\Windows\Prefetch\SOUNDTOUCH.EXE-86ED3BAE.pf
O45 - LFCP:[MD5.E921B5040423728D144CEC5327DFE895] - 10/04/2014 - 07:49:40 ---A- - C:\Windows\Prefetch\ASPG.EXE-1AA3848D.pf
O45 - LFCP:[MD5.F1BA1905C0443F52C3B16FB8797CB657] - 10/04/2014 - 07:55:06 ---A- - C:\Windows\Prefetch\DAO.18229956.EXE-D679B7CF.pf
O45 - LFCP:[MD5.DA6403DAD76EEAA9A8452CF5DE382D06] - 10/04/2014 - 07:57:30 ---A- - C:\Windows\Prefetch\CNMSE9D.EXE-B8E8EFDC.pf
O45 - LFCP:[MD5.14A01BC33D9CF7C67F7F63E5BCFCA710] - 11/04/2014 - 10:49:46 ---A- - C:\Windows\Prefetch\AURORA.SCR-082F40F8.pf
O45 - LFCP:[MD5.C3C1B66A9D878E389DED2F473F30D9AF] - 11/04/2014 - 11:39:04 ---A- - C:\Windows\Prefetch\B5520830-96F7-475F-935C-21A19-6D41B9B6.pf
O45 - LFCP:[MD5.C5FE944F6C866CDFD159F654B9F7733A] - 11/04/2014 - 12:14:49 ---A- - C:\Windows\Prefetch\WINDOWS8-UPGRADEASSISTANT.EXE-9C03C648.pf
O45 - LFCP:[MD5.0254FDBFA68641AD92F2E22A98D4DF32] - 11/04/2014 - 12:15:16 ---A- - C:\Windows\Prefetch\WEBPREP.EXE-FBB36BD0.pf
O45 - LFCP:[MD5.FDC4A6126FA3A23080AA03E284213994] - 11/04/2014 - 12:31:05 ---A- - C:\Windows\Prefetch\INSTUP.EXE-52AC782A.pf
O45 - LFCP:[MD5.9DC0A36DD8EF371D747CBC2CC21DF98E] - 11/04/2014 - 12:31:10 ---A- - C:\Windows\Prefetch\NVBACKEND.EXE-F877D819.pf
O45 - LFCP:[MD5.4308CA6DB82F0817F325F193F873DD88] - 11/04/2014 - 12:41:43 ---A- - C:\Windows\Prefetch\DUP.EXE-67FFA8BB.pf
~ Prefetcher: 22 Legitimates Filtered in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - bitguard.exe - tasklist.exe =>PUP.BitGuard
O50 - IFEO:Image File Execution Options - bprotect.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - browsemngr.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - browserdefender.exe - tasklist.exe =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - browsermngr.exe - tasklist.exe =>PUP.Babylon
O50 - IFEO:Image File Execution Options - browserprotect.exe - tasklist.exe =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - bundlesweetimsetup.exe - tasklist.exe =>PUP.SweetIM
O50 - IFEO:Image File Execution Options - delta babylon.exe - tasklist.exe =>PUP.Babylon
O50 - IFEO:Image File Execution Options - delta tb.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - delta2.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - deltainstaller.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - deltasetup.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - deltatb.exe - tasklist.exe =>Toolbar.DeltaSearch
O50 - IFEO:Image File Execution Options - deltatb_2501-c733154b.exe - tasklist.exe =>Toolbar.DeltaSearch
O50 - IFEO:Image File Execution Options - iminentsetup.exe - tasklist.exe =>Adware.IMBooster
O50 - IFEO:Image File Execution Options - rjatydimofu.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - sweetimsetup.exe - tasklist.exe =>PUP.SweetIM
O50 - IFEO:Image File Execution Options - tbdelta.exetoolbar783881609.exe - tasklist.exe
~ IFEO: Scanned in 00mn 00s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\ATKOSD2 [Key] . (.Pas de propriétaire - ATKOSD2.) -- C:\Program Files\ATKOSD2\ATKOSD2.exe
O53 - SMSR:HKLM\...\startupreg\Boxore Client [Key] . (...) -- C:\Program Files\Boxore\BoxoreClient\boxore.exe =>Adware.Boxore
O53 - SMSR:HKLM\...\startupreg\Clarus Drive Manager [Key] . (.Clarus, Inc. - Samsung Drive Manager.) -- C:\Program Files\Clarus\Samsung Drive Manager\Drive Manager.exe
O53 - SMSR:HKLM\...\startupreg\ConduitFloatingPlugin_lcnnhcneegeeojhgpfijnlnocjdmlaon [Key] . (...) -- C:\Users\seb\AppData\Roaming\ValueApps\CH\TBVerifier.dll (.not file.) =>Toolbar.Conduit
O53 - SMSR:HKLM\...\startupreg\FLV Player [Key] . (...) -- C:\Users\seb\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe (.not file.) =>Adware.SocialSkinz
O53 - SMSR:HKLM\...\startupreg\NextLive [Key] . (...) -- C:\Users\seb\AppData\Roaming\newnext.me\nengine.dll (.not file.) =>PUP.NextLive
O53 - SMSR:HKLM\...\startupreg\ZapWallPaper-Classic [Key] . (...) -- C:\Program Files\ZapWallPaper\ZapWallPaper-Classic.exe (.not file.)
