~ Rapport de ZHPDiag v2014.7.3.101 - Nicolas Coolman (03/07/2014) ~ Lancé par HP_Propriétaire (06/07/2014 15:05:17) ~ Adresse du Site Web http://nicolascoolman.fr ~ Adresse du Forum http://forum.nicolascoolman.fr ~ Traduit par Nicolas Coolman ~ Etat de la version : Nouvelle version disponible ~ Liste blanche : Activée par le programme ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Not Found ---\\ Navigateurs Internet MSIE: Internet Explorer v6.0.2900.2180 MFIE: Mozilla Firefox 30.0 (Defaut) ---\\ Informations sur les produits Windows ~ Langage: Français Microsoft Windows XP, 32-bit Service Pack 2 (Build 2600) Windows Automatic Updates : OK Windows Genuine Advantage : KO ---\\ Logiciels de protection du système Norton Internet Security v8.0.0.64 Norton AntiVirus 2005 v11.0.2 ---\\ Logiciels d'optimisation du système ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Adobe Flash Player 11 ActiveX Adobe Reader 7.0 - Français ---\\ Informations sur le système ~ Processor: x86 Family 15 Model 4 Stepping 1, GenuineIntel ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 1023 MB (56% free) System Restore: Activé (Enable) System drive C: has 142 GB (78%) free of 180 GB ---\\ Mode de connexion au système ~ Computer Name: NOM-EB85C523610 ~ User Name: HP_Propriétaire ~ All Users Names: SUPPORT_fddfa904, SUPPORT_388945a0, HP_Propriétaire, HelpAssistant, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89 Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Documents and Settings\HP_Propriétaire\Application Data\ZHP\ ~ %AppData% : C:\Documents and Settings\HP_Propriétaire\Application Data\ ~ %Desktop% : C:\Documents and Settings\HP_Propriétaire\Bureau\ ~ %Favorites% : C:\Documents and Settings\HP_Propriétaire\Favoris\ ~ %LocalAppData% : C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\ ~ %StartMenu% : C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\ ~ %Windir% : C:\WINDOWS\ ~ %System% : C:\WINDOWS\system32\ ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 142 Go of 180 Go) D: Hard drive, Flash drive, Thumb drive (Free 2 Go of 6 Go) E: Floppy drive, Flash card reader, USB Key (Not Inserted) F: Floppy drive, Flash card reader, USB Key (Not Inserted) G: Floppy drive, Flash card reader, USB Key (Not Inserted) H: Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Etat du Centre de Sécurité Windows ~ Security Center: 37 Legitimates Filtered in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.4C33E5B9A6197B6ED215F6CFBA0A2DAA] - (.Microsoft Corporation - Explorateur Windows.) (.05/08/2004 - 19:00:00.) -- C:\WINDOWS\Explorer.exe [1036288] [MD5.FFE3E6FB8D52955A2DE4C6CC765B02BC] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.03/05/2005 - 04:57:12.) -- C:\WINDOWS\system32\wininet.dll [662016] [MD5.D2DE785AEAB0BB8CA4C14A8A199DBE4E] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.05/08/2004 - 19:00:00.) -- C:\WINDOWS\system32\Winlogon.exe [506368] [MD5.5AC495F4CB807B2B98AD2AD591E6D92E] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.05/08/2004 - 19:00:00.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496] [MD5.CDFE4411A69C224BD1D11B2DA92DAC51] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.04/08/2004 - 05:59:44.) -- C:\WINDOWS\system32\Drivers\atapi.sys [95360] [MD5.CD7D5152DF32B47F4E36F710B35AAE02] - (.Microsoft Corporation - CD-ROM File System Driver.) (.05/08/2004 - 19:00:00.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744] [MD5.AF9C19B3100FE010496B1A27181FBF72] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.05/08/2004 - 19:00:00.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [49536] [MD5.8B121FF880683607AB2AEF0340721718] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.05/08/2004 - 13:00:00.) -- C:\WINDOWS\system32\Drivers\Fips.sys [35072] [MD5.3FCC124B6E08EE0E9351F717DD136939] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.08/01/2005 - 00:07:18.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [138752] [MD5.D1EFCBD693B5BA21314D06368C471070] - (.Microsoft Corporation - Pilote de port i8042.) (.04/08/2004 - 07:41:24.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54400] [MD5.F8AA320C6A0409C0380E5D8A99D76EC6] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.05/08/2004 - 19:00:00.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [41856] [MD5.B5A8E215AC29D24D60B4D1250EF05ACE] - (.Microsoft Corporation - IP Network Address Translator.) (.05/08/2004 - 19:00:00.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [134912] [MD5.64537AA5C003A6AFEEE1DF819062D0D1] - (.Microsoft Corporation - IPSec Driver.) (.05/08/2004 - 19:00:00.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [74752] [MD5.5DDC9A1B2EB5A4BF010CE8C019A18C1F] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.19/01/2005 - 12:26:52.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [451584] [MD5.0C80E410CD2F47134407EE7DD19CC86B] - (.Microsoft Corporation - MBT Transport driver.) (.05/08/2004 - 19:00:00.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816] [MD5.B78BE402C3F63DD55521F73876951CDD] - (.Microsoft Corporation - NT File System Driver.) (.05/08/2004 - 19:00:00.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574592] [MD5.318696359AC7DF48D1E51974EC527DD2] - (.Microsoft Corporation - Pilote de port parallèle.) (.05/08/2004 - 19:00:00.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384] [MD5.98FAEB4A4DCF812BA1C6FCA4AA3E115C] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.05/08/2004 - 19:00:00.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328] [MD5.A2CAE2C60BC37E0751EF9DDA7CEAF4AD] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.04/08/2004 - 05:01:16.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196864] [MD5.2CC30B68DD62B73D444A41322CD7FC4C] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.04/08/2004 - 07:39:44.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58496] [MD5.313B1A0D5DB26DFE1C34A6C13B2CE0A7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.05/08/2004 - 19:00:00.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 2/1955 ~ Mes musiques (My Musics) : 1/726 ~ Mes Videos (My Videos) : 2/6 ~ Mes Favoris (My Favorites) : 1/24 ~ Mes Documents (My Documents) : 2/4251 ~ Mon Bureau (My Desktop) : 4/82 ~ Menu demarrer (Programs) : 1/63 ~ Hidden Files: Scanned in 00mn 33s ---\\ Processus lancés [MD5.2F3E468E243FCB7DF663BA6F8241677F] - (.Symantec Corporation - Symantec Network Proxy Service.) -- c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe [234616] [PID.1328] [MD5.97E6A26F4DEF7A2069A46BF55729FD78] - (.Symantec Corporation - Symantec Settings Manager Service.) -- c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe [164984] [PID.1348] [MD5.3C7CA316BBB7E417B91A9C16DB113B91] - (.Symantec Corporation - Norton AntiVirus Auto-Protect Service.) -- c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe [176768] [PID.1368] [MD5.9EE1031145AB8A49343DD81916B729C0] - (.Symantec Corporation - Symantec Event Manager Service.) -- c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe [197752] [PID.1456] [MD5.3A13CFFC1233ADD8F2FAFE33BE14FAD4] - (.Cherished Technololgy LIMITED - IePlugin Service.) -- C:\Documents and Settings\All Users\Application Data\IePluginServices\PluginService.exe [704112] [PID.1896] =>Trojan.SProtector [MD5.BA4DA4299310F4A54CBBA25221072D70] - (.Fuyu LIMITED - WindowsProtectManger Service.) -- C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\ProtectWindowsManager.exe [535936] [PID.1928] =>PUP.Fuyu [MD5.0305158AA18B60F92FE3BF557B027BAC] - (...) -- C:\Program Files\v01ViewPassword\wdViewPasswordm.exe [101376] [PID.220] =>PUP.ViewPassword [MD5.91D1015685F88C5CB8938F6D1F7A8A11] - (.SIEN S.A. - IMGUpdater.) -- C:\Program Files\Fichiers communs\IMGUpdater\IMGUpdater.exe [378152] [PID.632] [MD5.F29EF68E7B7AC4005761D626472E6D70] - (...) -- C:\WINDOWS\system32\nethtsrv.exe [180224] [PID.956] [MD5.5705D065B450F03EC0743E601941DDFA] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 77.79.) -- C:\WINDOWS\system32\nvsvc32.exe [127043] [PID.1772] [MD5.224E584D7BD910BFAED7F17C12775E4F] - (...) -- C:\Documents and Settings\HP_Propriétaire\Application Data\VOPackage\VOsrv.exe [75264] [PID.1844] =>Adware.Downware [MD5.BECB34DBF204F6DC9C6242C87800A166] - (...) -- C:\WINDOWS\system32\netupdsrv.exe [159744] [PID.360] [MD5.450B4043388B79A6F55B9A7C71515142] - (.Iminent - Iminent Protection.) -- C:\Program Files\Fichiers communs\Umbrella\Umbrella260.exe [3088192] [PID.756] =>Adware.IMBooster [MD5.CB914169C1863B9590436D2CC3C471C9] - (...) -- C:\Program Files\NetCrawl\updater.exe [109568] [PID.632] [MD5.A865BC7FD13E0DEA3B699C388E19FB5E] - (.Symantec Corporation - Norton Security Center Service.) -- c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe [308352] [PID.1748] [MD5.46990969761352F53B2310D266E2F1DF] - (.Microsoft Corporation - Mises à jour automatiques.) -- C:\WINDOWS\system32\wuauclt.exe [112640] [PID.2416] [MD5.FFC7A8AA516B0D2A27DADF146EB538CC] - (.Sun Microsystems, Inc. - Java(TM) 2 Platform Standard Edition binary.) -- C:\Program Files\Java\jre1.5.0\bin\jusched.exe [36972] [PID.2728] [MD5.06A1ECB63DF139EC639E084D4AB3C9D7] - (.Hewlett-Packard Company - hpsysdrv.) -- C:\windows\system\hpsysdrv.exe [52736] [PID.2784] [MD5.1319DF88F588709D13AC701C39745705] - (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\WINDOWS\SOUNDMAN.exe [90112] [PID.2852] [MD5.986E16D223EEAF13ED30E6C0C576982C] - (.RealTek Semicoductor Corp. - RealTek AlcWzrd Application.) -- C:\WINDOWS\ALCWZRD.exe [2805248] [PID.3056] [MD5.F5402CD47B7389DDC21F92119A906EEE] - (...) -- ystem32\rundll32.exe [0] [PID.3064] [MD5.8B4CBBA1EA526830C7F97E7822E2493A] - (.Realtek Semiconductor Corp. - Realtek Azalia Audio - Event Monitor.) -- C:\WINDOWS\ALCMTR.exe [69632] [PID.3076] [MD5.C81BE1B951C36E97D3DA90DA745DA5F7] - (.Hewlett-Packard Company - KBD EXE.) -- C:\HP\KBD\KBD.exe [61440] [PID.3096] [MD5.C31CD3CEAB7653D22A2B92553971353E] - (.Apple Computer, Inc. - iTunesHelper Module.) -- C:\Program Files\iTunes\iTunesHelper.exe [278528] [PID.3132] [MD5.14B49CA53A31597C8A833B95EC85FDDC] - (.Symantec Corporation - Norton Security Center Helper.) -- C:\Program Files\Fichiers communs\Symantec Shared\Security Center\UsrPrmpt.exe [218240] [PID.3204] [MD5.AC116F16A7716A720A45D7EA47CFD983] - (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\HPwuSchd2.exe [49152] [PID.3532] [MD5.50F2E042C33ED8D11264BE5C4D533C7F] - (.Apple Computer, Inc. - iPodService Module.) -- C:\Program Files\iPod\bin\iPodService.exe [327680] [PID.3672] [MD5.EFD1839F21CEBB26D4A815ACDA85E3A1] - (.KalityWeb - WebAdSystem.) -- C:\Program Files\WebAdSystem\WebAdSystem.exe [822640] [PID.3700] =>Adware.WebAdSystem [MD5.049327975C9A1C09D5A7B84825939C95] - (.Boxore OU - Boxore Client.) -- C:\Program Files\Boxore\BoxoreClient\boxore.exe [965632] [PID.3760] =>Adware.Boxore [MD5.AB3005BA572C199F2FEC4EF9995B4F56] - (...) -- C:\Program Files\v01ViewPassword\v01ViewPasswordhZ174.exe [187392] [PID.3808] =>PUP.ViewPassword [MD5.3DB47C88AE09256A1337F38FF8F31130] - (...) -- C:\Program Files\fst_fr_274\fst_fr_274.exe [3976672] [PID.3856] =>Adware.FreeSoftToday [MD5.4EAA9C573C366BAB1D8F99AE61B61B82] - (...) -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\fst_fr_274\upfst_fr_274.exe [5765088] [PID.3944] =>Adware.FreeSoftToday [MD5.D26354109A18A3449D38B463A7B65F24] - (.Systweak Inc - RegClean Pro.) -- C:\Program Files\RegClean Pro\RegCleanPro.exe [7913320] [PID.4068] =>Rogue.RegistryPowerCleaner [MD5.5597D0075861CB0A6E6087752D205C0D] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [282624] [PID.428] [MD5.E30EDC61A85E4CD3DF79707253D2462E] - (...) -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\fabulous_07041344\fabulous_07041344.exe [2940928] [PID.2116] [MD5.3F061545F7AC7F026D53E11272EA7779] - (.Smart PC Solutions - PC Speed Maximizer Smart Scan.) -- C:\Program Files\PC Speed Maximizer\SPMSmartScan.exe [424560] [PID.2320] =>Rogue.PCSpeedMaximizer [MD5.BC9C9BE7BB74D629362608ACE470E7DA] - (.Microsoft Corporation - Notification de cadeaux MSN.) -- C:\Documents and Settings\HP_Propriétaire\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe [135680] [PID.2360] [MD5.AD1844100435E163C36322ACB2492117] - (.Symantec Corporation - Network Driver Service.) -- c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe [206048] [PID.3684] [MD5.5F2323DC1376BC8F6EDE875782E11B0C] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8074240] [PID.132] [MD5.A7B3FFEF35581B90F40E456799E9B229] - (.FST - FST Setup.) -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\fst_fr_274\Download\majfstfr.exe [8413912] [PID.592] =>Adware.FreeSoftToday [MD5.1305181DE520F125AEABF85DC24A89D6] - (.Pas de propriétaire - Setup/Uninstall.) -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\is-NJQ89.tmp\majfstfr.tmp [707072] [PID.2040] ~ Processes Running: Scanned in 00mn 13s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences G1 - GCS: Preference [User Data\Default] http://start.iminent.com =>Adware.IMBooster G0 - GCSP: Preference [User Data\Default][HomePage] http://start.iminent.com =>Adware.IMBooster G2 - GCE: Preference [User Data\Default] [cdihkdldaicijakhchgojcokhpamkibi] CinemaHDplus-V1.8 v.1.26.34, (Activé) G2 - GCE: Preference [User Data\Default] [engaigpbgdjjmanonjcjkcmomgibneba] Smart Display v.1.8, (Activé) =>Spyware.SmartDisplay G2 - GCE: Preference [User Data\Default] [gebbadcnkcgcfgpbmcdleckpejgopimf] cacaoweb v.1.19 (Activé) =>PUP.CacaoWeb G2 - GCE: Preference [User Data\Default] [igdhbblpcellaljokkpfhcjlagemhgjl] Iminent v.8.26.4.1, (Activé) =>Adware.IMBooster G2 - GCE: Preference [User Data\Default] [mfffpogegjflfpflabcdkioaeobkgjik] GaiaAuthExtension v.0.0.1, (Activé) G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé) G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé) G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé) G2 - GCE: Preference [User Data\Default] [pafkbggdmjlpgkdkcbjmhmfcdpncadgh] Google Now v.1.2.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [pbaxxildkhbcljgoabiecdoinkaedlca] Smart Display v.1.6 (Désactivé) =>Spyware.SmartDisplay G2 - GCE: Preference [User Data\Default] [pelmeidfhdlhlbjimpabfcbnnojbboma] Quick start v.4.4.5, (Désactivé) =>PUP.QuickStart ---\\ Liste des dossiers d'extension Google Chrome ~ Google Lines Browser: 19 Legitimates Filtered in 00mn 04s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\b40z4s34.default\prefs.js C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\b40z4s34.default\user.js C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\bepkhiie.default\prefs.js C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\bepkhiie.default\user.js M3 - MFPP: Plugins - [HP_Propriétaire] -- C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\bepkhiie.default\searchplugins\amazon.xml M3 - MFPP: Plugins - [HP_Propriétaire] -- C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\bepkhiie.default\searchplugins\default-search.xml =>Hijacker.Browsers M3 - MFPP: Plugins - [HP_Propriétaire] -- C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\bepkhiie.default\searchplugins\recherche-alot.xml =>Adware.Comet M3 - MFPP: Plugins - [HP_Propriétaire] -- C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\bepkhiie.default\searchplugins\wiseconvert-15-customized-web-search.xml =>Toolbar.Conduit M0 - MFSP: prefs.js [HP_Propriétaire - bepkhiie.default] http://isearch.omiga-plus.com =>Hijacker.OmigaPlus M2 - MFEP: prefs.js [HP_Propriétaire - b40z4s34.default\cacaoweb@cacaoweb.org] [] cacaoweb v1.0.34 (..) =>PUP.CacaoWeb M2 - MFEP: prefs.js [HP_Propriétaire - bepkhiie.default\cacaoweb@cacaoweb.org] [] cacaoweb v1.0.34 (..) =>PUP.CacaoWeb M2 - MFEP: prefs.js [HP_Propriétaire - bepkhiie.default\f80af4ec-42b9-429d-99b0-4078ec7cf864@44882d20-8865-4b13-b79e-ae8470d9a955.com] [] CinemaHDplus-V1.8 v1.0.34 (..) P2 - FPN: [HKLM] [@tools.Software.com/Software Update;version=3] - (.The Software Group - Software Update.) -- C:\Program Files\Software\Update\1.3.25.0\npSoftwareUpdate3.dll =>Adware.Boxore P2 - FPN: [HKLM] [@tools.Software.com/Software Update;version=9] - (.The Software Group - Software Update.) -- C:\Program Files\Software\Update\1.3.25.0\npSoftwareUpdate3.dll =>Adware.Boxore ~ Firefox Browser: 17 Legitimates Filtered in 00mn 01s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.iminent.com =>Adware.IMBooster R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com =>Hijacker.WebsSearches R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com =>Hijacker.WebsSearches R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com =>Hijacker.WebsSearches R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com =>Hijacker.WebsSearches R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com =>Hijacker.WebsSearches R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com =>Hijacker.WebsSearches R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com =>Hijacker.WebsSearches R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://istart.webssearches.com =>Hijacker.WebsSearches R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://istart.webssearches.com =>Hijacker.WebsSearches R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.The Software Group - Software Update.) (No version) -- (.not file.) =>Adware.Boxore R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} . (.The Software Group - Software Update.) (No version) -- (.not file.) =>Adware.Boxore ~ IE Browser: 12 Legitimates Filtered in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:14326;https=127.0.0.1:14326 =>Hijacker.Proxy R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 20 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: CrossriderApp0059568 - {11111111-1111-1111-1111-110511951168} . (.ChannelHD - CinemaHDplus-V1.8 BHO.) -- C:\Program Files\CinemaHDplus-V1.8\CinemaHDplus-V1.8-bho.dll =>PUP.CrossRider O2 - BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} . (.Thinknice Co. Limited - SupTab setup package.) -- C:\Program Files\SupTab\SupTab.dll =>PUP.SupTab O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} Clé orpheline O2 - BHO: IMinent WebBooster - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} . (.SIEN - Minibar.) -- C:\Program Files\Iminent\Minibar.InternetExplorer.BHOx86.dll =>PUP.Minibar O2 - BHO: ViewPassword - {D0EA4FC1-8546-B5B9-9126-759E76A55121} . (...) -- C:\Program Files\v01ViewPassword\174.dll =>PUP.ViewPassword O2 - BHO: HelloWorldBHO - {E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0} . (.FlowSurf Inc. - FlowSurf toolbar.) -- C:\Program Files\Flowsurf\FlowSurf.dll =>PUP.FlowSurf ~ BHO: 18 Legitimates Filtered in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: &Google - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google IE Client Toolbar.) -- c:\program files\google\googletoolbar1.dll O3 - Toolbar: Norton AntiVirus - [HKLM]{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} . (.Symantec Corporation - Norton AntiVirusNAVShellExt Module.) -- c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar\WebBrowser: (no name) - [HKCU]{01E04581-4EEE-11D0-BFE9-00AA005B4383} Clé orpheline O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0E5CBF21-D15F-11D0-8301-00AA005B4383} Clé orpheline O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline ~ Toolbar: Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\Program [AllUsers]: Mozilla Firefox (2).lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe http://istart.webssearches.com =>Hijacker.WebsSearches O4 - GS\Program [AllUsers]: Mozilla Firefox (3).lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe http://istart.webssearches.com =>Hijacker.WebsSearches O4 - GS\Program [AllUsers]: Mozilla Firefox (5).lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe http://istart.webssearches.com =>Hijacker.WebsSearches O4 - GS\Program [AllUsers]: Mozilla Firefox (6).lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe http://istart.webssearches.com =>Hijacker.WebsSearches O4 - GS\Program [AllUsers]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe http://istart.webssearches.com =>Hijacker.WebsSearches O4 - GS\Program [AllUsers]: WebAdSystem.lnk . (.KalityWeb - WebAdSystem.) -- C:\Program Files\WebAdSystem\WebAdSystem.exe =>Adware.WebAdSystem O4 - GS\Program [HP_Propriétaire]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com =>Hijacker.WebsSearches ~ Global Startup: 8 Legitimates Filtered in 00mn 01s ---\\ Applications lancées au démarrage du système (O4) O4 - GS\Program [HP_Propriétaire]: MyPC Backup.lnk . (.MyPCBackup.com - MyPC Backup.) -- C:\Program Files\MyPC Backup\MyPC Backup.exe =>PUP.MyPCBackup O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) 2 Platform Standard Edition binary.) -- C:\Program Files\Java\jre1.5.0\bin\jusched.exe =>.Oracle Corporation O4 - HKLM\..\Run: [hpsysdrv] . (.Hewlett-Packard Company - hpsysdrv.) -- c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] . (.Windows (R) Server 2003 DDK provider - High Definition Audio Property Page Shortcu.) -- C:\WINDOWS\system32\HDAShCut.exe O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll =>.NVIDIA Corporation O4 - HKLM\..\Run: [nwiz] . (...) -- C:\WINDOWS\system32\nwiz.exe O4 - HKLM\..\Run: [SoundMan] . (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\WINDOWS\SOUNDMAN.exe O4 - HKLM\..\Run: [AlcWzrd] . (.RealTek Semicoductor Corp. - RealTek AlcWzrd Application.) -- C:\WINDOWS\ALCWZRD.exe O4 - HKLM\..\Run: [Alcmtr] . (.Realtek Semiconductor Corp. - Realtek Azalia Audio - Event Monitor.) -- C:\WINDOWS\ALCMTR.exe O4 - HKLM\..\Run: [HPHUPD08] . (.Hewlett-Packard - HPHupd08.) -- c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe O4 - HKLM\..\Run: [KBD] . (.Hewlett-Packard Company - KBD EXE.) -- C:\HP\KBD\KBD.exe O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Computer, Inc. - iTunesHelper Module.) -- C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [Recguard] . (.Pas de propriétaire - Recguard Application.) -- C:\WINDOWS\SMINST\RECGUARD.exe O4 - HKLM\..\Run: [PCDrProfiler] Clé orpheline O4 - HKLM\..\Run: [SSC_UserPrompt] . (.Symantec Corporation - Norton Security Center Helper.) -- c:\Program Files\Fichiers communs\Symantec Shared\Security Center\UsrPrmpt.exe O4 - HKLM\..\Run: [ccApp] . (.Symantec Corporation - Symantec User Session.) -- c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe O4 - HKLM\..\Run: [IS CfgWiz] . (.Symantec Corporation - Symantec Internal Component.) -- c:\Program Files\Norton Internet Security\cfgwiz.exe O4 - HKLM\..