cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2015.3.1.25 - Nicolas Coolman (01/03/2015)
~ Lancé par JUVENTINI (04/03/2015 00:09:50)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17633
MFIE: Mozilla Firefox 35.0.1 (Defaut)
GCIE: Google Chrome v41.0.2272.76
OPIE: Opera v12.02

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 2C9T3
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601)

---\\ Logiciels de protection du système
Kaspersky Internet Security 2013 v13.0.1.4190
Windows Defender W7 (Activate)

---\\ Logiciels d'optimisation du système
CCleaner v3.24

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 16 NPAPI
Adobe Reader XI - Français

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4031 MB (29% free)
System Restore: Activé (Enable)
System drive C: has 44 GB (14%) free of 301 GB

---\\ Mode de connexion au système
~ Computer Name: JUVENTINI-PC
~ User Name: JUVENTINI
~ All Users Names: JUVENTINI, Guest, Administrator,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\JUVENTINI\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\JUVENTINI\AppData\Roaming\
~ %Desktop% : C:\Users\JUVENTINI\Desktop\
~ %Favorites% : C:\Users\JUVENTINI\Favorites\
~ %LocalAppData% : C:\Users\JUVENTINI\AppData\Local\
~ %StartMenu% : C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 44 Go of 301 Go)
D: Hard drive, Flash drive, Thumb drive (Free 461 Go of 618 Go)
E: CD-ROM drive (Not Inserted)
F: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified =>Hijacker.Application
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.AC4C51EB24AA95B77F705AB159189E24] - (.Microsoft Corporation - Explorateur Windows.) (.21/11/2010 - 04:24:11.) -- C:\Windows\Explorer.exe [2872320]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.9DFE41A69DF70AAB75CB5BA8C1109EA2] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.12/01/2015 - 02:27:32.) -- C:\Windows\System32\wininet.dll [2358272]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.17/07/2014 - 03:07:24.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/11/2010 - 04:25:07.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/6
~ Mes musiques (My Musics) : 1/59
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/40
~ Mes Documents (My Documents) : 2/132
~ Mon Bureau (My Desktop) : 3/4410
~ Menu demarrer (Programs) : 1/120
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.7373E5ACAFDBEBCDB7864C3C4574F257] - (.Sony Corporation - VAIO Care.) -- C:\Program Files\Sony\VAIO Care\VCSpt.exe [55152] [PID.2592]
[MD5.89D2706FCD45E33CECFBD46BCBAD7E16] - (.Microsoft Corporation - Tablet PC Input Panel Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe [10240] [PID.2736]
[MD5.E4471ED2D1370182051316676C56BC46] - (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056] [PID.2444]
[MD5.0C85B24C059C0614AA506D15C9A7978D] - (.Yontoo LLC - Yontoo Desktop.) -- C:\Users\JUVENTINI\AppData\Roaming\Yontoo\YontooDesktop.exe [42784] [PID.3796] =>Adware.Yontoo
[MD5.C6502953146A039210DB1ED7475E5016] - (.Tonec Inc. - Internet Download Manager (IDM).) -- D:\Internet Download Manager 6.18 build 2+crack+key\crack\IDMan.exe [3821136] [PID.2824]
[MD5.A96158188A70D3024E57EC6B02E389E5] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\JUVENTINI\AppData\Roaming\uTorrent\uTorrent.exe [1377872] [PID.2384] =>P2P.BitTorrent
[MD5.4F9236BE13917B89F7A03DEA85F220FA] - (.Pas de propriétaire - WebPlayer.) -- C:\Users\JUVENTINI\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe [202752] [PID.4032]
[MD5.37574D5F3C7F25D604FDAF8E8E5FAEB4] - (.Pas de propriétaire - JsDriver.) -- C:\Program Files (x86)\ShopperPro\JSDriver\1.38.0.1425\jsdrv.exe [3224576] [PID.3992] =>PUP.ShopperPro
[MD5.592989A426AE8BD543816906B4E404B6] - (.GOOBZO - Pas de description.) -- C:\Program Files (x86)\YouTube Accelerator\YouTubeAccelerator.exe [2227048] [PID.3976] =>PUP.Goobzo
[MD5.E8F28312EC0211C7A9C5E344730EE312] - (.Badoo - Badoo Desktop.) -- C:\ProgramData\Badoo\Badoo desktop\1.6.58.1220\Badoo.desktop.exe [1067280] [PID.2908]
[MD5.50632FFCBF13461CE815741818C27991] - (.GameRanger Technologies - GameRanger.) -- C:\Users\JUVENTINI\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe [1792168] [PID.3412]
[MD5.FE821F6FA60E9DF9FDEE69A23488BBAB] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896] [PID.2392]
[MD5.15D2DB9BFA8E833ED31FAB2BB088FDDA] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128] [PID.1768]
[MD5.4EE76D4CB055E8EC281177771345E8B3] - (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.exe [312376] [PID.4164]
[MD5.35D6CAAA9E4D82974A74DBDB53801F98] - (.VER_COMPANY_NAME - VER_DESCRIPTION.) -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe [30096] [PID.4244] =>PUP.MindSpark
[MD5.A7D6721D90AB8D3EE1DB118F23FEB653] - (.Pas de propriétaire - VProtect Application.) -- C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2640408] [PID.4332]
[MD5.7BE48C578124BBF4C1FAAFB4E718A4CC] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392] [PID.4412]
[MD5.14D6542607ACD4B2D1DDB1A36E0D8813] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744] [PID.4460]
[MD5.5E8687798FC2C1D3C5BAEEB8C57AD395] - (.Sony of America Corporation - VaioCare Window Listener Application.) -- C:\Program Files\Sony\VAIO Care\listener.exe [75776] [PID.7000]
[MD5.265B49EF94A5AA713192EE97A7D248B5] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [338032] [PID.7132]
[MD5.F9B8C1C8E554BA21E95E476109092ECF] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [809288] [PID.4064]
[MD5.72E7A13372047CA67AB84FAF2F49EF06] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [243312] [PID.7608]
[MD5.4E8288547D53DB9555067DE7FDCCB127] - (.Adobe Systems, Inc. - Adobe Flash Player 16.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe [1880752] [PID.6344]
[MD5.E9B8F06429A1727D9FD9D4CE023EDCEB] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\opera.exe [874896] [PID.7544]
[MD5.1ADAB4A9071A474CAC06509EB901E820] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8182784] [PID.6732]
[MD5.B1EA9681502EE57F87DB71D726288A5B] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1604]
[MD5.4FE5C6D40664AE07BE5105874357D2ED] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [57008] [PID.1708]
[MD5.1F79342D9EB530A48742F651E570983A] - (.Microsoft Corporation - Updates Skype Click to Call.) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176] [PID.1872]
[MD5.E4938E0A376CF0B9D989EE5C0A146891] - (.Microsoft Corporation - Phone Number Recognition (PNR) module.) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520] [PID.1904]
[MD5.D2718816B48D9B5603295409044F257F] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912] [PID.1520]
[MD5.3A2BDD76E7D2A5F40A7174793D1BA794] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [75136] [PID.2144]
[MD5.543A4EF0923BF70D126625B034EF25AF] - (.Protexis Inc. - PsiService PsiService.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [189728] [PID.2276]
[MD5.7C8DD5576695B3362202EF09B20C425E] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [3574624] [PID.2656]
[MD5.F14B53C0CCED61219F4319380E36255C] - (.TorchMedia Inc. - TorchCrashHandler.) -- C:\Users\JUVENTINI\AppData\Local\Torch\Update\TorchCrashHandler.exe [1205088] [PID.3336]
[MD5.622FCF264119F7DF127BE353F796B319] - (.COMPANYVERS_NAME - PRODUCTVERS_TITLE.) -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe [42504] [PID.3360] =>PUP.MindSpark
[MD5.C22E26DEDA8CDDCD45B5E0751CD9ABCC] - (.AVG Secure Search - ToolbarU Application.) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe [1820184] [PID.3436] =>Toolbar.AVGSearch
[MD5.24FB8DB6D1D55E2C5D0A53DFE48E6AF8] - (.Microsoft - Y2Desktop.Updater.) -- C:\Program Files (x86)\Yontoo\Y2Desktop.Updater.exe [23552] [PID.3468] =>Adware.Yontoo
[MD5.55368B1DD21927533101911BE8A4B56D] - (.Pas de propriétaire - loggings Application.) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\loggingserver.exe [159768] [PID.3520] =>Toolbar.AVGSearch
[MD5.6354FF478451DC33755FFAEA5163EABB] - (.GOOBZO - Pas de description.) -- C:\Program Files (x86)\YouTube Accelerator\YouTubeAcceleratorService.exe [1510248] [PID.3492] =>PUP.Goobzo
[MD5.F97961FD74E83E3E96DB45B69B33B157] - (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [3105144] [PID.3284]
~ Processes Running: Scanned in 00mn 01s



---\\ Opera, Plugins,Démarrage,Recherche (P1,B0,B1)
B0 - SPO: operaprefs.ini [JUVENTINI] Home URL=http://badoo.com/startpage/
B1 - OSP: search.ini [JUVENTINI] URL=http://badoo.com/startpage
P1 - OPN:Opera Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Opera\Program\Plugins\NPOFF12.DLL
P1 - OPN:Opera Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Opera\Program\Plugins\NPOFF12.DLL
~ Opera Browser: 4 Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\5smra6oa.default\prefs.js
C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\5smra6oa.default\user.js
C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\d409o4xu.default\prefs.js
C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\d409o4xu.default\user.js
C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\ld02ju79.default\prefs.js
C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\psf92iw4.default\prefs.js (.not file.)
C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\q59fa1at.default\prefs.js
C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\q59fa1at.default\user.js
C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\v7bue838.default-1425422377967\prefs.js
M3 - MFPP: Plugins - [JUVENTINI] -- C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\5smra6oa.default\searchplugins\babylon.xml =>PUP.Babylon
M3 - MFPP: Plugins - [JUVENTINI] -- C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\5smra6oa.default\searchplugins\safeguard-secure-search.xml
M3 - MFPP: Plugins - [JUVENTINI] -- C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\d409o4xu.default\searchplugins\babylon.xml =>PUP.Babylon
M3 - MFPP: Plugins - [JUVENTINI] -- C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\d409o4xu.default\searchplugins\safeguard-secure-search.xml
M3 - MFPP: Plugins - [JUVENTINI] -- C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\q59fa1at.default\searchplugins\safeguard-secure-search.xml
M2 - MFEP: prefs.js [JUVENTINI - v7bue838.default-1425422377967\{746505DC-0E21-4667-97F8-72EA6BCF5EEF}] [] Shopper-Pro v1.0.0.4 (..) =>PUP.ShopperPro
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited - Facebook Video Calling Plugin.) -- C:\Users\JUVENTINI\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 4.2.2f1.) -- C:\Users\JUVENTINI\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
~ Firefox Browser: 9 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis.com =>PUP.AArtemis
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://aartemis.com =>PUP.AArtemis
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis.com =>PUP.AArtemis
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis.com =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://aartemis.com =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis.com =>PUP.AArtemis
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis.com =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://aartemis.com =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis.com =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) [64Bits] - {D8278076-BC68-4484-9233-6E7F1628B56C} . (.Unity Technologies ApS - Unity Player 4.2.2f1.) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) [64Bits] - {93a3111f-4f74-4ed8-895e-d9708497629e} . (.Unity Technologies ApS - Unity Player 4.2.2f1.) (No version) -- (.not file.)
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17631 (winblue_r7.150111-1500)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
~ IE Browser: 26 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: CrossriderApp0035499 [64Bits] - {11111111-1111-1111-1111-110311541199} . (.Corporate Inc - Pricora 2.0 BHO.) -- C:\Program Files (x86)\Pricora 2.0\Pricora 2.0-bho.dll =>PUP.CrossRider
O2 - BHO: CrossriderApp0045362 [64Bits] - {11111111-1111-1111-1111-110411531162} . (.DiscountFrenzy - DiscountFrenzy BHO.) -- C:\Program Files (x86)\DiscountFrenzy\DiscountFrenzy-bho.dll =>PUP.CrossRider
O2 - BHO: CrossriderApp0048260 [64Bits] - {11111111-1111-1111-1111-110411821160} . (.installdaddy - OnlineHD V6.0 BHO.) -- C:\Program Files (x86)\OnlineHD V6.0\OnlineHD V6.0-bho.dll =>PUP.CrossRider
O2 - BHO: cb53b500f3e90131a6091fb939dcadf40061915 [64Bits] - {11111111-1111-1111-1111-110611191115} . (.Object Browser - Senses BHO.) -- C:\Program Files (x86)\Senses\Senses-bho.dll =>PUP.ObjectBrowser
O2 - BHO: 68671f62832e4803b34065d441f9a2210065123 [64Bits] - {11111111-1111-1111-1111-110611511123} . (.iWebar - iWebar BHO.) -- C:\Program Files (x86)\iWebar\iWebar-bho.dll =>PUP.CrossRider
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Toolbar BHO [64Bits] - {312f84fb-8970-4fd3-bddb-7012eac4afc9} . (.MindSpark - MindSpark Toolbar Platform.) -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll =>PUP.MindSpark
O2 - BHO: ContentBlockerBrowserHelperObject [64Bits] - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} . (.Kaspersky Lab ZAO - Content Blocker Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject [64Bits] - {73455575-E40C-433C-9784-C78DC7761455} . (.Kaspersky Lab ZAO - Virtual Keyboard Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: AVG SafeGuard toolbar [64Bits] - {95B7759C-8C7F-4BF1-B163-73684A933233} . (.AVG Secure Search - toolbar.dll.) -- C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.9.799\AVG SafeGuard toolbar_toolbar.dll =>Toolbar.AVGSearch
O2 - BHO: Safe Money Plugin [64Bits] - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} . (.Kaspersky Lab ZAO - Safe Money Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: ShopperProBHO [64Bits] - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} . (.Goobzo Ltd. - ShopperPro Extension.) -- C:\ProgramData\ShopperPro\ShopperPro.dll =>PUP.ShopperPro
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Search Assistant BHO [64Bits] - {c547c6c2-561b-4169-a2a5-20ba771ca93b} . (.MindSpark - MindSpark Search Assistant.) -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll =>PUP.MindSpark
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: link filter bho [64Bits] - {E33CF602-D945-461A-83F0-819F76A199F8} . (.Kaspersky Lab ZAO - URL Advisor Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
O2 - BHO: Movies Toolbar (Dist. by Bandoo Media, Inc.) [64Bits] - {ec2bae47-25af-4ce9-9e78-10627a49c9ea} . (...) -- C:\PROGRA~2\MOVIES~1\Datamngr\SRTOOL~2\IE\searchresultsDx.dll (.not file.) =>PUP.MoviesToolbar
O2 - BHO: YTAHelperBHO [64Bits] - {FCE3FA8B-BA81-467C-81D8-E43C00D1BC71} . (.Goobzo Ltd. - YTAHelper Extension.) -- C:\ProgramData\YTAHelper\YTAHelper.dll =>PUP.Goobzo
~ BHO: 64 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{4646332D-5637-006A-76A7-7A786E7484D7} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Program [Public]: Opera.lnk . (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\opera.exe http://aartemis.com =>PUP.AArtemis
O4 - GS\QuickLaunch [JUVENTINI]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe http://aartemis.com =>PUP.AArtemis
O4 - GS\QuickLaunch [JUVENTINI]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\JUVENTINI\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - GS\TaskBar [JUVENTINI]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com =>PUP.AArtemis
O4 - GS\TaskBar [JUVENTINI]: Opera.lnk . (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\opera.exe http://aartemis.com =>PUP.AArtemis
O4 - GS\TaskBar [JUVENTINI]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\JUVENTINI\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - GS\Program [JUVENTINI]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com =>PUP.AArtemis
O4 - GS\SystemTools [JUVENTINI]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com =>PUP.AArtemis
~ Global Startup: 9 Scanned in 00mn 01s



