Publicité
Publicité
Format du document : text/plain
Prévisualisation
Script ZHPFix
G2 - GCE: Preference [User Data\Default] [amfclgbdpgndipgoegfpkkgobahigbcl] QuickShare Widget v.1.4, (Activ�) =>PUP.QuickShare
G2 - GCE: Preference [User Data\Default] [cnmdgidklhhnmppphpohildcefnaaflp] Services x86 v.1.25.132, (Activ�) =>PUP.CrossRider
G2 - GCE: Preference [User Data\Default] [jcdgjdiieiljkfkdcloehkohchhpekkn] SweetIM for Facebook v.1.0.0.0 (D�sactiv�) =>PUP.SweetIM
G2 - GCE: Preference [User Data\Default] [mphpbdjcljebbcnfopfngmfdackbbdgf] DealPly Shopping v.3.5.0.0 (Activ�) =>PUP.DealPly
M3 - MFPP: Plugins - [acer] -- C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\cng0oh1w.default\searchplugins\recherche-alot.xml =>Adware.Comet
M2 - MFEP: prefs.js [acer - cng0oh1w.default\crossriderapp11825@crossrider.com] [] Super Flowery v (..) =>PUP.CrossRider
M2 - MFEP: prefs.js [acer - cng0oh1w.default\crossriderapp5060@crossrider.com] [] Savings Sidekick v (..) =>Adware.GamePlayLabs
M2 - MFEP: prefs.js [acer - cng0oh1w.default\{e56a253b-d9b8-c1f3-8433-6de05e9d4dfb}] [] QuickShare Widget v (..) =>PUP.QuickShare
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:56847 =>Hijacker.Proxy
O4 - GS\Program [acer]: Webplayer.lnk . (...) -- C:\Users\acer\AppData\Roaming\Microsoft\Installer\{9937E55B-6331-4804-93EF-77E992F204BD}\_3F7CDAE07E1639C4AEA7A8.exe => Infection PUP (Adware.SocialSkinz)
[MD5.00000000000000000000000000000000] [APT] [OfferBoxUpdateTask] (...) -- C:\Program Files (x86)\OfferBox\OfferBox.exe (.not file.) [0] =>PUP.OfferBox
O42 - Logiciel: BCool Gadget - (.BCool Gadget.) [HKLM][64Bits] -- {0E931A51-A183-4E66-8562-D82896E74C67} =>Adware.JustPlugIt
O42 - Logiciel: BcoolApp - (.BcoolTeam.) [HKLM][64Bits] -- BcoolApp =>Adware.JustPlugIt
O42 - Logiciel: QuickShare - (.Linkury Inc..) [HKLM][64Bits] -- {232F1B14-7126-491F-AC8C-6123BA58FDE2} =>PUP.QuickShare
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
O43 - CFD: 02/04/2013 - 18:58:48 - [2,948] ----D C:\Program Files (x86)\BcoolApp =>Adware.JustPlugIt
O43 - CFD: 01/09/2012 - 14:33:14 - [2,111] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 11/10/2013 - 09:37:57 - [0,115] ----D C:\ProgramData\OptimizerPro1 =>PUP.OptimizerPro
O43 - CFD: 01/09/2012 - 14:33:02 - [0,049] ----D C:\Users\acer\AppData\Local\BcoolApp =>Adware.JustPlugIt
O45 - LFCP:[MD5.7D8A599BBE6766AA4F69B354CC5924A7] - 06/10/2013 - 16:49:44 ---A- - C:\Windows\Prefetch\MYPC BACKUP.EXE-B5EA9514.pf =>PUP.MyPCBackup
O45 - LFCP:[MD5.91BC755182E1D616F84ECDF87D4B1420] - 07/10/2013 - 12:12:29 ---A- - C:\Windows\Prefetch\SERVICES X86-CODEDOWNLOADER.E-A68FD4C5.pf =>PUP.CrossRider
O45 - LFCP:[MD5.E174EC31731D7189C5A5BB15FB4E891C] - 07/10/2013 - 13:45:35 ---A- - C:\Windows\Prefetch\SERVICES X86-BG.EXE-523FA0A0.pf =>PUP.CrossRider
O45 - LFCP:[MD5.9FE89154791B94F519C79546BDDBAA87] - 08/10/2013 - 19:55:59 ---A- - C:\Windows\Prefetch\SWEETIM.EXE-2C25226B.pf =>PUP.SweetIM
O45 - LFCP:[MD5.05AA744C6EDCD5C099193C1EB465C4A4] - 10/10/2013 - 05:32:25 ---A- - C:\Windows\Prefetch\CACAOWEB.EXE-7CDF5663.pf =>PUP.CacaoWeb
O69 - SBI: prefs.js [acer - cng0oh1w.default] user_pref("extensions.crossriderapp11825.11825.plugins.plugin_31.code", "if (!appAPI.monetize || appAPI.monetize.isNeedToRun(\"mon[...] =>PUP.CrossRider
O69 - SBI: prefs.js [acer - cng0oh1w.default] user_pref("extensions.helperbar.DockingPositionDown", false); => Hijacker.SmartBar*
O69 - SBI: prefs.js [acer - cng0oh1w.default] user_pref("extensions.helperbar.SmartbarDisabled", false); =>Hijacker.SmartBar
O69 - SBI: prefs.js [acer - cng0oh1w.default] user_pref("extensions.helperbar.SmartbarStateMinimaized", false); =>Hijacker.SmartBar
O69 - SBI: prefs.js [acer - cng0oh1w.default] user_pref("extensions.helperbar.Visibility", false); => Hijacker.SmartBar*
O69 - SBI: SearchScopes [HKCU] {551876AE-E81F-438E-A54B-7672C956953E} - (Search the web (Softonic)) - http://search.softonic.com =>Adware.IMBooster
[MD5.0B9D86A30856EF8AD88FDDDE8C87AB21] [SPRF][10/10/2013] (.Rmzrqtpg - Ienoquqmcekmm.) -- C:\Users\acer\AppData\Local\Temp\LyricsMonkey_1060-1053.exe [5595348] =>Adware.AddLyrics
[MD5.3C74C26999F2060BC6302448F173A342] [SPRF][28/08/2013] (.Babylon Ltd. - Uninstaller Application.) -- C:\Users\acer\AppData\Local\Temp\uninst1.exe [340464] =>Toolbar.Babylon