\Run: [URLLSTCK.exe] . (.Symantec Corporation - URL Check List.) -- c:\Program Files\Norton Internet Security\UrlLstCk.exe O4 - HKLM\..\Run: [PS2] . (.Hewlett-Packard Company - PS2 EXE.) -- C:\WINDOWS\system32\ps2.exe O4 - HKLM\..\Run: [LSBWatcher] . (.Hewlett-Packard Company - LightScribe Burn Watcher.) -- c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe O4 - HKLM\..\Run: [Reminder] . (.SoftThinks - Application Remind_XP.) -- C:\Windows\Creator\Remind_XP.exe O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\HPwuSchd2.exe =>.Hewlett-Packard Co O4 - HKLM\..\Run: [WebAdSystem] . (.KalityWeb - WebAdSystem.) -- C:\Program Files\WebAdSystem\WebAdSystem.exe =>Adware.WebAdSystem O4 - HKLM\..\Run: [Boxore Client] . (.Boxore OU - Boxore Client.) -- C:\Program Files\Boxore\BoxoreClient\boxore.exe =>Adware.Boxore O4 - HKLM\..\Run: [AnyProtect Scanner] . (.AnyProtect by CMI - AnyProtect.) -- C:\Program Files\AnyProtectEx\AnyProtect.exe =>PUP.AnyProtect O4 - HKLM\..\Run: [fst_fr_274] . (...) -- C:\Program Files\fst_fr_274\fst_fr_274.exe =>Adware.FreeSoftToday O4 - HKLM\..\Run: [upfst_fr_274.exe] . (...) -- C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\fst_fr_274\upfst_fr_274.exe =>Adware.FreeSoftToday O4 - HKLM\..\Run: [regcmdcons] . (.Hewlett-Packard Co. - Cloaker.) -- c:\hp\bin\cloaker.exe O4 - HKCU\..\Run: [PC Speed Maximizer] . (.Smart PC Solutions - Fix PC problems and optimize performance.) -- C:\Program Files\PC Speed Maximizer\SPMLauncher.exe =>Rogue.PCSpeedMaximizer O4 - HKCU\..\Run: [RDReminder] . (.Systweak Inc - RegClean Pro.) -- C:\Program Files\RegClean Pro\RegCleanPro.exe =>Rogue.RegistryPowerCleaner O4 - HKCU\..\Run: [SystweakASP] . (.Systweak Inc - Advanced System Protector.) -- C:\Program Files\RegClean Pro\SystweakASP.exe =>PUP.AdvancedSystemProtector O4 - HKCU\..\Run: [fabulous_07041344] . (...) -- c:\documents and settings\hp_propriétaire\local settings\application data\fabulous_07041344\fabulous_07041344.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-21-2830543207-970405720-3239693889-1008\..\Run: [PC Speed Maximizer] . (.Smart PC Solutions - Fix PC problems and optimize performance.) -- C:\Program Files\PC Speed Maximizer\SPMLauncher.exe =>Rogue.PCSpeedMaximizer O4 - HKUS\S-1-5-21-2830543207-970405720-3239693889-1008\..\Run: [RDReminder] . (.Systweak Inc - RegClean Pro.) -- C:\Program Files\RegClean Pro\RegCleanPro.exe =>Rogue.RegistryPowerCleaner O4 - HKUS\S-1-5-21-2830543207-970405720-3239693889-1008\..\Run: [SystweakASP] . (.Systweak Inc - Advanced System Protector.) -- C:\Program Files\RegClean Pro\SystweakASP.exe =>PUP.AdvancedSystemProtector O4 - HKUS\S-1-5-21-2830543207-970405720-3239693889-1008\..\Run: [fabulous_07041344] . (...) -- c:\documents and settings\hp_propriétaire\local settings\application data\fabulous_07041344\fabulous_07041344.exe ~ Application: Scanned in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -- Clé orpheline O9 - Extra button: FlowSurf - {6CA2A4DE-483E-456B-8634-6445460D7097} -- c:\I+D\Development\Ideas\Contextual Browsing\Workspaces\IEExtensionv4\Icon\browseye.ico (.not file.) =>PUP.FlowSurf O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} . (...) -- C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\conn_support.ico O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ~ IE Extra Buttons: Scanned in 00mn 00s ---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14) O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome ~ IE Paramètres WEB: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{DE246E2C-8697-44FE-A5BB-FA04D12D4DEC}: DhcpNameServer = 15.243.128.51 15.243.160.51 O17 - HKLM\System\CCS\Services\Tcpip\..\{F6F0FB16-6FE5-42C4-B3F0-295ACACA2152}: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{DE246E2C-8697-44FE-A5BB-FA04D12D4DEC}: DhcpDomain = rgv.hp.com O17 - HKLM\System\CS1\Services\Tcpip\..\{DE246E2C-8697-44FE-A5BB-FA04D12D4DEC}: DhcpNameServer = 15.243.128.51 15.243.160.51 O17 - HKLM\System\CS1\Services\Tcpip\..\{F6F0FB16-6FE5-42C4-B3F0-295ACACA2152}: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{DE246E2C-8697-44FE-A5BB-FA04D12D4DEC}: DhcpDomain = rgv.hp.com O17 - HKLM\System\CS3\Services\Tcpip\..\{DE246E2C-8697-44FE-A5BB-FA04D12D4DEC}: DhcpNameServer = 15.243.128.51 15.243.160.51 O17 - HKLM\System\CS3\Services\Tcpip\..\{F6F0FB16-6FE5-42C4-B3F0-295ACACA2152}: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CS3\Services\Tcpip\..\{DE246E2C-8697-44FE-A5BB-FA04D12D4DEC}: DhcpDomain = rgv.hp.com O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll ~ Winlogon: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - AppInit_DLLs: . (.Skytech Co., Ltd. - Skytech.) - C:\Program Files\SupTab\SearchProtect32.dll =>PUP.SearchProtect ~ AppInit DLL: Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) . (.globalUpdate - globalUpdate Update.) - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe O23 - Service: GlobalUpdater (GlobalUpdater) . (.SIEN S.A. - IMGUpdater.) - C:\Program Files\Fichiers communs\IMGUpdater\IMGUpdater.exe O23 - Service: IePlugin Services (IePluginServices) . (.Cherished Technololgy LIMITED - IePlugin Service.) - C:\Documents and Settings\All Users\Application Data\IePluginServices\PluginService.exe =>Trojan.SProtector O23 - Service: Network HTTP Support Service (NetHttpService) . (...) - C:\WINDOWS\system32\nethtsrv.exe O23 - Service: VO Service component (servervo) . (...) - C:\Documents and Settings\HP_Propriétaire\Application Data\VOPackage\VOsrv.exe =>Adware.Downware O23 - Service: Network Support Service Updater (ServiceUpdater) . (...) - C:\WINDOWS\system32\netupdsrv.exe O23 - Service: Service Software Update (Software_update) (Software_update) . (.The Software Group - Software Update.) - C:\Program Files\Software\Update\SoftwareUpdate.exe =>Adware.Boxore O23 - Service: SProtection (SProtection) . (.Iminent - Iminent Protection.) - C:\Program Files\Fichiers communs\Umbrella\Umbrella260.exe =>Adware.IMBooster O23 - Service: UpdaterSvcNetCrawl (UpdaterSvcNetCrawl) . (...) - C:\Program Files\NetCrawl\updater.exe O23 - Service: ViewPassword (ViewPassword) . (...) - C:\Program Files\v01ViewPassword\v01ViewPasswordhZ174.exe =>PUP.ViewPassword O23 - Service: WindowsMangerProtect Service (WindowsMangerProtect) . (.Fuyu LIMITED - WindowsProtectManger Service.) - C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\ProtectWindowsManager.exe =>PUP.Fuyu ~ Services: 18 Legitimates Filtered in 00mn 05s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Desktop General: BackupWallPaper - .(...) - C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Microsoft\Wallpaper2.bmp O24 - Desktop General: WallPaper - .(...) - C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Microsoft\Wallpaper2.bmp ~ Desktop Component: 4 Legitimates Filtered in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT: - (..) -- C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-1.job [1604] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-10.job [1294] O39 - APT: - (..) -- C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-11.job [3812] O39 - APT: - (..) -- C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-2.job [1360] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-3.job [3130] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-4.job [2250] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-5.job [1452] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-6.job [1602] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-7.job [1528] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-1.job [1568] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-10.job [1278] O39 - APT: - (..) -- C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-11.job [3808] O39 - APT: - (..) -- C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-2.job [1354] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-3.job [3126] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-4.job [2230] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-5.job [1438] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-6.job [1574] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-7.job [1504] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-1.job [1568] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-10.job [1288] O39 - APT: - (..) -- C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-11.job [3820] O39 - APT: - (..) -- C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-2.job [1346] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-3.job [3138] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-4.job [2252] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-5.job [1418] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-6.job [1570] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-7.job [1500] =>PUP.CrossRider O39 - APT: - (..) -- C:\WINDOWS\Tasks\AmiUpdXp.job [420] =>PUP.Software.Updater O39 - APT: - (..) -- C:\WINDOWS\Tasks\APSnotifierPP1.job [366] =>PUP.AnyProtect O39 - APT: - (..) -- C:\WINDOWS\Tasks\APSnotifierPP2.job [364] =>PUP.AnyProtect O39 - APT: - (..) -- C:\WINDOWS\Tasks\APSnotifierPP3.job [364] =>PUP.AnyProtect O39 - APT: - (..) -- C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore1cf9790b9daec22.job [930] O39 - APT: - (..) -- C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA1cf9790baa59404.job [934] O39 - APT: - (..) -- C:\WINDOWS\Tasks\RegClean Pro_DEFAULT.job [284] =>Rogue.RegistryPowerCleaner O39 - APT: - (..) -- C:\WINDOWS\Tasks\RegClean Pro_UPDATES.job [292] =>Rogue.RegistryPowerCleaner O39 - APT: - (..) -- C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineCore.job [920] O39 - APT: - (..) -- C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineCore1cf0ae279fc53a0.job [920] O39 - APT: - (..) -- C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineUA.job [924] O39 - APT: - (..) -- C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineUA1cf0ae27ae5fa14.job [924] O39 - APT: - (..) -- C:\WINDOWS\Tasks\Symantec NetDetect.job [378] O39 - APT: - (..) -- C:\WINDOWS\Tasks\ViewPassword Update.job [418] =>PUP.ViewPassword O39 - APT: - (..) -- C:\WINDOWS\Tasks\ViewPassword_wd.job [396] =>PUP.ViewPassword ~ Scheduled Task: 53 Legitimates Filtered in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: (nethfdrv) . (.Pas de propriétaire - nethfdrv.sys.) - C:\WINDOWS\system32\drivers\nethfdrv.sys ~ Drivers: 63 Legitimates Filtered in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: AnyProtect - (.CMI Limited.) [HKLM] -- AnyProtect =>PUP.AnyProtect O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM] -- {D8D8A342-0E9F-47EA-A35E-CF431B50B286} =>Adware.Boxore O42 - Logiciel: CinemaHDplus-V1.8 - (.ChannelHD.) [HKLM] -- CinemaHDplus-V1.8 O42 - Logiciel: Fabulous discounts - (...) [HKCU] -- fabulous_07041344 O42 - Logiciel: Iminent - (.Iminent.) [HKLM] -- IMBoosterARP =>Adware.IMBooster O42 - Logiciel: IminentToolbar - (.Iminent.) [HKLM] -- IminentToolbar =>Adware.IMBooster O42 - Logiciel: Installer - (...) [HKLM] -- VOPackage =>Adware.Downware O42 - Logiciel: NetCrawl - (.NetCrawl.) [HKLM] -- NetCrawl O42 - Logiciel: Network System Driver - (...) [HKLM] -- inethnfd =>PUP.NetworkSystemDriver O42 - Logiciel: RegClean-Pro - (.Systweak Inc.) [HKLM] -- RegClean-Pro_is1 =>Rogue.RegistryPowerCleaner