---\\ Applications lancées au démarrage du système (O4)
O4 - GS\Startup [JUVENTINI]: MyPC Backup.lnk . (.MyPCBackup.com - MyPC Backup.) -- C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe =>PUP.MyPCBackup
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [VideoDownloadConverter Home Page Guard 64 bit] . (...) -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\AppIntegrator64.exe =>PUP.MindSpark
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [ShadowPlay] . (.NVIDIA Corporation - NVIDIA Capture Server Proxy.) -- C:\Windows\system32\nvspcap64.dll
O4 - HKLM\..\Run: [MRT] . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\system32\MRT.exe
O4 - HKCU\..\Run: [MediaDICO38] . (.L'Aventure Multimedia - Pas de description.) -- C:\Program Files (x86)\Micro Application\38 Dictionnaires et Recueils de Correspondance\LanceMediaDICO38.exe
O4 - HKCU\..\Run: [Yontoo Desktop] . (.Yontoo LLC - Yontoo Desktop.) -- C:\Users\JUVENTINI\AppData\Roaming\Yontoo\YontooDesktop.exe =>Adware.Yontoo
O4 - HKCU\..\Run: [FixMyRegistry] C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe (.not file.)
O4 - HKCU\..\Run: [AdobeBridge] Clé orpheline
O4 - HKCU\..\Run: [UpdateMyDrivers] C:\Program Files (x86)\SmartTweak\UpdateMyDrivers\UpdateMyDrivers.exe (.not file.)
O4 - HKCU\..\Run: [SpeedUpMyComputer] C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe (.not file.) =>PUP.SpeedUpMyComputer
O4 - HKCU\..\Run: [Google+ Auto Backup] . (.Google Inc. - AutoBackup.) -- C:\Users\JUVENTINI\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- D:\Internet Download Manager 6.18 build 2+crack+key\crack\IDMan.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\JUVENTINI\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - HKCU\..\Run: [FLV Player] . (.Pas de propriétaire - WebPlayer.) -- C:\Users\JUVENTINI\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
O4 - HKCU\..\Run: [SPDriver] . (.Pas de propriétaire - JsDriver.) -- C:\Program Files (x86)\ShopperPro\JSDriver\1.38.0.1425\jsdrv.exe =>PUP.ShopperPro
O4 - HKCU\..\Run: [GoobzoYouTubeAccelerator] . (.GOOBZO - Pas de description.) -- C:\Program Files (x86)\YouTube Accelerator\YouTubeAccelerator.exe =>PUP.Goobzo
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\JUVENTINI\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [Badoo Desktop] . (.Badoo - Badoo Desktop.) -- C:\ProgramData\Badoo\Badoo desktop\1.6.58.1220\Badoo.desktop.exe
O4 - HKCU\..\Run: [ultracopier] C:\Program Files (x86)\Supercopier\supercopier.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
O4 - HKLM\..\Wow6432Node\Run: [PWRISOVM.EXE] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [VideoDownloadConverter Search Scope Monitor] . (.MindSpark - MindSpark Toolbar Platform SearchScope Moni.) -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrchMn.exe =>PUP.MindSpark
O4 - HKLM\..\Wow6432Node\Run: [VideoDownloadConverter_4z Browser Plugin Loader] . (.VER_COMPANY_NAME - VER_DESCRIPTION.) -- C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe =>PUP.MindSpark
O4 - HKLM\..\Wow6432Node\Run: [USB Gamepad] . (.Pas de propriétaire - WYunpeng MFC Application.) -- C:\Windows\USB Vibration\7906\USB Gamepad.exe
O4 - HKLM\..\Wow6432Node\Run: [vProt] . (.Pas de propriétaire - VProtect Application.) -- C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [SPDriver] . (.Pas de propriétaire - JsDriver.) -- C:\Program Files (x86)\ShopperPro\JSDriver\1.38.0.1425\jsdrv.exe =>PUP.ShopperPro
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [MediaDICO38] . (.L'Aventure Multimedia - Pas de description.) -- C:\Program Files (x86)\Micro Application\38 Dictionnaires et Recueils de Correspondance\LanceMediaDICO38.exe
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [Yontoo Desktop] . (.Yontoo LLC - Yontoo Desktop.) -- C:\Users\JUVENTINI\AppData\Roaming\Yontoo\YontooDesktop.exe =>Adware.Yontoo
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [FixMyRegistry] C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe (.not file.)
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [AdobeBridge] Clé orpheline
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [UpdateMyDrivers] C:\Program Files (x86)\SmartTweak\UpdateMyDrivers\UpdateMyDrivers.exe (.not file.)
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [SpeedUpMyComputer] C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe (.not file.) =>PUP.SpeedUpMyComputer
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [Google+ Auto Backup] . (.Google Inc. - AutoBackup.) -- C:\Users\JUVENTINI\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- D:\Internet Download Manager 6.18 build 2+crack+key\crack\IDMan.exe
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\JUVENTINI\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [FLV Player] . (.Pas de propriétaire - WebPlayer.) -- C:\Users\JUVENTINI\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [SPDriver] . (.Pas de propriétaire - JsDriver.) -- C:\Program Files (x86)\ShopperPro\JSDriver\1.38.0.1425\jsdrv.exe =>PUP.ShopperPro
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [GoobzoYouTubeAccelerator] . (.GOOBZO - Pas de description.) -- C:\Program Files (x86)\YouTube Accelerator\YouTubeAccelerator.exe =>PUP.Goobzo
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\JUVENTINI\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [Badoo Desktop] . (.Badoo - Badoo Desktop.) -- C:\ProgramData\Badoo\Badoo desktop\1.6.58.1220\Badoo.desktop.exe
O4 - HKUS\S-1-5-21-3063805187-3416858097-2782230916-1000\..\Run: [ultracopier] C:\Program Files (x86)\Supercopier\supercopier.exe (.not file.)
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Clavier virtuel [64Bits] - {0C4CC089-D306-440D-9772-464E226F6539} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\kbrd.ico
O9 - Extra button: Skype Click to Call settings [64Bits] - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- c:\program files (x86)\skype\toolbars\internet explorer x64\icon.ico
O9 - Extra button: Analyse des liens [64Bits] - {CCF151D8-D089-449F-A5A4-D9909053F20F} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\logo.ico
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 8 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{FF86F777-F679-4BB8-8C66-E1DF2D2E5FC3}: NameServer = 8.8.8.8,8.8.4.4 =>.Google DNS Redirections
O17 - HKLM\System\CCS\Services\Tcpip\..\{4A7ADFAD-6836-4941-AC83-53BD29AA9207}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{FF86F777-F679-4BB8-8C66-E1DF2D2E5FC3}: NameServer = 8.8.8.8,8.8.4.4 =>.Google DNS Redirections
O17 - HKLM\System\CS1\Services\Tcpip\..\{4A7ADFAD-6836-4941-AC83-53BD29AA9207}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{FF86F777-F679-4BB8-8C66-E1DF2D2E5FC3}: NameServer = 8.8.8.8,8.8.4.4 =>.Google DNS Redirections
O17 - HKLM\System\CS2\Services\Tcpip\..\{4A7ADFAD-6836-4941-AC83-53BD29AA9207}: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: viprotocol [64Bits] - {B658800C-F66E-4EF3-AB85-6C0C227862A9} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\MOVIES~1\Datamngr\x64\mgrldr.dll (.not file.) =>PUP.Datamngr
~ AppInit DLL: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
O23 - Service: Computer Backup (MyPC Backup) (BackupStack) . (.Just Develop It - Backup Stack.) - C:\Program Files (x86)\MyPC Backup\BackupStack.exe =>PUP.MyPCBackup
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe =>PUP.GlobalUpdate
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 259.4.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) . (.Protexis Inc. - PsiService PsiService.) - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: VAIO Care Performance Service (SampleCollector) . (.Sony Corporation - VAIO Care Performance Service.) - C:\Program Files\Sony\VAIO Care\VCPerfService.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: ShopperPro Update (SPBIUpd) . (.ShopperPro - ShopperPro Update Service.) - C:\Program Files\Common Files\ShopperPro\spbiu.exe =>PUP.ShopperPro
O23 - Service: TeamViewer 8 (TeamViewer8) . (.TeamViewer GmbH - TeamViewer 8.) - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: Torch Crash Handler (TorchCrashHandler) . (.TorchMedia Inc. - TorchCrashHandler.) - C:\Users\JUVENTINI\AppData\Local\Torch\Update\TorchCrashHandler.exe
O23 - Service: VideoDownloadConverterService (VideoDownloadConverter_4zService) . (.COMPANYVERS_NAME - PRODUCTVERS_TITLE.) - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe =>PUP.MindSpark
O23 - Service: (vToolbarUpdater18.1.9) . (.AVG Secure Search - ToolbarU Application.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe =>Toolbar.AVGSearch
O23 - Service: YouTubeAcceleratorService (YouTubeAcceleratorService) . (.GOOBZO - Pas de description.) - C:\Program Files (x86)\YOUTUB~1\YouTubeAcceleratorService.exe =>PUP.Goobzo
~ Services: 21 Scanned in 00mn 13s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.BA89B95F636DB96CF9B4E35CD8A47AF5] [APT] [147337ad-cb83-430e-b401-f46841fd9e6e-1] (.iWebar.) -- C:\Program Files (x86)\iWebar\iWebar-codedownloader.exe [1107360] =>PUP.CrossRider
[MD5.A163393DAC34812E0B9E95EEC23C93B0] [APT] [147337ad-cb83-430e-b401-f46841fd9e6e-11] (.iWebar.) -- C:\Program Files (x86)\iWebar\147337ad-cb83-430e-b401-f46841fd9e6e-11.exe [2003872] =>PUP.CrossRider
[MD5.E912DC7DCE5B0DCC10EA128FA4D694EA] [APT] [147337ad-cb83-430e-b401-f46841fd9e6e-4] (.iWebar.) -- C:\Program Files (x86)\iWebar\147337ad-cb83-430e-b401-f46841fd9e6e-4.exe [1517984] =>PUP.CrossRider
[MD5.7AE4A9B05E5EDABC2D348DF7F1E1E5B0] [APT] [147337ad-cb83-430e-b401-f46841fd9e6e-5] (.iWebar.) -- C:\Program Files (x86)\iWebar\147337ad-cb83-430e-b401-f46841fd9e6e-5.exe [1146784] =>PUP.CrossRider
[MD5.7AE4A9B05E5EDABC2D348DF7F1E1E5B0] [APT] [147337ad-cb83-430e-b401-f46841fd9e6e-5_user] (.iWebar.) -- C:\Program Files (x86)\iWebar\147337ad-cb83-430e-b401-f46841fd9e6e-5.exe [1146784] =>PUP.CrossRider
[MD5.F42CBFEF49EC9FEC5E7DE78A45A61147] [APT] [147337ad-cb83-430e-b401-f46841fd9e6e-6] (.iWebar.) -- C:\Program Files (x86)\iWebar\147337ad-cb83-430e-b401-f46841fd9e6e-6.exe [1294240] =>PUP.CrossRider
[MD5.BA89B95F636DB96CF9B4E35CD8A47AF5] [APT] [147337ad-cb83-430e-b401-f46841fd9e6e-7] (.iWebar.) -- C:\Program Files (x86)\iWebar\147337ad-cb83-430e-b401-f46841fd9e6e-7.exe [1107360] =>PUP.CrossRider
[MD5.0F0A70A708CCEA8D6FAB9B46CF430E67] [APT] [5d213b31-aefd-4f9f-a9a0-f67ce112943f-1] (.Object Browser.) -- C:\Program Files (x86)\Senses\Senses-codedownloader.exe [1139104] =>PUP.ObjectBrowser
[MD5.022CA220E0138D8A810E37EDC437067A] [APT] [5d213b31-aefd-4f9f-a9a0-f67ce112943f-11] (.Object Browser.) -- C:\Program Files (x86)\Senses\5d213b31-aefd-4f9f-a9a0-f67ce112943f-11.exe [2053536] =>PUP.ObjectBrowser
[MD5.022CA220E0138D8A810E37EDC437067A] [APT] [5d213b31-aefd-4f9f-a9a0-f67ce112943f-3] (.Object Browser.) -- C:\Program Files (x86)\Senses\5d213b31-aefd-4f9f-a9a0-f67ce112943f-3.exe [2053536] =>PUP.ObjectBrowser
[MD5.40686D89156D262A8216B1F431CBF5E8] [APT] [5d213b31-aefd-4f9f-a9a0-f67ce112943f-4] (.Object Browser.) -- C:\Program Files (x86)\Senses\5d213b31-aefd-4f9f-a9a0-f67ce112943f-4.exe [1565088] =>PUP.ObjectBrowser
[MD5.3570F1CBE9920383D43CDF63E9769488] [APT] [5d213b31-aefd-4f9f-a9a0-f67ce112943f-5] (.Object Browser.) -- C:\Program Files (x86)\Senses\5d213b31-aefd-4f9f-a9a0-f67ce112943f-5.exe [1194912] =>PUP.ObjectBrowser
[MD5.3570F1CBE9920383D43CDF63E9769488] [APT] [5d213b31-aefd-4f9f-a9a0-f67ce112943f-5_user] (.Object Browser.) -- C:\Program Files (x86)\Senses\5d213b31-aefd-4f9f-a9a0-f67ce112943f-5.exe [1194912] =>PUP.ObjectBrowser
[MD5.A146BA6DC782638FEA8DD7F91E5265C6] [APT] [5d213b31-aefd-4f9f-a9a0-f67ce112943f-6] (.Object Browser.) -- C:\Program Files (x86)\Senses\5d213b31-aefd-4f9f-a9a0-f67ce112943f-6.exe [1343392] =>PUP.ObjectBrowser
[MD5.0F0A70A708CCEA8D6FAB9B46CF430E67] [APT] [5d213b31-aefd-4f9f-a9a0-f67ce112943f-7] (.Object Browser.) -- C:\Program Files (x86)\Senses\5d213b31-aefd-4f9f-a9a0-f67ce112943f-7.exe [1139104] =>PUP.ObjectBrowser
[MD5.080255CDCB878813B481B8C348D47D8E] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [267440]
[MD5.5447AF432CDA61159ADDE218C468FFD9] [APT] [AdobeAAMUpdater-1.0-JUVENTINI-PC-JUVENTINI] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208]
[MD5.A5062EA164067050F2DFA9DCA98CA63A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3157856]
[MD5.B38CB2360B56443FFB7A45964FA9FFBF] [APT] [DiscountFrenzy-chromeinstaller] (.DiscountFrenzy.) -- C:\Program Files (x86)\DiscountFrenzy\DiscountFrenzy-chromeinstaller.exe [497664]
[MD5.C000A0F6095FD4BD7410BB9F802D306F] [APT] [DiscountFrenzy-codedownloader] (.DiscountFrenzy.) -- C:\Program Files (x86)\DiscountFrenzy\DiscountFrenzy-codedownloader.exe [514048]
[MD5.F838747E03042D95BCD3016E86141F40] [APT] [DiscountFrenzy-firefoxinstaller] (.DiscountFrenzy.) -- C:\Program Files (x86)\DiscountFrenzy\DiscountFrenzy-firefoxinstaller.exe [763392]
[MD5.3C7D95C0EFBC06B41FE9848577B58C35] [APT] [DiscountFrenzy-updater] (.DiscountFrenzy.) -- C:\Program Files (x86)\DiscountFrenzy\DiscountFrenzy-updater.exe [346112]
[MD5.00000000000000000000000000000000] [APT] [Express FilesUpdate] (...) -- C:\Program Files (x86)\ExpressFiles\EFUpdater.exe (.not file.) [0] =>Adware.ExpressFiles
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-3063805187-3416858097-2782230916-1000Core] (.Facebook Inc..) -- C:\Users\JUVENTINI\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-3063805187-3416858097-2782230916-1000UA] (.Facebook Inc..) -- C:\Users\JUVENTINI\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.00000000000000000000000000000000] [APT] [Funmoods] (...) -- C:\Users\JUVENTINI\AppData\Roaming\Funmoods\UPDATE~1\UPDATE~1.exe (.not file.) [0] =>PUP.Funmoods
[MD5.D858BA2EE718B1DB1CED20646E641D08] [APT] [globalUpdateUpdateTaskMachineCore] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608] =>PUP.GlobalUpdate
[MD5.D858BA2EE718B1DB1CED20646E641D08] [APT] [globalUpdateUpdateTaskMachineUA] (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608] =>PUP.GlobalUpdate
[MD5.00000000000000000000000000000000] [APT] [GoforFilesUpdate] (...) -- C:\Program Files (x86)\GoforFiles\GFFUpdater.exe (.not file.) [0] =>P2P.GoforFiles
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848]
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848]
[MD5.1F1C07E7DE9A70D97E11E7C083FA2331] [APT] [OnlineHD V6.0-chromeinstaller] (.installdaddy.) -- C:\Program Files (x86)\OnlineHD V6.0\OnlineHD V6.0-chromeinstaller.exe [817664]
[MD5.178DAF15539807530486B929242CEDA2] [APT] [OnlineHD V6.0-codedownloader] (.installdaddy.) -- C:\Program Files (x86)\OnlineHD V6.0\OnlineHD V6.0-codedownloader.exe [523776]
[MD5.8D06AD8D0935BD879E62F2927A7470E0] [APT] [OnlineHD V6.0-firefoxinstaller] (.installdaddy.) -- C:\Program Files (x86)\OnlineHD V6.0\OnlineHD V6.0-firefoxinstaller.exe [886272]
[MD5.D05AE10289E2629973013F193F03B70B] [APT] [OnlineHD V6.0-updater] (.installdaddy.) -- C:\Program Files (x86)\OnlineHD V6.0\OnlineHD V6.0-updater.exe [353792]
[MD5.AEA371EF82EC36A2027FF5D54B7CB063] [APT] [Pricora 2.0-codedownloader] (.Corporate Inc.) -- C:\Program Files (x86)\Pricora 2.0\Pricora 2.0-codedownloader.exe [476672] =>Adware.Pricora
[MD5.AC004C1CA39AB8811F5B17A88F3E4B7D] [APT] [Pricora 2.0-firefoxinstaller] (.Corporate Inc.) -- C:\Program Files (x86)\Pricora 2.0\Pricora 2.0-firefoxinstaller.exe [722432] =>Adware.Pricora
[MD5.5E5C284295758B2D297A68367E7A2D4F] [APT] [Pricora 2.0-updater] (.Corporate Inc.) -- C:\Program Files (x86)\Pricora 2.0\Pricora 2.0-updater.exe [363520] =>Adware.Pricora
[MD5.45F4A1C6DDE0075F85913058A1FA9A01] [APT] [ShopperPro] (.Goobzo LTD.) -- C:\Program Files (x86)\ShopperPro\ShopperPro.exe [1111400] =>PUP.ShopperPro
[MD5.29005F1B62B04BA7CC5CAD8852BA7D3A] [APT] [ShopperProJSUpd] (.Goobzo.) -- C:\Program Files (x86)\ShopperPro\updater.exe [751464] =>PUP.ShopperPro
[MD5.00000000000000000000000000000000] [APT] [SPBIW_UpdateTask_Time_323434393732313631322d415034573732456c782a5a45] (...) -- C:\ProgramData\ShopperPro\spbihe.js" spbiu.exe (.not file.) [0] =>PUP.ShopperPro
[MD5.37574D5F3C7F25D604FDAF8E8E5FAEB4] [APT] [SPDriver] (...) -- C:\Program Files (x86)\ShopperPro\JSDriver\1.38.0.1425\jsdrv.exe [3224576] =>PUP.ShopperPro
[MD5.37574D5F3C7F25D604FDAF8E8E5FAEB4] [APT] [UNELEVATE_3880] (...) -- C:\Program Files (x86)\ShopperPro\JSDriver\1.38.0.1425\jsdrv.exe [3224576] =>PUP.ShopperPro
[MD5.96257545E464D8E48A767DCA7158AB18] [APT] [YTAUpdate] (.Goobzo.) -- C:\Program Files (x86)\YOUTUB~1\Updater.exe [727040] =>PUP.Goobzo
[MD5.96257545E464D8E48A767DCA7158AB18] [APT] [YTAUpdate_logon] (.Goobzo.) -- C:\Program Files (x86)\YOUTUB~1\Updater.exe [727040] =>PUP.Goobzo
[MD5.7F4C3472EFCBE0D231DD5C5305FE6DB6] [APT] [{1B54D3F4-A8C0-4DBF-9634-8AD088599FB6}] (.GameRanger Technologies.) -- C:\Users\JUVENTINI\Downloads\Programs\GameRangerSetup.exe [114352]
[MD5.7D6E1809C844B1D2AA02B6DCF1950084] [APT] [{241EFF80-5937-4167-ACB1-D1E477FCB8E8}] (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [31087200]
[MD5.1A682DA16E2992509B950F300FB33065] [APT] [{3439C321-AD45-42E9-B4D3-095FDB05D207}] (...) -- C:\GOG Games\Stronghold Crusader Extreme HD\Language Setup.exe [2935808]
[MD5.50632FFCBF13461CE815741818C27991] [APT] [{64D3EA27-311C-410C-8EBB-52FACA8E3F3B}] (.GameRanger Technologies.) -- C:\Users\JUVENTINI\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe [1792168]
[MD5.265B49EF94A5AA713192EE97A7D248B5] [APT] [{7987AC0D-F01B-4B86-9E40-111A749DAFCE}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [338032]
[MD5.00000000000000000000000000000000] [APT] [{BF41C01D-29EE-42C1-8C5C-57306C5A5407}] (...) -- G:\Internet Download Manager 5.15 Retail\idman515.exe (.not file.) [0]
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-1 - (.iWebar.) -- C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-1.job [3758] =>PUP.CrossRider
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-1 - (.iWebar.) -- C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-1 [3758] =>PUP.CrossRider
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-11 - (.iWebar.) -- C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-11.job [5498] =>PUP.CrossRider
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-11 - (.iWebar.) -- C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-11 [5498] =>PUP.CrossRider
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-4 - (.iWebar.) -- C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-4.job [4472] =>PUP.CrossRider
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-4 - (.iWebar.) -- C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-4 [4472] =>PUP.CrossRider
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-5 - (.iWebar.) -- C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-5.job [2768] =>PUP.CrossRider
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-5 - (.iWebar.) -- C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-5 [2768] =>PUP.CrossRider
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-5_user - (.iWebar.) -- C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-5_user.job [2768] =>PUP.CrossRider
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-5_user - (.iWebar.) -- C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-5_user [2768] =>PUP.CrossRider
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-6 - (.iWebar.) -- C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-6.job [5840] =>PUP.CrossRider
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-6 - (.iWebar.) -- C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-6 [5840] =>PUP.CrossRider
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-7 - (.iWebar.) -- C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-7.job [5496] =>PUP.CrossRider
O39 - APT: 147337ad-cb83-430e-b401-f46841fd9e6e-7 - (.iWebar.) -- C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-7 [5496] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-1 - (.Object Browser.) -- C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-1.job [3758] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-1 - (.Object Browser.) -- C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-1 [3758] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-11 - (.Object Browser.) -- C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-11.job [5498] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-11 - (.Object Browser.) -- C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-11 [5498] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-3 - (.Object Browser.) -- C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-3.job [4136] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-3 - (.Object Browser.) -- C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-3 [4136] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-4 - (.Object Browser.) -- C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-4.job [4472] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-4 - (.Object Browser.) -- C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-4 [4472] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-5 - (.Object Browser.) -- C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-5.job [2768] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-5 - (.Object Browser.) -- C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-5 [2768] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-5_user - (.Object Browser.) -- C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-5_user.job [2768] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-5_user - (.Object Browser.) -- C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-5_user [2768] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-6 - (.Object Browser.) -- C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-6.job [5840] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-6 - (.Object Browser.) -- C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-6 [5840] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-7 - (.Object Browser.) -- C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-7.job [5496] =>PUP.CrossRider
O39 - APT: 5d213b31-aefd-4f9f-a9a0-f67ce112943f-7 - (.Object Browser.) -- C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-7 [5496] =>PUP.CrossRider
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: DiscountFrenzy-chromeinstaller - (.DiscountFrenzy.) -- C:\Windows\Tasks\DiscountFrenzy-chromeinstaller.job [1936] =>PUP.CrossRider
O39 - APT: DiscountFrenzy-chromeinstaller - (.DiscountFrenzy.) -- C:\Windows\System32\Tasks\DiscountFrenzy-chromeinstaller [1936] =>PUP.CrossRider
O39 - APT: DiscountFrenzy-codedownloader - (.DiscountFrenzy.) -- C:\Windows\Tasks\DiscountFrenzy-codedownloader.job [1224] =>PUP.CrossRider
O39 - APT: DiscountFrenzy-codedownloader - (.DiscountFrenzy.) -- C:\Windows\System32\Tasks\DiscountFrenzy-codedownloader [1224] =>PUP.CrossRider
O39 - APT: DiscountFrenzy-firefoxinstaller - (.DiscountFrenzy.) -- C:\Windows\Tasks\DiscountFrenzy-firefoxinstaller.job [1862] =>PUP.CrossRider
O39 - APT: DiscountFrenzy-firefoxinstaller - (.DiscountFrenzy.) -- C:\Windows\System32\Tasks\DiscountFrenzy-firefoxinstaller [1862] =>PUP.CrossRider
O39 - APT: DiscountFrenzy-updater - (.DiscountFrenzy.) -- C:\Windows\Tasks\DiscountFrenzy-updater.job [1322] =>PUP.CrossRider
O39 - APT: DiscountFrenzy-updater - (.DiscountFrenzy.) -- C:\Windows\System32\Tasks\DiscountFrenzy-updater [1322] =>PUP.CrossRider
O39 - APT: FacebookUpdateTaskUserS-1-5-21-3063805187-3416858097-2782230916-1000Core - (.Facebook Inc..) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3063805187-3416858097-2782230916-1000Core.job [922]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-3063805187-3416858097-2782230916-1000Core - (.Facebook Inc..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3063805187-3416858097-2782230916-1000Core [922]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-3063805187-3416858097-2782230916-1000UA - (.Facebook Inc..) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3063805187-3416858097-2782230916-1000UA.job [944]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-3063805187-3416858097-2782230916-1000UA - (.Facebook Inc..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3063805187-3416858097-2782230916-1000UA [944]
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job [912] =>PUP.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineCore - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore [912] =>PUP.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job [916] =>PUP.GlobalUpdate
O39 - APT: globalUpdateUpdateTaskMachineUA - (.globalUpdate.) -- C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA [916] =>PUP.GlobalUpdate
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1070]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1070]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1074]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1074]
O39 - APT: OnlineHD V6.0-chromeinstaller - (.installdaddy.) -- C:\Windows\Tasks\OnlineHD V6.0-chromeinstaller.job [1998] =>PUP.CrossRider
O39 - APT: OnlineHD V6.0-chromeinstaller - (.installdaddy.) -- C:\Windows\System32\Tasks\OnlineHD V6.0-chromeinstaller [1998] =>PUP.CrossRider
O39 - APT: OnlineHD V6.0-codedownloader - (.installdaddy.) -- C:\Windows\Tasks\OnlineHD V6.0-codedownloader.job [1240] =>PUP.CrossRider
O39 - APT: OnlineHD V6.0-codedownloader - (.installdaddy.) -- C:\Windows\System32\Tasks\OnlineHD V6.0-codedownloader [1240] =>PUP.CrossRider
O39 - APT: OnlineHD V6.0-firefoxinstaller - (.installdaddy.) -- C:\Windows\Tasks\OnlineHD V6.0-firefoxinstaller.job [2232] =>PUP.CrossRider
O39 - APT: OnlineHD V6.0-firefoxinstaller - (.installdaddy.) -- C:\Windows\System32\Tasks\OnlineHD V6.0-firefoxinstaller [2232] =>PUP.CrossRider
O39 - APT: OnlineHD V6.0-updater - (.installdaddy.) -- C:\Windows\Tasks\OnlineHD V6.0-updater.job [2068] =>PUP.CrossRider
O39 - APT: OnlineHD V6.0-updater - (.installdaddy.) -- C:\Windows\System32\Tasks\OnlineHD V6.0-updater [2068] =>PUP.CrossRider
O39 - APT: Pricora 2.0-codedownloader - (.Corporate Inc.) -- C:\Windows\Tasks\Pricora 2.0-codedownloader.job [1208] =>PUP.CrossRider
O39 - APT: Pricora 2.0-codedownloader - (.Corporate Inc.) -- C:\Windows\System32\Tasks\Pricora 2.0-codedownloader [1208] =>PUP.CrossRider
O39 - APT: Pricora 2.0-firefoxinstaller - (.Corporate Inc.) -- C:\Windows\Tasks\Pricora 2.0-firefoxinstaller.job [1840] =>PUP.CrossRider
O39 - APT: Pricora 2.0-firefoxinstaller - (.Corporate Inc.) -- C:\Windows\System32\Tasks\Pricora 2.0-firefoxinstaller [1840] =>PUP.CrossRider
O39 - APT: Pricora 2.0-updater - (.Corporate Inc.) -- C:\Windows\Tasks\Pricora 2.0-updater.job [2060] =>PUP.CrossRider
O39 - APT: Pricora 2.0-updater - (.Corporate Inc.) -- C:\Windows\System32\Tasks\Pricora 2.0-updater [2060] =>PUP.CrossRider
~ Scheduled Task: 232 Scanned in 00mn 04s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer [64Bits] - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 10 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (avgtp) . (.AVG Technologies - Pas de description.) - C:\Windows\system32\drivers\avgtpx64.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (KLIF) . (.Kaspersky Lab ZAO - Klif Mini-Filter [fre_wlh_x64].) - C:\Windows\System32\DRIVERS\klif.sys
O41 - Driver: (KLIM6) . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - C:\Windows\System32\DRIVERS\klim6.sys
O41 - Driver: (kltdi) . (.Kaspersky Lab ZAO - Network filtering component.) - C:\Windows\System32\DRIVERS\kltdi.sys
O41 - Driver: (kneps) . (.Kaspersky Lab ZAO - KNEPS Power.) - C:\Windows\System32\DRIVERS\kneps.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: Windows Socket 2.0 Non-IFS Service Provider Support Environment (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Drivers: 81 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: 7-Zip 9.20 - (...) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: AVG SafeGuard toolbar - (.AVG Technologies.) [HKLM][64Bits] -- AVG SafeGuard toolbar
O42 - Logiciel: AVerMedia A311 Mini-Card TV Tuner 1.3.64.83 - (.AVerMedia TECHNOLOGIES, Inc..) [HKLM][64Bits] -- AVerMedia A311 Mini-Card TV Tuner
O42 - Logiciel: Adobe Flash Player 16 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 16 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Illustrator CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {9B97EC91-B3FD-4BFF-88FC-5345A26AC2E7} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {15FEDA5F-141C-4127-8D7E-B962D1742728} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Reader XI - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2F72F540-1F60-4266-9506-952B21D6640D}
O42 - Logiciel: Assassin's Creed Revelations - (.Ubisoft.) [HKLM][64Bits] -- {33A22B2D-55BA-4508-B767-BF2E9C21A73F}
O42 - Logiciel: Badoo Desktop - (.Badoo.) [HKLM][64Bits] -- {D91D71FB-C52E-440D-8A78-5E5E05487DA0}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: BrowserProtect - (...) [HKLM][64Bits] -- {15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693} =>Hijacker.Eazel
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Cheat Engine 6.2 - (.Dark Byte.) [HKLM][64Bits] -- Cheat Engine 6.2_is1
O42 - Logiciel: Corel Graphics - Windows Shell Extension - (.Corel Corporation.) [HKLM][64Bits] -- _{B922902F-E9E9-4AD9-B87D-7F62FA9EA1AD}
O42 - Logiciel: Corel Graphics - Windows Shell Extension - (.Corel Corporation.) [HKLM][64Bits] -- {B922902F-E9E9-4AD9-B87D-7F62FA9EA1AD}
O42 - Logiciel: Corel Graphics - Windows Shell Extension 64 Bit - (.Corel Corporation.) [HKLM][64Bits] -- {E3B264CE-D9CF-448B-960F-4F832FB1F990}
O42 - Logiciel: CorelDRAW Graphics Suite X5 - IPM - (.Corel Corporation.) [HKLM][64Bits] -- {DE6CBC04-8673-4DBA-BA81-07F1639CEB5F}
O42 - Logiciel: CorelDRAW Graphics Suite X5 - WT - (. Corel Corporation.) [HKLM][64Bits] -- {9244E956-5939-4B88-930C-0699D4AB2B95}
O42 - Logiciel: CorelDRAW(R) Graphics Suite X5 - (.Corel Corporation.) [HKLM][64Bits] -- _{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}
O42 - Logiciel: Counter-Strike 1.6 - (...) [HKLM][64Bits] -- Counter-Strike 1.6
O42 - Logiciel: DiscountFrenzy - (.DiscountFrenzy.) [HKLM][64Bits] -- DiscountFrenzy
O42 - Logiciel: Dishonored - (...) [HKLM][64Bits] -- Dishonored_is1
O42 - Logiciel: DriverIdentifier 4.2.7 - (.DriverIdentifier.) [HKLM][64Bits] -- {40A3E5DB-5EF8-4F04-BF3E-7AB87C4AE85A}_is1
O42 - Logiciel: Express Burn - (.NCH Software.) [HKLM][64Bits] -- ExpressBurn
O42 - Logiciel: F1 2013 - (...) [HKLM][64Bits] -- RjEyMDEz_is1
O42 - Logiciel: FLV Player - (.Somoto Ltd..) [HKCU][64Bits] -- FLV Player =>Adware.MegaSearch
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM][64Bits] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7}
O42 - Logiciel: FormatFactory 3.1.1 - (.Free Time.) [HKLM][64Bits] -- FormatFactory
O42 - Logiciel: GameRanger - (.GameRanger Technologies.) [HKCU][64Bits] -- GameRanger
O42 - Logiciel: GameSpy Arcade - (...) [HKLM][64Bits] -- GameSpy Arcade
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google+ Auto Backup - (.Google.) [HKLM][64Bits] -- {A50DE037-B5C0-4C8A-8049-B0C576B313D1}
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager
O42 - Logiciel: Java 7 Update 71 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217025FF}
O42 - Logiciel: Kaspersky Internet Security 2013 - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}
O42 - Logiciel: Kaspersky Internet Security 2013 - (.Kaspersky Lab.) [HKLM][64Bits] -- {560985FB-4B76-4121-9189-7A2CDC7886D6}
O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Micro Application - 38 Dictionnaires et Recueils de Correspondance - (...) [HKLM][64Bits] -- {B410328C-0E8C-4DD2-9DB4-DE7766D0DFE0}
O42 - Logiciel: Microsoft DirectX SDK (August 2009) - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft DirectX SDK (August 2009)
O42 - Logiciel: MixPad - Mixeur de fichiers audio - (.NCH Software.) [HKLM][64Bits] -- MixPad
O42 - Logiciel: Mozilla Firefox 35.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 35.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: MyPC Backup - (.MyPC Backup.) [HKLM][64Bits] -- MyPC Backup =>PUP.MyPCBackup
O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Display Control Panel
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers
O42 - Logiciel: NVIDIA GeForce Experience 1.8 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {46ED2B64-85C7-4E1F-920C-A555B21F2E4C}
O42 - Logiciel: NVIDIA Virtual Audio 1.2.12 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver
O42 - Logiciel: OnlineHD V6.0 - (.installdaddy.) [HKLM][64Bits] -- OnlineHD V6.0
O42 - Logiciel: OnlineHDTV - (.OnlineHD.TV.) [HKLM][64Bits] -- 1ClickDownload =>PUP.1ClickDownloader
O42 - Logiciel: Opera 12.02 - (.Opera Software ASA.) [HKLM][64Bits] -- Opera 12.02.1578
O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392}
O42 - Logiciel: PVSonyDll - (.NVIDIA Corporation.) [HKLM][64Bits] -- {3D3E663D-4E7E-4577-A560-7ECDDD45548A}
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO
O42 - Logiciel: Pricora 2.0 - (.Corporate Inc.) [HKLM][64Bits] -- Pricora 2.0 =>Adware.Pricora
O42 - Logiciel: Prism - Convertisseur de fichiers vidéo - (.NCH Software.) [HKLM][64Bits] -- Prism
O42 - Logiciel: Pro Evolution Soccer 2013 - (.KONAMI.) [HKLM][64Bits] -- {C2523AE6-F335-4D0B-BC15-1C07E4ACE629}
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc
O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva
O42 - Logiciel: Senses - (.Object Browser.) [HKLM][64Bits] -- Senses =>PUP.ObjectBrowser
O42 - Logiciel: Shopper-Pro - (...) [HKLM][64Bits] -- ShopperPro =>PUP.ShopperPro
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Skype™ 7.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Stronghold Crusader - (...) [HKLM][64Bits] -- {8C3727F2-8E37-49E4-820C-03B1677F53B6}
O42 - Logiciel: Stronghold Crusader Extreme HD - (.GOG.com.) [HKLM][64Bits] -- GOGPACKSTRONGHOLDCRUSADERHD_is1
O42 - Logiciel: TeamViewer 8 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 8
O42 - Logiciel: Torch - (.Torch Media Inc..) [HKCU][64Bits] -- Torch
O42 - Logiciel: Total Video Converter 3.71 100812 - (.EffectMatrix Inc..) [HKLM][64Bits] -- Total Video Converter 3.71_is1
O42 - Logiciel: USB Network Joystick - (...) [HKLM][64Bits] -- {2A558A06-A44E-400D-95AD-D9FAA89AFD36}
O42 - Logiciel: Ubisoft Game Launcher - (.UBISOFT.) [HKLM][64Bits] -- {888F1505-C2B3-4FDE-835D-36353EBD4754}
O42 - Logiciel: Unibet.fr - (...) [HKCU][64Bits] -- Unibet.fr
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer
O42 - Logiciel: VAIO Care - (.Sony Corporation.) [HKLM][64Bits] -- {36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5}
O42 - Logiciel: VLC media player 2.0.5 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Video Download Converter version 1.0.0.0 - (...) [HKLM][64Bits] -- VDC_is1 =>Adware.VideoDownloadConverter
O42 - Logiciel: VideoDownloadConverter Toolbar - (.Mindspark Interactive Network.) [HKLM][64Bits] -- VideoDownloadConverter_4zbar Uninstall =>PUP.MindSpark
O42 - Logiciel: WavePad - Logiciel d'édition audio - (.NCH Software.) [HKLM][64Bits] -- WavePad
O42 - Logiciel: Webplayer - (.Kreapixel.) [HKLM][64Bits] -- Webplayer =>Adware.SocialSkinz
O42 - Logiciel: WinZip 17.5 - (.WinZip Computing, S.L. .) [HKLM][64Bits] -- {CD95F661-A5C4-44F5-A6AA-ECDD91C240DB}
O42 - Logiciel: Windows Driver Package - NextWindow (hidkmdf) HIDClass (12/21/2009 2.1.7.5 - (.NextWindow.) [HKLM][64Bits] -- 6C880A92DED10F300BA7CA3CB4E9DF9E6313CE7F