O87 - FAEL: "TCP Query User{71133A0E-68C2-4354-9056-010FFAF9E1B1}C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Public - P6 - TRUE | .(...) -- C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O87 - FAEL: "UDP Query User{AB34A737-6B09-4820-9A65-081E9083A323}C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Public - P17 - TRUE | .(...) -- C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O87 - FAEL: "{468991C4-1D1A-49A1-854C-1D86EC4CB749}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
O87 - FAEL: "{C036DE67-5203-41D5-A597-F44D96B555FA}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
O87 - FAEL: "TCP Query User{035ABF96-E8EC-4C7F-8F20-C566F015E3CF}C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O87 - FAEL: "UDP Query User{E00EB763-9E35-41B2-BB6D-05E34C17FB9A}C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O90 - PUC: "4340C4778499EED41AE496DC3D613EC6" . (.Internet Explorer Toolbar 4.6 by SweetPacks.) -- C:\Windows\Installer\{774C0434-9948-4DEE-A14E-69CDD316E36C}\ARPPRODUCTICON.exe =>PUP.SweetIM
O90 - PUC: "5B4758C25396ECF468E04F8E063287FF" . (.OfferBox.) -- C:\Windows\Installer\{2C8574B5-6935-4FCE-860E-F4E8602378FF}\ARPPRODUCTICON.exe =>PUP.OfferBox
[MD5.DF5814AC3555ED94796E91C7F3905B53] [WIS][08/09/2010] (.Secure Digital Services - OfferBox.) -- C:\Windows\Installer\1574f71.msi [3259904] =>Adware.SPointer
[MD5.36C00626276A289EECD591DD2DA20CC5] [WIS][08/10/2013] (.Linkury Inc. - QuickShare Widget.) -- C:\Windows\Installer\2f608b.msi [8892416] =>PUP.QuickShare
[MD5.B144B2E367FC30C5020085DABB617B82] [WIS][01/09/2012] (.SweetIM Technologies Ltd. - SweetIM for Messenger 3.7.) -- C:\Windows\Installer\c03ea.msi [3704832] =>PUP.SweetIM
[MD5.966926090F3A80BB8622AD569A484169] [WIS][01/09/2012] (.SweetIM Technologies Ltd. - SweetPacks Toolbar for Internet Explorer 4.0.) -- C:\Windows\Installer\c03ef.msi [3119104] =>PUP.SweetIM
[HKLM\Software\Google\Chrome\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl] =>PUP.QuickShare^
[HKLM\Software\Google\Chrome\Extensions\cnmdgidklhhnmppphpohildcefnaaflp] =>PUP.CrossRider^
[HKLM\Software\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn] =>PUP.SweetIM^
[HKLM\Software\Google\Chrome\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf] =>PUP.DealPly^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0E931A51-A183-4E66-8562-D82896E74C67}] =>Adware.JustPlugIt^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\BcoolApp] =>Adware.JustPlugIt^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{232F1B14-7126-491F-AC8C-6123BA58FDE2}] =>PUP.QuickShare^
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110011501160}] =>PUP.SpecialSavings
[HKLM\Software\Classes\Installer\Features\4340C4778499EED41AE496DC3D613EC6] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\4340C4778499EED41AE496DC3D613EC6] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\4340C4778499EED41AE496DC3D613EC6] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\4340C4778499EED41AE496DC3D613EC6] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Features\5B4758C25396ECF468E04F8E063287FF] =>PUP.OfferBox
[HKLM\Software\Classes\Installer\Products\5B4758C25396ECF468E04F8E063287FF] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Classes\Installer\Features\5B4758C25396ECF468E04F8E063287FF] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Classes\Installer\Products\5B4758C25396ECF468E04F8E063287FF] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Features\547B38670606DF14AA57B0BB83F3AE4D] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\547B38670606DF14AA57B0BB83F3AE4D] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\547B38670606DF14AA57B0BB83F3AE4D] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\547B38670606DF14AA57B0BB83F3AE4D] =>PUP.SweetIM
[HKLM\Software\Classes\Iminent.Companion.Buddy] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Companion.Buddy] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011501160}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220122182225}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{33333333-3333-3333-3333-330133183325}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011501160}] =>PUP.CrossRider
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\cng0oh1w.default\crossriderapp11825@crossrider.com =>PUP.CrossRider^
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\cng0oh1w.default\crossriderapp5060@crossrider.com =>Adware.GamePlayLabs^
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\cng0oh1w.default\{e56a253b-d9b8-c1f3-8433-6de05e9d4dfb} =>PUP.QuickShare^
C:\Program Files (x86)\BcoolApp =>Adware.JustPlugIt^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\ProgramData\OptimizerPro1 =>PUP.OptimizerPro^