O42 - Logiciel: ViewPassword - (.ViewPassword-software.) [HKLM] -- EA986F66-8D35-1BC1-53A9-7D941DB649F8 =>PUP.ViewPassword O42 - Logiciel: WebAdSystem - (.KalityWeb.) [HKLM] -- {4b693ee6-6ab3-41b6-956e-6290548ad66d} =>Adware.WebAdSystem O42 - Logiciel: WebAdSystem - (.KalityWeb.) [HKLM] -- {AF59773E-3245-46A3-B418-DD84AB6C3C50} =>Adware.WebAdSystem O42 - Logiciel: WindowsMangerProtect20.0.0.502 - (.WindowsProtect LIMITED.) [HKLM] -- WindowsMangerProtect O42 - Logiciel: fst_fr_274 - (.FrEeSoFtOdAy.) [HKLM] -- FreeSoftToday_is1 =>Adware.FreeSoftToday O42 - Logiciel: webssearches uninstall - (.webssearches.) [HKLM] -- webssearches uninstall =>Hijacker.WebsSearches ~ Logic: 39 Legitimates Filtered in 00mn 01s ---\\ HKCU & HKLM Software Keys [HKCU\Software\AnyProtect] =>PUP.AnyProtect [HKCU\Software\Boxore] =>Adware.Boxore [HKCU\Software\CinemaHDplus-V1.8] [HKCU\Software\Crossrider] =>PUP.CrossRider [HKCU\Software\Flowsurf] =>PUP.FlowSurf [HKCU\Software\Iminent] =>Adware.IMBooster [HKCU\Software\InstallCore] =>Adware.InstallCore [HKCU\Software\InstalledBrowserExtensions] =>Adware.VidSaver [HKCU\Software\KalityWeb] =>Adware.WebAdSystem [HKCU\Software\NetCrawl] [HKCU\Software\TutoTag] =>PUP.AgenceExclusive [HKCU\Software\Tutorials] =>PUP.AgenceExclusive [HKCU\Software\ViewPassword] =>PUP.ViewPassword [HKCU\Software\fabulous] [HKCU\Software\smartWrapper] [HKLM\Software\Boxore] =>Adware.Boxore [HKLM\Software\Client] [HKLM\Software\FrEeSoFtOdAy] [HKLM\Software\IMGUpdater] [HKLM\Software\Iminent] =>Adware.IMBooster [HKLM\Software\InstalledBrowserExtensions] =>Adware.VidSaver [HKLM\Software\KalityWeb] =>Adware.WebAdSystem [HKLM\Software\SupDp] =>PUP.SupTab [HKLM\Software\Tutorials] =>PUP.AgenceExclusive [HKLM\Software\Umbrella] [HKLM\Software\Wpm] =>PUP.WpManager [HKLM\Software\supTab] =>PUP.SupTab [HKLM\Software\supWPM] =>PUP.WpManager ~ Key Software: 246 Legitimates Filtered in 00mn 01s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 04/07/2014 - 16:16:44 - [] ----D C:\Program Files\AnyProtectEx =>PUP.AnyProtect O43 - CFD: 30/06/2014 - 11:32:01 - [] ----D C:\Program Files\Boxore =>Adware.Boxore O43 - CFD: 25/01/2014 - 18:41:48 - [] ----D C:\Program Files\cacaoweb =>PUP.CacaoWeb O43 - CFD: 04/07/2014 - 16:04:17 - [] ----D C:\Program Files\CinemaHDplus-V1.8 O43 - CFD: 04/07/2014 - 15:41:01 - [] ----D C:\Program Files\Flowsurf =>PUP.FlowSurf O43 - CFD: 07/05/2012 - 17:44:41 - [] ----D C:\Program Files\Formalité Facile O43 - CFD: 04/07/2014 - 16:20:50 - [] ----D C:\Program Files\fst_fr_274 =>Adware.FreeSoftToday O43 - CFD: 04/07/2014 - 16:03:30 - [] ---AD C:\Program Files\Iminent =>Adware.IMBooster O43 - CFD: 30/06/2014 - 11:51:59 - [] ----D C:\Program Files\Linkey =>PUP.LinkeySearch O43 - CFD: 30/06/2014 - 11:37:08 - [] ----D C:\Program Files\MyPC Backup =>PUP.MyPCBackup O43 - CFD: 04/07/2014 - 16:15:26 - [] ----D C:\Program Files\NetCrawl O43 - CFD: 02/07/2014 - 22:22:28 - [] ----D C:\Program Files\PC Cleaner =>USP.PCCleaner O43 - CFD: 27/06/2014 - 21:25:30 - [] ----D C:\Program Files\Plus-HD-V1.1 =>Adware.PlusHD O43 - CFD: 30/06/2014 - 11:37:53 - [] ----D C:\Program Files\PriceGong =>Adware.PriceGong O43 - CFD: 04/07/2014 - 16:15:10 - [] ----D C:\Program Files\RegClean Pro =>Rogue.RegistryPowerCleaner O43 - CFD: 30/06/2014 - 11:51:38 - [] ----D C:\Program Files\Settings Manager =>PUP.SystemK O43 - CFD: 30/06/2014 - 11:33:18 - [] ----D C:\Program Files\sizlsearch =>PUP.SizlSearch O43 - CFD: 04/07/2014 - 15:42:48 - [] ----D C:\Program Files\SupTab =>PUP.SupTab O43 - CFD: 02/07/2014 - 22:22:22 - [] ----D C:\Program Files\System Speedup =>PUP.SystemSpeedup O43 - CFD: 04/07/2014 - 16:02:03 - [] ----D C:\Program Files\v01ViewPassword =>PUP.ViewPassword O43 - CFD: 04/07/2014 - 15:43:02 - [] ----D C:\Program Files\WebAdSystem =>Adware.WebAdSystem O43 - CFD: 02/07/2014 - 22:22:29 - [] ----D C:\Program Files\Zebar =>PUP.Zebar O43 - CFD: 04/07/2014 - 15:38:20 - [] ----D C:\Program Files\Fichiers communs\Config O43 - CFD: 27/06/2014 - 21:12:44 - [] ----D C:\Program Files\Fichiers communs\IMGUpdater O43 - CFD: 04/07/2014 - 16:02:34 - [] ----D C:\Program Files\Fichiers communs\Umbrella O43 - CFD: 04/07/2014 - 16:12:48 - [] ----D C:\Documents and Settings\All Users\Application Data\2308189059 O43 - CFD: 01/08/2010 - 13:22:34 - [] ----D C:\Documents and Settings\All Users\Application Data\Bubble Noise O43 - CFD: 30/06/2014 - 11:30:51 - [] ----D C:\Documents and Settings\All Users\Application Data\IePluginServices =>Trojan.SProtector O43 - CFD: 02/07/2014 - 22:23:36 - [] ----D C:\Documents and Settings\All Users\Application Data\systemk =>PUP.SystemK O43 - CFD: 04/07/2014 - 15:41:50 - [] ----D C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect O43 - CFD: 30/06/2014 - 11:30:47 - [] ----D C:\Documents and Settings\All Users\Application Data\WindowsProtectManger =>PUP.Fuyu O43 - CFD: 18/11/2009 - 17:57:11 - [] ----D C:\Documents and Settings\HP_Propriétaire\Application Data\4DView O43 - CFD: 04/07/2014 - 15:38:12 - [] ----D C:\Documents and Settings\HP_Propriétaire\Application Data\5653 O43 - CFD: 06/07/2014 - 15:04:30 - [0] ----D C:\Documents and Settings\HP_Propriétaire\Application Data\Advanced System Protector =>PUP.AdvancedSystemProtector O43 - CFD: 28/06/2014 - 21:24:39 - [] ----D C:\Documents and Settings\HP_Propriétaire\Application Data\cacaoweb =>PUP.CacaoWeb O43 - CFD: 02/07/2014 - 21:52:57 - [] ----D C:\Documents and Settings\HP_Propriétaire\Application Data\omiga-plus =>Hijacker.OmigaPlus O43 - CFD: 30/06/2014 - 11:41:55 - [] ----D C:\Documents and Settings\HP_Propriétaire\Application Data\PriceGong =>Adware.PriceGong O43 - CFD: 05/07/2014 - 15:20:09 - [] ----D C:\Documents and Settings\HP_Propriétaire\Application Data\rightbackup O43 - CFD: 30/06/2014 - 11:51:42 - [] ----D C:\Documents and Settings\HP_Propriétaire\Application Data\Settings Manager =>PUP.SystemK O43 - CFD: 30/06/2014 - 11:30:47 - [0] ----D C:\Documents and Settings\HP_Propriétaire\Application Data\SupTab =>PUP.SupTab O43 - CFD: 03/07/2014 - 10:42:51 - [] ----D C:\Documents and Settings\HP_Propriétaire\Application Data\System Speedup =>PUP.SystemSpeedup O43 - CFD: 30/06/2014 - 11:38:29 - [] ----D C:\Documents and Settings\HP_Propriétaire\Application Data\VOPackage =>Adware.Downware O43 - CFD: 04/07/2014 - 15:41:26 - [] ----D C:\Documents and Settings\HP_Propriétaire\Application Data\webssearches =>Hijacker.WebsSearches O43 - CFD: 06/11/2011 - 16:23:03 - [] -SH-D C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\19160f47 O43 - CFD: 05/07/2014 - 17:05:28 - [] ----D C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\fabulous_07041344 O43 - CFD: 06/07/2014 - 15:04:58 - [] ----D C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\fst_fr_274 =>Adware.FreeSoftToday O43 - CFD: 04/07/2014 - 15:43:00 - [] ----D C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\KalityWeb =>Adware.WebAdSystem O43 - CFD: 04/07/2014 - 16:16:43 - [] ----D C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\AnyProtect PC Backup =>PUP.AnyProtect O43 - CFD: 30/06/2014 - 11:37:08 - [] ----D C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\MyPC Backup =>PUP.MyPCBackup O43 - CFD: 30/06/2014 - 11:37:41 - [] ----D C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\VOPackage =>Adware.Downware ~ Program Folder: 278 Legitimates Filtered in 00mn 02s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.850982FE535C23E84061637311413508] - 02/07/2014 - 20:26:30 ---A- . (...) -- C:\WINDOWS\~DFBCBB.tmp [16384] O44 - LFC:[MD5.0938FDAEDD26718C5838AA79D3670143] - 02/07/2014 - 20:30:20 ---A- . (...) -- C:\WINDOWS\ie8Uninst.log [33023] O44 - LFC:[MD5.B39DB56978458073ABE4E742AA647BDD] - 04/07/2014 - 14:03:48 ---A- . (...) -- C:\WINDOWS\DtcInstall.log [641] O44 - LFC:[MD5.B1DD7ED7E0C91ADFC0C6EB65049482E0] - 04/07/2014 - 14:04:03 ---A- . (...) -- C:\WINDOWS\sessmgr.setup.log [2739] O44 - LFC:[MD5.71FDBA5B00AA4C190FA8AADEA67CE4D4] - 04/07/2014 - 14:07:15 RSHA- . (...) -- C:\BOOT.BAK [218] O44 - LFC:[MD5.57EF2F5AFDD887C8E46B50C6D9B02600] - 04/07/2014 - 14:07:51 ---A- . (...) -- C:\WINDOWS\system32\$winnt$.inf [1063] O44 - LFC:[MD5.5E62DB7BD04807F4E7A93B70200249F6] - 04/07/2014 - 14:08:37 ---A- . (...) -- C:\WINDOWS\setuplog.txt [889333] O44 - LFC:[MD5.D7D4246B9AF5841CB3B7031BE9437882] - 04/07/2014 - 14:10:45 RSHA- . (...) -- C:\WINDOWS\system32\Drivers\103C_HP_CPC_EJ169AA-ABF t3249.fr_YC_0Pavi_QCZB545_E54FRheBLU3_48_IPuffer2_SASUSTeK Computer INC._V1.xx_B3.26_T050930_WXH2_L40C_M1024_J200_7Intel_8Pentium 4_93.07_#091102_N10EC8139_Z_G10DE0162_O_DHWP2647.MRK [1810] O44 - LFC:[MD5.317F1C91ECFAEC4DF3B029DD5117AC06] - 04/07/2014 - 14:10:50 ---A- . (...) -- C:\WINDOWS\wmsetup.log [54126] O44 - LFC:[MD5.50419A3231BAD6F96D5847180785EB17] - 04/07/2014 - 14:10:51 ---A- . (...) -- C:\WINDOWS\OEWABLog.txt [1178] O44 - LFC:[MD5.6D0634CEBBFF7F428DD816706F5AA1FB] - 04/07/2014 - 14:19:54 ---A- . (...) -- C:\WINDOWS\system32\BuzzingBee.wav [146650] O44 - LFC:[MD5.E2FA75ADE398C9A44815B11CC141105C] - 04/07/2014 - 14:19:54 ---A- . (...) -- C:\WINDOWS\system32\LoopyMusic.wav [940794] O44 - LFC:[MD5.23B58DEF11B45727D3351702515F86AF] - 04/07/2014 - 14:41:01 ---A- . (...) -- C:\END [2] O44 - LFC:[MD5.F14F1EBB47CCBD9C1AE2348E8FF7BF9E] - 04/07/2014 - 14:43:33 ---A- . (...) -- C:\awh1BD.tmp [687] O44 - LFC:[MD5.A0E02492452D4E237465D99D005D91FD] - 04/07/2014 - 14:57:52 ---A- . (...) -- C:\WINDOWS\system.ini [231] O44 - LFC:[MD5.4C0501E555EB920E4DBC66C73EAB7B2B] - 04/07/2014 - 15:00:19 ---A- . (...) -- C:\WINDOWS\regopt.log [5986] O44 - LFC:[MD5.57E7708649783A8759EABE214627EDB3] - 04/07/2014 - 15:42:44 ---A- . (...) -- C:\WINDOWS\WINNT32.LOG [16806] O44 - LFC:[MD5.61D7DF481908DB06067A1D94A4A70127] - 04/07/2014 - 15:42:46 ---A- . (...) -- C:\WINDOWS\DHCPUPG.LOG [1602] O44 - LFC:[MD5.50283228DB23688578E7EB6548D36CA3] - 04/07/2014 - 15:42:56 ---A- . (...) -- C:\WINDOWS\wsdu.log [581] O44 - LFC:[MD5.8D2D6F076FCFE4F5A9AE87049FB51CAA] - 04/07/2014 - 15:43:05 ---A- . (...) -- C:\WINDOWS\UPGRADE.TXT [283] O44 - LFC:[MD5.48C65662EC81FBCAA110509F50C51497] - 04/07/2014 - 15:43:34 ---A- . (...) -- C:\$LDR$ [263488] O44 - LFC:[MD5.E5F18F1123C02CCE77EDB9F1DCB9108B] - 04/07/2014 - 15:43:34 ---A- . (...) -- C:\txtsetup.sif [452037] O44 - LFC:[MD5.F14F1EBB47CCBD9C1AE2348E8FF7BF9E] - 04/07/2014 - 15:45:16 ---A- . (...) -- C:\awh18.tmp [687] O44 - LFC:[MD5.40392A7E40A29934E53BD250E33C08B3] - 05/07/2014 - 14:15:37 ---A- . (...) -- C:\WINDOWS\win.ini [527] O44 - LFC:[MD5.F14F1EBB47CCBD9C1AE2348E8FF7BF9E] - 05/07/2014 - 14:17:21 ---A- . (...) -- C:\awh1C.tmp [687] O44 - LFC:[MD5.8404685058E21F498F46F2F829C48330] - 05/07/2014 - 14:28:29 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1355] O44 - LFC:[MD5.BFBAD6AEE0954E6BF2F44CE565298AA8] - 05/07/2014 - 14:54:52 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [158145] O44 - LFC:[MD5.49216CF05149A6A0FC0C460A28F6E42F] - 05/07/2014 - 14:54:54 ---A- . (...) -- C:\WINDOWS\msgsocm.log [7310] O44 - LFC:[MD5.FC6208E23BCC143BF47347AD324BA969] - 05/07/2014 - 14:54:54 ---A- . (...) -- C:\WINDOWS\ocgen.log [81464] O44 - LFC:[MD5.D65991458186C8B532EAB1298E3585B9] - 05/07/2014 - 14:54:58 ---A- . (...) -- C:\WINDOWS\imsins.log [1355] O44 - LFC:[MD5.45E0E642B5BC4A404720630CA0969DF3] - 