O42 - Logiciel: Yontoo 2.04 - (.Yontoo LLC.) [HKLM][64Bits] -- {889DF117-14D1-44EE-9F31-C5FB5D47F68B} =>Adware.Yontoo
O42 - Logiciel: YouTube Accelerator - (.Goobzo Ltd..) [HKLM][64Bits] -- YouTube Accelerator =>PUP.Goobzo
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {5FE78439-7CAA-45FE-A808-2D7A0FC98643}
O42 - Logiciel: iWebar - (.iWebar.) [HKLM][64Bits] -- iWebar =>PUP.CrossRider
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>P2P.BitTorrent
~ Logic: 78 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader
[HKCU\Software\5bed9dfb06aef49] =>Hijacker.Eazel
[HKCU\Software\7-Zip]
[HKCU\Software\AVG SafeGuard toolbar]
[HKCU\Software\Adobe]
[HKCU\Software\AlterGeo]
[HKCU\Software\AppDataLow\SProtector] =>PUP.Mocaflix
[HKCU\Software\AppDataLow\Software\ConduitSearchScopes]
[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\DiscountFrenzy]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\OnlineHD V6.0]
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\AppDataLow\Software\Pricora 2.0] =>Adware.Pricora
[HKCU\Software\AppDataLow\Software\Senses]
[HKCU\Software\AppDataLow\Software\SmartBar] =>Hijacker.SmartBar
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow\Software\VideoDownloadConverter_4z] =>PUP.MindSpark
[HKCU\Software\AppDataLow\Software\iWebar] =>PUP.CrossRider
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Appscion] =>PUP.LiveSoftAction
[HKCU\Software\Arkane]
[HKCU\Software\BabSolution] =>Hijacker.BabSolution
[HKCU\Software\Badoo]
[HKCU\Software\BitTorrent] =>P2P.BitTorrent
[HKCU\Software\Blizzard Entertainment]
[HKCU\Software\Cheat Engine]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Clubic]
[HKCU\Software\Code Sector]
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\Corel]
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr
[HKCU\Software\DownloadManager]
[HKCU\Software\ExpressFiles] =>Adware.ExpressFiles
[HKCU\Software\Facebook]
[HKCU\Software\FileScout] =>PUP.FileScout
[HKCU\Software\FreeTime]
[HKCU\Software\Froggie]
[HKCU\Software\GNU]
[HKCU\Software\GOG.com]
[HKCU\Software\Gabest]
[HKCU\Software\GameSpy]
[HKCU\Software\GetData]
[HKCU\Software\GoforFiles] =>P2P.GoforFiles
[HKCU\Software\Goobzo] =>PUP.Goobzo
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\IM Providers]
[HKCU\Software\INCAInternet]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\InstalledBrowserExtensions] =>PUP.BrowserExtensions
[HKCU\Software\JavaSoft]
[HKCU\Software\KasperskyLab]
[HKCU\Software\LAventure]
[HKCU\Software\Licenses]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\Mediachance]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Nico Mak Computing]
[HKCU\Software\Nosibay]
[HKCU\Software\ODBC]
[HKCU\Software\Opera Software]
[HKCU\Software\PTECH]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\PowerISO]
[HKCU\Software\SFX TEAM]
[HKCU\Software\SWiSHzone.com]
[HKCU\Software\Serif]
[HKCU\Software\Settings]
[HKCU\Software\ShopperPro] =>PUP.ShopperPro
[HKCU\Software\SkypeRS]
[HKCU\Software\Skype]
[HKCU\Software\SmartTweak]
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Softwis]
[HKCU\Software\SpecItems]
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKCU\Software\TeamViewer]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\Ubisoft]
[HKCU\Software\Ultracopier]
[HKCU\Software\Unity]
[HKCU\Software\Valve]
[HKCU\Software\VideoDownloadConverter_4z] =>PUP.MindSpark
[HKCU\Software\WebPlayer]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\WinZip Computing]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\delta LTD]
[HKCU\Software\funmoodsToolbar] =>PUP.Funmoods
[HKCU\Software\funmoods] =>PUP.Funmoods
[HKCU\Software\globalUpdate] =>PUP.GlobalUpdate
[HKCU\Software\iLivid] =>Adware.Bandoo
[HKCU\Software\tvp]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\CBSTEST]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Code Sector]
[HKLM\Software\GEAR Software]
[HKLM\Software\IM Providers]
[HKLM\Software\InstalledBrowserExtensions] =>PUP.BrowserExtensions
[HKLM\Software\Intel]
[HKLM\Software\KasperskyLab]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nico Mak Computing]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Senses-nv]
[HKLM\Software\ShopperPro] =>PUP.ShopperPro
[HKLM\Software\Sonic]
[HKLM\Software\Sony Corporation]
[HKLM\Software\Sony]
[HKLM\Software\Tarma Installer] =>PUP.Tarma
[HKLM\Software\WIBU-SYSTEMS]
[HKLM\Software\Wow6432Node\013d0d4c-8916-440b-af05-a0e5ace47726] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\06055a55-3e59-4f05-9146-542f6c631be8] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\06a36beb-5f3b-491e-bd34-9f606c2e92c1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\5bed9dfb06aef49] =>Hijacker.Eazel
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\AVG Security Toolbar] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Activision]
[HKLM\Software\Wow6432Node\AdobeFlashPlayerUpdate]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\AviSynth]
[HKLM\Software\Wow6432Node\Babylon] =>PUP.Babylon
[HKLM\Software\Wow6432Node\Bitstream]
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Corel]
[HKLM\Software\Wow6432Node\Datamngr] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\EA Games]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Even Balance]
[HKLM\Software\Wow6432Node\ExpressFiles] =>Adware.ExpressFiles
[HKLM\Software\Wow6432Node\Firefly Studios]
[HKLM\Software\Wow6432Node\GNU]
[HKLM\Software\Wow6432Node\GOG.com]
[HKLM\Software\Wow6432Node\GameSpy]
[HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate
[HKLM\Software\Wow6432Node\GoforFiles] =>P2P.GoforFiles
[HKLM\Software\Wow6432Node\Goobzo] =>PUP.Goobzo
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\InstallCore] =>Adware.InstallCore
[HKLM\Software\Wow6432Node\InstalledBrowserExtensions] =>PUP.BrowserExtensions
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KONAMI]
[HKLM\Software\Wow6432Node\KasperskyLab]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\LAventure]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\Micro Application]
[HKLM\Software\Wow6432Node\MimarSinan]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NCH Software]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Netscape]
[HKLM\Software\Wow6432Node\Nico Mak Computing]
[HKLM\Software\Wow6432Node\Ntreev USA]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Opera Software]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Protexis]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SP Global] =>PUP.AdvancedSystemProtector
[HKLM\Software\Wow6432Node\SProtector] =>PUP.Mocaflix
[HKLM\Software\Wow6432Node\Senses-nv]
[HKLM\Software\Wow6432Node\Serif]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node\Sony]
[HKLM\Software\Wow6432Node\Systweak]
[HKLM\Software\Wow6432Node\TeamViewer]
[HKLM\Software\Wow6432Node\Torch]
[HKLM\Software\Wow6432Node\UBISOFT]
[HKLM\Software\Wow6432Node\VideoDownloadConverter_4z] =>PUP.MindSpark
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\WIBU-SYSTEMS]
[HKLM\Software\Wow6432Node\WinRAR]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\a03c2d8a-e984-43a5-b0d7-03001bce65d9] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\aartemisSoftware] =>PUP.AArtemis
[HKLM\Software\Wow6432Node\babylontoolbar] =>PUP.Babylon
[HKLM\Software\Wow6432Node\iTinySoft]
[HKLM\Software\Wow6432Node\iWebar-nv] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\mcafeeupdater]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\iWebar-nv] =>PUP.CrossRider
~ Key Software: 410 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 12/11/2014 - 19:47:07 - [] ----D C:\Program Files (x86)\5f9a70a8-67d0-4292-84d8-424ab4cffb07
O43 - CFD: 12/11/2014 - 19:26:01 - [] ----D C:\Program Files (x86)\6239a4b9-cedc-4df2-ad66-83cb13344adb
O43 - CFD: 12/11/2014 - 19:47:07 - [] ----D C:\Program Files (x86)\7-Zip
O43 - CFD: 12/11/2014 - 19:26:01 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 21/02/2013 - 20:25:58 - [] ----D C:\Program Files (x86)\AVerMedia
O43 - CFD: 25/08/2014 - 21:54:59 - [] ----D C:\Program Files (x86)\AVG SafeGuard toolbar
O43 - CFD: 07/12/2013 - 20:54:03 - [] ----D C:\Program Files (x86)\Bethesda Softworks
O43 - CFD: 09/12/2013 - 23:34:40 - [] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 29/04/2013 - 19:14:01 - [] ----D C:\Program Files (x86)\Cheat Engine 6.2
O43 - CFD: 24/12/2013 - 23:17:18 - [] ----D C:\Program Files (x86)\CodeMeter
O43 - CFD: 15/11/2014 - 18:28:28 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 20/03/2013 - 19:56:57 - [] ----D C:\Program Files (x86)\Conduit
O43 - CFD: 22/02/2013 - 19:54:17 - [] ----D C:\Program Files (x86)\Corel
O43 - CFD: 13/03/2013 - 02:23:32 - [] ----D C:\Program Files (x86)\Counter-Strike 1.6
O43 - CFD: 19/01/2015 - 22:44:02 - [] ----D C:\Program Files (x86)\DiscountFrenzy
O43 - CFD: 07/12/2013 - 00:08:42 - [] ----D C:\Program Files (x86)\Driver Identifier
O43 - CFD: 26/11/2013 - 19:50:37 - [] ----D C:\Program Files (x86)\Firefly Studios
O43 - CFD: 12/07/2013 - 04:15:30 - [] ----D C:\Program Files (x86)\FreeTime
O43 - CFD: 09/12/2013 - 19:28:58 - [] ----D C:\Program Files (x86)\GameSpy Arcade
O43 - CFD: 12/11/2014 - 19:25:25 - [] ----D C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 03/03/2015 - 22:01:25 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 24/06/2013 - 10:56:55 - [] ----D C:\Program Files (x86)\Gophoto.it =>Spyware.GophotoIt
O43 - CFD: 26/11/2013 - 19:50:36 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 21/02/2013 - 20:26:20 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 10/05/2014 - 00:36:17 - [] ----D C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 11/02/2015 - 15:10:24 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 09/12/2013 - 23:35:19 - [] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 19/01/2015 - 22:44:01 - [] ----D C:\Program Files (x86)\iWebar =>PUP.CrossRider
O43 - CFD: 15/11/2014 - 18:28:06 - [] ----D C:\Program Files (x86)\Java
O43 - CFD: 21/02/2013 - 21:00:06 - [] ----D C:\Program Files (x86)\Kaspersky Lab
O43 - CFD: 23/11/2013 - 22:28:56 - [] ----D C:\Program Files (x86)\KONAMI
O43 - CFD: 21/02/2013 - 21:06:38 - [] ----D C:\Program Files (x86)\Micro Application
O43 - CFD: 27/02/2013 - 22:41:24 - [] ----D C:\Program Files (x86)\Microsoft DirectX SDK (August 2009)
O43 - CFD: 21/02/2013 - 20:36:27 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 22/02/2013 - 19:26:44 - [] ----D C:\Program Files (x86)\Microsoft SDKs
O43 - CFD: 21/02/2013 - 20:36:26 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 21/02/2013 - 20:34:42 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 22/02/2013 - 19:28:49 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 9.0
O43 - CFD: 21/02/2013 - 20:36:33 - [] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 10/10/2013 - 20:17:26 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 10/02/2015 - 20:40:29 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 13/02/2015 - 14:30:44 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 21/02/2013 - 20:36:28 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 25/11/2014 - 05:00:01 - [] ----D C:\Program Files (x86)\MyPC Backup =>PUP.MyPCBackup
O43 - CFD: 23/11/2013 - 01:18:22 - [] ----D C:\Program Files (x86)\NCH Software
O43 - CFD: 24/08/2013 - 13:07:17 - [] ----D C:\Program Files (x86)\Nosibay
O43 - CFD: 07/12/2013 - 21:11:13 - [] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 19/01/2015 - 22:44:01 - [] ----D C:\Program Files (x86)\OnlineHD V6.0
O43 - CFD: 23/12/2013 - 01:25:10 - [] ----D C:\Program Files (x86)\OnlineHD.TV
O43 - CFD: 21/02/2013 - 20:29:19 - [] ----D C:\Program Files (x86)\Opera
O43 - CFD: 22/02/2013 - 18:53:38 - [] ----D C:\Program Files (x86)\PowerISO
O43 - CFD: 18/02/2015 - 02:34:31 - [] ----D C:\Program Files (x86)\Pricora 2.0 =>Adware.Pricora
O43 - CFD: 14/07/2009 - 06:32:38 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 23/12/2013 - 01:27:55 - [0] ----D C:\Program Files (x86)\SecretSauce =>Adware.SecretSauce
O43 - CFD: 19/01/2015 - 22:43:59 - [] ----D C:\Program Files (x86)\Senses
O43 - CFD: 25/11/2013 - 23:58:34 - [] ----D C:\Program Files (x86)\Serif
O43 - CFD: 01/03/2015 - 18:37:51 - [] ----D C:\Program Files (x86)\ShopperPro =>PUP.ShopperPro
O43 - CFD: 24/02/2015 - 10:27:04 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 09/12/2013 - 23:42:39 - [0] ----D C:\Program Files (x86)\SmartTweak
O43 - CFD: 20/03/2013 - 19:25:18 - [] ----D C:\Program Files (x86)\SmartTweak Software
O43 - CFD: 17/01/2014 - 22:52:13 - [0] ----D C:\Program Files (x86)\Ss_Helper =>Adware.SaveShare
O43 - CFD: 19/02/2015 - 13:18:43 - [] ----D C:\Program Files (x86)\Stronghold Crusader 2
O43 - CFD: 29/04/2013 - 19:10:56 - [] ----D C:\Program Files (x86)\TeamViewer
O43 - CFD: 21/02/2013 - 20:38:08 - [] ----D C:\Program Files (x86)\Total Video Converter
O43 - CFD: 25/02/2013 - 16:55:59 - [] ----D C:\Program Files (x86)\Ubisoft
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 09/10/2013 - 21:03:43 - [] ----D C:\Program Files (x86)\USB Vibration
O43 - CFD: 04/05/2013 - 16:02:29 - [] ----D C:\Program Files (x86)\Video Download Converter =>Adware.VideoDownloadConverter
O43 - CFD: 04/05/2013 - 16:00:35 - [] ----D C:\Program Files (x86)\VideoDownloadConverter_4z =>PUP.MindSpark
O43 - CFD: 21/02/2013 - 20:28:14 - [] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 10/07/2013 - 03:19:18 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 13/03/2013 - 16:47:50 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 15/10/2014 - 16:33:30 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - 06:32:38 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 13/03/2013 - 16:47:49 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 04:31:38 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 13/03/2013 - 16:47:50 - [] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 21/02/2013 - 20:27:55 - [] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 16/11/2013 - 03:56:04 - [] ----D C:\Program Files (x86)\Yontoo =>Adware.Yontoo
O43 - CFD: 12/11/2014 - 19:14:59 - [] ----D C:\Program Files (x86)\YouTube Accelerator
O43 - CFD: 18/02/2015 - 02:34:25 - [] ----D C:\Program Files (x86)\YTAHelper =>PUP.Goobzo
O43 - CFD: 04/03/2015 - 00:05:31 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 22/02/2013 - 19:06:25 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 09/12/2013 - 23:35:08 - [] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 27/07/2014 - 18:50:00 - [] ----D C:\Program Files (x86)\Common Files\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 22/02/2013 - 19:26:04 - [] ----D C:\Program Files (x86)\Common Files\Corel
O43 - CFD: 21/02/2013 - 20:36:26 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 21/02/2013 - 22:31:33 - [] --H-D C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 26/11/2013 - 19:48:40 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 15/11/2014 - 18:28:28 - [] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 22/02/2013 - 19:26:54 - [] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 22/02/2013 - 19:56:27 - [] ----D C:\Program Files (x86)\Common Files\Protexis
O43 - CFD: 14/07/2009 - 04:20:08 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 16/09/2014 - 11:25:42 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 21/02/2013 - 20:27:03 - [] ----D C:\Program Files (x86)\Common Files\Sony Shared
O43 - CFD: 14/07/2009 - 04:20:08 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 11/04/2013 - 12:16:00 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 09/12/2013 - 23:35:19 - [] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 23/02/2013 - 02:03:40 - [0] ----D C:\ProgramData\4shared Desktop
O43 - CFD: 09/05/2013 - 16:14:57 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 22/02/2013 - 19:05:45 - [0] ----D C:\ProgramData\ALM
O43 - CFD: 12/07/2013 - 04:16:13 - [] ----D C:\ProgramData\APN
O43 - CFD: 05/03/2013 - 03:22:34 - [] ----D C:\ProgramData\Apple
O43 - CFD: 05/03/2013 - 03:24:01 - [] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 11/04/2014 - 21:23:13 - [] ----D C:\ProgramData\AVG SafeGuard toolbar
O43 - CFD: 02/06/2014 - 20:55:15 - [] ----D C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 23/02/2013 - 02:00:18 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 15/12/2014 - 02:09:52 - [] ----D C:\ProgramData\Badoo
O43 - CFD: 21/07/2013 - 06:38:15 - [] ----D C:\ProgramData\Battle.net
O43 - CFD: 08/12/2013 - 20:32:13 - [] ----D C:\ProgramData\Codemasters
O43 - CFD: 17/11/2013 - 19:40:28 - [] --H-D C:\ProgramData\Common Files
O43 - CFD: 10/06/2011 - 23:47:10 - [] ----D C:\ProgramData\Compaq
O43 - CFD: 22/02/2013 - 19:56:26 - [] ----D C:\ProgramData\Corel
O43 - CFD: 22/02/2013 - 19:58:06 - [0] ----D C:\ProgramData\CorelDRAW Graphics Suite X5
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Favorites
O43 - CFD: 28/08/2013 - 21:04:13 - [] ----D C:\ProgramData\IBUpdaterService =>Adware.InstallBrain
O43 - CFD: 17/01/2014 - 23:20:05 - [0] ----D C:\ProgramData\IDM
O43 - CFD: 03/10/2013 - 13:29:00 - [] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 03/03/2015 - 23:50:33 - [] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 20/11/2013 - 21:17:17 - [] ----D C:\ProgramData\KONAMI
O43 - CFD: 24/02/2013 - 00:26:30 - [] ----D C:\ProgramData\McAfee
O43 - CFD: 06/12/2013 - 19:38:04 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 27/02/2013 - 22:39:34 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 21/02/2013 - 20:29:45 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 25/11/2013 - 23:56:16 - [] ----D C:\ProgramData\NCH Software
O43 - CFD: 07/12/2013 - 00:50:47 - [] ----D C:\ProgramData\NVIDIA
O43 - CFD: 07/12/2013 - 00:48:04 - [] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 15/11/2014 - 18:28:31 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 22/02/2013 - 19:35:35 - [] ----D C:\ProgramData\Protexis
O43 - CFD: 20/03/2013 - 19:25:22 - [] ----D C:\ProgramData\RegClean
O43 - CFD: 22/02/2013 - 19:16:49 - [] ----D C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 12/11/2014 - 19:14:31 - [] ----D C:\ProgramData\ShopperPro =>PUP.ShopperPro
O43 - CFD: 24/02/2015 - 10:27:11 - [] ----D C:\ProgramData\Skype
O43 - CFD: 21/02/2013 - 20:42:21 - [] ----D C:\ProgramData\Sony Corporation
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 08/12/2013 - 20:32:12 - [] ----D C:\ProgramData\Steam
O43 - CFD: 12/11/2014 - 19:25:20 - [] ----D C:\ProgramData\Sun
O43 - CFD: 23/02/2013 - 02:00:26 - [] ----D C:\ProgramData\Tarma Installer =>PUP.Tarma
O43 - CFD: 03/03/2015 - 23:48:57 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 03/03/2015 - 23:48:34 - [] ----D C:\ProgramData\TorchCrashHandler
O43 - CFD: 23/02/2013 - 04:25:18 - [] ----D C:\ProgramData\Ubisoft
O43 - CFD: 01/08/2013 - 08:07:35 - [] ----D C:\ProgramData\WinZip
O43 - CFD: 12/11/2014 - 19:14:23 - [] ----D C:\ProgramData\YTAHelper =>PUP.Goobzo
O43 - CFD: 21/02/2013 - 20:31:10 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 21/02/2013 - 20:18:14 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 21/02/2013 - 20:18:21 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 07/12/2013 - 21:09:11 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
O43 - CFD: 21/02/2013 - 20:30:20 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 29/04/2013 - 19:14:02 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2
O43 - CFD: 22/02/2013 - 19:56:35 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5
O43 - CFD: 13/03/2013 - 02:23:32 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
O43 - CFD: 07/12/2013 - 00:08:42 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Identifier
O43 - CFD: 26/11/2013 - 19:50:36 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefly Studios
O43 - CFD: 08/12/2013 - 18:53:06 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 09/12/2013 - 19:14:59 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
O43 - CFD: 08/12/2013 - 18:52:53 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
O43 - CFD: 03/03/2015 - 22:01:32 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 10/05/2014 - 00:34:40 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 09/12/2013 - 23:35:30 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 15/11/2014 - 18:28:06 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 21/02/2013 - 21:00:37 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2013
O43 - CFD: 14/07/2009 - 05:57:09 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 21/02/2013 - 21:11:18 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Micro Application
O43 - CFD: 27/02/2013 - 22:41:26 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft DirectX SDK (August 2009)
O43 - CFD: 21/02/2013 - 20:37:18 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 24/06/2013 - 10:47:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Need For Speed Most Wanted
O43 - CFD: 06/12/2013 - 23:33:59 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 10/10/2013 - 04:36:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
O43 - CFD: 22/02/2013 - 18:53:38 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
O43 - CFD: 23/11/2013 - 01:15:40 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes de vidéo
O43 - CFD: 25/12/2013 - 01:44:02 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
O43 - CFD: 16/09/2014 - 11:25:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 11/08/2013 - 06:46:59 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 12/04/2011 - 09:28:08 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 21/02/2013 - 20:38:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video Converter
O43 - CFD: 21/02/2013 - 20:27:40 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
O43 - CFD: 04/05/2013 - 16:02:29 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Download Converter =>Adware.VideoDownloadConverter
O43 - CFD: 21/02/2013 - 20:28:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 21/02/2013 - 20:27:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 12/07/2013 - 04:33:12 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
O43 - CFD: 12/11/2014 - 19:13:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator
O43 - CFD: 04/03/2015 - 00:05:31 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 28/08/2013 - 21:05:01 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\7go =>PUP.7GoGames
O43 - CFD: 11/08/2013 - 12:00:28 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Adobe
O43 - CFD: 03/04/2013 - 05:19:28 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Adobe Mini Bridge CS5
O43 - CFD: 23/05/2013 - 22:28:51 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Apple Computer
O43 - CFD: 16/08/2013 - 21:26:46 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Auslogics
O43 - CFD: 23/02/2013 - 02:00:18 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Babylon =>PUP.Babylon
O43 - CFD: 21/02/2013 - 21:15:08 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Corel
O43 - CFD: 03/03/2015 - 23:46:28 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\DMCache
O43 - CFD: 06/12/2013 - 20:42:53 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\driver
O43 - CFD: 07/12/2013 - 00:11:45 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\driveridentifier
O43 - CFD: 07/12/2013 - 00:20:42 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\driveruploader
O43 - CFD: 19/04/2014 - 02:37:50 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\dvdcss
O43 - CFD: 21/03/2013 - 03:21:06 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\ExpressFiles =>Adware.ExpressFiles
O43 - CFD: 24/06/2013 - 10:57:20 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Funmoods =>PUP.Funmoods
O43 - CFD: 15/02/2015 - 01:58:38 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\GameRanger
O43 - CFD: 24/02/2013 - 07:47:52 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\GoforFiles =>P2P.GoforFiles
O43 - CFD: 21/02/2013 - 20:21:42 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Identities
O43 - CFD: 04/03/2015 - 00:02:37 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\IDM
O43 - CFD: 21/02/2013 - 20:45:34 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Macromedia
O43 - CFD: 12/04/2011 - 09:28:08 - [0] ----D C:\Users\JUVENTINI\AppData\Roaming\Media Center Programs
O43 - CFD: 14/10/2013 - 22:10:45 - [] -S--D C:\Users\JUVENTINI\AppData\Roaming\Microsoft
O43 - CFD: 09/05/2014 - 03:45:46 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Mozilla
O43 - CFD: 25/11/2013 - 23:56:16 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\NCH Software
O43 - CFD: 06/12/2013 - 20:24:21 - [0] ----D C:\Users\JUVENTINI\AppData\Roaming\Nosibay =>PUP.BubbleDock
O43 - CFD: 05/02/2015 - 20:08:15 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\NVIDIA
O43 - CFD: 12/11/2014 - 19:06:48 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 21/02/2013 - 20:29:20 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Opera
O43 - CFD: 20/09/2013 - 03:06:53 - [0] ----D C:\Users\JUVENTINI\AppData\Roaming\PerformerSoft =>PUP.PerformerSoft
O43 - CFD: 23/02/2013 - 02:46:53 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\PunkBuster
O43 - CFD: 12/11/2014 - 19:06:57 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\RHEng =>PUP.Conduit
O43 - CFD: 04/03/2015 - 00:08:57 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Skype
O43 - CFD: 27/02/2013 - 19:37:15 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\skypePM
O43 - CFD: 04/10/2013 - 10:51:39 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\SpeedAnalysis3 =>PUP.SpeedAnalysis
O43 - CFD: 03/04/2013 - 05:19:28 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 17/02/2015 - 23:24:06 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Steam
O43 - CFD: 06/12/2013 - 20:21:33 - [0] ----D C:\Users\JUVENTINI\AppData\Roaming\Systweak
O43 - CFD: 14/03/2013 - 03:41:14 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\TeraCopy
O43 - CFD: 03/11/2013 - 02:13:04 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Unity
O43 - CFD: 04/03/2015 - 00:09:44 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\uTorrent =>P2P.µTorrent
O43 - CFD: 27/02/2015 - 02:59:47 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\vlc
O43 - CFD: 03/09/2013 - 21:24:22 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\WebPlayerBdd =>Adware.SocialSkinz
O43 - CFD: 21/02/2013 - 23:00:43 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\WinRAR
O43 - CFD: 03/03/2015 - 23:49:40 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Yontoo =>Adware.Yontoo
O43 - CFD: 04/03/2015 - 00:10:17 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 24/08/2013 - 13:30:44 - [] ----D C:\Users\JUVENTINI\AppData\Local\Adobe
O43 - CFD: 05/03/2013 - 03:22:46 - [] ----D C:\Users\JUVENTINI\AppData\Local\Apple
O43 - CFD: 05/03/2013 - 03:24:29 - [] ----D C:\Users\JUVENTINI\AppData\Local\Apple Computer
O43 - CFD: 21/02/2013 - 20:21:28 - [] -SH-D C:\Users\JUVENTINI\AppData\Local\Application Data
O43 - CFD: 10/05/2014 - 01:02:14 - [] ----D C:\Users\JUVENTINI\AppData\Local\AVG SafeGuard toolbar
O43 - CFD: 18/11/2013 - 12:55:20 - [] ----D C:\Users\JUVENTINI\AppData\Local\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 24/08/2013 - 13:01:05 - [] ----D C:\Users\JUVENTINI\AppData\Local\Babylon =>PUP.Babylon
O43 - CFD: 06/12/2013 - 20:27:58 - [0] ----D C:\Users\JUVENTINI\AppData\Local\Conduit
O43 - CFD: 12/11/2014 - 19:09:49 - [] ----D C:\Users\JUVENTINI\AppData\Local\CrashRpt
O43 - CFD: 20/03/2013 - 19:53:41 - [] ----D C:\Users\JUVENTINI\AppData\Local\CRE
O43 - CFD: 02/03/2015 - 23:28:33 - [] ----D C:\Users\JUVENTINI\AppData\Local\Diagnostics
O43 - CFD: 19/10/2014 - 19:42:00 - [0] ----D C:\Users\JUVENTINI\AppData\Local\ElevatedDiagnostics
O43 - CFD: 16/11/2014 - 10:37:34 - [] -SH-D C:\Users\JUVENTINI\AppData\Local\EmieBrowserModeList
O43 - CFD: 27/07/2014 - 18:44:27 - [] -SH-D C:\Users\JUVENTINI\AppData\Local\EmieSiteList
O43 - CFD: 27/07/2014 - 18:44:27 - [] -SH-D C:\Users\JUVENTINI\AppData\Local\EmieUserList
O43 - CFD: 17/11/2014 - 19:23:47 - [] ----D C:\Users\JUVENTINI\AppData\Local\Facebook
O43 - CFD: 26/11/2013 - 00:07:48 - [] ----D C:\Users\JUVENTINI\AppData\Local\gegl-0.2
O43 - CFD: 12/11/2014 - 19:25:24 - [] ----D C:\Users\JUVENTINI\AppData\Local\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 03/03/2015 - 22:01:34 - [] ----D C:\Users\JUVENTINI\AppData\Local\Google
O43 - CFD: 21/02/2013 - 20:21:28 - [] -SH-D C:\Users\JUVENTINI\AppData\Local\History
O43 - CFD: 12/11/2014 - 19:10:49 - [] ----D C:\Users\JUVENTINI\AppData\Local\Installer
O43 - CFD: 24/02/2013 - 01:46:43 - [] ----D C:\Users\JUVENTINI\AppData\Local\Macromedia
O43 - CFD: 04/08/2014 - 15:46:31 - [] ----D C:\Users\JUVENTINI\AppData\Local\Microsoft
O43 - CFD: 03/03/2015 - 21:31:27 - [] ----D C:\Users\JUVENTINI\AppData\Local\Microsoft Games
O43 - CFD: 21/02/2013 - 20:34:24 - [0] ----D C:\Users\JUVENTINI\AppData\Local\Microsoft Help
O43 - CFD: 19/09/2013 - 01:19:36 - [] ----D C:\Users\JUVENTINI\AppData\Local\Mozilla
O43 - CFD: 06/12/2013 - 23:37:45 - [] ----D C:\Users\JUVENTINI\AppData\Local\NVIDIA
O43 - CFD: 06/12/2013 - 23:37:00 - [] ----D C:\Users\JUVENTINI\AppData\Local\NVIDIA Corporation
O43 - CFD: 21/02/2013 - 20:29:20 - [] ----D C:\Users\JUVENTINI\AppData\Local\Opera
O43 - CFD: 20/03/2013 - 19:24:29 - [0] ----D C:\Users\JUVENTINI\AppData\Local\PackageAware
O43 - CFD: 21/01/2014 - 01:09:25 - [] ----D C:\Users\JUVENTINI\AppData\Local\Programs
O43 - CFD: 24/06/2013 - 10:56:39 - [] ----D C:\Users\JUVENTINI\AppData\Local\PutLockerDownloader =>Spyware.PutLocker
O43 - CFD: 07/12/2013 - 21:16:14 - [] ----D C:\Users\JUVENTINI\AppData\Local\SKIDROW
O43 - CFD: 04/08/2014 - 15:45:54 - [] ----D C:\Users\JUVENTINI\AppData\Local\Skype
O43 - CFD: 04/03/2015 - 00:09:51 - [] ----D C:\Users\JUVENTINI\AppData\Local\Temp
O43 - CFD: 21/02/2013 - 20:21:28 - [] -SH-D C:\Users\JUVENTINI\AppData\Local\Temporary Internet Files
O43 - CFD: 11/07/2013 - 05:28:41 - [] ----D C:\Users\JUVENTINI\AppData\Local\Torch
O43 - CFD: 23/02/2013 - 01:15:43 - [] ----D C:\Users\JUVENTINI\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 03/11/2013 - 02:02:50 - [] ----D C:\Users\JUVENTINI\AppData\Local\Unity
O43 - CFD: 04/05/2013 - 16:00:42 - [] ----D C:\Users\JUVENTINI\AppData\Local\VideoDownloadConverter_4z =>PUP.MindSpark
O43 - CFD: 09/12/2013 - 19:12:33 - [] ----D C:\Users\JUVENTINI\AppData\Local\VirtualStore
O43 - CFD: 12/11/2014 - 19:09:20 - [] ----D C:\Users\JUVENTINI\AppData\Local\WebPlayer
O43 - CFD: 12/07/2013 - 04:33:07 - [] ----D C:\Users\JUVENTINI\AppData\Local\WinZip
O43 - CFD: 14/07/2009 - 05:54:32 - [] R---D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 15/05/2014 - 07:30:59 - [] R---D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 13/03/2013 - 02:23:32 - [0] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
O43 - CFD: 12/11/2014 - 19:09:21 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player
O43 - CFD: 12/07/2013 - 04:15:43 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 24/06/2013 - 10:56:17 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTDownloader.com =>Adware.Downware
O43 - CFD: 26/11/2013 - 19:54:46 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 09/12/2013 - 19:16:41 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
O43 - CFD: 21/01/2014 - 01:09:26 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
O43 - CFD: 10/05/2014 - 00:34:40 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 14/07/2009 - 05:49:38 - [] R---D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 22/11/2013 - 19:09:18 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup =>PUP.MyPCBackup
O43 - CFD: 23/12/2013 - 01:25:04 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OnlineHD.TV
O43 - CFD: 09/12/2013 - 23:42:39 - [0] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
O43 - CFD: 15/02/2015 - 01:58:39 - [] R---D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 11/07/2013 - 05:28:25 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
O43 - CFD: 23/02/2013 - 01:59:26 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com =>Hijacker.TornTV
O43 - CFD: 21/02/2013 - 20:27:55 - [] ----D C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Program Folder: 291 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.07A46F7428CE26DA29F0A6D828782F94] - 01/03/2015 - 13:57:28 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1666846]
O44 - LFC:[MD5.5256ED74130276F673EFCBC50F66A9D0] - 01/03/2015 - 13:57:28 ---A- . (...) -- C:\Windows\System32\perfc009.dat [121398]
O44 - LFC:[MD5.79064AEC83A0E6122EBF52E49D2E42C2] - 01/03/2015 - 13:57:28 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [148678]
O44 - LFC:[MD5.90442BA6D7C57CE3549ADA72A7388F19] - 01/03/2015 - 13:57:28 ---A- . (...) -- C:\Windows\System32\perfh009.dat [653526]
O44 - LFC:[MD5.5EA3CB41A3F76D3F7A60C0141AEEF0BB] - 01/03/2015 - 13:57:28 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [744872]
O44 - LFC:[MD5.A97CFF1CEC04FB81324F09BAB46849A2] - 03/03/2015 - 23:47:51 ---A- . (...) -- C:\Windows\PFRO.log [8588]
O44 - LFC:[MD5.A7556FB0F80A489821D70120798596CA] - 03/03/2015 - 23:47:56 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.A4A7C54253C35D5E70211D4DDB075B7A] - 03/03/2015 - 23:48:09 ---A- . (...) -- C:\Windows\setupact.log [88976]
O44 - LFC:[MD5.E3717C368421EC3E2753629633544A1B] - 04/03/2015 - 00:01:43 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1547348]
O44 - LFC:[MD5.3704A44992EF6B1272C46DFC80E8B136] - 04/03/2015 - 00:08:32 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]
~ Files: 10 Scanned in 00mn 01s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.7E3E473FF710B8E3D176589CA1D671D9] - 03/03/2015 - 23:52:28 ---A- - C:\Windows\Prefetch\BACKUPSTACK.EXE-0A0E71E8.pf =>PUP.MyPCBackup
O45 - LFCP:[MD5.BF6A27A81E9AF74649421E5C64A68BBB] - 03/03/2015 - 19:47:04 ---A- - C:\Windows\Prefetch\IWEBAR-CODEDOWNLOADER.EXE-EDFC6328.pf =>PUP.CrossRider
O45 - LFCP:[MD5.14F89E69C6A118A305DAA6B48188F890] - 03/03/2015 - 21:21:37 ---A- - C:\Windows\Prefetch\PRICORA 2.0-CODEDOWNLOADER.EX-F28AF704.pf =>Adware.Pricora
O45 - LFCP:[MD5.4FE82BAD6626592C93752BBC96F5A44F] - 03/03/2015 - 19:01:01 ---A- - C:\Windows\Prefetch\PRICORA 2.0-FIREFOXINSTALLER.-4A2D992F.pf =>Adware.Pricora
O45 - LFCP:[MD5.350A061A1C280FE76E3E9FE58DEDC759] - 03/03/2015 - 19:02:00 ---A- - C:\Windows\Prefetch\PRICORA 2.0-UPDATER.EXE-D67E5D4B.pf =>Adware.Pricora
O45 - LFCP:[MD5.FA95A42524FBCB3782204A20A57AD9FD] - 03/03/2015 - 00:38:31 ---A- - C:\Windows\Prefetch\SHOPPERPRO.EXE-D629434D.pf =>PUP.ShopperPro
O45 - LFCP:[MD5.158E5E2360A141C5E02D27728E6DC248] - 03/03/2015 - 18:39:34 ---A- - C:\Windows\Prefetch\UTORRENT.EXE-6C03023F.pf =>P2P.µTorrent
O45 - LFCP:[MD5.503FF65DC3350F46834DFB0562A60CD9] - 02/03/2015 - 12:36:28 ---A- - C:\Windows\Prefetch\WEBPLAYER.EXE-AF98C022.pf =>Adware.SocialSkinz
O45 - LFCP:[MD5.32B36DC5262E5E93B38528B77CFFC83A] - 03/03/2015 - 23:50:10 ---A- - C:\Windows\Prefetch\YONTOODESKTOP.EXE-16CAF94B.pf =>Adware.Yontoo
~ Prefetcher: 9 Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
~ LSA: 8 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - bitguard.exe - tasklist.exe =>PUP.BitGuard
O50 - IFEO:Image File Execution Options - bprotect.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - browserdefender.exe - tasklist.exe =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - browserprotect.exe - tasklist.exe =>Hijacker.Eazel
~ IFEO: Scanned in 00mn 00s