C:\Users\acer\AppData\Local\BcoolApp =>Adware.JustPlugIt^
C:\ProgramData\Software =>Adware.Boxore
C:\Users\acer\AppData\Local\Software =>Adware.Boxore
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn =>PUP.SweetIM
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnmdgidklhhnmppphpohildcefnaaflp =>PUP.CrossRider
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl =>PUP.QuickShare
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo =>Adware.GamePlayLabs
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpepfkjapeclaafmhoelccknpfedainn =>Adware.Downware
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf =>PUP.DealPly^
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\cng0oh1w.default\searchplugins\recherche-alot.xml =>Adware.Comet^
C:\Windows\Prefetch\MYPC BACKUP.EXE-B5EA9514.pf =>PUP.MyPCBackup^
C:\Windows\Prefetch\SERVICES X86-CODEDOWNLOADER.E-A68FD4C5.pf =>PUP.CrossRider^
C:\Windows\Prefetch\SERVICES X86-BG.EXE-523FA0A0.pf =>PUP.CrossRider^
C:\Windows\Prefetch\SWEETIM.EXE-2C25226B.pf =>PUP.SweetIM^
C:\Windows\Prefetch\CACAOWEB.EXE-7CDF5663.pf =>PUP.CacaoWeb^
C:\Users\acer\AppData\Local\Temp\LyricsMonkey_1060-1053.exe =>Adware.AddLyrics^
C:\Users\acer\AppData\Local\Temp\uninst1.exe =>Toolbar.Babylon^
C:\Windows\Installer\{774C0434-9948-4DEE-A14E-69CDD316E36C}\ARPPRODUCTICON.exe =>PUP.SweetIM^
C:\Windows\Installer\{2C8574B5-6935-4FCE-860E-F4E8602378FF}\ARPPRODUCTICON.exe =>PUP.OfferBox^
C:\Windows\Installer\1574f71.msi =>Adware.SPointer^
C:\Windows\Installer\2f608b.msi =>PUP.QuickShare^
C:\Windows\Installer\c03ea.msi =>PUP.SweetIM^
C:\Windows\Installer\c03ef.msi =>PUP.SweetIM^
G2 - GCE: Preference [User Data\Default] [aaaaabfjnbeinlpljodiajipidiompfl] Avira Toolbar v.7.15.11.0 (D�sactiv�) => Toolbar.Avira
G2 - GCE: Preference [User Data\Default] [dffhljlmcohcioeilbnpmbchdcbhifdh] WiseConvert 1.5 v.10.20.1.508, (D�sactiv�) =>Toolbar.Conduit
G2 - GCE: Preference [User Data\Default] [eooncjejnppfjjklapaamhcdmjbilmde] Delta Toolbar v.1.5.2 (Activ�) =>Toolbar.DeltaSearch
O2 - BHO: Lexmark Barre d'outils [64Bits] - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} . (...) -- C:\Program Files\Lexmark Toolbar\toolband.dll => Toolbar.Agent*
O3 - Toolbar: Google Toolbar [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Cl� orpheline => Toolbar.Google
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{1017A80C-6F09-4548-A84D-EDD6AC9525F0} Cl� orpheline => Toolbar.Lexmark
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O4 - HKUS\S-1-5-21-2921016491-1516122891-4090513382-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O69 - SBI: SearchScopes [HKCU] {63C74F4E-1C9A-4E19-B517-C5413B0E9E57} - (Ask Search) - http://websearch.ask.com =>Toolbar.Ask
[MD5.F0F3706910D84499E7845934117022BA] [SPRF][15/07/2013] (...) -- C:\Users\acer\AppData\Local\Temp\wajam_download.exe [55363] =>Toolbar.Wajam
O90 - PUC: "7E685771E24E83F4381D1DB5A45F7B41" . (.Delta Chrome Toolbar.) -- C:\Windows\Installer\{177586E7-E42E-4F38-83D1-D15B4AF5B714}\Delta.ico =>Toolbar.DeltaSearch
[MD5.35C918348CBB0877BCD5A3CF24C13761] [WIS][25/11/2012] (.DeltaInstaller - Delta Chrome Toolbar.) -- C:\Windows\Installer\221e5ac.msi [573440] =>Toolbar.DeltaSearch
[HKLM\Software\Google\Chrome\Extensions\dffhljlmcohcioeilbnpmbchdcbhifdh] =>Toolbar.Conduit^
[HKLM\Software\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde] =>Toolbar.DeltaSearch^
[HKLM\Software\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Installer\Products\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Features\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Products\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\aaaaabfjnbeinlpljodiajipidiompfl] =>Toolbar.Avira
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:swg =>Toolbar.Google^
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dffhljlmcohcioeilbnpmbchdcbhifdh =>Toolbar.Conduit
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde =>Toolbar.DeltaSearch
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaabfjnbeinlpljodiajipidiompfl =>Toolbar.Avira
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google^
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google^
C:\Users\acer\AppData\Local\Temp\wajam_download.exe =>Toolbar.Wajam^
C:\Windows\Installer\{177586E7-E42E-4F38-83D1-D15B4AF5B714}\Delta.ico =>Toolbar.DeltaSearch^
C:\Windows\Installer\221e5ac.msi =>Toolbar.DeltaSearch^
C:\Users\acer\AppData\Local\Temp\WajamIM.EXE =>Toolbar.Wajam