~ SMSR Keys: 41 Legitimates Filtered in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
~ MWPS: 19 Legitimates Filtered in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
~ MWPE Keys: 3 Legitimates Filtered in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.4385E371C25C94C804E9D3152BD9E1F7] - 11/08/2007 - 04:19:26 ---A- . (.Windows (R) Codename Longhorn DDK provider - Data Security Manager Driver.) -- C:\Windows\System32\Drivers\AsDsm.sys [29752]
O58 - SDL:[MD5.84B4C00AE8CDFC52CF68F322D821F34C] - 27/03/2014 - 07:44:45 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [49944]
O58 - SDL:[MD5.680448905E27BBC6587ADB28597640D6] - 27/03/2014 - 07:44:45 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [180760]
O58 - SDL:[MD5.97AFFA9D95FFE20EEE6229BC6BE166CF] - 15/12/2006 - 08:11:57 ---A- . (.ATK0100 - ATK0100 ACPI Utility.) -- C:\Windows\System32\Drivers\ATKACPI.sys [7680]
O58 - SDL:[MD5.6216FD7FD227DE454238A702B218CEC7] - 18/04/2013 - 18:06:08 ---A- . (.Devguru Co., Ltd - Device Error Recovery SDK(x86).) -- C:\Windows\System32\Drivers\dgderdrv.sys [20032]
O58 - SDL:[MD5.23B62471681A124889978F6295B3F4C6] - 21/01/2008 - 03:23:22 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [342584]
O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\Drivers\iteatapi.sys [35944]
O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\Drivers\iteraid.sys [35944]
O58 - SDL:[MD5.27BD4AC228EF6C0D490617C32E86A672] - 03/06/2008 - 22:41:51 ---A- . (.Pas de propriétaire - Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\kbfiltr.sys [15928]
O58 - SDL:[MD5.86F4C6BB7E50E178DF08E747EC5C18C3] - 06/11/2010 - 13:11:12 ---A- . (.http://libusb-win32.sourceforge.net - LibUSB-Win32 - Kernel Driver.) -- C:\Windows\System32\Drivers\libusb0.sys [35008]
O58 - SDL:[MD5.8039F480C192DD99FED4EBC71FFBF795] - 29/05/2008 - 18:21:02 ---A- . (.Windows (R) Codename Longhorn DDK provider - ASUS CopyProtect driver.) -- C:\Windows\System32\Drivers\lullaby.sys [15416]
O58 - SDL:[MD5.C6D085C7045200143528136A43A65FDE] - 14/01/2008 - 11:06:32 ---A- . (.ManyCam LLC. - ManyCam Virtual Webcam, WDM Video Capture Driver.) -- C:\Windows\System32\Drivers\ManyCam.sys [21632]
O58 - SDL:[MD5.C35CA13D3627EBD9DD12A23CE781BC3D] - 09/08/2007 - 04:42:08 ---A- . (.REDC - RICOH SD Driver.) -- C:\Windows\System32\Drivers\rimmptsk.sys [45568]
O58 - SDL:[MD5.C398BCA91216755B098679A8DA8A2300] - 30/07/2007 - 18:42:58 ---A- . (.REDC - RICOH MS Driver.) -- C:\Windows\System32\Drivers\rimsptsk.sys [43008]
O58 - SDL:[MD5.2A2554CB24506E0A0508FC395C4A1B42] - 30/07/2007 - 19:54:02 ---A- . (.REDC - RICOH XD SM Driver.) -- C:\Windows\System32\Drivers\rixdptsk.sys [38400]
O58 - SDL:[MD5.0057F29323C393A35903B4C5DAF9A144] - 09/05/2007 - 23:16:39 ---A- . (.Pas de propriétaire - USBCAMD for Sonix UVC.) -- C:\Windows\System32\Drivers\sncduvc.sys [28160]
O58 - SDL:[MD5.85DA7B2A2F248C8C69D7D0A526342683] - 01/04/2008 - 23:13:57 ---A- . (.Pas de propriétaire - UVC Camera Streaming Driver.) -- C:\Windows\System32\Drivers\snp2uvc.sys [1807744]
O58 - SDL:[MD5.D720E872772D004E304FCE0CE54E1F8A] - 21/08/2013 - 05:31:38 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudbus.sys [84248]
O58 - SDL:[MD5.A1CC726323FB41FFD29F436A77237E41] - 21/08/2013 - 05:31:38 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudmdm.sys [182680]
O58 - SDL:[MD5.F92254B0BCFCD10CAAC7BCCC7CB7F467] - 28/09/2009 - 20:57:28 ---A- . (...) -- C:\Windows\System32\Drivers\StarOpen.sys [7168]
O58 - SDL:[MD5.9224BB254F591DE4CA8D572A5F0D635C] - 21/01/2008 - 03:23:20 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\Drivers\uliahci.sys [238648]
O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\System32\Drivers\ulsata.sys [98408]