---\\ Clé de registre Shell MountPoints2 (MPSK) (O51)
O51 - MPSK:{5ada1b8b-5131-11e4-9064-18f46af1f79b}\AutoRun\command. (...) -- G:\Startme.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=28
~ MWPE Keys: 8 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [339536]
O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\Drivers\adpu320.sys [182864]
O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [15440]
O58 - SDL:21/11/2010 - 04:23:47 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [107904]
O58 - SDL:14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [194128]
O58 - SDL:21/11/2010 - 04:23:47 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [27008]
O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [87632]
O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [97856]
O58 - SDL:09/10/2009 - 02:41:02 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athrx.sys [1394176]
O58 - SDL:24/10/2011 - 05:41:24 ---A- . (.AVEO - aveodcnt.) -- C:\Windows\System32\Drivers\AVEOdcnt.sys [305920]
O58 - SDL:12/08/2014 - 13:16:15 ---A- . (.AVG Technologies - Pas de description.) -- C:\Windows\System32\Drivers\avgtpx64.sys [50976]
O58 - SDL:10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\b57nd60a.sys [270848]
O58 - SDL:10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [18432]
O58 - SDL:10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [8704]
O58 - SDL:14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [286720]
O58 - SDL:10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [47104]
O58 - SDL:10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [14976]
O58 - SDL:10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys [14720]
O58 - SDL:10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [468480]
O58 - SDL:14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [17488]
O58 - SDL:26/07/2012 - 07:32:08 ---A- . (.D-vitec - dvitdcnt.) -- C:\Windows\System32\Drivers\dvitdcnt.sys [307968]
O58 - SDL:10/06/2009 - 21:35:02 ---A- . (.Intel Corporation - Intel(R) Gigabit Network Connection NDIS 6 deserialized driver.) -- C:\Windows\System32\Drivers\e1y60x64.sys [281088]
O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
O58 - SDL:10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3286016]
O58 - SDL:21/08/2012 - 13:01:20 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [33240]
O58 - SDL:01/12/2008 - 10:27:54 ---A- . (.Your Corporation - Description string for USBFitr driver.) -- C:\Windows\System32\Drivers\h647906.sys [62576]
O58 - SDL:10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
O58 - SDL:29/06/2010 - 15:13:02 ---A- . (.Windows (R) Win 7 DDK provider - Filter Driver for HID-KMDF Interface.) -- C:\Windows\System32\Drivers\hidkmdf.sys [14328]
O58 - SDL:21/11/2010 - 04:23:47 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [78720]
O58 - SDL:21/11/2010 - 04:23:47 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [410496]
O58 - SDL:02/10/2013 - 10:17:54 ---A- . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\Drivers\idmwfp.sys [174968]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [44112]
O58 - SDL:09/10/2013 - 14:35:41 ---A- . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\Windows\System32\Drivers\kl1.sys [7717984]
O58 - SDL:22/04/2013 - 13:51:57 ---A- . (.Kaspersky Lab ZAO - Filter Core [fre_wlh_x64].) -- C:\Windows\System32\Drivers\klflt.sys [90208]
O58 - SDL:09/10/2013 - 14:35:44 ---A- . (.Kaspersky Lab ZAO - Klif Mini-Filter [fre_wlh_x64].) -- C:\Windows\System32\Drivers\klif.sys [626272]
O58 - SDL:02/08/2012 - 15:09:34 ---A- . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) -- C:\Windows\System32\Drivers\klim6.sys [28504]
O58 - SDL:09/10/2013 - 14:35:45 ---A- . (.Kaspersky Lab ZAO - KLKBDFLT Keyboard Device Filter [fre_wlh_x64].) -- C:\Windows\System32\Drivers\klkbdflt.sys [29280]
O58 - SDL:09/10/2013 - 14:35:46 ---A- . (.Kaspersky Lab ZAO - KLMOUFLT Mouse Device Filter [fre_wlh_x64].) -- C:\Windows\System32\Drivers\klmouflt.sys [29280]
O58 - SDL:18/06/2013 - 17:33:56 ---A- . (.Kaspersky Lab ZAO - Network filtering component.) -- C:\Windows\System32\Drivers\kltdi.sys [54368]
O58 - SDL:22/04/2013 - 13:51:58 ---A- . (.Kaspersky Lab ZAO - KNEPS Power.) -- C:\Windows\System32\Drivers\kneps.sys [178448]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [114752]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [106560]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [65600]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [115776]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\System32\Drivers\megasas.sys [35392]
O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [284736]
O58 - SDL:14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [51264]
O58 - SDL:16/08/2010 - 21:50:00 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 259.42.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [12492008]
O58 - SDL:21/11/2010 - 04:23:47 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [148352]
O58 - SDL:21/11/2010 - 04:23:47 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [166272]
O58 - SDL:30/10/2013 - 18:03:12 ---A- . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\Drivers\nvvad64v.sys [39200]
O58 - SDL:29/06/2010 - 15:12:56 ---A- . (.Pas de propriétaire - NWHIDFil.) -- C:\Windows\System32\Drivers\NW1950.sys [26104]
O58 - SDL:29/06/2010 - 15:12:56 ---A- . (.Pas de propriétaire - Kernel.) -- C:\Windows\System32\Drivers\NWTransLib.sys [144376]
O58 - SDL:14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1524816]
O58 - SDL:14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [128592]
O58 - SDL:15/11/2011 - 04:50:14 ---A- . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\Drivers\scdemu.sys [125376]
O58 - SDL:10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040]
O58 - SDL:03/08/2007 - 05:35:54 ---A- . (.Sony Corporation - Sony Firmware Extension Parser driver.) -- C:\Windows\System32\Drivers\SFEP.sys [11392]
O58 - SDL:14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [43584]
O58 - SDL:14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [80464]
O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
O58 - SDL:13/12/2012 - 13:50:36 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl64.sys [54784]
O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [17488]
O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [161872]
O58 - SDL:01/12/2008 - 10:27:52 ---A- . (.Your Corporation - Description string for USBFitr driver.) -- C:\Windows\SysWOW64\drivers\hid7906.sys [41096]
O58 - SDL:24/07/2013 - 07:44:10 ---A- . (.INCA Internet Co., Ltd. - nProtect NPSC Kernel Mode Driver for NT.) -- C:\Windows\SysWOW64\npptNT2.sys [5098]
~ Drivers: 67 Scanned in 00mn 01s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 01/03/2015 - 00:10:25 ---A- . (...) -- C:\Users\JUVENTINI\AppData\Local\Temp\ShopperProJSINJFull.exe [4704306] =>PUP.ShopperPro
O61 - LFC: 03/03/2015 - 00:10:25 ---A- . (...) -- C:\Users\JUVENTINI\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 03/03/2015 - 00:10:26 ---A- . (...) -- C:\Users\JUVENTINI\AppData\Roaming\Yontoo\dat\Desktop.OS.Plugin.dll [13600] =>Adware.Yontoo
O61 - LFC: 03/03/2015 - 00:10:26 ---A- . (.BitTorrent Inc..) -- C:\Users\JUVENTINI\AppData\Roaming\uTorrent\updates\3.4.2_38913.exe [1742928] =>P2P.BitTorrent
O61 - LFC: 04/03/2015 - 00:10:26 ---A- . (.Nicolas Coolman.) -- C:\Users\JUVENTINI\Downloads\Programs\ZHPDiag2.exe [6876249] =>.Nicolas Coolman
O61 - LFC: 26/02/2015 - 00:10:25 ---A- . (...) -- C:\Users\JUVENTINI\AppData\Local\NVIDIA\NvBackend\Packages\00007099\CoProc update.19353367.exe [438152]
O61 - LFC: 26/02/2015 - 00:10:25 ---A- . (...) -- C:\Users\JUVENTINI\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [4239768]
O61 - LFC: 26/02/2015 - 00:10:25 ---A- . (.NVIDIA Corporation.) -- C:\Users\JUVENTINI\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe [675256]
O61 - LFC: 26/02/2015 - 00:10:25 ---A- . (.NVIDIA Corporation.) -- C:\Users\JUVENTINI\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe [172984]
O61 - LFC: 26/02/2015 - 00:10:25 ---A- . (.NVIDIA Corporation.) -- C:\Users\JUVENTINI\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\Ontology.dll [1402296]
O61 - LFC: 27/02/2015 - 00:10:25 ---A- . (...) -- C:\Users\JUVENTINI\AppData\Local\NVIDIA\NvBackend\Packages\000070a2\DAO.19353843.exe [5025488]
O61 - LFC: 28/02/2015 - 00:10:25 ---A- . (.Google Inc..) -- C:\Users\JUVENTINI\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.7.771\_platform_specific\win_x86\widevinecdmadapter.dll [189768]
~ 2762 Fichiers temporaires (Temporary files)
~ 202 Fichiers cookies (Cookies files)
~ Files: 12 Scanned in 00mn 01s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 12/08/2014 - C:\Windows\system32\drivers\avgtpx64.sys (avgtp) .(.AVG Technologies - Pas de description.) - LEGACY_AVGTP
O64 - Services: CurCS - 02/10/2013 - C:\Windows\System32\DRIVERS\idmwfp.sys (IDMWFP) .(.Tonec Inc. - Internet Download Manager WFP Driver.) - LEGACY_IDMWFP
O64 - Services: CurCS - 09/10/2013 - C:\Windows\System32\DRIVERS\kl1.sys (kl1) .(.Kaspersky Lab ZAO - Kaspersky Unified Driver.) - LEGACY_KL1
O64 - Services: CurCS - 09/10/2013 - C:\Windows\System32\DRIVERS\klif.sys (KLIF) .(.Kaspersky Lab ZAO - Klif Mini-Filter [fre_wlh_x64].) - LEGACY_KLIF
O64 - Services: CurCS - 02/08/2012 - C:\Windows\System32\DRIVERS\klim6.sys (KLIM6) .(.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - LEGACY_KLIM6
O64 - Services: CurCS - 18/06/2013 - C:\Windows\System32\DRIVERS\kltdi.sys (kltdi) .(.Kaspersky Lab ZAO - Network filtering component.) - LEGACY_KLTDI
O64 - Services: CurCS - 22/04/2013 - C:\Windows\System32\DRIVERS\kneps.sys (kneps) .(.Kaspersky Lab ZAO - KNEPS Power.) - LEGACY_KNEPS
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 28/02/2015 - C:\Program Files\Common Files\ShopperPro\spbiw.sys (SPBIUpdd) .(...) - LEGACY_SPBIUPDD =>PUP.ShopperPro
O64 - Services: CurCS - 28/02/2015 - C:\Program Files (x86)\ShopperPro\JSDriver\1.38.0.1425\jsdrv.sys (SPDRIVER_1.38.0.1425) .(.Pas de propriétaire - jsdrv.) - LEGACY_SPDRIVER_1.38.0.1425 =>PUP.ShopperPro
~ Legacy: 77 Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
~ FASS Keys: 11 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com =>PUP.AArtemis
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Opera\Opera.exe" http://aartemis.com =>PUP.AArtemis
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Not Key.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Users\JUVENTINI\AppData\Local\Torch\Application\torch.exe" http://aartemis.com =>PUP.AArtemis
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: prefs.js [JUVENTINI - v7bue838.default-1425422377967] user_pref("extensions.crossrider.bic", "14be1d8ba94233d267b9b3bbe3b338ec"); =>PUP.CrossRider
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Delta Search) - http://www1.delta-search.com =>Toolbar.DeltaSearch
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (aartemis) - http://www.aartemis.com =>PUP.AArtemis
O69 - SBI: SearchScopes [HKCU] {514B3DD8-7A74-4208-A768-F7DE8C261DC1} - (Ask Search) - http://www.search.ask.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Goo) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {7781D5D7-A882-4438-8F0E-1B5012D00183} - (Ask.com) - http://dts.search.ask.com
O69 - SBI: SearchScopes [HKCU] {8A244612-A1F7-11E0-95C0-E71F4824019B} - (Search) - http://badoo.com
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} [DefaultScope] - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {9E0B12D2-E334-4376-B1EF-951DA1FA9379} - (express-files Customized Web Search) - http://search.conduit.com =>Adware.ExpressFiles
O69 - SBI: SearchScopes [HKCU] {EDD3D587-964A-4450-AC0E-260139E64BE5} - (Google) - http://www.google.com
~ Keys: Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [680960]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [683520]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2477536]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [210432]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536]
~ Services: 33 Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.9F0D7943C72D4294F65ECA1F05B44A12] [SPRF][21/02/2013] (...) -- C:\ProgramData\ezsidmv.dat [48]
[MD5.022CA220E0138D8A810E37EDC437067A] [SPRF][12/11/2014] (.Object Browser - Senses exe.) -- C:\Users\JUVENTINI\AppData\Roaming\EEJALSHN.exe [2053536] =>PUP.ObjectBrowser
[MD5.40686D89156D262A8216B1F431CBF5E8] [SPRF][12/11/2014] (.Object Browser - Senses exe.) -- C:\Users\JUVENTINI\AppData\Roaming\PKLSZA.exe [1565088] =>PUP.ObjectBrowser
[MD5.BBA46CC2824866C3F51FBA48D23E76E1] [SPRF][10/10/2013] (.Microsoft Corporation - Microsoft .NET Framework 4.5 Beta Setup.) -- C:\Users\JUVENTINI\Desktop\dotNetFx45_Full_setup.exe [982168]
[MD5.15946A8E37C9FA14759A433023CAF7D0] [SPRF][12/07/2013] (...) -- C:\Users\JUVENTINI\Desktop\FFSetupMultilingual3-1-1.exe [50698925]
[MD5.B6129700128E27EB7B235710CC4B2492] [SPRF][30/08/2010] (.www.moofdev.net - Ratio Master.) -- C:\Users\JUVENTINI\Desktop\RM.exe [278528]
[MD5.E0C7EA153A587208EC394F8F78502CFB] [SPRF][01/04/2014] (.Pas de propriétaire - Ntreev Soft Co., Ltd..) -- C:\Users\JUVENTINI\Desktop\update.exe [3410944]
~ Files: 7 Scanned in 00mn 01s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "{D40AF0F0-AB42-4531-A79F-DBBE37A9AE46}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\JUVENTINI\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O87 - FAEL: "{3BF43247-66BF-49C4-9940-0BC03760A3DF}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\JUVENTINI\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Firewall: 2 Scanned in 00mn 01s