[MD5.BF6048283E43A608B60C998D8E92AA34] - (...) -- C:\Program Files (x86)\Lexmark S300-S400 Series\ezprint.exe [148280] [PID.3576] => Lexmark%EZPrint
O4 - HKLM\..\Run: [EzPrint] . (...) -- C:\Program Files (x86)\Lexmark S300-S400 Series\ezprint.exe => Lexmark%EZPrint
O4 - HKLM\..\Run: [Daemon for Mouse Suite] C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.exe (.not file.) => Fichier absent
O4 - HKLM\..\Wow6432Node\Run: [SSDMonitor] . (.PC Tools - SSDMonit Application.) -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
[HKCU\Software\PCTools] => PCTools
[HKLM\Software\Wow6432Node\PCTools] => PCTools
O45 - LFCP:[MD5.37E514FC69BC43A763D64259965F8BFF] - 10/10/2013 - 06:22:42 ---A- - C:\Windows\Prefetch\BUVSS.EXE-BCE06066.pf => Fichier du dossier Prefetcher
O45 - LFCP:[MD5.513A57AA9AAE61185EBE76D38DDBC05F] - 11/10/2013 - 09:00:25 ---A- - C:\Windows\Prefetch\ALERT.EXE-9D5BBD3F.pf => Fichier du dossier Prefetcher
O45 - LFCP:[MD5.63D84DEE8D570FAA8EAD45696CA489F2] - 11/10/2013 - 09:00:37 ---A- - C:\Windows\Prefetch\PMVSERVICE.EXE-6EF26E1E.pf => Fichier du dossier Prefetcher
O45 - LFCP:[MD5.CD2A78AB89031C71E0AE644DD0F08B5D] - 11/10/2013 - 09:00:48 ---A- - C:\Windows\Prefetch\LXEAMON.EXE-DE69BF8F.pf => Fichier du dossier Prefetcher
O51 - MPSK:{75c60d87-c7b2-11e2-aecf-705ab63ae029}\AutoRun\command. (...) -- G:\iLinker.exe (.not file.) => Fichier absent
O53 - SMSR:HKLM\...\startupreg\MyCuteBuddy [Key] . (...) -- C:\Program Files (x86)\My Cute Buddy\myCuteBuddy.exe (.not file.) => Fichier absent
[MD5.99906D3BA32ED96A2C8898B5E2219180] [SPRF][07/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\3182F905-049D-4581-A4AB-FFEBD3BC2260.dat [43538] => Temporary file not necessary
[MD5.CE3690F6EBC6E6B6BE48BC29EC3D6B83] [SPRF][10/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\403C4EE1-B399-49D4-B665-7D974DF9A4D3.dat [45303] => Temporary file not necessary
[MD5.B63CCB43F2779CBEA5D8D3CE2E3D90FB] [SPRF][08/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\6_Offer_12.exe [263186] => Temporary file not necessary
[MD5.BF47D9D1D2CFCAA2D171737328C836A1] [SPRF][10/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\806DBA25-6004-4446-8400-CB6AA3975E19.dat [45719] => Temporary file not necessary
[MD5.6E8EB1F5871B47D97004F9011F4099EA] [SPRF][08/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\8661474D-28B3-4C6C-8111-F1A6E6284FCA.dat [46583] => Temporary file not necessary
[MD5.AFA23EBFD80DF9BE7C28D3CFB752AF8A] [SPRF][10/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\930712DF-AD17-4D9A-A81A-5A413C647C26.dat [46120] => Temporary file not necessary
[MD5.2B5E68274A276DF3BA42998032BB4B64] [SPRF][10/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\A7F800D6-C913-4A5B-A641-A1270032215E.dat [43950] => Temporary file not necessary
[MD5.858D895AD40DE9779E78C39A116F9553] [SPRF][05/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\BackupSetup.exe [10355400] => Temporary file not necessary
[MD5.F1247EE67105527F3E6BCE6B93253117] [SPRF][10/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\C08000DC-2FAF-4F8B-99F9-3D72DE41AC27.dat [44793] => Temporary file not necessary
[MD5.6FDAD3C0EBE7AF3DBACF6EC73C420438] [SPRF][08/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\DEDDB8FB-B062-4618-B49C-4005B9C252D2.dat [45740] => Temporary file not necessary
[MD5.C7BF218FCBAE02B4539621190852FAE0] [SPRF][30/09/2013] (.@ - Manages Apps.) -- C:\Users\acer\AppData\Local\Temp\DownloadManager.exe [1283640] => Temporary file not necessary
[MD5.F74377AFAFA582170299A8D60DF4FBC5] [SPRF][07/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\F5F0310A-7224-4A46-A78D-4F3831958894.dat [43122] => Temporary file not necessary
[MD5.2F80B784109EF9B0504102CB47B2B110] [SPRF][10/10/2013] (.Amonetiz� Ltd - Installer.) -- C:\Users\acer\AppData\Local\Temp\Launcher.exe [152096] => Temporary file not necessary
[MD5.6EA18C193AAF14F9EDFF65EED8EFAB2C] [SPRF][09/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\Quarantine.exe [344355] => Temporary file not necessary
O87 - FAEL: "{EE65A795-5542-4A46-A0D7-CD3B1EC2EE8B}" |In - None - P17 - TRUE | .(...) -- C:\Users\acer\Downloads\PcPerformer_SetupT(1).exe (.not file.) => Fichier absent
O87 - FAEL: "{92C8DC7C-119C-4587-926D-983DAE5E96B7}" |Out - None - P17 - TRUE | .(...) -- C:\Users\acer\Downloads\PcPerformer_SetupT(1).exe (.not file.) => Fichier absent
SR - | Auto 03/02/2012 793048 | (PCToolsSSDMonitorSvc) . (.PC Tools.) - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