O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 21/01/2008 - 03:23:23 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\System32\Drivers\ulsata2.sys [115816]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:[MD5.DDEE99DC54EFA20BD5A442CD733C4462] - 05/02/2013 - 09:54:40 ---A- . (...) -- C:\Windows\System32\FsUsbExDisk.Sys [37344]
O58 - SDL:[MD5.77EBF3E9386DAA51551AF429052D88D0] - 03/04/1996 - 20:33:26 ---A- . (...) -- C:\Windows\System32\giveio.sys [5248]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
~ Drivers: 19 Legitimates Filtered in 00mn 01s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 10/04/2014 - 13:45:36 ---A- . (...) -- C:\Users\seb\AppData\Roaming\iSafe\ico\284daf5240314e141872b6ce6985cde2.ico [25214] =>Trojan.Staser
O61 - LFC: 10/04/2014 - 13:45:40 ---A- . (...) -- C:\Users\seb\AppData\Roaming\iSafe\ico\ef11e2636c692853304378c4e3c2ef26.ico [147940] =>Trojan.Staser
O61 - LFC: 10/04/2014 - 13:45:40 ---A- . (...) -- C:\Users\seb\AppData\Roaming\iSafe\softmgr.dat [23552] =>Trojan.Staser
O61 - LFC: 10/04/2014 - 13:45:40 ---A- . (...) -- C:\Users\seb\AppData\Roaming\iSafe\startup\2805764698.startup [208] =>Trojan.Staser
O61 - LFC: 11/04/2014 - 13:45:42 ---A- . (...) -- C:\Users\seb\AppData\Roaming\MPC-HC\default.mpcpl [118]
O61 - LFC: 11/04/2014 - 13:46:19 ---A- . (...) -- C:\Users\seb\AppData\Roaming\SoundTouch\SoundTouchMusicServer\SoundTouch Music Library.xml [534616]
O61 - LFC: 11/04/2014 - 13:46:20 ---A- . (...) -- C:\Users\seb\AppData\Roaming\ZHP\Log.txt [92258] =>.Nicolas Coolman
O61 - LFC: 11/04/2014 - 13:46:20 ---A- . (...) -- C:\Users\seb\AppData\Roaming\ZHP\TestsZHPDiag.txt [2765] =>.Nicolas Coolman
O61 - LFC: 11/04/2014 - 13:47:12 ---A- . (...) -- C:\Users\seb\Downloads\Upside.Down.2012.MULTI.3D.1080p.Bluray.Half-SBS.x264.mkv [569689626]
O61 - LFC: 11/04/2014 - 13:47:28 ---A- . (...) -- C:\Users\seb\Recent\Downloads.lnk [494]
O61 - LFC: 11/04/2014 - 13:47:28 ---A- . (...) -- C:\Users\seb\Recent\Monsters.University.3D.Top-Bottom.2013.FRENCH.1080p.BluRay.x264-CARPEDIEM.mkv.part.lnk [1023]
O61 - LFC: 11/04/2014 - 13:47:28 ---A- . (...) -- C:\Users\seb\Recent\Upside.Down.2012.MULTI.3D.1080p.Bluray.Half-SBS.x264.mkv.lnk [893]
~ 27 Fichiers cookies (Cookies files)
~ Files: 924 Legitimates Filtered in 03mn 02s



---\\ Fichiers Alternate Data Stream (ADS) (O62)
O62 - ADS:Alternate Data Stream File - C:\Windows\System32\SpoonUninstall.exe:Zone.Identifier
~ ADS: Scanned in 00mn 01s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 17/03/2014 - C:\Program Files\iSafe\iSafeKrnl.sys (iSafeKrnl) .(.Elex do Brasil Participações Ltda - iSafe Kernel Driver.) - LEGACY_ISAFEKRNL =>Trojan.Staser
O64 - Services: CurCS - 17/03/2014 - C:\Program Files\iSafe\iSafeNetFilter.sys (iSafeNetFilter) .(.Elex do Brasil Participações Ltda - iSafeNetFilter SDK TDI Hook Driver (WPP).) - LEGACY_ISAFENETFILTER =>Trojan.Staser
O64 - Services: CurCS - 21/06/2012 - C:\Program Files\Clarus\Samsung Drive Manager\mdf16.sys (mdf16) .(.Pas de propriétaire - Driver for SecretZone.) - LEGACY_MDF16
O64 - Services: CurCS - 21/06/2012 - C:\Program Files\Clarus\Samsung Drive Manager\mvd23.sys (mvd23) .(.Pas de propriétaire - Virtual Disk Driver for SecretZone.) - LEGACY_MVD23
~ Legacy: 91 Legitimates Filtered in 00mn 01s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- c:\program files\mozilla firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- Chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: prefs.js [seb - 6c6t8mk5.default] user_pref("browser.search.defaultenginename", "Mysearchdial"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.crossrider.bic", "1426bcc8e5da0a0ce048bc76c4eac27f"); =>PUP.CrossRider