---\\ Export de clés de registre aléatoires (O91)
[HKCU\Software\5bed9dfb06aef49\2.6.1339.144\upd]:="upd=1" =>Hijacker.Eazel
[HKCU\Software\5bed9dfb06aef49\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5bed9dfb06aef49\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:version="2.6.1095.52" =>Hijacker.Eazel
[HKCU\Software\5bed9dfb06aef49\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5bed9dfb06aef49\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:version="2.6.1125.80" =>Hijacker.Eazel
[HKCU\Software\5bed9dfb06aef49\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1249.132]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5bed9dfb06aef49\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1249.132]:version="2.6.1249.132" =>Hijacker.Eazel
[HKCU\Software\5bed9dfb06aef49] =>PUP.Babylon^
[HKCU\Software\5bed9dfb06aef49]:version="2.6.1339.144" =>Hijacker.Eazel
[HKLM\Software\Wow6432Node\5bed9dfb06aef49]:version="2.6.1339.144" =>Hijacker.Eazel
~ Export Key Software: Scanned in 00mn 00s



---\\ Recherche de clés de registre Tracing (O100)
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASAPI32 =>PUP.MyPCBackup
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.MyPCBackup
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\biclient_RASAPI32 =>Adware.MegaSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\biclient_RASMANCS =>Adware.MegaSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ExpressFiles_RASAPI32 =>Adware.ExpressFiles
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ExpressFiles_RASMANCS =>Adware.ExpressFiles
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\FTDownloader_RASAPI32 =>Adware.Downware
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\FTDownloader_RASMANCS =>Adware.Downware
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\GoforFiles_RASAPI32 =>P2P.GoforFiles
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\GoforFiles_RASMANCS =>P2P.GoforFiles
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MyBabylonTB_RASAPI32 =>PUP.Babylon
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\MyBabylonTB_RASMANCS =>PUP.Babylon
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utorrent_RASAPI32 =>P2P.µTorrent
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utorrent_RASMANCS =>P2P.µTorrent
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooDesktop_RASAPI32 =>Adware.Yontoo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooDesktop_RASMANCS =>Adware.Yontoo
~ BTK: 197 Scanned in 00mn 00s