05/07/2014 - 14:54:58 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [33410] O44 - LFC:[MD5.747997ED5BF1AE290A3C853A5D9BF9AD] - 05/07/2014 - 14:54:58 ---A- . (...) -- C:\WINDOWS\ocmsn.log [7926] O44 - LFC:[MD5.0A03A66B31BE7E4E46433E135F0BA2C4] - 05/07/2014 - 14:54:58 ---A- . (...) -- C:\WINDOWS\tsoc.log [58866] O44 - LFC:[MD5.CB2AC27EBD2A9B7AC235D532F408EC68] - 05/07/2014 - 14:54:59 ---A- . (...) -- C:\WINDOWS\comsetup.log [56521] O44 - LFC:[MD5.871FF755D351A1894C6AD5B37E856467] - 05/07/2014 - 14:55:00 ---A- . (...) -- C:\WINDOWS\iis6.log [20359] O44 - LFC:[MD5.F14F1EBB47CCBD9C1AE2348E8FF7BF9E] - 05/07/2014 - 15:58:03 ---A- . (...) -- C:\awh1A.tmp [687] O44 - LFC:[MD5.4D28A989D27AC0912B670436BB452579] - 06/07/2014 - 14:01:30 ---A- . (...) -- C:\WINDOWS\system32\nvapps.xml [29204] O44 - LFC:[MD5.F14F1EBB47CCBD9C1AE2348E8FF7BF9E] - 06/07/2014 - 14:06:20 ---A- . (...) -- C:\awh1D.tmp [687] O44 - LFC:[MD5.564C01FE3A09778E08358F5B6851613A] - 25/06/2014 - 14:23:36 ---A- . (...) -- C:\WINDOWS\lgfwup.ini [306] O44 - LFC:[MD5.C9AC6F159A05E982520DA77531E4ED77] - 25/06/2014 - 17:10:28 ---A- . (...) -- C:\WINDOWS\WIC.log [16350] O44 - LFC:[MD5.850982FE535C23E84061637311413508] - 27/06/2014 - 20:07:57 ---A- . (...) -- C:\WINDOWS\~DF3C30.tmp [16384] O44 - LFC:[MD5.CE338FE6899778AACFC28414F2D9498B] - 27/06/2014 - 21:00:08 ---A- . (...) -- C:\WINDOWS\~DF8161.tmp [16384] O44 - LFC:[MD5.850982FE535C23E84061637311413508] - 29/06/2014 - 14:02:42 ---A- . (...) -- C:\WINDOWS\~DFD136.tmp [16384] O44 - LFC:[MD5.850982FE535C23E84061637311413508] - 30/06/2014 - 10:23:38 ---A- . (...) -- C:\WINDOWS\~DFB643.tmp [16384] O44 - LFC:[MD5.334BDF61BD88A009772441D4DB78FC06] - 30/06/2014 - 16:55:42 ---A- . (.Systweak Inc., (www.systweak.com) - Regclean Pro.) -- C:\WINDOWS\system32\roboot.exe [18792] =>Rogue.RegistryPowerCleaner ~ Files: 71 Legitimates Filtered in 01mn 31s ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll ~ ShellExecuteHooks: Scanned in 00mn 00s ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - DatamngrCoordinator.exe - tasklist.exe =>PUP.Datamngr O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ~ IFEO: Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:05/08/2004 - 19:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\Drivers\cinemst2.sys [262528] O58 - SDL:08/01/2005 - 00:07:18 ---A- . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\Drivers\Hdaudbus.sys [138752] O58 - SDL:08/01/2005 - 00:07:16 ---A- . (.Windows (R) Server 2003 DDK provider - High Definition Audio Function Driver v1.0a.) -- C:\WINDOWS\system32\Drivers\Hdaudio.sys [145920] O58 - SDL:04/08/2004 - 07:46:46 ---A- . (.LT - LT Windows Modem.) -- C:\WINDOWS\system32\Drivers\ltmdmnt.sys [607452] O58 - SDL:15/06/2014 - 07:46:40 ---A- . (.Pas de propriétaire - nethfdrv.sys.) -- C:\WINDOWS\system32\Drivers\nethfdrv.sys [49152] O58 - SDL:05/08/2004 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\Drivers\ptilink.sys [17792] O58 - SDL:05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\Drivers\secdrv.sys [27440] O58 - SDL:09/05/2005 - 23:52:32 ---A- . (...) -- C:\WINDOWS\system32\Drivers\USBkey.sys [22396] O58 - SDL:05/08/2004 - 19:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\Drivers\vdmindvd.sys [58112] O58 - SDL:05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037] O58 - SDL:03/01/2005 - 00:41:25 ---A- . (...) -- C:\WINDOWS\system32\CHODDI.SYS [16486] O58 - SDL:05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912] O58 - SDL:05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:05/08/2004 - 19:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916] O58 - SDL:05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:05/08/2004 - 19:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000] O58 - SDL:05/08/2004 - 19:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:05/08/2004 - 19:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:05/08/2004 - 19:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:05/08/2004 - 19:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] ~ Drivers: 47 Legitimates Filtered in 00mn 00s ---\\ Liste les services legacy du registre (LALS) (O64) O64 - Services: CurCS - 18/06/2014 - C:\Program Files\Fichiers communs\IMGUpdater\IMGUpdater.exe (GlobalUpdater) .(.SIEN S.A. - IMGUpdater.) - LEGACY_GLOBALUPDATER O64 - Services: CurCS - 08/05/2014 - C:\Documents and Settings\All Users\Application Data\IePluginServices\PluginService.exe (IePluginServices) .(.Cherished Technololgy LIMITED - IePlugin Service.) - LEGACY_IEPLUGINSERVICES =>Trojan.SProtector O64 - Services: CurCS - 05/05/2005 - C:\Program Files\iPod\bin\iPodService.exe (iPodService) .(.Apple Computer, Inc. - iPodService Module.) - LEGACY_IPODSERVICE O64 - Services: CurCS - 15/06/2014 - C:\WINDOWS\system32\drivers\nethfdrv.sys (nethfdrv) .(.Pas de propriétaire - nethfdrv.sys.) - LEGACY_NETHFDRV O64 - Services: CurCS - 15/06/2014 - C:\WINDOWS\system32\nethtsrv.exe (NetHttpService) .(...) - LEGACY_NETHTTPSERVICE O64 - Services: CurCS - 23/07/2004 - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRTPEL.sys (SAVRTPEL) .(.Symantec Corporation - SAVRTPEL.) - LEGACY_SAVRTPEL O64 - Services: CurCS - 04/07/2014 - C:\Documents and Settings\HP_Propriétaire\Application Data\VOPackage\VOsrv.exe (servervo) .(...) - LEGACY_SERVERVO =>Adware.Downware O64 - Services: CurCS - 15/06/2014 - C:\WINDOWS\system32\netupdsrv.exe (ServiceUpdater) .(...) - LEGACY_SERVICEUPDATER O64 - Services: CurCS - 27/08/2004 - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe (SNDSrvc) .(.Symantec Corporation - Network Driver Service.) - LEGACY_SNDSRVC O64 - Services: CurCS - 18/06/2014 - C:\Program Files\Fichiers communs\Umbrella\Umbrella260.exe (SProtection) .(.Iminent - Iminent Protection.) - LEGACY_SPROTECTION =>Adware.IMBooster O64 - Services: CurCS - 04/07/2014 - C:\Program Files\NetCrawl\updater.exe (UpdaterSvcNetCrawl) .(...) - LEGACY_UPDATERSVCNETCRAWL O64 - Services: CurCS - 04/07/2014 - C:\Program Files\v01ViewPassword\v01ViewPasswordhZ174.exe (ViewPassword) .(...) - LEGACY_VIEWPASSWORD =>PUP.ViewPassword O64 - Services: CurCS - 04/07/2014 - C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\ProtectWindowsManager.exe (WindowsMangerProtect) .(.Fuyu LIMITED - WindowsProtectManger Service.) - LEGACY_WINDOWSMANGERPROTECT =>PUP.Fuyu ~ Legacy: 124 Legitimates Filtered in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: prefs.js [HP_Propriétaire - bepkhiie.default] user_pref("extensions.crossrider.bic", "146ecbb037ded618fb51dc33e45f9c6d"); =>PUP.CrossRider O69 - SBI: SearchScopes [HKCU] {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} - (StartWeb) - http://start.iminent.com =>Adware.IMBooster ~ Keys: Scanned in 00mn 00s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.4C500F9BAD8231721176F21902B42A48] [SPRF][23/02/2010] (...) -- C:\Documents and Settings\HP_Propriétaire\Application Data\avdrn.dat [4] [MD5.4904ACE9F5B019B697A86C84B946F34B] [SPRF][03/12/2013] (...) -- C:\Documents and Settings\HP_Propriétaire\Application Data\wklnhst.dat [12430] [MD5.8CFF20A62EFADF9860B0CEEE960975A0] [SPRF][16/12/2010] (...) -- C:\Documents and Settings\HP_Propriétaire\Bureau\OOo_3.2.1_Win_x86_install-wJRE_fr.exe [149664176] ~ Files: 7 Legitimates Filtered in 00mn 04s ---\\ Enumère les codes produits des logiciels (PUC) (O90) O90 - PUC: "243A8D8DF9E0AE743AE5FC34B1052B68" . (.Boxore Client.) -- C:\WINDOWS\Installer\{D8D8A342-0E9F-47EA-A35E-CF431B50B286}\boxore.ico =>Adware.Boxore ~ Update Products: 1 Legitimates Filtered in 00mn 00s ---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) [MD5.E5F2A75580380FCD1E4DFDF7F462ECDC] [WIS][08/04/2012] (.SweetIM Technologies Ltd. - SweetPacks Toolbar for Internet Explorer 4.0.) -- C:\Windows\Installer\104714f.msi [1846784] =>PUP.SweetIM [MD5.D72EA2797F9CACC8174382EE27D74EF4] [WIS][02/11/2011] (.SweetIM Technologies Ltd. - SweetIM for Messenger 3.6.) -- C:\Windows\Installer\1b9123d3.msi [1947136] =>PUP.SweetIM [MD5.2786AD90AE502BA8EA0DE618A7138AD3] [WIS][02/11/2011] (.SweetIM Technologies Ltd. - SweetIM Toolbar for Internet Explorer 4.0.) -- C:\Windows\Installer\1b9123d9.msi [1837056] =>PUP.SweetIM [MD5.1B1488146A3669AECC462406904D1F0E] [WIS][16/08/2013] (.Boxore OU - Boxore Client Installer.) -- C:\Windows\Installer\2404ea2.msi [474624] =>Adware.Boxore [MD5.518DEC52A0173658FCDC5A71E9214047] [WIS][04/07/2014] (.KalityWeb - WebAdSystem.) -- C:\Windows\Installer\29ebc5.msi [176128] =>Adware.WebAdSystem [MD5.D5FFC9E6F5F04D613FE51BB77BBF649A] [WIS][04/07/2014] (.The Software Group - Software Update Helper.) -- C:\Windows\Installer\29ebca.msi [23552] =>Adware.Boxore [MD5.D97DAEC5C5314503A426F94F7C9EDA1B] [WIS][04/07/2014] (.Boxore OU - Boxore Client Installer.) -- C:\Windows\Installer\29ebd3.msi [512512] =>Adware.Boxore [MD5.E453A893C4596CECA38FD8F77E0A822A] [WIS][06/01/2014] (.Boxore OU - Boxore Client Installer.) -- C:\Windows\Installer\5b5a947.msi [474624] =>Adware.Boxore [MD5.3CCDE81E10373399B3A2184D423E4FFA] [WIS][19/09/2012] (.Boxore OU. - Software Update Helper.) -- C:\Windows\Installer\6ebf27.msi [24576] =>Adware.Boxore [MD5.7EDD05308E5867A5CDBE069E2633DCDA] [WIS][30/06/2014] (.Boxore OU - Boxore Client Installer.) -- C:\Windows\Installer\8302b.msi [512512] =>Adware.Boxore ~ WIS: 10 Legitimates Filtered in 00mn 24s ---\\ Recherche de clés de registre CLSID (O101) [HKCR\CLSID\{22222222-2222-2222-2222-220522952268}] (CrossriderApp0059568.Sandbox) =>PUP.CrossRider [HKCR\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] (IMinent WebBooster (BHO)) =>Adware.IMBooster [HKCR\CLSID\{D0EA4FC1-8546-B5B9-9126-759E76A55121}] (ViewPassword) =>PUP.ViewPassword [HKCR\CLSID\{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}] (FlowSurf) =>PUP.FlowSurf ~ BCK: 4033 Legitimates Filtered in 00mn 07s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 04/07/2014 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Demand 07/09/2004 78968 | (ccPwdSvc) . (.Symantec Corporation.) - c:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe SS - | Demand 05/08/2004 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe SS - | Auto 04/07/2014 68608 | (globalUpdate) . (.globalUpdate.) - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe SS - | Demand 04/07/2014 68608 | (globalUpdatem) . (.globalUpdate.) - C:\Program Files\globalUpdate\Update\GoogleUpdate.exe SS - | Demand 22/10/2004 73728 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe SS - | Demand 31/08/2004 78992 | (ISSVC) . (.Symantec Corporation.) - c:\Program Files\Norton Internet Security\ISSVC.exe SS - | Demand 04/07/2014 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice_tmp.exe SS - | Boot 29/09/2004 69632 | (Pml Driver HPZ12) . (.HP.) - C:\WINDOWS\system32\HPZipm12.exe SS - | Demand 23/07/2004 197864 | (SAVScan) . (.Symantec Corporation.) - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe SS - | Auto 04/07/2014 119408 | (Software_update) . (.The Software Group.) - C:\Program Files\Software\Update\SoftwareUpdate.exe =>Adware.Boxore SS - | Demand 04/07/2014 119408 | (Software_update_m) . (.The Software Group.) - C:\Program Files\Software\Update\SoftwareUpdate.exe =>Adware.Boxore SS - | Demand 21/07/2004 173160 | (SPBBCSvc) . (.Symantec