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.aflt", "irmsd103"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutDtDtBtAyDyEtCtDyE0FyCtDzz0BtBtDtN0D0Tzu0SyCzzzztN1L2XzutBtFtBtFtCtAtFtCt[...] =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.cntry", "FR"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.cr", "652496511"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.dfltLng", ""); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.dfltSrch", true); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.dnsErr", true); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.dpkLst", "3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497[...] =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.excTlbr", false); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.hdrMd5", "04891852B9090DACBD8F182483668683"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.hmpg", true); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.hmpgUrl", "http://start.mysearchdial.com/?f=1&a=irmsd103&cd=2XzuyEtN2Y1L1QzutDtDtBtAyDyEtCtDyE0[...] =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.id", "002354104F608B20"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.instlDay", "16027"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.instlRef", ""); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.lastB", "http://start.mysearchdial.com/?f=1&a=irmsd103&cd=2XzuyEtN2Y1L1QzutDtDtBtAyDyEtCtDyE0Fy[...] =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.lastVrsnTs", ""); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.newTabUrl", "http://start.mysearchdial.com/?f=2&a=irmsd103&cd=2XzuyEtN2Y1L1QzutDtDtBtAyDyEtCtDy[...] =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.prdct", "mysearchdial"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.prtnrId", "mysearchdial"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.sg", "{smplGrp}"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.tlbrId", "base"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.tlbrSrchUrl", "http://start.mysearchdial.com/?f=3&a=irmsd103&cd=2XzuyEtN2Y1L1QzutDtDtBtAyDyEtCt[...] =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.vrsn", "1.8.21.0"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial.vrsni", "1.8.21.0"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial_i.hmpg", true); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial_i.newTab", false); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial_i.smplGrp", "none"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [seb - t7og9jve.default-1381158163521] user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.21.016:22:14"); =>Adware.MyWebSearch
O69 - SBI: SearchScopes [HKCU] F131982BEDFE4C4D896EAC85264890EF - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (@ieframe.dll,-12512) - http://www.bing.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com
~ Keys: Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.9E14FE0B8F09AC5D5BD9D05D37BC459C] [SPRF][03/09/2013] (...) -- C:\ProgramData\nvModes.dat [47889]
~ Files: 1 Legitimates Filtered in 00mn 00s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "{3FA8BDC1-5EC3-4199-A307-149BA6FB54FB}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Movies Toolbar\SafetyNut\SRTOOL~1\IE\dtUser.exe (.not file.) =>PUP.MoviesToolbar
O87 - FAEL: "{2AF9AE68-91CE-4F8A-9E48-F9B5E8152CB3}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Movies Toolbar\SafetyNut\SRTOOL~1\IE\dtUser.exe (.not file.) =>PUP.MoviesToolbar
O87 - FAEL: "TCP Query User{C5F065FC-5AC0-4E20-BEBA-A6891B72C9C0}C:\windows\temp\emule0.50a\emule0.50a\emule.exe" |In - Public - P6 - TRUE | .(...) -- C:\windows\temp\emule0.50a\emule0.50a\emule.exe (.not file.)
O87 - FAEL: "UDP Query User{7BF35D96-B7B5-49A5-8DC9-DF71D4033F14}C:\windows\temp\emule0.50a\emule0.50a\emule.exe" |In - Public - P17 - TRUE | .(...) -- C:\windows\temp\emule0.50a\emule0.50a\emule.exe (.not file.)