---\\ Recherche de clés de registre CLSID (O101)
[HKCR\CLSID\{11111111-1111-1111-1111-110611511123}] (iWebar) =>PUP.CrossRider
[HKCR\CLSID\{22222222-2222-2222-2222-220422532262}] (CrossriderApp0045362.Sandbox) =>PUP.CrossRider
[HKCR\CLSID\{22222222-2222-2222-2222-220422822260}] (CrossriderApp0048260.Sandbox) =>PUP.CrossRider
[HKCR\CLSID\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}] (YTAHelper) =>PUP.Goobzo
~ BCK: 4493 Scanned in 00mn 12s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 06/02/2015 267440 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 12/11/2014 68608 | (globalUpdate) . (.globalUpdate.) - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe =>PUP.GlobalUpdate
SS - | Demand 12/11/2014 68608 | (globalUpdatem) . (.globalUpdate.) - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe =>PUP.GlobalUpdate
SS - | Auto 03/03/2015 107848 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 03/03/2015 107848 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 09/05/2011 136120 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Demand 10/02/2015 114800 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 22/07/1658 0 | (npggsvc) . (.INCA Internet Co., Ltd..) - C:\Windows\system32\GameMon.des
SS - | Auto 02/01/2015 315488 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 19/02/2010 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
SR - | Auto 23/09/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 21/12/2012 57008 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 09/10/2013 356128 | (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
SR - | Auto 13/11/2014 53320 | (BackupStack) . (.Just Develop It.) - C:\Program Files (x86)\MyPC Backup\BackupStack.exe =>PUP.MyPCBackup
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 27/11/2013 3105144 | (CodeMeter.exe) . (.WIBU-SYSTEMS AG.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
SR - | Demand 18/02/2013 641352 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 29/11/2013 1370912 | (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
SR - | Auto 29/11/2013 15128352 | (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
SR - | Auto 16/08/2010 159336 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 22/07/1658 0 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
SR - | Auto 10/03/2010 189728 | (PSI_SVC_2) . (.Protexis Inc..) - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
SR - | Auto 25/05/2010 252416 | (SampleCollector) . (.Sony Corporation.) - C:\Program Files\Sony\VAIO Care\VCPerfService.exe
SR - | Auto 28/02/2015 2346880 | (SPBIUpd) . (.ShopperPro.) - C:\Program Files\Common Files\ShopperPro\spbiu.exe =>PUP.ShopperPro
SR - | Auto 23/04/2013 3574624 | (TeamViewer8) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
SR - | Auto 08/07/2013 1205088 | (TorchCrashHandler) . (.TorchMedia Inc..) - C:\Users\JUVENTINI\AppData\Local\Torch\Update\TorchCrashHandler.exe
SR - | Auto 04/05/2013 42504 | (VideoDownloadConverter_4zService) . (.COMPANYVERS_NAME.) - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe =>PUP.MindSpark
SR - | Auto 12/08/2014 1820184 | (vToolbarUpdater18.1.9) . (.AVG Secure Search.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe =>Toolbar.AVGSearch
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Demand 22/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 15/02/2013 23552 | (Yontoo Desktop Updater) . (.Microsoft.) - C:\Program Files (x86)\Yontoo\Y2Desktop.Updater.exe =>Adware.Yontoo
SR - | Auto 12/11/2014 1510248 | C:\Program Files (x86)\YOUTUB~1\YouTubeAcceleratorService.exe (YouTubeAcceleratorService) . (.GOOBZO.) - C:\Program Files (x86)\YouTube Accelerator\YouTubeAcceleratorService.exe =>PUP.Goobzo
~ Services: Scanned in 00mn 13s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by JUVENTINI at 04/03/2015 00:10:57
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by JUVENTINI at 04/03/2015 00:10:59
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 13008 - (01/03/2015)
Clés trouvées (Keys found) : 200
Valeurs trouvées (Values found) : 11
Dossiers trouvés (Folders found) : 50
Fichiers trouvés (Files found) : 133