G2 - GCE: Preference [User Data\Default] [amfclgbdpgndipgoegfpkkgobahigbcl] QuickShare Widget v.1.4, (Activ�) =>PUP.QuickShare
G2 - GCE: Preference [User Data\Default] [cnmdgidklhhnmppphpohildcefnaaflp] Services x86 v.1.25.132, (Activ�) =>PUP.CrossRider
G2 - GCE: Preference [User Data\Default] [jcdgjdiieiljkfkdcloehkohchhpekkn] SweetIM for Facebook v.1.0.0.0 (D�sactiv�) =>PUP.SweetIM
G2 - GCE: Preference [User Data\Default] [mphpbdjcljebbcnfopfngmfdackbbdgf] DealPly Shopping v.3.5.0.0 (Activ�) =>PUP.DealPly
M3 - MFPP: Plugins - [acer] -- C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\cng0oh1w.default\searchplugins\recherche-alot.xml =>Adware.Comet
M2 - MFEP: prefs.js [acer - cng0oh1w.default\crossriderapp11825@crossrider.com] [] Super Flowery v (..) =>PUP.CrossRider
M2 - MFEP: prefs.js [acer - cng0oh1w.default\crossriderapp5060@crossrider.com] [] Savings Sidekick v (..) =>Adware.GamePlayLabs
M2 - MFEP: prefs.js [acer - cng0oh1w.default\{e56a253b-d9b8-c1f3-8433-6de05e9d4dfb}] [] QuickShare Widget v (..) =>PUP.QuickShare
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:56847 =>Hijacker.Proxy
O4 - GS\Program [acer]: Webplayer.lnk . (...) -- C:\Users\acer\AppData\Roaming\Microsoft\Installer\{9937E55B-6331-4804-93EF-77E992F204BD}\_3F7CDAE07E1639C4AEA7A8.exe => Infection PUP (Adware.SocialSkinz)
[MD5.00000000000000000000000000000000] [APT] [OfferBoxUpdateTask] (...) -- C:\Program Files (x86)\OfferBox\OfferBox.exe (.not file.) [0] =>PUP.OfferBox
O42 - Logiciel: BCool Gadget - (.BCool Gadget.) [HKLM][64Bits] -- {0E931A51-A183-4E66-8562-D82896E74C67} =>Adware.JustPlugIt
O42 - Logiciel: BcoolApp - (.BcoolTeam.) [HKLM][64Bits] -- BcoolApp =>Adware.JustPlugIt
O42 - Logiciel: QuickShare - (.Linkury Inc..) [HKLM][64Bits] -- {232F1B14-7126-491F-AC8C-6123BA58FDE2} =>PUP.QuickShare
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
O43 - CFD: 02/04/2013 - 18:58:48 - [2,948] ----D C:\Program Files (x86)\BcoolApp =>Adware.JustPlugIt
O43 - CFD: 01/09/2012 - 14:33:14 - [2,111] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 11/10/2013 - 09:37:57 - [0,115] ----D C:\ProgramData\OptimizerPro1 =>PUP.OptimizerPro
O43 - CFD: 01/09/2012 - 14:33:02 - [0,049] ----D C:\Users\acer\AppData\Local\BcoolApp =>Adware.JustPlugIt
O45 - LFCP:[MD5.7D8A599BBE6766AA4F69B354CC5924A7] - 06/10/2013 - 16:49:44 ---A- - C:\Windows\Prefetch\MYPC BACKUP.EXE-B5EA9514.pf =>PUP.MyPCBackup
O45 - LFCP:[MD5.91BC755182E1D616F84ECDF87D4B1420] - 07/10/2013 - 12:12:29 ---A- - C:\Windows\Prefetch\SERVICES X86-CODEDOWNLOADER.E-A68FD4C5.pf =>PUP.CrossRider
O45 - LFCP:[MD5.E174EC31731D7189C5A5BB15FB4E891C] - 07/10/2013 - 13:45:35 ---A- - C:\Windows\Prefetch\SERVICES X86-BG.EXE-523FA0A0.pf =>PUP.CrossRider
O45 - LFCP:[MD5.9FE89154791B94F519C79546BDDBAA87] - 08/10/2013 - 19:55:59 ---A- - C:\Windows\Prefetch\SWEETIM.EXE-2C25226B.pf =>PUP.SweetIM
O45 - LFCP:[MD5.05AA744C6EDCD5C099193C1EB465C4A4] - 10/10/2013 - 05:32:25 ---A- - C:\Windows\Prefetch\CACAOWEB.EXE-7CDF5663.pf =>PUP.CacaoWeb
O69 - SBI: prefs.js [acer - cng0oh1w.default] user_pref("extensions.crossriderapp11825.11825.plugins.plugin_31.code", "if (!appAPI.monetize || appAPI.monetize.isNeedToRun(\"mon[...] =>PUP.CrossRider
O69 - SBI: prefs.js [acer - cng0oh1w.default] user_pref("extensions.helperbar.DockingPositionDown", false); => Hijacker.SmartBar*
O69 - SBI: prefs.js [acer - cng0oh1w.default] user_pref("extensions.helperbar.SmartbarDisabled", false); =>Hijacker.SmartBar
O69 - SBI: prefs.js [acer - cng0oh1w.default] user_pref("extensions.helperbar.SmartbarStateMinimaized", false); =>Hijacker.SmartBar
O69 - SBI: prefs.js [acer - cng0oh1w.default] user_pref("extensions.helperbar.Visibility", false); => Hijacker.SmartBar*
O69 - SBI: SearchScopes [HKCU] {551876AE-E81F-438E-A54B-7672C956953E} - (Search the web (Softonic)) - http://search.softonic.com =>Adware.IMBooster
[MD5.0B9D86A30856EF8AD88FDDDE8C87AB21] [SPRF][10/10/2013] (.Rmzrqtpg - Ienoquqmcekmm.) -- C:\Users\acer\AppData\Local\Temp\LyricsMonkey_1060-1053.exe [5595348] =>Adware.AddLyrics
[MD5.3C74C26999F2060BC6302448F173A342] [SPRF][28/08/2013] (.Babylon Ltd. - Uninstaller Application.) -- C:\Users\acer\AppData\Local\Temp\uninst1.exe [340464] =>Toolbar.Babylon
O87 - FAEL: "TCP Query User{71133A0E-68C2-4354-9056-010FFAF9E1B1}C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Public - P6 - TRUE | .(...) -- C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O87 - FAEL: "UDP Query User{AB34A737-6B09-4820-9A65-081E9083A323}C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Public - P17 - TRUE | .(...) -- C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O87 - FAEL: "{468991C4-1D1A-49A1-854C-1D86EC4CB749}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