~ Firewall: 261 Legitimates Filtered in 00mn 02s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "5EE4F6C4F24F88249B07B2F5DAD158DB" . (.Boxore Client.) -- C:\Windows\Installer\{4C6F4EE5-F42F-4288-B970-2B5FAD1D85BD}\boxore.ico =>Adware.Boxore
O90 - PUC: "82C703DC955127F4980E32FE495C352E" . (.SoundTouch.) -- C:\Windows\Installer\{CD307C28-1559-4F72-89E0-23EF94C553E2}\icon.ico
~ Update Products: 52 Legitimates Filtered in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.60B20E21BBFA2CDA032AFEAB449CD1A6] [WIS][07/04/2014] (.BOSE - SoundTouch.) -- C:\Windows\Installer\43b3a.msi [10731008]
[MD5.9C55029CF4336519994F408C6BEE55FF] [WIS][04/04/2014] (.Boxore OU - Boxore Client Installer.) -- C:\Windows\Installer\526e9fb.msi [512512] =>Adware.Boxore
~ WIS: 57 Legitimates Filtered in 00mn 03s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 14/03/2014 257928 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 02/08/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 02/08/2010 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 10/07/1658 0 | (KiesAllShare) . (...) - C:\Program Files\Samsung\Kies\WiselinkPro\WiselinkPro.exe
SS - | Demand 29/03/2014 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe

SR - | Auto 18/12/2013 65432 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 18/05/2007 73728 | (ADSMService) . (...) - C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
SR - | Auto 03/10/2007 94208 | (ASLDRService) . (...) - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
SR - | Auto 08/08/2007 94208 | (ATKGFNEXSrv) . (...) - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
SR - | Auto 27/03/2014 50344 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
SR - | Auto 06/07/2010 188416 | (CanalPlus.VOD) . (.Canal+ Active.) - C:\Program Files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe
SR - | Auto 01/05/2010 95568 | (dgdersvc) . (.Devguru Co., Ltd..) - C:\Windows\system32\dgdersvc.exe
SR - | Auto 05/02/2013 233472 | (FsUsbExService) . (.Teruten.) - C:\Windows\system32\FsUsbExService.exe
SR - | Auto 17/03/2014 117928 | (iSafeService) . (.Elex do Brasil Participações Ltda.) - C:\Program Files\iSafe\iSafeSvc.exe =>Trojan.Staser
SR - | Auto 04/10/2013 1867600 | (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
SR - | Auto 10/12/2013 1494304 | (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
SR - | Auto 21/06/2013 640288 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 05/06/2013 19456 | (SZDrvSvc) . (.Clarus, Inc..) - C:\Program Files\Clarus\Samsung Drive Manager\SZDrvSvc.exe
SR - | Auto 21/01/2008 21504 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 21/01/2008 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

~ Services: Scanned in 00mn 09s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net

~ MBR: 1 Legitimates Filtered in 00mn 02s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by seb at 11/04/2014 13:48:43

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin

~ MBR: Scanned in 00mn 04s



---\\ Scan Additionnel (O88)
Database Version : 13044 - (11/04/2014)
Clés trouvées (Keys found) : 189
Valeurs trouvées (Values found) : 4
Dossiers trouvés (Folders found) : 19
Fichiers trouvés (Files found) : 10

[HKLM\Software\Google\Chrome\Extensions\gaohomgkplmekmskucbkoskmmpgpmjgl] =>PUP.TubeDimmer^
[HKLM\Software\Google\Chrome\Extensions\pbpohikckhbcljgombipcdoinkaedlfa] =>Spyware.SmartDisplay^
[HKLM\Software\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma] =>PUP.QuickStart^
[HKLM\SYSTEM\CurrentControlSet\Services\iSafeService] =>Trojan.Staser^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4C6F4EE5-F42F-4288-B970-2B5FAD1D85BD}] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\iSafe] =>Trojan.Staser^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Boxore Client] =>Adware.Boxore^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\ConduitFloatingPlugin_lcnnhcneegeeojhgpfijnlnocjdmlaon] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\FLV Player] =>Adware.SocialSkinz^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\NextLive] =>PUP.NextLive^
[HKLM\Software\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}] =>PUP.Software.Updater
[HKLM\Software\Classes\Updater.AmiUpd] =>PUP.Software.Updater
[HKLM\Software\Classes\Updater.AmiUpd.1] =>PUP.Software.Updater
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd
[HKCU\Software\Boxore] =>Adware.Boxore
[HKCU\Software\lollipop] =>Adware.Lollipop
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect] =>Toolbar.Conduit
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Somoto] =>Adware.MegaSearch
[HKLM\Software\Tutorials] =>Spyware.AgenceExclusive
[HKCR\VirtualStore\MACHINE\Software\CToolbar] =>Toolbar.Crawler
[HKLM\SOFTWARE\SOFTWARE\UPDATE\CLIENTS\{5B54E9B6-D6C4-11E0-8E9D-92FB4824019B}] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47] =>Adware.IMBooster
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}] =>Adware.BrowseFox
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0124B064795BB484FA494FC7CF204C0C] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\01F8E7504D2D2644AB1185234D2AD5AC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\04CDEDFDD6EF25443B78A49D1FE5B4F2] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\058911EBC07BAAE42B102E3F4B0D070D] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\05CE306CC244D284D8D8090E404CD7D3] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\089527E77AD22E345B0066D226E44F46] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0BD0B15D6F0C2BF428B339B2D2D732C9] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0C1AAA506D92B2D44BD6FEF6CDFB71E1] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CAEC9AFF1716FF4DBACEED82F88C702] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0DD4444CBC682774C8E573CC73C5BC46] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0F68250201451D64EA71E91BA19832DC