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311541199}] =>PUP.CrossRider^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411531162}] =>PUP.CrossRider^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821160}] =>PUP.CrossRider^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611191115}] =>PUP.ObjectBrowser^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611511123}] =>PUP.CrossRider^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9}] =>PUP.MindSpark^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] =>Toolbar.AVGSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}] =>PUP.ShopperPro^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C547C6C2-561B-4169-A2A5-20BA771CA93B}] =>PUP.MindSpark^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EC2BAE47-25AF-4CE9-9E78-10627A49C9EA}] =>PUP.MoviesToolbar^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}] =>PUP.Goobzo^
[HKLM\SYSTEM\CurrentControlSet\Services\MyPC Backup) (BackupStack] =>PUP.MyPCBackup^
[HKLM\SYSTEM\CurrentControlSet\Services\globalUpdate) (globalUpdate] =>PUP.GlobalUpdate^
[HKLM\SYSTEM\CurrentControlSet\Services\SPBIUpd] =>PUP.ShopperPro^
[HKLM\SYSTEM\CurrentControlSet\Services\VideoDownloadConverter_4zService] =>PUP.MindSpark^
[HKLM\SYSTEM\CurrentControlSet\Services\vToolbarUpdater18.1.9] =>Toolbar.AVGSearch^
[HKLM\SYSTEM\CurrentControlSet\Services\YouTubeAcceleratorService] =>PUP.Goobzo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}] =>Hijacker.Eazel^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\FLV Player] =>Adware.MegaSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup] =>PUP.MyPCBackup^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload] =>PUP.1ClickDownloader^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pricora 2.0] =>Adware.Pricora^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Senses] =>PUP.ObjectBrowser^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ShopperPro] =>PUP.ShopperPro^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\VDC_is1] =>Adware.VideoDownloadConverter^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\VideoDownloadConverter_4zbar Uninstall] =>PUP.MindSpark^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Webplayer] =>Adware.SocialSkinz^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}] =>Adware.Yontoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\YouTube Accelerator] =>PUP.Goobzo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\iWebar] =>PUP.CrossRider^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent] =>P2P.BitTorrent^
[HKLM\Software\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods
[HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}] =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>PUP.Babylon
[HKLM\Software\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] =>Adware.Yontoo
[HKCU\Software\delta LTD] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] =>Adware.Yontoo
[HKLM\Software\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}] =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}] =>Adware.Agent
[HKLM\Software\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}] =>Adware.Yontoo
[HKLM\Software\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}] =>PUP.Funmoods
[HKLM\Software\Classes\TypeLib\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}] =>PUP.Funmoods
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}] =>PUP.ToparcadeHits
[HKLM\Software\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}] =>PUP.ToparcadeHits
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C87FC351-A80D-43E9-9A86-CF1E29DC443A}] =>PUP.Funmoods
[HKLM\Software\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] =>Adware.Yontoo
[HKLM\Software\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}] =>Adware.Yontoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}] =>PUP.GetNow
[HKLM\Software\Wow6432Node\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}] =>PUP.GetNow
[HKLM\Software\Classes\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}] =>PUP.GetNow
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Prod.cap] =>PUP.ClaroSearch
[HKLM\Software\Classes\AppID\ScriptHelper.EXE] =>Toolbar.AVGSearch
[HKLM\Software\Classes\esrv.funmoodsESrvc] =>PUP.Funmoods
[HKLM\Software\Classes\esrv.funmoodsESrvc.1] =>PUP.Funmoods
[HKLM\Software\Classes\S] =>Toolbar.Agent
[HKLM\Software\Classes\ScriptHelper.ScriptHelperApi] =>Toolbar.AVGSearch
[HKLM\Software\Classes\ScriptHelper.ScriptHelperApi.1] =>Toolbar.AVGSearch
[HKLM\Software\Classes\ViProtocol.ViProtocolOLE] =>Toolbar.AVGSearch
[HKLM\Software\Classes\ViProtocol.ViProtocolOLE.1] =>Toolbar.AVGSearch
[HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader
[HKLM\Software\Wow6432Node\BabylonToolbar] =>PUP.Babylon
[HKCU\Software\AppDataLow\Software\ConduitSearchScopes] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\DataMngr] =>Adware.Bandoo
[HKCU\Software\funmoods] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\VDC_is1] =>Adware.VideoDownloadConverter
[HKCU\Software\ilivid] =>Adware.Bandoo
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\SP Global] =>PUP.AdvancedSystemProtector
[HKCU\Software\AppDataLow\SProtector] =>PUP.AdvancedSystemProtector
[HKLM\Software\Wow6432Node\SProtector] =>PUP.AdvancedSystemProtector
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKLM\Software\Tarma Installer] =>PUP.Tarma
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32] =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS] =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}] =>PUP.Babylon
[HKCU\SOFTWARE\InstallCore\funmoods] =>PUP.Funmoods
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKLM\Software\Wow6432Node\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings] =>PUP.BProtector
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload] =>PUP.1ClickDownloader
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\SYSTEM\CurrentControlSet\Services\Yontoo Desktop Updater] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar] =>Toolbar.AVGSafeGuard
[HKCU\Software\AVG SafeGuard toolbar] =>Toolbar.AVGSafeGuard
[HKLM\Software\Wow6432Node\AVG SafeGuard toolbar] =>Toolbar.AVGSafeGuard
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\InstalledBrowserExtensions\] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk] =>Spyware.GophotoIt
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf] =>Hijacker.TornTV
[HKCU\Software\VideoDownloadConverter_4z] =>Adware.VideoDownloadConverter
[HKCU\Software\AppDataLow\Software\VideoDownloadConverter_4z] =>Adware.VideoDownloadConverter
[HKLM\Software\Wow6432Node\VideoDownloadConverter_4z] =>Adware.VideoDownloadConverter
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\VideoDownloadConverter_4zbar Uninstall] =>Adware.VideoDownloadConverter
[HKLM\Software\Classes\VideoDownloadConverter_4z.HTMLMenu] =>Adware.VideoDownloadConverter
[HKLM\Software\Classes\VideoDownloadConverter_4z.HTMLMenu.1] =>Adware.VideoDownloadConverter
[HKLM\Software\Classes\VideoDownloadConverter_4z.RadioSettings] =>Adware.VideoDownloadConverter
[HKLM\Software\Classes\VideoDownloadConverter_4z.RadioSettings.1] =>Adware.VideoDownloadConverter
[HKLM\Software\Classes\VideoDownloadConverter_4z.SettingsPlugin] =>Adware.VideoDownloadConverter
[HKLM\Software\Classes\VideoDownloadConverter_4z.SettingsPlugin.1] =>Adware.VideoDownloadConverter
[HKLM\Software\Classes\VideoDownloadConverter_4z.SkinLauncher] =>Adware.VideoDownloadConverter
[HKLM\Software\Classes\VideoDownloadConverter_4z.SkinLauncher.1] =>Adware.VideoDownloadConverter
[HKCU\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0035499.BHO] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0035499.BHO.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0035499.Sandbox] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0035499.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0045362.BHO] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0045362.BHO.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0045362.Sandbox] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0045362.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0048260.BHO] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0048260.BHO.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0048260.Sandbox] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0048260.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Classes\Toolbar.CT3176921] =>Toolbar.Conduit
[HKLM\Software\Classes\YontooIEClient.Api] =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Api.1] =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Layers] =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Layers.1] =>Adware.Yontoo
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110411531162}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110411821160}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110611191115}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110611511123}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220422532262}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220422822260}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220622192215}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220622512223}] =>PUP.CrossRider
[HKLM\Software\Classes\AppID\YontooIEClient.DLL] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0035499.BHO] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0035499.BHO.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0035499.Sandbox] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0035499.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0045362.BHO] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0045362.BHO.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0045362.Sandbox] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0045362.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0048260.BHO] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0048260.BHO.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0048260.Sandbox] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0048260.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\esrv.funmoodsESrvc] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\esrv.funmoodsESrvc.1] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Toolbar.CT3176921] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Api] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Api.1] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Layers] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Layers.1] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311541199}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110311541199}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110411531162}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110411821160}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110611191115}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110611511123}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220322542299}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220422532262}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220422822260}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220622192215}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220622512223}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\AppID\YontooIEClient.DLL] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311541199}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411531162}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821160}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611191115}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611511123}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}] =>Toolbar.Conduit^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:VideoDownloadConverter Home Page Guard 64 bit =>PUP.MindSpark^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Yontoo Desktop =>Adware.Yontoo^
C:\Users\JUVENTINI\AppData\Roaming\Mozilla\Firefox\Profiles\v7bue838.default-1425422377967\extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF} =>PUP.ShopperPro^
C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate^
C:\Program Files (x86)\Gophoto.it =>Spyware.GophotoIt^
C:\Program Files (x86)\iWebar =>PUP.CrossRider^
C:\Program Files (x86)\MyPC Backup =>PUP.MyPCBackup^
C:\Program Files (x86)\Pricora 2.0 =>Adware.Pricora^
C:\Program Files (x86)\SecretSauce =>Adware.SecretSauce^
C:\Program Files (x86)\ShopperPro =>PUP.ShopperPro^
C:\Program Files (x86)\Ss_Helper =>Adware.SaveShare^
C:\Program Files (x86)\Video Download Converter =>Adware.VideoDownloadConverter^
C:\Program Files (x86)\VideoDownloadConverter_4z =>PUP.MindSpark^
C:\Program Files (x86)\Yontoo =>Adware.Yontoo^
C:\Program Files (x86)\YTAHelper =>PUP.Goobzo^
C:\Program Files (x86)\Common Files\AVG Secure Search =>Toolbar.AVGSearch^
C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch^
C:\ProgramData\Babylon =>PUP.Babylon^
C:\ProgramData\IBUpdaterService =>Adware.InstallBrain^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\ProgramData\ShopperPro =>PUP.ShopperPro^
C:\ProgramData\Tarma Installer =>PUP.Tarma^
C:\ProgramData\YTAHelper =>PUP.Goobzo^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Download Converter =>Adware.VideoDownloadConverter^
C:\Users\JUVENTINI\AppData\Roaming\7go =>PUP.7GoGames^
C:\Users\JUVENTINI\AppData\Roaming\Babylon =>PUP.Babylon^
C:\Users\JUVENTINI\AppData\Roaming\ExpressFiles =>Adware.ExpressFiles^
C:\Users\JUVENTINI\AppData\Roaming\Funmoods =>PUP.Funmoods^
C:\Users\JUVENTINI\AppData\Roaming\GoforFiles =>P2P.GoforFiles^
C:\Users\JUVENTINI\AppData\Roaming\Nosibay =>PUP.BubbleDock^
C:\Users\JUVENTINI\AppData\Roaming\OpenCandy =>Adware.OpenCandy^
C:\Users\JUVENTINI\AppData\Roaming\PerformerSoft =>PUP.PerformerSoft^
C:\Users\JUVENTINI\AppData\Roaming\RHEng =>PUP.Conduit^
C:\Users\JUVENTINI\AppData\Roaming\SpeedAnalysis3 =>PUP.SpeedAnalysis^
C:\Users\JUVENTINI\AppData\Roaming\uTorrent =>P2P.µTorrent^
C:\Users\JUVENTINI\AppData\Roaming\WebPlayerBdd =>Adware.SocialSkinz^
C:\Users\JUVENTINI\AppData\Roaming\Yontoo =>Adware.Yontoo^
C:\Users\JUVENTINI\AppData\Local\AVG Secure Search =>Toolbar.AVGSearch^
C:\Users\JUVENTINI\AppData\Local\Babylon =>PUP.Babylon^
C:\Users\JUVENTINI\AppData\Local\globalUpdate =>PUP.GlobalUpdate^
C:\Users\JUVENTINI\AppData\Local\PutLockerDownloader =>Spyware.PutLocker^
C:\Users\JUVENTINI\AppData\Local\VideoDownloadConverter_4z =>PUP.MindSpark^
C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTDownloader.com =>Adware.Downware^
C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup =>PUP.MyPCBackup^
C:\Users\JUVENTINI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com =>Hijacker.TornTV^
C:\Program Files (x86)\Conduit =>Toolbar.Conduit
C:\ProgramData\RegClean =>Rogue.RegistryPowerCleaner
C:\Users\JUVENTINI\AppData\Local\Conduit =>Toolbar.Conduit
C:\Users\JUVENTINI\AppData\Local\Installer =>Adware.InstallPedia
C:\Users\JUVENTINI\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\JUVENTINI\AppData\LocalLow\PriceGong =>Adware.PriceGong
C:\Users\JUVENTINI\AppData\LocalLow\VideoDownloadConverter_4z =>Adware.VideoDownloadConverter
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified =>Hijacker.Application^
C:\Users\JUVENTINI\AppData\Roaming\Yontoo\YontooDesktop.exe =>Adware.Yontoo^
C:\Users\JUVENTINI\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent^
C:\Program Files (x86)\ShopperPro\JSDriver\1.38.0.1425\jsdrv.exe =>PUP.ShopperPro^
C:\Program Files (x86)\YouTube Accelerator\YouTubeAccelerator.exe =>PUP.Goobzo^
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe =>PUP.MindSpark^
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe =>PUP.MindSpark^
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe =>Toolbar.AVGSearch^
C:\Program Files (x86)\Yontoo\Y2Desktop.Updater.exe =>Adware.Yontoo^
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\loggingserver.exe =>Toolbar.AVGSearch^
C:\Program Files (x86)\YouTube Accelerator\YouTubeAcceleratorService.exe =>PUP.Goobzo^
C:\Program Files (x86)\iWebar\iWebar-codedownloader.exe =>PUP.CrossRider^
C:\Program Files (x86)\iWebar\147337ad-cb83-430e-b401-f46841fd9e6e-11.exe =>PUP.CrossRider^
C:\Program Files (x86)\iWebar\147337ad-cb83-430e-b401-f46841fd9e6e-4.exe =>PUP.CrossRider^
C:\Program Files (x86)\iWebar\147337ad-cb83-430e-b401-f46841fd9e6e-5.exe =>PUP.CrossRider^
C:\Program Files (x86)\iWebar\147337ad-cb83-430e-b401-f46841fd9e6e-6.exe =>PUP.CrossRider^
C:\Program Files (x86)\iWebar\147337ad-cb83-430e-b401-f46841fd9e6e-7.exe =>PUP.CrossRider^
C:\Program Files (x86)\Senses\Senses-codedownloader.exe =>PUP.ObjectBrowser^
C:\Program Files (x86)\Senses\5d213b31-aefd-4f9f-a9a0-f67ce112943f-11.exe =>PUP.ObjectBrowser^
C:\Program Files (x86)\Senses\5d213b31-aefd-4f9f-a9a0-f67ce112943f-3.exe =>PUP.ObjectBrowser^
C:\Program Files (x86)\Senses\5d213b31-aefd-4f9f-a9a0-f67ce112943f-4.exe =>PUP.ObjectBrowser^
C:\Program Files (x86)\Senses\5d213b31-aefd-4f9f-a9a0-f67ce112943f-5.exe =>PUP.ObjectBrowser^
C:\Program Files (x86)\Senses\5d213b31-aefd-4f9f-a9a0-f67ce112943f-6.exe =>PUP.ObjectBrowser^
C:\Program Files (x86)\Senses\5d213b31-aefd-4f9f-a9a0-f67ce112943f-7.exe =>PUP.ObjectBrowser^
C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe =>PUP.GlobalUpdate^
C:\Program Files (x86)\Pricora 2.0\Pricora 2.0-codedownloader.exe =>Adware.Pricora^
C:\Program Files (x86)\Pricora 2.0\Pricora 2.0-firefoxinstaller.exe =>Adware.Pricora^
C:\Program Files (x86)\Pricora 2.0\Pricora 2.0-updater.exe =>Adware.Pricora^
C:\Program Files (x86)\ShopperPro\ShopperPro.exe =>PUP.ShopperPro^
C:\Program Files (x86)\ShopperPro\updater.exe =>PUP.ShopperPro^
C:\Program Files (x86)\YOUTUB~1\Updater.exe =>PUP.Goobzo^
C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-1.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-1 =>PUP.CrossRider^
C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-11.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-11 =>PUP.CrossRider^
C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-4.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-4 =>PUP.CrossRider^
C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-5.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-5 =>PUP.CrossRider^
C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-5_user.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-5_user =>PUP.CrossRider^
C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-6.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-6 =>PUP.CrossRider^
C:\Windows\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-7.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\147337ad-cb83-430e-b401-f46841fd9e6e-7 =>PUP.CrossRider^
C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-1.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-1 =>PUP.CrossRider^
C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-11.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-11 =>PUP.CrossRider^
C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-3.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-3 =>PUP.CrossRider^
C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-4.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-4 =>PUP.CrossRider^
C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-5.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-5 =>PUP.CrossRider^
C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-5_user.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-5_user =>PUP.CrossRider^
C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-6.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-6 =>PUP.CrossRider^
C:\Windows\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-7.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\5d213b31-aefd-4f9f-a9a0-f67ce112943f-7 =>PUP.CrossRider^
C:\Windows\Tasks\DiscountFrenzy-chromeinstaller.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\DiscountFrenzy-chromeinstaller =>PUP.CrossRider^
C:\Windows\Tasks\DiscountFrenzy-codedownloader.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\DiscountFrenzy-codedownloader =>PUP.CrossRider^
C:\Windows\Tasks\DiscountFrenzy-firefoxinstaller.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\DiscountFrenzy-firefoxinstaller =>PUP.CrossRider^
C:\Windows\Tasks\DiscountFrenzy-updater.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\DiscountFrenzy-updater =>PUP.CrossRider^
C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job =>PUP.GlobalUpdate^
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore =>PUP.GlobalUpdate^
C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job =>PUP.GlobalUpdate^
C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA =>PUP.GlobalUpdate^
C:\Windows\Tasks\OnlineHD V6.0-chromeinstaller.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\OnlineHD V6.0-chromeinstaller =>PUP.CrossRider^
C:\Windows\Tasks\OnlineHD V6.0-codedownloader.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\OnlineHD V6.0-codedownloader =>PUP.CrossRider^
C:\Windows\Tasks\OnlineHD V6.0-firefoxinstaller.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\OnlineHD V6.0-firefoxinstaller =>PUP.CrossRider^
C:\Windows\Tasks\OnlineHD V6.0-updater.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\OnlineHD V6.0-updater =>PUP.CrossRider^
C:\Windows\Tasks\Pricora 2.0-codedownloader.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\Pricora 2.0-codedownloader =>PUP.CrossRider^
C:\Windows\Tasks\Pricora 2.0-firefoxinstaller.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\Pricora 2.0-firefoxinstaller =>PUP.CrossRider^
C:\Windows\Tasks\Pricora 2.0-updater.job =>PUP.CrossRider^
C:\Windows\System32\Tasks\Pricora 2.0-updater =>PUP.CrossRider^
[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit^
[HKCU\Software\AppDataLow\Software\Pricora 2.0] =>Adware.Pricora^
[HKCU\Software\AppDataLow\Software\SmartBar] =>Hijacker.SmartBar^
[HKCU\Software\AppDataLow\Software\iWebar] =>PUP.CrossRider^
[HKCU\Software\Appscion] =>PUP.LiveSoftAction^
[HKCU\Software\BabSolution] =>Hijacker.BabSolution^
[HKCU\Software\BitTorrent] =>P2P.BitTorrent^
[HKCU\Software\Conduit] =>Toolbar.Conduit^
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr^
[HKCU\Software\ExpressFiles] =>Adware.ExpressFiles^
[HKCU\Software\FileScout] =>PUP.FileScout^
[HKCU\Software\GoforFiles] =>P2P.GoforFiles^
[HKCU\Software\Goobzo] =>PUP.Goobzo^
[HKCU\Software\ShopperPro] =>PUP.ShopperPro^
[HKCU\Software\funmoodsToolbar] =>PUP.Funmoods^
[HKCU\Software\globalUpdate] =>PUP.GlobalUpdate^
[HKCU\Software\iLivid] =>Adware.Bandoo^
[HKLM\Software\ShopperPro] =>PUP.ShopperPro^
[HKLM\Software\Wow6432Node\013d0d4c-8916-440b-af05-a0e5ace47726] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\06055a55-3e59-4f05-9146-542f6c631be8] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\06a36beb-5f3b-491e-bd34-9f606c2e92c1] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\AVG Security Toolbar] =>Toolbar.AVGSearch^
[HKLM\Software\Wow6432Node\Babylon] =>PUP.Babylon^
[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit^
[HKLM\Software\Wow6432Node\Datamngr] =>PUP.Datamngr^
[HKLM\Software\Wow6432Node\ExpressFiles] =>Adware.ExpressFiles^
[HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate^
[HKLM\Software\Wow6432Node\GoforFiles] =>P2P.GoforFiles^
[HKLM\Software\Wow6432Node\Goobzo] =>PUP.Goobzo^
[HKLM\Software\Wow6432Node\a03c2d8a-e984-43a5-b0d7-03001bce65d9] =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\aartemisSoftware] =>PUP.AArtemis^
[HKLM\Software\Wow6432Node\babylontoolbar] =>PUP.Babylon^
[HKLM\Software\Wow6432Node\iWebar-nv] =>PUP.CrossRider^
[HKLM\Software\iWebar-nv] =>PUP.CrossRider^
C:\Users\JUVENTINI\AppData\Roaming\EEJALSHN.exe =>PUP.ObjectBrowser^
C:\Users\JUVENTINI\AppData\Roaming\PKLSZA.exe =>PUP.ObjectBrowser^
[HKCU\Software\5bed9dfb06aef49\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel^
[HKCU\Software\5bed9dfb06aef49\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel^
[HKCU\Software\5bed9dfb06aef49\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1249.132]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel^
[HKCU\Software\5bed9dfb06aef49] =>PUP.Babylon^^
[HKCR\CLSID\{11111111-1111-1111-1111-110611511123}] (iWebar) =>PUP.CrossRider^
[HKCR\CLSID\{22222222-2222-2222-2222-220422532262}] (CrossriderApp0045362.Sandbox) =>PUP.CrossRider^
[HKCR\CLSID\{22222222-2222-2222-2222-220422822260}] (CrossriderApp0048260.Sandbox) =>PUP.CrossRider^
[HKCR\CLSID\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}] (YTAHelper) =>PUP.Goobzo^
C:\Users\JUVENTINI\AppData\Local\Temp\FLVPlayerSetup.exe =>Adware.MegaSearch
~ Additionnel Scan: 390123 Items scanned in 00mn 41s