O87 - FAEL: "{C036DE67-5203-41D5-A597-F44D96B555FA}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
O87 - FAEL: "TCP Query User{035ABF96-E8EC-4C7F-8F20-C566F015E3CF}C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O87 - FAEL: "UDP Query User{E00EB763-9E35-41B2-BB6D-05E34C17FB9A}C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\acer\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O90 - PUC: "4340C4778499EED41AE496DC3D613EC6" . (.Internet Explorer Toolbar 4.6 by SweetPacks.) -- C:\Windows\Installer\{774C0434-9948-4DEE-A14E-69CDD316E36C}\ARPPRODUCTICON.exe =>PUP.SweetIM
O90 - PUC: "5B4758C25396ECF468E04F8E063287FF" . (.OfferBox.) -- C:\Windows\Installer\{2C8574B5-6935-4FCE-860E-F4E8602378FF}\ARPPRODUCTICON.exe =>PUP.OfferBox
[MD5.DF5814AC3555ED94796E91C7F3905B53] [WIS][08/09/2010] (.Secure Digital Services - OfferBox.) -- C:\Windows\Installer\1574f71.msi [3259904] =>Adware.SPointer
[MD5.36C00626276A289EECD591DD2DA20CC5] [WIS][08/10/2013] (.Linkury Inc. - QuickShare Widget.) -- C:\Windows\Installer\2f608b.msi [8892416] =>PUP.QuickShare
[MD5.B144B2E367FC30C5020085DABB617B82] [WIS][01/09/2012] (.SweetIM Technologies Ltd. - SweetIM for Messenger 3.7.) -- C:\Windows\Installer\c03ea.msi [3704832] =>PUP.SweetIM
[MD5.966926090F3A80BB8622AD569A484169] [WIS][01/09/2012] (.SweetIM Technologies Ltd. - SweetPacks Toolbar for Internet Explorer 4.0.) -- C:\Windows\Installer\c03ef.msi [3119104] =>PUP.SweetIM
[HKLM\Software\Google\Chrome\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl] =>PUP.QuickShare^
[HKLM\Software\Google\Chrome\Extensions\cnmdgidklhhnmppphpohildcefnaaflp] =>PUP.CrossRider^
[HKLM\Software\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn] =>PUP.SweetIM^
[HKLM\Software\Google\Chrome\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf] =>PUP.DealPly^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0E931A51-A183-4E66-8562-D82896E74C67}] =>Adware.JustPlugIt^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\BcoolApp] =>Adware.JustPlugIt^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{232F1B14-7126-491F-AC8C-6123BA58FDE2}] =>PUP.QuickShare^
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110011501160}] =>PUP.SpecialSavings
[HKLM\Software\Classes\Installer\Features\4340C4778499EED41AE496DC3D613EC6] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\4340C4778499EED41AE496DC3D613EC6] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\4340C4778499EED41AE496DC3D613EC6] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\4340C4778499EED41AE496DC3D613EC6] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Features\5B4758C25396ECF468E04F8E063287FF] =>PUP.OfferBox
[HKLM\Software\Classes\Installer\Products\5B4758C25396ECF468E04F8E063287FF] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Classes\Installer\Features\5B4758C25396ECF468E04F8E063287FF] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Classes\Installer\Products\5B4758C25396ECF468E04F8E063287FF] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Features\547B38670606DF14AA57B0BB83F3AE4D] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\547B38670606DF14AA57B0BB83F3AE4D] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\547B38670606DF14AA57B0BB83F3AE4D] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\547B38670606DF14AA57B0BB83F3AE4D] =>PUP.SweetIM
[HKLM\Software\Classes\Iminent.Companion.Buddy] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Companion.Buddy] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011501160}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220122182225}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{33333333-3333-3333-3333-330133183325}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011501160}] =>PUP.CrossRider
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\cng0oh1w.default\crossriderapp11825@crossrider.com =>PUP.CrossRider^
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\cng0oh1w.default\crossriderapp5060@crossrider.com =>Adware.GamePlayLabs^
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\cng0oh1w.default\{e56a253b-d9b8-c1f3-8433-6de05e9d4dfb} =>PUP.QuickShare^
C:\Program Files (x86)\BcoolApp =>Adware.JustPlugIt^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\ProgramData\OptimizerPro1 =>PUP.OptimizerPro^