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\126FFC99A0F214F41AE2D6C7A0FC09BF] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12F72EF2521177A4BB467FF35A881382] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14873772FE3926F4195C9280D52D3486] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14CF11D787D40BF458A3B5CB123733CE] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\163A5460E4FB18343B4C0B781B27E813] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1705977FCB2F22F4D8A9AB847C3FB9CE] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\19F133B6A0BA9B14493CE47703DF4CF3] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1C735C7A54F53574CA5AEA93D0D1F01E] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1CE2260B068265A488410CA171D93778] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DF1DD2609A2135479C19D72E41B64AA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F72D9058D0863E4F8EB9FE6E980C385] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2217D47FAFB0AC547820199B3A026CFB] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22C5FD2815F5C7C4DB5F34F504BF9D96] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\26CF57FC035624845B9005289DFA1448] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2719056FB4CDD294887140382819FFF7] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2956CB28F45AAF746998774B3C9FF012] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2AD5E582EBA9ED54989A134D9250922B] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2BB672F8D2CA64146B6688371E75C986] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2EA450B923F9C4D4BBEB203648FBFFDC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ECA942EFDBD22B4EBB7FE3AB9EDDBDD] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2F055C41FDCA50A43BE42A96D243AD47] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2F4EE319A22490145BC4AEBC53B616CA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\31E430E345D85D54CA33BC88AEFDB9D8] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\358096DA35E67B5479C2E880DF0C10C1] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37345F678B330594E9E4AC16908F78CF] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38641BF101151094F86DD62B534BDEC4] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38762340C83E6764B87807B67154F5A4] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3984BAF27BDA0DC4D8AED19FCB64BD7D] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3D82200490995CE42AB754DCD90AC44D] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3E9F0E4315A35D741873885200C6A454] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3F261C3E5AD56E54598E24B106813C7E] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\40D753328E77EE842A82631EED62CEC5] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\40FDEFB25883CF140B9B5F89CB7E2871] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\412179CD2126BB34CAE51691856A3D68] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43218F63264345445A73071C174FEEE8] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\439E8A02B7736CA488EECE28D7EE961A] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\456D8CED0106E1649AE5CBD8082AC705] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\459277E8A0EE8894F9D7F807DF90506A] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\463372A470C576443AE8802B1AC61D89] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\48F13E425ECD5F243A8A82AA2B65336D] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B6F3AD0EE690D2478C7D0528AADF8C4] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4BB9D431259E08A499469636383B9935] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4D3B0714BC82B2340AB18C031262573D] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4D5809867D6C1D14180511D3AAD03F79] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4DB13DED48DC4494C90DE800D31B086C] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\52C608FC2A61CCE479768A9719CABF7B] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\56861F0CE995D0E45835F5D31E105D54] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\58E44D082625757499995F9516313A9C] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5A52F724764B00747A637F14FBBBB830] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5B19839CB98BB914BA43E863BBE11B4E] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\613DCE6E373581A40B6C88D4F7C09096] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6292C097F9759424BAFA3E32CD3DD562] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\62C171206461ED34885A4AE095F4A7AC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\63E9F48D88AA940498502E29E3747471] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\64747EAAAE2BA5141AEBCF4F6651A144] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6494B0B34076D6248B6E5F42E3252AD0] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6495111F730311440BBC3AAAF3B8C7AC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65273BD75ADFA9146A0950469941299A] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6543EA2E8E729CF4789BCD7361D58C03] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\658DABBCADB609E429A6769C46FAADD0] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\67A614CC45D7C5845BE2184211CC8F9C] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B6581D2CF6BB444D8ACBF79E3AF425B] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C0DB201BFD71284CB8CA279446863E8] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6EA4E994723ECC940AE01A2507673199] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F2331E07AF9B414DB15E2E7BAB7F880] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F3E6739E6CECC64D9B7E5D24CF60746] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73268B3F6C2206C4BAF14E3C5B4BC494] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73D229597C7281E409FDEB3079E30E5A] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75A49DF39158638428A0F7797D4CD1E6] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D223AE12684124794DD7D3FB067886] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76937F723CDCAB547A9791D60867A5B5] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\78AD011E92C0B7D4A86E41451EC7A0F0] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\79080E81959ECB54E9E7B3C67AE5781A] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7A8B37070412F4D47895AA40EFC2E39A] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7F84DAA817EC0AB409DFE802184D5B09] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\82F14F44AA63A5945A2E960EF018794E] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\831071FAC16E2DA4682F55E0B0DE6979] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\83D0F8F1641145A42B26F71D534E9A34] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\84072C174C7F25148BFB33ADE8C704E1] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\872C7B3D2887D4E4EBF645D7AB9374D1] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C00987A23C36B145AB60EE274936EB3] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D736B12592E2E94094267BC5B7AA7EB] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8F3E0221A8351144BB04AEF5266143CB] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90E77522D1656DA4DABC673942243B44] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\920219BD6C542544893D7ECFCB5E2B6B] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\939840D09446FFF459FA6CB4F03C38BE] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9459BDD3A7C686345A9B7A1AD1CC6BE4] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95AC1A94BAFFE3D41B23B2097BA8B190] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\983EBB458AA802846BBC74D26C3209C8] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98A0180804723E24AAA941C0B046363D] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\990A25796B2949842BACA56514B7316A] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\999D63C685BF046489CA3126029FE837] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9AC4C1465926D52478BEC6D3DB946DD7] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9CF7625ADC5FCFE43AD003DCC16B49CB] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A2D54AC8D24E8F94ABBB993A69EF13EC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A357C02D064283D41978AFEEE1A48E0F] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4022CA9531268145AD6F8FD7F4F01DC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5CDCC279604D6746A7DA9ED701BF41F] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6F4FE9AC6F165A4EAA8F90CE891C0DA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A960AC53CA238044A820A3B63D4536CA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AA3077BB9E4617440AF467D91146A8C4] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AAC05EAA51DC78A41A1DCE3B31038584] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AD7957C966A13904EA466152B29EA9AF] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B13C910C1D6376A4BB2BDB9585253923] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1B5689BAD89AFD448923B5051E5BB50] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B2CE0F97DFABDE446811F33E7273BFE2] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B445461D74829AF4C8EF6C00B2861EF0] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B4D011D14FD2DB74A9090EA633C0B98E] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B551BEBCA0334AA40978C2137FD21AB2] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B877893A942DC524580C7B45547FCBC8] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC651C0803618C44DA6F1DDD51AF35BF] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BDE5B9F2A520B674BBB1BEAE5F5D51B8] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE85C3D8F4816D4A9E5F4EAA4D80A2A] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BFD48F71CCCEC97489147D4E852D3F6F] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C05694CDCD2DD724F90F13A20E67EC7C] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C42065D3060DD4648A38882BEA92941E] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C5F606FB1152E344981B09071C472211] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C77B53875F388AA4AA076F6F9D099011] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C85EA06E73FF0A240B4C287EE0D9521D] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA30DE5A0DE293D4AA3BF5E13322823A] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA9ADF25A98C8074FA4CBBA3ED29FEFA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCE886225BDEB6C43868B0AEDB036B02] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CDD11BF4B1CAA584695EFBC611438213] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE1CCF5CABA1395409D54586592B319E] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE7392F9B9A81FA4EA952625BD5534FE] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D12B7976E5CA7C34D932C1A8A1BF61C8] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D91D500D43BD91A44B02BDBE41E0523F] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DA2710A9158C6584C9677EB954F3AC97] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DCF07B57C9DC38E419CF122EA180585E] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD2E1A561C7F1294BB3996EE77F6BBEE] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DF14E9E130504B745A2AC47EF6145D24] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DF7A4CDE9ED9CD7479FF74F35FA4149E] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE39849AF921D045B613CD5852C76A6] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E03EC5B80A22A7D4C92AB528A3D323E8] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1B9E95AA2730744AB926911484F8AD5] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E3436415FB2833843B9EE970079A87C0] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E3BBB86ACE9686A4281227D5F7EE95AE] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E6B40E8EBBC3CD445BD2FC7D8FDCCFEC