---\\ Informations complémentaires sur les modules
~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5)
~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2)
~ http://nicolascoolman.fr/o3-internet-explorer-toolbars/ =>.Internet Explorer Toolbars (O3)
~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4)
~ http://nicolascoolman.fr/o50-image-file-execution-options-zhpdiag/ =>.Image File Execution Options (IFEO) (O50)
~ http://nicolascoolman.fr/o51-mountpoints2-shell-key-mpsk/ =>.Clé de registre Shell MountPoints2 (MPSK) (O51)
~ AMI: 6 Scanned in 00mn 00s



---\\ Récapitulatif des détections trouvées sur votre station
http://www.nicolascoolman.fr/blog/ =>Hijacker.Application
http://nicolascoolman.fr/adware-yontoo =>Adware.Yontoo
http://nicolascoolman.fr/pup-shopperpro =>PUP.ShopperPro
http://www.nicolascoolman.fr/blog/ =>PUP.Goobzo
http://nicolascoolman.fr/pup-mindspark =>PUP.MindSpark
http://nicolascoolman.fr/pup-babylon =>PUP.Babylon
http://nicolascoolman.fr/pup-aartemis =>PUP.AArtemis
http://nicolascoolman.fr/pup-crossrider =>PUP.CrossRider
http://nicolascoolman.fr/pup-objectbrowser =>PUP.ObjectBrowser
http://nicolascoolman.fr/pup-moviestoolbar =>PUP.MoviesToolbar
http://nicolascoolman.fr/pup-mypcbackup =>PUP.MyPCBackup
http://nicolascoolman.fr/pup-speedupmycomputer =>PUP.SpeedUpMyComputer
http://nicolascoolman.fr/pup-datamngr =>PUP.Datamngr
http://nicolascoolman.fr/pup-globalupdate =>PUP.GlobalUpdate
http://nicolascoolman.fr/adware-expressfiles =>Adware.ExpressFiles
http://nicolascoolman.fr/pup-funmoods =>PUP.Funmoods
http://nicolascoolman.fr/adware-pricora =>Adware.Pricora
http://nicolascoolman.fr/hijacker-eazel =>Hijacker.Eazel
http://nicolascoolman.fr/adware-megasearch =>Adware.MegaSearch
http://nicolascoolman.fr/pup-1clickdownloader =>PUP.1ClickDownloader
http://www.nicolascoolman.fr/blog/ =>Adware.VideoDownloadConverter
http://nicolascoolman.fr/adware-socialskinz =>Adware.SocialSkinz
http://nicolascoolman.fr/pup-mocaflix =>PUP.Mocaflix
http://nicolascoolman.fr/toolbar-conduit =>Toolbar.Conduit
http://nicolascoolman.fr/adware-pricegong =>Adware.PriceGong
http://nicolascoolman.fr/hijacker-smartbar =>Hijacker.SmartBar
http://www.nicolascoolman.fr/blog/ =>PUP.LiveSoftAction
http://nicolascoolman.fr/hijacker-babsolution =>Hijacker.BabSolution
http://nicolascoolman.fr/pup-filescout =>PUP.FileScout
http://nicolascoolman.fr/adware-installcore =>Adware.InstallCore
http://www.nicolascoolman.fr/blog/ =>PUP.BrowserExtensions
http://nicolascoolman.fr/pup-sweetim =>PUP.SweetIM
http://nicolascoolman.fr/adware-bandoo =>Adware.Bandoo
http://nicolascoolman.fr/pup-tarma =>PUP.Tarma
http://nicolascoolman.fr/pup-advancedsystemprotector =>PUP.AdvancedSystemProtector
http://nicolascoolman.fr/spyware-gophotoit =>Spyware.GophotoIt
http://nicolascoolman.fr/adware-secretsauce =>Adware.SecretSauce
http://nicolascoolman.fr/31929570-adware-saveshare =>Adware.SaveShare
http://nicolascoolman.fr/adware-installbrain =>Adware.InstallBrain
http://nicolascoolman.fr/32913069-pup-7gogames =>PUP.7GoGames
http://nicolascoolman.fr/pup-bubbledock =>PUP.BubbleDock
http://nicolascoolman.fr/adware-opencandy =>Adware.OpenCandy
http://www.nicolascoolman.fr/blog/ =>PUP.PerformerSoft
http://www.nicolascoolman.fr/blog/ =>PUP.Conduit
http://nicolascoolman.fr/pup-speedanalysis =>PUP.SpeedAnalysis
http://nicolascoolman.fr/spyware-putlocker =>Spyware.PutLocker
http://nicolascoolman.fr/adware-downware =>Adware.Downware
http://nicolascoolman.fr/hijacker-torntv =>Hijacker.TornTV
http://nicolascoolman.fr/pup-bitguard =>PUP.BitGuard
http://nicolascoolman.fr/toolbar-deltasearch =>Toolbar.DeltaSearch
http://nicolascoolman.fr/pup-v9software =>PUP.V9Software
http://www.nicolascoolman.fr/blog/ =>Adware.Agent
http://nicolascoolman.fr/pup-toparcadehits =>PUP.ToparcadeHits
http://nicolascoolman.fr/pup-getnow =>PUP.GetNow
http://nicolascoolman.fr/pup-clarosearch =>PUP.ClaroSearch
http://www.nicolascoolman.fr/blog/ =>Toolbar.Agent
http://nicolascoolman.fr/pup-bprotector =>PUP.BProtector
http://www.nicolascoolman.fr/blog/ =>Toolbar.AVGSafeGuard
http://nicolascoolman.fr/rogue-registrypowercleaner =>Rogue.RegistryPowerCleaner
http://nicolascoolman.fr/adware-installpedia =>Adware.InstallPedia
~ MSI: 60 link(s) detected in 00mn 00s



End of the scan (2161 lines in 01mn 57s)(0.11)

Publicité


Signaler le contenu de ce document

Publicité