Corporation.) - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe SR - | Auto 07/09/2004 197752 | (ccEvtMgr) . (.Symantec Corporation.) - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe SR - | Auto 07/09/2004 234616 | (ccProxy) . (.Symantec Corporation.) - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe SR - | Auto 07/09/2004 164984 | (ccSetMgr) . (.Symantec Corporation.) - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe SR - | Auto 18/06/2014 378152 | (GlobalUpdater) . (.SIEN S.A..) - C:\Program Files\Fichiers communs\IMGUpdater\IMGUpdater.exe SR - | Auto 08/05/2014 704112 | (IePluginServices) . (.Cherished Technololgy LIMITED.) - C:\Documents and Settings\All Users\Application Data\IePluginServices\PluginService.exe =>Trojan.SProtector SR - | Demand 05/05/2005 327680 | (iPodService) . (.Apple Computer, Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - | Auto 31/08/2004 176768 | (navapsvc) . (.Symantec Corporation.) - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe SR - | Auto 15/06/2014 180224 | (NetHttpService) . (...) - C:\WINDOWS\system32\nethtsrv.exe SR - | Auto 02/08/2005 127043 | (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe SR - | Auto 04/07/2014 75264 | (servervo) . (...) - C:\Documents and Settings\HP_Propriétaire\Application Data\VOPackage\VOsrv.exe =>Adware.Downware SR - | Auto 15/06/2014 159744 | (ServiceUpdater) . (...) - C:\WINDOWS\system32\netupdsrv.exe SR - | Demand 27/08/2004 206048 | (SNDSrvc) . (.Symantec Corporation.) - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe SR - | Auto 18/06/2014 3088192 | (SProtection) . (.Iminent.) - C:\Program Files\Fichiers communs\Umbrella\Umbrella260.exe =>Adware.IMBooster SR - | Auto 06/08/2004 308352 | (SymWSC) . (.Symantec Corporation.) - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe SR - | Auto 04/07/2014 109568 | (UpdaterSvcNetCrawl) . (...) - C:\Program Files\NetCrawl\updater.exe SR - | Auto 04/07/2014 187392 | (ViewPassword) . (...) - C:\Program Files\v01ViewPassword\v01ViewPasswordhZ174.exe =>PUP.ViewPassword SR - | Auto 04/07/2014 535936 | (WindowsMangerProtect) . (.Fuyu LIMITED.) - C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\ProtectWindowsManager.exe ~ Services: Scanned in 00mn 08s ---\\ Scan Additionnel (O88) Database Version : 13026 - (03/07/2014) Clés trouvées (Keys found) : 236 Valeurs trouvées (Values found) : 4 Dossiers trouvés (Folders found) : 51 Fichiers trouvés (Files found) : 64 [HKLM\Software\Google\Chrome\Extensions\engaigpbgdjjmanonjcjkcmomgibneba] =>Spyware.SmartDisplay^ [HKLM\Software\Google\Chrome\Extensions\gebbadcnkcgcfgpbmcdleckpejgopimf] =>PUP.CacaoWeb^ [HKLM\Software\Google\Chrome\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl] =>Adware.IMBooster^ [HKLM\Software\Google\Chrome\Extensions\pbaxxildkhbcljgoabiecdoinkaedlca] =>Spyware.SmartDisplay^ [HKLM\Software\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma] =>PUP.QuickStart^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511951168}] =>PUP.CrossRider^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}] =>PUP.SupTab^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>PUP.Minibar^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0EA4FC1-8546-B5B9-9126-759E76A55121}] =>PUP.ViewPassword^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}] =>PUP.FlowSurf^ [HKLM\SYSTEM\CurrentControlSet\Services\IePluginServices] =>Trojan.SProtector^ [HKLM\SYSTEM\CurrentControlSet\Services\servervo] =>Adware.Downware^ [HKLM\SYSTEM\CurrentControlSet\Services\Software_update) (Software_update] =>Adware.Boxore^ [HKLM\SYSTEM\CurrentControlSet\Services\SProtection] =>Adware.IMBooster^ [HKLM\SYSTEM\CurrentControlSet\Services\ViewPassword] =>PUP.ViewPassword^ [HKLM\SYSTEM\CurrentControlSet\Services\WindowsMangerProtect] =>PUP.Fuyu^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\AnyProtect] =>PUP.AnyProtect^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D8D8A342-0E9F-47EA-A35E-CF431B50B286}] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP] =>Adware.IMBooster^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar] =>Adware.IMBooster^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage] =>Adware.Downware^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\inethnfd] =>PUP.NetworkSystemDriver^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\RegClean-Pro_is1] =>Rogue.RegistryPowerCleaner^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\EA986F66-8D35-1BC1-53A9-7D941DB649F8] =>PUP.ViewPassword^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4b693ee6-6ab3-41b6-956e-6290548ad66d}] =>Adware.WebAdSystem^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AF59773E-3245-46A3-B418-DD84AB6C3C50}] =>Adware.WebAdSystem^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\FreeSoftToday_is1] =>Adware.FreeSoftToday^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\webssearches uninstall] =>Hijacker.WebsSearches^ [HKLM\Software\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}] =>Adware.IMBooster [HKLM\Software\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}] =>Adware.IMBooster [HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}] =>Adware.IMBooster [HKLM\Software\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}] =>PUP.Software.Updater [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster [HKLM\Software\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster [HKLM\Software\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}] =>Adware.IMBooster [HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}] =>Adware.IMBooster [HKLM\Software\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}] =>Adware.IMBooster [HKLM\Software\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}] =>Adware.IMBooster [HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}] =>Adware.IMBooster [HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IMBoosterARP] =>Adware.IMBooster [HKLM\Software\Classes\S] =>Toolbar.Agent [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd [HKCU\Software\Boxore] =>Adware.Boxore [HKLM\Software\Boxore] =>Adware.Boxore [HKCU\Software\Iminent] =>Adware.IMBooster [HKLM\Software\Iminent] =>Adware.IMBooster [HKCU\Software\KalityWeb] =>Toolbar.Agent [HKLM\Software\KalityWeb] =>Toolbar.Agent [HKCU\Software\Tutorials] =>Spyware.AgenceExclusive [HKLM\Software\Tutorials] =>Spyware.AgenceExclusive [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}] =>PUP.Software.Updater [HKLM\SOFTWARE\SOFTWARE\UPDATE\CLIENTS\{5B54E9B6-D6C4-11E0-8E9D-92FB4824019B}] =>Adware.Boxore [HKCU\Software\InstallCore] =>Adware.InstallCore [HKCU\Software\Crossrider] =>PUP.CrossRider [HKCU\Software\InstalledBrowserExtensions\] =>PUP.CrossRider [HKCU\Software\InstalledBrowserExtensions] =>PUP.CrossRider [HKLM\Software\InstalledBrowserExtensions] =>PUP.CrossRider [HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro [HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro [HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}] =>Adware.BrowseFox [HKLM\Software\Classes\CrossriderApp0059568.BHO] =>PUP.CrossRider [HKLM\Software\Classes\CrossriderApp0059568.BHO.1] =>PUP.CrossRider [HKLM\Software\Classes\CrossriderApp0059568.Sandbox] =>PUP.CrossRider [HKLM\Software\Classes\CrossriderApp0059568.Sandbox.1] =>PUP.CrossRider [HKLM\Software\Classes\Iminent] =>Adware.IMBooster [HKLM\Software\Classes\IminentWebBooster.BrowserHelperObject] =>Adware.IMBooster [HKLM\Software\Classes\IminentWebBooster.BrowserHelperObject.1] =>Adware.IMBooster [HKLM\Software\Classes\IminentWebBooster.ScriptExtender] =>Adware.IMBooster [HKLM\Software\Classes\IminentWebBooster.ScriptExtender.1] =>Adware.IMBooster [HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110511951168}] =>PUP.CrossRider [HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220522952268}] =>PUP.CrossRider [HKLM\Software\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL] =>Adware.IMBooster [HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\IminentToolbar] =>Adware.IMBooster [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0124B064795BB484FA494FC7CF204C0C] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\01F8E7504D2D2644AB1185234D2AD5AC] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\04CDEDFDD6EF25443B78A49D1FE5B4F2] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\058911EBC07BAAE42B102E3F4B0D070D] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\05CE306CC244D284D8D8090E404CD7D3] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\089527E77AD22E345B0066D226E44F46] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0BD0B15D6F0C2BF428B339B2D2D732C9] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0C1AAA506D92B2D44BD6FEF6CDFB71E1] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CAEC9AFF1716FF4DBACEED82F88C702] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0DD4444CBC682774C8E573CC73C5BC46] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0F68250201451D64EA71E91BA19832DC] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\126FFC99A0F214F41AE2D6C7A0FC09BF] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12F72EF2521177A4BB467FF35A881382] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14873772FE3926F4195C9280D52D3486] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14CF11D787D40BF458A3B5CB123733CE] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\163A5460E4FB18343B4C0B781B27E813] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1705977FCB2F22F4D8A9AB847C3FB9CE] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\19F133B6A0BA9B14493CE47703DF4CF3] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1C735C7A54F53574CA5AEA93D0D1F01E] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1CE2260B068265A488410CA171D93778] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DF1DD2609A2135479C19D72E41B64AA] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F72D9058D0863E4F8EB9FE6E980C385] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2217D47FAFB0AC547820199B3A026CFB] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22C5FD2815F5C7C4DB5F34F504BF9D96] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\26CF57FC035624845B9005289DFA1448] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2719056FB4CDD294887140382819FFF7] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2956CB28F45AAF746998774B3C9FF012] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2AD5E582EBA9ED54989A134D9250922B] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2BB672F8D2CA64146B6688371E75C986] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2EA450B923F9C4D4BBEB203648FBFFDC] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ECA942EFDBD22B4EBB7FE3AB9EDDBDD] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2F055C41FDCA50A43BE42A96D243AD47] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2F4EE319A22490145BC4AEBC53B616CA] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\31E430E345D85D54CA33BC88AEFDB9D8] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\358096DA35E67B5479C2E880DF0C10C1] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37345F678B330594E9E4AC16908F78CF] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38641BF101151094F86DD62B534BDEC4] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38762340C83E6764B87807B67154F5A4] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3984BAF27BDA0DC4D8AED19FCB64BD7D] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3D82200490995CE42AB754DCD90AC44D] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3E9F0E4315A35D741873885200C6A454] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3F261C3E5AD56E54598E24B106813C7E] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\40D753328E77EE842A82631EED62CEC5] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\40FDEFB25883CF140B9B5F89CB7E2871] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\412179CD2126BB34CAE51691856A3D68] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43218F63264345445A73071C174FEEE8] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\439E8A02B7736CA488EECE28D7EE961A] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\456D8CED0106E1649AE5CBD8082AC705] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\459277E8A0EE8894F9D7F807DF90506A] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\463372A470C576443AE8802B1AC61D89] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\48F13E425ECD5F243A8A82AA2B65336D] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B6F3AD0EE690D2478C7D0528AADF8C4] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4BB9D431259E08A499469636383B9935] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4D3B0714BC82B2340AB18C031262573D] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4D5809867D6C1D14180511D3AAD03F79] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4DB13DED48DC4494C90DE800D31B086C] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\52C608FC2A61CCE479768A9719CABF7B] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\56861F0CE995D0E45835F5D31E105D54] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\58E44D082625757499995F9516313A9C] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5A52F724764B00747A637F14FBBBB830] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5B19839CB98BB914BA43E863BBE11B4E] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\613DCE6E373581A40B6C88D4F7C09096] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6292C097F9759424BAFA3E32CD3DD562] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\62C171206461ED34885A4AE095F4A7AC] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\63E9F48D88AA940498502E29E3747471] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\64747EAAAE2BA5141AEBCF4F6651A144] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6494B0B34076D6248B6E5F42E3252AD0] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6495111F730311440BBC3AAAF3B8C7AC] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65273BD75ADFA9146A0950469941299A] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6543EA2E8E729CF4789BCD7361D58C03] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\658DABBCADB609E429A6769C46FAADD0] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\67A614CC45D7C5845BE2184211CC8F9C] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B6581D2CF6BB444D8ACBF79E3AF425B] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C0DB201BFD71284CB8CA279446863E8] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6EA4E994723ECC940AE01A2507673199] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F2331E07AF9B414DB15E2E7BAB7F880] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F3E6739E6CECC64D9B7E5D24CF60746] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73268B3F6C2206C4BAF14E3C5B4BC494] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73D229597C7281E409FDEB3079E30E5A] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75A49DF39158638428A0F7797D4CD1E6] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D223AE12684124794DD7D3FB067886] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76937F723CDCAB547A9791D60867A5B5] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\78AD011E92C0B7D4A86E41451EC7A0F0] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\79080E81959ECB54E9E7B3C67AE5781A] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7A8B37070412F4D47895AA40EFC2E39A] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7F84DAA817EC0AB409DFE802184D5B09] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\82F14F44AA63A5945A2E960EF018794E] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\831071FAC16E2DA4682F55E0B0DE6979] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\83D0F8F1641145A42B26F71D534E9A34] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\84072C174C7F25148BFB33ADE8C704E1] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\872C7B3D2887D4E4EBF645D7AB9374D1] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C00987A23C36B145AB60EE274936EB3] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D736B12592E2E94094267BC5B7AA7EB] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8F3E0221A8351144BB04AEF5266143CB] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90E77522D1656DA4DABC673942243B44] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\920219BD6C542544893D7ECFCB5E2B6B] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\939840D09446FFF459FA6CB4F03C38BE] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9459BDD3A7C686345A9B7A1AD1CC6BE4] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95AC1A94BAFFE3D41B23B2097BA8B190] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\983EBB458AA802846BBC74D26C3209C8] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98A0180804723E24AAA941C0B046363D] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\990A25796B2949842BACA56514B7316A] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\999D63C685BF046489CA3126029FE837] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9AC4C1465926D52478BEC6D3DB946DD7] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9CF7625ADC5FCFE43AD003DCC16B49CB] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A2D54AC8D24E8F94ABBB993A69EF13EC] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A357C02D064283D41978AFEEE1A48E0F] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4022CA9531268145AD6F8FD7F4F01DC] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5CDCC279604D6746A7DA9ED701BF41F] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6F4FE9AC6F165A4EAA8F90CE891C0DA] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A960AC53CA238044A820A3B63D4536CA] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AA3077BB9E4617440AF467D91146A8C4] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AAC05EAA51DC78A41A1DCE3B31038584] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AD7957C966A13904EA466152B29EA9AF] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B13C910C1D6376A4BB2BDB9585253923] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1B5689BAD89AFD448923B5051E5BB50] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B2CE0F97DFABDE446811F33E7273BFE2] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B445461D74829AF4C8EF6C00B2861EF0] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B4D011D14FD2DB74A9090EA633C0B98E] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B551BEBCA0334AA40978C2137FD21AB2] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B877893A942DC524580C7B45547FCBC8] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC651C0803618C44DA6F1DDD51AF35BF] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BDE5B9F2A520B674BBB1BEAE5F5D51B8] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE85C3D8F4816D4A9E5F4EAA4D80A2A] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BFD48F71CCCEC97489147D4E852D3F6F] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C05694CDCD2DD724F90F13A20E67EC7C] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C42065D3060DD4648A38882BEA92941E] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C5F606FB1152E344981B09071C472211] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C77B53875F388AA4AA076F6F9D099011] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C85EA06E73FF0A240B4C287EE0D9521D] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA30DE5A0DE293D4AA3BF5E13322823A] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA9ADF25A98C8074FA4CBBA3ED29FEFA] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCE886225BDEB6C43868B0AEDB036B02] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CDD11BF4B1CAA584695EFBC611438213] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE1CCF5CABA1395409D54586592B319E] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE7392F9B9A81FA4EA952625BD5534FE] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D12B7976E5CA7C34D932C1A8A1BF61C8] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D91D500D43BD91A44B02BDBE41E0523F] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DA2710A9158C6584C9677EB954F3AC97] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DCF07B57C9DC38E419CF122EA180585E] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD2E1A561C7F1294BB3996EE77F6BBEE] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DF14E9E130504B745A2AC47EF6145D24] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DF7A4CDE9ED9CD7479FF74F35FA4149E] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE39849AF921D045B613CD5852C76A6] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E03EC5B80A22A7D4C92AB528A3D323E8] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1B9E95AA2730744AB926911484F8AD5] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E3436415FB2833843B9EE970079A87C0] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E3BBB86ACE9686A4281227D5F7EE95AE] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E6B40E8EBBC3CD445BD2FC7D8FDCCFEC] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E77C3F952C1F0354FAFADB6B080ACCF7] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E84382A588F214C4C89C3DB758EA6AD6] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E89B10C102BBEF941A920EE2269747C0] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E9D73D5153C19FD48B6E10CB7E8572CE] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EBAFF392ACA75ED4CA30BF821C1AE267] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ECFC746582988774684DB5D8D95F674D] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EECC799BFA63E6146A81EAAA53540EDE] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1547261AA1C98C48B0ECDBC767C76CE] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1BDB464DE2D33547BB31C1B35D9C337] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F29CFDBF9B20AB8448A1BD73A3FE863F] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F5F8D8368E8CAE84188DE44DAF8C10F9] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FAB510A06C6F4B24AAD055CE6EEA27CD] =>Adware.Boxore^ [HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks]:{CFBFAE00-17A6-11D0-99CB-00C04FD64497} =>Adware.Boxore^ [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:WebAdSystem =>Adware.WebAdSystem^ [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:PC Speed Maximizer =>Rogue.PCSpeedMaximizer^ [HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks]:{84FF7BD6-B47F-46F8-9130-01B2696B36CB} =>Adware.IMBooster C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\engaigpbgdjjmanonjcjkcmomgibneba =>Spyware.SmartDisplay^ C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gebbadcnkcgcfgpbmcdleckpejgopimf =>PUP.CacaoWeb^ C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl =>Adware.IMBooster^ C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pbaxxildkhbcljgoabiecdoinkaedlca =>Spyware.SmartDisplay^ C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma =>PUP.QuickStart^ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\b40z4s34.default\extensions\cacaoweb@cacaoweb.org =>PUP.CacaoWeb^ C:\Documents and Settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\bepkhiie.default\extensions\cacaoweb@cacaoweb.org =>PUP.CacaoWeb^ C:\Program Files\AnyProtectEx =>PUP.AnyProtect^ C:\Program Files\Boxore =>Adware.Boxore^ C:\Program Files\cacaoweb =>PUP.CacaoWeb^ C:\Program Files\Flowsurf =>PUP.FlowSurf^ C:\Program Files\fst_fr_274 =>Adware.FreeSoftToday^ C:\Program Files\Iminent =>Adware.IMBooster^ C:\Program Files\Linkey =>PUP.LinkeySearch^ C:\Program Files\MyPC Backup =>PUP.MyPCBackup^ C:\Program Files\PC Cleaner =>USP.PCCleaner^ C:\Program Files\Plus-HD-V1.1 =>Adware.PlusHD^ C:\Program Files\PriceGong =>Adware.PriceGong^ C:\Program Files\RegClean Pro =>Rogue.RegistryPowerCleaner^ C:\Program Files\Settings Manager =>PUP.SystemK^ C:\Program Files\sizlsearch =>PUP.SizlSearch^ C:\Program Files\SupTab =>PUP.SupTab^ C:\Program Files\System Speedup =>PUP.SystemSpeedup^ C:\Program Files\v01ViewPassword =>PUP.ViewPassword^ C:\Program Files\WebAdSystem =>Adware.WebAdSystem^ C:\Program Files\Zebar =>PUP.Zebar^ C:\Documents and Settings\All Users\Application Data\IePluginServices =>Trojan.SProtector^ C:\Documents and Settings\All Users\Application Data\systemk =>PUP.SystemK^ C:\Documents and Settings\All Users\Application Data\WindowsProtectManger =>PUP.Fuyu^ C:\Documents and Settings\HP_Propriétaire\Application Data\Advanced System Protector =>PUP.AdvancedSystemProtector^ C:\Documents and Settings\HP_Propriétaire\Application Data\cacaoweb =>PUP.CacaoWeb^ C:\Documents and Settings\HP_Propriétaire\Application Data\omiga-plus =>Hijacker.OmigaPlus^ C:\Documents and Settings\HP_Propriétaire\Application Data\PriceGong =>Adware.PriceGong^ C:\Documents and Settings\HP_Propriétaire\Application Data\Settings Manager =>PUP.SystemK^ C:\Documents and Settings\HP_Propriétaire\Application Data\SupTab =>PUP.SupTab^ C:\Documents and Settings\HP_Propriétaire\Application Data\System Speedup =>PUP.SystemSpeedup^ C:\Documents and Settings\HP_Propriétaire\Application Data\VOPackage =>Adware.Downware^ C:\Documents and Settings\HP_Propriétaire\Application Data\webssearches =>Hijacker.WebsSearches^ C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\fst_fr_274 =>Adware.FreeSoftToday^ C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\KalityWeb =>Adware.WebAdSystem^ C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\AnyProtect PC Backup =>PUP.AnyProtect^ C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\MyPC Backup =>PUP.MyPCBackup^ C:\Documents and Settings\HP_Propriétaire\Menu Démarrer\Programmes\VOPackage =>Adware.Downware^ C:\Program Files\Software =>Adware.Boxore C:\Program Files\Optimizer Pro =>PUP.OptimizerPro C:\Program Files\Fichiers communs\Umbrella =>Adware.IMBooster C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PriceGong =>Adware.PriceGong C:\Documents and Settings\All Users\Menu Démarrer\Programmes\RegClean Pro =>Rogue.RegistryPowerCleaner C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PC Cleaner =>USP.PCCleaner C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Software =>Adware.Boxore C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\Temp\Iminent =>Adware.IMBooster C:\Documents and Settings\All Users\Application Data\IePluginServices\PluginService.exe =>Trojan.SProtector^ C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect\ProtectWindowsManager.exe =>PUP.Fuyu^ C:\Program Files\v01ViewPassword\wdViewPasswordm.exe =>PUP.ViewPassword^ C:\Documents and Settings\HP_Propriétaire\Application Data\VOPackage\VOsrv.exe =>Adware.Downware^ C:\Program Files\Fichiers communs\Umbrella\Umbrella260.exe =>Adware.IMBooster^ C:\Program Files\WebAdSystem\WebAdSystem.exe =>Adware.WebAdSystem^ C:\Program Files\Boxore\BoxoreClient\boxore.exe =>Adware.Boxore^ C:\Program Files\v01ViewPassword\v01ViewPasswordhZ174.exe =>PUP.ViewPassword^ C:\Program Files\fst_fr_274\fst_fr_274.exe =>Adware.FreeSoftToday^ C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\fst_fr_274\upfst_fr_274.exe =>Adware.FreeSoftToday^ C:\Program Files\RegClean Pro\RegCleanPro.exe =>Rogue.RegistryPowerCleaner^ C:\Program Files\PC Speed Maximizer\SPMSmartScan.exe =>Rogue.PCSpeedMaximizer^ C:\Documents and Settings\HP_Propriétaire\Local Settings\Application Data\fst_fr_274\Download\majfstfr.exe =>Adware.FreeSoftToday^ C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-1.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-2.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-3.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-4.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-5.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-6.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\49829ef0-4053-4d28-aa27-ef3341ce3d23-7.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-1.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-2.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-3.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-4.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-5.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-6.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\77bd632e-b3cf-4eac-a20d-4e196def10fe-7.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-1.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-2.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-3.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-4.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-5.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-6.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\a5294bdc-bd19-4a2e-8021-da8ca946c15d-7.job =>PUP.CrossRider^ C:\WINDOWS\Tasks\AmiUpdXp.job =>PUP.Software.Updater^ C:\WINDOWS\Tasks\APSnotifierPP1.job =>PUP.AnyProtect^ C:\WINDOWS\Tasks\APSnotifierPP2.job =>PUP.AnyProtect^ C:\WINDOWS\Tasks\APSnotifierPP3.job =>PUP.AnyProtect^ C:\WINDOWS\Tasks\RegClean Pro_DEFAULT.job =>Rogue.RegistryPowerCleaner^ C:\WINDOWS\Tasks\RegClean Pro_UPDATES.job =>Rogue.RegistryPowerCleaner^ C:\WINDOWS\Tasks\ViewPassword Update.job =>PUP.ViewPassword^ C:\WINDOWS\Tasks\ViewPassword_wd.job =>PUP.ViewPassword^ [HKCU\Software\AnyProtect] =>PUP.AnyProtect^ [HKCU\Software\Flowsurf] =>PUP.FlowSurf^ [HKCU\Software\TutoTag] =>PUP.AgenceExclusive^ [HKCU\Software\ViewPassword] =>PUP.ViewPassword^ [HKLM\Software\SupDp] =>PUP.SupTab^ [HKLM\Software\Wpm] =>PUP.WpManager^ [HKLM\Software\supTab] =>PUP.SupTab^ [HKLM\Software\supWPM] =>PUP.WpManager^ C:\Windows\Installer\104714f.msi =>PUP.SweetIM^ C:\Windows\Installer\1b9123d3.msi =>PUP.SweetIM^ C:\Windows\Installer\1b9123d9.msi =>PUP.SweetIM^ C:\Windows\Installer\2404ea2.msi =>Adware.Boxore^ C:\Windows\Installer\29ebc5.msi =>Adware.WebAdSystem^ C:\Windows\Installer\29ebca.msi =>Adware.Boxore^ C:\Windows\Installer\29ebd3.msi =>Adware.Boxore^ C:\Windows\Installer\5b5a947.msi =>Adware.Boxore^ C:\Windows\Installer\6ebf27.msi =>Adware.Boxore^ C:\Windows\Installer\8302b.msi =>Adware.Boxore^ [HKCR\CLSID\{22222222-2222-2222-2222-220522952268}] (CrossriderApp0059568.Sandbox) =>PUP.CrossRider^ [HKCR\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] (IMinent WebBooster (BHO)) =>Adware.IMBooster^ [HKCR\CLSID\{D0EA4FC1-8546-B5B9-9126-759E76A55121}] (ViewPassword) =>PUP.ViewPassword^ [HKCR\CLSID\{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}] (FlowSurf) =>PUP.FlowSurf^ ~ Additionnel Scan: 224713 Items scanned in 01mn 12s ---\\ Informations complémentaires sur les modules ~ http://nicolascoolman.fr/g0-page-de-demarrage-google-chrome/ =>.Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) ~ http://nicolascoolman.fr/g2-google-chrome-extensions/ =>.Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) ~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5) ~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2) ~ http://nicolascoolman.fr/o3-internet-explorer-toolbars/ =>.Internet Explorer Toolbars (O3) ~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4) ~ http://nicolascoolman.fr/o50-image-file-execution-options-zhpdiag/ =>.Image File Execution Options (IFEO) (O50) ~ AMI: 7 Legitimates Filtered in 00mn 00s ---\\ Récapitulatif des détections trouvées sur votre station http://nicolascoolman.fr/trojan-sprotector =>Trojan.SProtector http://nicolascoolman.fr/pup-viewpassword =>PUP.ViewPassword http://nicolascoolman.fr/adware-downware =>Adware.Downware http://nicolascoolman.fr/adware-imbooster =>Adware.IMBooster http://nicolascoolman.fr/adware-webadsystem =>Adware.WebAdSystem http://nicolascoolman.fr/adware-boxore =>Adware.Boxore http://nicolascoolman.fr/adware-freesofttoday =>Adware.FreeSoftToday http://nicolascoolman.fr/rogue-registrypowercleaner =>Rogue.RegistryPowerCleaner http://nicolascoolman.fr/rogue-pcspeedmaximizer =>Rogue.PCSpeedMaximizer http://nicolascoolman.fr/spyware-smartdisplay =>Spyware.SmartDisplay http://nicolascoolman.fr/pup-cacaoweb =>PUP.CacaoWeb http://nicolascoolman.fr/pup-quickstart =>PUP.QuickStart http://nicolascoolman.fr/hijacker-browsers =>Hijacker.Browsers http://nicolascoolman.fr/adware-comet =>Adware.Comet http://nicolascoolman.fr/toolbar-conduit =>Toolbar.Conduit http://nicolascoolman.fr/hijacker-omigaplus =>Hijacker.OmigaPlus http://nicolascoolman.fr/hijacker-webssearches =>Hijacker.WebsSearches http://nicolascoolman.fr/hijacker-proxy =>Hijacker.Proxy http://nicolascoolman.fr/pup-crossrider =>PUP.CrossRider http://nicolascoolman.fr/pup-suptab =>PUP.SupTab http://nicolascoolman.fr/pup-minibar =>PUP.Minibar http://nicolascoolman.fr/pup-mypcbackup =>PUP.MyPCBackup http://nicolascoolman.fr/pup-anyprotect =>PUP.AnyProtect http://nicolascoolman.fr/pup-advancedsystemprotector =>PUP.AdvancedSystemProtector http://nicolascoolman.fr/pup-searchprotect =>PUP.SearchProtect http://nicolascoolman.fr/pup-software-updater =>PUP.Software.Updater http://nicolascoolman.fr/adware-installcore =>Adware.InstallCore http://nicolascoolman.fr/adware-vidsaver =>Adware.VidSaver http://nicolascoolman.fr/spyware-agenceexclusive =>PUP.AgenceExclusive http://nicolascoolman.fr/pup-wpmanager =>PUP.WpManager http://nicolascoolman.fr/pup-linkeysearch =>PUP.LinkeySearch http://nicolascoolman.fr/usp-pccleaner =>USP.PCCleaner http://nicolascoolman.fr/adware-plushd =>Adware.PlusHD http://nicolascoolman.fr/adware-pricegong =>Adware.PriceGong http://nicolascoolman.fr/pup-systemk =>PUP.SystemK http://nicolascoolman.fr/pup-sizlsearch =>PUP.SizlSearch http://nicolascoolman.fr/pup-systemspeedup =>PUP.SystemSpeedup http://nicolascoolman.fr/pup-zebar =>PUP.Zebar http://nicolascoolman.fr/pup-datamngr =>PUP.Datamngr http://nicolascoolman.fr/pup-sweetim =>PUP.SweetIM http://nicolascoolman.fr/adware-predictad =>Adware.PredictAd http://nicolascoolman.fr/pup-optimizerpro =>PUP.OptimizerPro http://nicolascoolman.fr/adware-browsefox =>Adware.BrowseFox ~ MSI: 43 link(s) detected in 00mn 00s ~ 1005 Legitimates filtered by white list End of the scan (1183 lines in 04mn 39s)(0)