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E77C3F952C1F0354FAFADB6B080ACCF7] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E84382A588F214C4C89C3DB758EA6AD6] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E89B10C102BBEF941A920EE2269747C0] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E9D73D5153C19FD48B6E10CB7E8572CE] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EBAFF392ACA75ED4CA30BF821C1AE267] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ECFC746582988774684DB5D8D95F674D] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EECC799BFA63E6146A81EAAA53540EDE] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1547261AA1C98C48B0ECDBC767C76CE] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1BDB464DE2D33547BB31C1B35D9C337] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F29CFDBF9B20AB8448A1BD73A3FE863F] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F5F8D8368E8CAE84188DE44DAF8C10F9] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FAB510A06C6F4B24AAD055CE6EEA27CD] =>Adware.Boxore^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:fst_fr_125 =>PUA.FSTfr9^
C:\Users\seb\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaohomgkplmekmskucbkoskmmpgpmjgl =>PUP.TubeDimmer^
C:\Users\seb\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa =>Spyware.SmartDisplay^
C:\Users\seb\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma =>PUP.QuickStart^
C:\Program Files\Boxore =>Adware.Boxore^
C:\Program Files\iSafe =>Trojan.Staser^
C:\ProgramData\Babylon =>PUP.Babylon^
C:\ProgramData\WPM =>PUP.WpManager^
C:\Users\seb\AppData\Roaming\iSafe =>Trojan.Staser^
C:\Users\seb\AppData\Roaming\SupTab =>PUP.SupTab^
C:\Users\seb\AppData\Roaming\ValueApps =>Toolbar.Conduit^
C:\Users\seb\AppData\Local\AppsHat Mobile Apps =>PUP.CrossRider^
C:\Users\seb\AppData\Local\Minibar =>PUP.Minibar^
C:\Users\seb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat =>PUP.CrossRider^
C:\Program Files\SearchProtect =>Toolbar.Conduit
C:\Program Files\Software =>Adware.Boxore
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Casino770 =>Spyware.OnlineGames
C:\Users\seb\AppData\Roaming\SearchProtect =>Toolbar.Conduit
C:\Users\seb\AppData\Local\SearchProtect =>Toolbar.Conduit
C:\Users\seb\AppData\Local\Software =>Adware.Boxore
C:\Program Files\iSafe\iSafeTray.exe =>Trojan.Staser^
C:\Program Files\iSafe\iSafeSvc.exe =>Trojan.Staser^
C:\Program Files\iSafe\iSafeSvc2.exe =>Trojan.Staser^
C:\Windows\Tasks\MySearchDial.job =>Adware.MyWebSearch^
[HKCU\Software\Conduit] =>Toolbar.Conduit^
[HKCU\Software\freesofttoday] =>Adware.FreeSoftToday^
[HKLM\Software\Toolbar Cleaner] =>Adware.ToolbarCleaner^
[HKLM\Software\supTab] =>PUP.SupTab^
[HKLM\Software\supWPM] =>PUP.WpManager^
C:\Windows\Installer\526e9fb.msi =>Adware.Boxore^
~ Additionnel Scan: 282597 Items scanned in 00mn 36s



---\\ Récapitulatif des détections trouvées sur votre station
http://nicolascoolman.webs.com/apps/blog/show/32771797-trojan-staser =>Trojan.Staser
http://nicolascoolman.webs.com/apps/blog/show/37242682-pup-tubedimmer =>PUP.TubeDimmer
http://nicolascoolman.webs.com/apps/blog/show/32662245-spyware-smartdisplay =>Spyware.SmartDisplay
http://nicolascoolman.webs.com/apps/blog/show/41962558-pup-quickstart =>PUP.QuickStart
http://nicolascoolman.webs.com/apps/blog/show/27146838-adware-mywebsearch =>Adware.MyWebSearch
http://nicolascoolman.webs.com/apps/blog/show/34153565-pup-buenosearch =>PUP.BuenoSearch
http://nicolascoolman.webs.com/apps/blog/show/26626977-adware-boxore =>Adware.Boxore
http://nicolascoolman.webs.com/apps/blog/show/41962428-hijacker-webssearches =>Hijacker.WebsSearches
http://nicolascoolman.webs.com/apps/blog/show/26630902-adware-lollipop =>Adware.Lollipop
http://nicolascoolman.webs.com/apps/blog/show/34014358-pua-fstfr9 =>PUA.FSTfr9
http://nicolascoolman.webs.com/apps/blog/show/33744863-pup-moviestoolbar =>PUP.MoviesToolbar
http://nicolascoolman.webs.com/apps/blog/show/26919368-adware-megasearch =>Adware.MegaSearch
http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit =>Toolbar.Conduit
http://nicolascoolman.webs.com/apps/blog/show/26627641-spyware-agenceexclusive =>AgenceExclusive
http://nicolascoolman.webs.com/apps/blog/show/33340107-adware-freesofttoday =>Adware.FreeSoftToday
http://nicolascoolman.webs.com/apps/blog/show/33105275-adware-toolbarcleaner =>Adware.ToolbarCleaner
http://nicolascoolman.webs.com/apps/blog/show/41133513-pup-suptab =>PUP.SupTab
http://nicolascoolman.webs.com/apps/blog/show/38737316-pup-wpmanager =>PUP.WpManager
http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon =>PUP.Babylon
http://nicolascoolman.webs.com/apps/blog/show/27583526-pup-crossrider =>PUP.CrossRider
http://nicolascoolman.webs.com/apps/blog/show/34407192-pup-minibar =>PUP.Minibar
http://nicolascoolman.webs.com/apps/blog/show/32979753-pup-bitguard =>PUP.BitGuard
http://nicolascoolman.webs.com/apps/blog/show/27161672-hijacker-eazel =>Hijacker.Eazel
http://nicolascoolman.webs.com/apps/blog/show/29216159-pup-sweetim =>PUP.SweetIM
http://nicolascoolman.webs.com/apps/blog/show/27875657-toolbar-deltasearch =>Toolbar.DeltaSearch
http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster =>Adware.IMBooster
http://nicolascoolman.webs.com/apps/blog/show/27480243-adware-socialskinz =>Adware.SocialSkinz
http://nicolascoolman.webs.com/apps/blog/show/40528410-pup-nextlive =>PUP.NextLive
http://nicolascoolman.webs.com/apps/blog/show/32713686-pup-software-updater =>PUP.Software.Updater
http://nicolascoolman.webs.com/apps/blog/show/27229962-adware-predictad =>Adware.PredictAd
http://nicolascoolman.webs.com/apps/blog/show/28204239-pup-optimizerpro =>PUP.OptimizerPro
http://nicolascoolman.webs.com/apps/blog/show/32363262-adware-browsefox =>Adware.BrowseFox
~ MSI: 32 link(s) detected in 00mn 00s



~ 2366 Legitimates filtered by white list
End of the scan (980 lines in 05mn 54s)(0)

Publicité


Signaler le contenu de ce document

Publicité