C:\Users\acer\AppData\Local\BcoolApp =>Adware.JustPlugIt^
C:\ProgramData\Software =>Adware.Boxore
C:\Users\acer\AppData\Local\Software =>Adware.Boxore
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn =>PUP.SweetIM
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnmdgidklhhnmppphpohildcefnaaflp =>PUP.CrossRider
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl =>PUP.QuickShare
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdepfaagokllfmhfbcfmocaeigmoebo =>Adware.GamePlayLabs
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpepfkjapeclaafmhoelccknpfedainn =>Adware.Downware
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf =>PUP.DealPly^
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\cng0oh1w.default\searchplugins\recherche-alot.xml =>Adware.Comet^
C:\Windows\Prefetch\MYPC BACKUP.EXE-B5EA9514.pf =>PUP.MyPCBackup^
C:\Windows\Prefetch\SERVICES X86-CODEDOWNLOADER.E-A68FD4C5.pf =>PUP.CrossRider^
C:\Windows\Prefetch\SERVICES X86-BG.EXE-523FA0A0.pf =>PUP.CrossRider^
C:\Windows\Prefetch\SWEETIM.EXE-2C25226B.pf =>PUP.SweetIM^
C:\Windows\Prefetch\CACAOWEB.EXE-7CDF5663.pf =>PUP.CacaoWeb^
C:\Users\acer\AppData\Local\Temp\LyricsMonkey_1060-1053.exe =>Adware.AddLyrics^
C:\Users\acer\AppData\Local\Temp\uninst1.exe =>Toolbar.Babylon^
C:\Windows\Installer\{774C0434-9948-4DEE-A14E-69CDD316E36C}\ARPPRODUCTICON.exe =>PUP.SweetIM^
C:\Windows\Installer\{2C8574B5-6935-4FCE-860E-F4E8602378FF}\ARPPRODUCTICON.exe =>PUP.OfferBox^
C:\Windows\Installer\1574f71.msi =>Adware.SPointer^
C:\Windows\Installer\2f608b.msi =>PUP.QuickShare^
C:\Windows\Installer\c03ea.msi =>PUP.SweetIM^
C:\Windows\Installer\c03ef.msi =>PUP.SweetIM^
G2 - GCE: Preference [User Data\Default] [aaaaabfjnbeinlpljodiajipidiompfl] Avira Toolbar v.7.15.11.0 (D�sactiv�) => Toolbar.Avira
G2 - GCE: Preference [User Data\Default] [dffhljlmcohcioeilbnpmbchdcbhifdh] WiseConvert 1.5 v.10.20.1.508, (D�sactiv�) =>Toolbar.Conduit
G2 - GCE: Preference [User Data\Default] [eooncjejnppfjjklapaamhcdmjbilmde] Delta Toolbar v.1.5.2 (Activ�) =>Toolbar.DeltaSearch
O2 - BHO: Lexmark Barre d'outils [64Bits] - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} . (...) -- C:\Program Files\Lexmark Toolbar\toolband.dll => Toolbar.Agent*
O3 - Toolbar: Google Toolbar [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Cl� orpheline => Toolbar.Google
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{1017A80C-6F09-4548-A84D-EDD6AC9525F0} Cl� orpheline => Toolbar.Lexmark
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O4 - HKUS\S-1-5-21-2921016491-1516122891-4090513382-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O69 - SBI: SearchScopes [HKCU] {63C74F4E-1C9A-4E19-B517-C5413B0E9E57} - (Ask Search) - http://websearch.ask.com =>Toolbar.Ask
[MD5.F0F3706910D84499E7845934117022BA] [SPRF][15/07/2013] (...) -- C:\Users\acer\AppData\Local\Temp\wajam_download.exe [55363] =>Toolbar.Wajam
O90 - PUC: "7E685771E24E83F4381D1DB5A45F7B41" . (.Delta Chrome Toolbar.) -- C:\Windows\Installer\{177586E7-E42E-4F38-83D1-D15B4AF5B714}\Delta.ico =>Toolbar.DeltaSearch
[MD5.35C918348CBB0877BCD5A3CF24C13761] [WIS][25/11/2012] (.DeltaInstaller - Delta Chrome Toolbar.) -- C:\Windows\Installer\221e5ac.msi [573440] =>Toolbar.DeltaSearch
[HKLM\Software\Google\Chrome\Extensions\dffhljlmcohcioeilbnpmbchdcbhifdh] =>Toolbar.Conduit^
[HKLM\Software\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde] =>Toolbar.DeltaSearch^
[HKLM\Software\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Installer\Products\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Features\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Products\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\aaaaabfjnbeinlpljodiajipidiompfl] =>Toolbar.Avira
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:swg =>Toolbar.Google^
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dffhljlmcohcioeilbnpmbchdcbhifdh =>Toolbar.Conduit
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde =>Toolbar.DeltaSearch
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaabfjnbeinlpljodiajipidiompfl =>Toolbar.Avira
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google^
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google^
C:\Users\acer\AppData\Local\Temp\wajam_download.exe =>Toolbar.Wajam^
C:\Windows\Installer\{177586E7-E42E-4F38-83D1-D15B4AF5B714}\Delta.ico =>Toolbar.DeltaSearch^
C:\Windows\Installer\221e5ac.msi =>Toolbar.DeltaSearch^
C:\Users\acer\AppData\Local\Temp\WajamIM.EXE =>Toolbar.Wajam
[MD5.BF6048283E43A608B60C998D8E92AA34] - (...) -- C:\Program Files (x86)\Lexmark S300-S400 Series\ezprint.exe [148280] [PID.3576] => Lexmark%EZPrint
O4 - HKLM\..\Run: [EzPrint] . (...) -- C:\Program Files (x86)\Lexmark S300-S400 Series\ezprint.exe => Lexmark%EZPrint
O4 - HKLM\..\Run: [Daemon for Mouse Suite] C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.exe (.not file.) => Fichier absent
O4 - HKLM\..\Wow6432Node\Run: [SSDMonitor] . (.PC Tools - SSDMonit Application.) -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
[HKCU\Software\PCTools] => PCTools
[HKLM\Software\Wow6432Node\PCTools] => PCTools
O45 - LFCP:[MD5.37E514FC69BC43A763D64259965F8BFF] - 10/10/2013 - 06:22:42 ---A- - C:\Windows\Prefetch\BUVSS.EXE-BCE06066.pf => Fichier du dossier Prefetcher
O45 - LFCP:[MD5.513A57AA9AAE61185EBE76D38DDBC05F] - 11/10/2013 - 09:00:25 ---A- - C:\Windows\Prefetch\ALERT.EXE-9D5BBD3F.pf => Fichier du dossier Prefetcher
O45 - LFCP:[MD5.63D84DEE8D570FAA8EAD45696CA489F2] - 11/10/2013 - 09:00:37 ---A- - C:\Windows\Prefetch\PMVSERVICE.EXE-6EF26E1E.pf => Fichier du dossier Prefetcher
O45 - LFCP:[MD5.CD2A78AB89031C71E0AE644DD0F08B5D] - 11/10/2013 - 09:00:48 ---A- - C:\Windows\Prefetch\LXEAMON.EXE-DE69BF8F.pf => Fichier du dossier Prefetcher
O51 - MPSK:{75c60d87-c7b2-11e2-aecf-705ab63ae029}\AutoRun\command. (...) -- G:\iLinker.exe (.not file.) => Fichier absent
O53 - SMSR:HKLM\...\startupreg\MyCuteBuddy [Key] . (...) -- C:\Program Files (x86)\My Cute Buddy\myCuteBuddy.exe (.not file.) => Fichier absent
[MD5.99906D3BA32ED96A2C8898B5E2219180] [SPRF][07/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\3182F905-049D-4581-A4AB-FFEBD3BC2260.dat [43538] => Temporary file not necessary
[MD5.CE3690F6EBC6E6B6BE48BC29EC3D6B83] [SPRF][10/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\403C4EE1-B399-49D4-B665-7D974DF9A4D3.dat [45303] => Temporary file not necessary
[MD5.B63CCB43F2779CBEA5D8D3CE2E3D90FB] [SPRF][08/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\6_Offer_12.exe [263186] => Temporary file not necessary
[MD5.BF47D9D1D2CFCAA2D171737328C836A1] [SPRF][10/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\806DBA25-6004-4446-8400-CB6AA3975E19.dat [45719] => Temporary file not necessary
[MD5.6E8EB1F5871B47D97004F9011F4099EA] [SPRF][08/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\8661474D-28B3-4C6C-8111-F1A6E6284FCA.dat [46583] => Temporary file not necessary
[MD5.AFA23EBFD80DF9BE7C28D3CFB752AF8A] [SPRF][10/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\930712DF-AD17-4D9A-A81A-5A413C647C26.dat [46120] => Temporary file not necessary
[MD5.2B5E68274A276DF3BA42998032BB4B64] [SPRF][10/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\A7F800D6-C913-4A5B-A641-A1270032215E.dat [43950] => Temporary file not necessary
[MD5.858D895AD40DE9779E78C39A116F9553] [SPRF][05/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\BackupSetup.exe [10355400] => Temporary file not necessary
[MD5.F1247EE67105527F3E6BCE6B93253117] [SPRF][10/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\C08000DC-2FAF-4F8B-99F9-3D72DE41AC27.dat [44793] => Temporary file not necessary
[MD5.6FDAD3C0EBE7AF3DBACF6EC73C420438] [SPRF][08/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\DEDDB8FB-B062-4618-B49C-4005B9C252D2.dat [45740] => Temporary file not necessary
[MD5.C7BF218FCBAE02B4539621190852FAE0] [SPRF][30/09/2013] (.@ - Manages Apps.) -- C:\Users\acer\AppData\Local\Temp\DownloadManager.exe [1283640] => Temporary file not necessary
[MD5.F74377AFAFA582170299A8D60DF4FBC5] [SPRF][07/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\F5F0310A-7224-4A46-A78D-4F3831958894.dat [43122] => Temporary file not necessary
[MD5.2F80B784109EF9B0504102CB47B2B110] [SPRF][10/10/2013] (.Amonetiz� Ltd - Installer.) -- C:\Users\acer\AppData\Local\Temp\Launcher.exe [152096] => Temporary file not necessary
[MD5.6EA18C193AAF14F9EDFF65EED8EFAB2C] [SPRF][09/10/2013] (...) -- C:\Users\acer\AppData\Local\Temp\Quarantine.exe [344355] => Temporary file not necessary
O87 - FAEL: "{EE65A795-5542-4A46-A0D7-CD3B1EC2EE8B}" |In - None - P17 - TRUE | .(...) -- C:\Users\acer\Downloads\PcPerformer_SetupT(1).exe (.not file.) => Fichier absent
O87 - FAEL: "{92C8DC7C-119C-4587-926D-983DAE5E96B7}" |Out - None - P17 - TRUE | .(...) -- C:\Users\acer\Downloads\PcPerformer_SetupT(1).exe (.not file.) => Fichier absent
SR - | Auto 03/02/2012 793048 | (PCToolsSSDMonitorSvc) . (.PC Tools.) - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe