Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
Date de l'analyse: 31/08/2015
Heure de l'analyse: 10:45
Fichier journal: malwarebytes.txt
Administrateur: Oui
Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.08.30.01
Base de données de rootkits: v2015.08.16.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé
Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: ambre1908
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 565996
Temps écoulé: 24 min, 45 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 6
PUP.Optional.EoRezo, C:\Users\ambre1908\AppData\Local\gmsd_fr_005010074\upgmsd_fr_005010074.exe, 3464, , [c53431dd2f5cc67016783b5662a30000]
PUP.Optional.WProtectManager, C:\ProgramData\nWdsManPron\WdsManPro.exe, 6972, , [fcfd6ca2eba0270f84c394fff80db947]
PUP.Optional.Bundle, C:\Program Files (x86)\MiniLite\ProtectService.exe, 6420, , [05f469a55d2e64d2ba015345e41e0af6]
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\nsq349.tmpfs, 2364, , [08f116f86a2187af9f49f07b966e728e]
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\lraoguip.exe, 1668, , [82778985f497be786f279dd37e862bd5]
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\lraoguip.exe, 368, , [82778985f497be786f279dd37e862bd5]
Modules: 3
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\sqlite3.dll, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.MiniLite, C:\Program Files (x86)\MiniLite\msvcp110.dll, , [13e6e12ddfac85b1da7264ac669dcc34],
PUP.Optional.MiniLite, C:\Program Files (x86)\MiniLite\msvcr110.dll, , [13e6e12ddfac85b1da7264ac669dcc34],
Clés du registre: 87
PUP.Optional.WProtectManager, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WdsManPro, , [fcfd6ca2eba0270f84c394fff80db947],
PUP.Optional.Bundle, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IHProtect Service, , [05f469a55d2e64d2ba015345e41e0af6],
PUP.Optional.MediaBar, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}, , [a1582de19cef989ed62324b2cf33817f],
PUP.Optional.MediaBar, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}, , [a1582de19cef989ed62324b2cf33817f],
PUP.Optional.HomePageProtector, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{336D0C35-8A85-403A-B9D2-65C292C39087}, , [6495ad61bad1de58d67b62746b9724dc],
PUP.Optional.HomePageProtector, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{336D0C35-8A85-403A-B9D2-65C292C39087}, , [6495ad61bad1de58d67b62746b9724dc],
PUP.Optional.DataMangr, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}, , [8f6a15f94348e74f51ccb71e000238c8],
PUP.Optional.DataMangr, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}, , [8f6a15f94348e74f51ccb71e000238c8],
PUP.Optional.Yontoo, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}, , [2acf66a84c3f9b9b7e19627ab84aa35d],
PUP.Optional.Yontoo, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}, , [2acf66a84c3f9b9b7e19627ab84aa35d],
PUP.Optional.Blabbers, HKU\S-1-5-21-1037735796-1459874005-2169763421-501\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{963B125B-8B21-49A2-A3A8-E37092276531}, , [2bce040a9af1e3532a3baefbec16fd03],
PUP.Optional.Blabbers, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{00CBB66B-1D3B-46D3-9577-323A336ACB50}, , [68919f6ff09b57dfbea8f2b7b84a47b9],
PUP.Optional.MultiPlug.Gen, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\wukytogo, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.MultiPlug.Gen, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\bepygoqu, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.HighDefAction, HKLM\SOFTWARE\HighDefAction, , [11e8f816028941f5d096345f07fd0ef2],
PUP.Optional.YorkNewCin, HKLM\SOFTWARE\YorkNewCin, , [40b9db33ec9fcc6a175ef9c4b1530ef2],
PUP.Optional.CinemaPlus, HKLM\SOFTWARE\ARENAHD, , [f70289856a210c2aa5b6f48df90bfe02],
PUP.Optional.CrossRider, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\30935, , [a8516da1256661d542f4266243c16e92],
PUP.Optional.AnyProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\APSnotifierPP1, , [06f3c24c513a013562adf78393713fc1],
PUP.Optional.FastSearch, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\cfr3011, , [748553bb84071125cbb45f2e689ce21e],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\d023905b-2dcc-4676-ab11-e50881a6e624-1-6, , [d82159b5dcaf4ee8ba81c0c826deb54b],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\d023905b-2dcc-4676-ab11-e50881a6e624-1-7, , [d4259c723754b0864bf06b1dfb092dd3],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\d023905b-2dcc-4676-ab11-e50881a6e624-5, , [788159b5414a9a9cab904345f311768a],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\d023905b-2dcc-4676-ab11-e50881a6e624-5_user, , [32c72fdf06855fd7e15a8cfcf50f2ed2],
PUP.Optional.SmartWeb, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\SmartWeb Upgrade Trigger Task, , [ef0ae02eafdc41f55f9e2c83e91b857b],
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\Crossbrowse, , [39c0d13dd9b22f07e64c5b2a4fb525db],
PUP.Optional.HighDefAction, HKLM\SOFTWARE\WOW6432NODE\HighDefAction, , [18e1030b7b102f071c4afa99ed176799],
PUP.Optional.IHProtect, HKLM\SOFTWARE\WOW6432NODE\IHProtect, , [cd2c34dacebd4cea2c2d781dd13334cc],
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\mystartsearchSoftware, , [a059c34b6f1ce056197932f6887bf808],
PUP.Optional.PhraseProfessor, HKLM\SOFTWARE\WOW6432NODE\PhraseProfessor_1.10.0.22, , [f90021ed4744d85e8a7d5f4628dc7a86],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\PlusHD_v3.1V29.08-nv-ie, , [2ccd2de1c3c86dc97da95e2ae22256aa],
PUP.Optional.WordShark, HKLM\SOFTWARE\WOW6432NODE\WordShark_1.10.0.20, , [1cdd11fdaedd082e39d19a235ea62dd3],
PUP.Optional.WordSurfer, HKLM\SOFTWARE\WOW6432NODE\WordSurfer_1.10.0.19, , [64959c7215762016ba5a8d308b7950b0],
PUP.Optional.YorkNewCin, HKLM\SOFTWARE\WOW6432NODE\YorkNewCin, , [f5045fafe8a3eb4b066f4e6f1aeaab55],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, , [f7024fbf5f2c13232c01f494d034ad53],
PUP.Optional.CinemaPlus, HKLM\SOFTWARE\WOW6432NODE\ARENAHD, , [49b0bb53d8b3c1750b50344da65e8d73],
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\NATIVEMESSAGINGHOSTS\nmhostct2612669, , [9c5d22ec4546b383914628f7897a0cf4],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\INSTALLEDBROWSEREXTENSIONS\30935, , [7b7ebd510a814aec4ceab3d5c63e9967],
PUP.Optional.MyStartToolbar, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\${IEUTILSLIGHTELEVATIONPOLICYID}, , [b742ab630f7c3cfa084ec1e034d0d42c],
PUP.Optional.WordShark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\WordSharkAutoUpdateClient_RASAPI32, , [679236d86c1f67cfc147a21bc63e867a],
PUP.Optional.WordShark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\WordSharkAutoUpdateClient_RASMANCS, , [8178e529a9e28da9dc2cffbe34d06f91],
PUP.Optional.VOPackage, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\VOPackage, , [f30659b5dab12a0c92346b4e37cd01ff],
PUP.Optional.Tuto4PC, HKLM\SOFTWARE\WOW6432NODE\TUTORIALS, , [3cbd61ad1873bf774548d3e415efb34d],
PUP.Optional.WinService, HKU\S-1-5-18\SOFTWARE\winservice86-nv-ie, , [90697b93820945f1158095273cc855ab],
PUP.Optional.HQVideo, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\HQ-Video-Professional-1.2, , [26d30b032566c96d3c30e9ab62a2659b],
PUP.Optional.PlusHD, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\Plus-HD-2.5, , [fbfe7d91117a1b1b3364168f5fa53ac6],
PUP.Optional.PlusHD, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\Plus-HD-4.6, , [33c6a46a4447a0968116c5e0ae5632ce],
PUP.Optional.TornTV, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\Torntv V9.0, , [22d752bc4e3da5917b2242742ed623dd],
PUP.Optional.CrossRider, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, , [20d941cda3e870c6c3255b2ba0640ff1],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-18\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}, , [34c5a16d711a3ff7666980f615ef4eb2],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}, , [b64361ad117a11252ea18de9887c8d73],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}, , [d227bb5399f2f343c708cbab09fb5da3],
PUP.Optional.SelectionTool, HKU\S-1-5-21-1037735796-1459874005-2169763421-1000\SOFTWARE\WTOOLS\Selection Tools, , [49b02ae4a3e8dd596f587637ec18e61a],
PUP.Optional.CinemaPlus, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\CinemaPlus-3.2cV27.08-nv-ie, , [2bceeb23bbd0b18560eb7e03dc287888],
PUP.Optional.CrossBrowse, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\Crossbrowse, , [e41527e7b2d92016b5775035828246ba],
PUP.Optional.HighDefAction, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\HighDefAction, , [21d89a747417d3636401c3d017edd62a],
PUP.Optional.iWebar, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\iWebar-nv-ie, , [a950e22c6724e74f779e9601f311966a],
PUP.Optional.MyBrowser, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MyBrowser 1.0.2V29.08-nv-ie, , [13e626e898f305317456a7f90ef6649c],
PUP.Optional.ObjectBrowser, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\Object Browser-nv-ie, , [f5041fef771488ae73192b7756ae59a7],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\PlusHD_v3.1V29.08-nv-ie, , [bf3aef1fd4b748ee30a6f98d9173ba46],
PUP.Optional.Tuto4PC, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\TutoTag, , [19e0030bdab10b2b4e3b0fa8ce36867a],
PUP.Optional.YorkNewCin, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\YorkNewCin, , [d6238886ee9d78be690bdce15ca85ea2],
PUP.Optional.AnyProtect, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\ANYPROTECT, , [9069907e87043006faaf175a5aaa1ae6],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [29d0070797f4a0963dabe2a462a2a957],
PUP.Optional.CinemaPlus, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\ARENAHD, , [1edb2be3eaa12a0c60dcd8a9679d4bb5],
PUP.Optional.GlobalUpdate, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY, , [2fcae02e75169d9938329df4a75d8080],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\GOOGLE\CHROME\NATIVEMESSAGINGHOSTS\nmhostct2612669, , [31c89b73d3b832043d95ee3106fdd62a],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\30935, , [53a6f618c6c5b68067964c3ade26df21],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\Video HDV29.08, , [7d7ce9255f2cde587b84226407fd9967],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3ED684EA-205A-456C-98EA-A5EC94DCDB1E}, , [768357b7305b1323ca4efc8c12f202fe],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{4EF6B6F5-5254-40FF-9361-9C6FF355A572}, , [8c6d0fffcbc08aacf81fe3a534d010f0],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5BC11A9B-1E6A-445F-B9E6-85F54DF0CE1E}, , [8f6a1cf2177451e533e58dfbb25236ca],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6A296256-4285-48DC-B432-DC1BFFECE986}, , [9366020cc2c980b65fb9c3c53fc520e0],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7FB775E1-F48F-43DE-8C8E-D7721B95916F}, , [f702b658701b5bdb987f1276ff05ff01],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{8C547B02-E0A0-4EB6-BD8B-F3BE88E53B56}, , [9e5b67a72764eb4be235e3a58d771fe1],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{8C86488D-F138-4221-AAB4-D48FCD6588B0}, , [6b8e44cacdbef145c1574543a064eb15],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{9D42A7F8-DAE9-43E0-80B0-58EE944723F0}, , [b74285898407e15537e06523fd072fd1],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{A86FD34D-D962-4CF4-97F7-63EB6A5911DA}, , [19e0b9559fecdc5ad6415b2dab59c53b],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E2826D17-80FA-4C0B-8A90-EDC58842D25E}, , [b2478d8119720234997fa9df49bb03fd],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{EA46FF3B-42F8-4B60-AACC-56681FF21D79}, , [42b7eb232863d3638a8d2662d430c838],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F7479128-B8E4-414B-BE55-9010C85F8A17}, , [6f8aa46a5536b383cc4bc0c857adb947],
PUP.Optional.Trovi, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}, , [4faa2ee07318350180a483347f85be42],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\CHCT2612669, , [788116f8f59692a472670569798b9a66],
PUP.Optional.Tuto4PC, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\TUTORIALS\updatetutorialeshp, , [7e7b9c720982cd699aec684f25df06fa],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}, , [6990020c04873303c80766109d67b947],
PUP.Optional.InstallBrain, HKU\S-1-5-21-1037735796-1459874005-2169763421-501\SOFTWARE\WNLT, , [6198947adab17abc1464d2c426def60a],
PUP.Optional.SelectionTool, HKU\S-1-5-21-1037735796-1459874005-2169763421-501\SOFTWARE\WTOOLS\Selection Tools, , [2ccde727dab12214b4131e8fe71d32ce],
Valeurs du registre: 42
PUP.Optional.EoRezo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|upgmsd_fr_005010074.exe, C:\Users\ambre1908\AppData\Local\gmsd_fr_005010074\upgmsd_fr_005010074.exe -runonce, , [c53431dd2f5cc67016783b5662a30000]
PUP.Optional.CinemaPlus, HKLM\SOFTWARE\ARENAHD|value, 1, , [f70289856a210c2aa5b6f48df90bfe02]
PUP.Optional.PCTuner, HKLM\SOFTWARE\HIGHDEFACTION|value, 1, , [1adfa965d3b893a3c8034b59d0349967]
Hijacker.Application, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ASSOCIATIONS|bak_application, http://go.microsoft.com/fwlink/?LinkId=57426&Ext=%s, , [a752b7570c7f4aec07a2a61a83808d73]
PUP.Optional.SpaceSoundPro, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SpaceSoundPro, "C:\Program Files\SpaceSoundPro\SpaceSoundPro.exe", , [ae4bf31b94f7ae881516c1f0e42022de]
PUP.Optional.Shopperz.BrwsrFlsh, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|{0420BEC0-F2C1-4578-8F19-471B9E5C63A5}, C:\Program Files\shopperz240820151333\Firefox, , [6e8b7c9296f5072f01e9354136cee11f]
PUP.Optional.CinemaPlus, HKLM\SOFTWARE\WOW6432NODE\ARENAHD|value, 1, , [49b0bb53d8b3c1750b50344da65e8d73]
PUP.Optional.PCTuner, HKLM\SOFTWARE\WOW6432NODE\HIGHDEFACTION|value, 1, , [8d6ccc428506e1551bb00b99ce36b34d]
PUP.Optional.MyStartToolbar, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\${IEUTILSLIGHTELEVATIONPOLICYID}|AppPath, C:\Program Files (x86)\mystarttb, , [b742ab630f7c3cfa084ec1e034d0d42c]
PUP.Optional.CertifiedToolBar.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), http://search.certified-toolbar.com?si=66805&st=bs&tid=6748&ver=4.8&ts=1382479200000.000008&tguid=66805-6748-1382527643480-3C480ED367F3FA8BC1F94E5DA8C88B83&q=%s, , [42b72de12863082e7aca9f9462a1fb05]
Hijacker.Application, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ASSOCIATIONS|bak_Application, http://go.microsoft.com/fwlink/?LinkId=57426&Ext=%s, , [12e7e5295c2ffe382b7e328ef80bfc04]
PUP.Optional.GamesDesktop, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|gmsd_fr_005010073, , [ed0cae60fc8fe0567b03721e38cc27d9],
PUP.Optional.GamesDesktop, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|gmsd_fr_005010074, , [689126e8f79437ff0b73711fa65e50b0],
PUP.Optional.GamesDesktop, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|gmsd_fr_005010075, , [c732ba547e0d78be136bfe92699b857b],
PUP.Optional.Shopperz.BrwsrFlsh, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{0420BEC0-F2C1-4578-8F19-471B9E5C63A5}, C:\Program Files\shopperz240820151333\Firefox, , [5e9bbd510d7e3ef8e307da9cfd0745bb]
PUP.Optional.Tuto4PC, HKLM\SOFTWARE\WOW6432NODE\TUTORIALS|HostGUID, A9F7A709-9985-4EF6-A1BB-321249E1C604, , [3cbd61ad1873bf774548d3e415efb34d]
PUP.Optional.MultiPlug, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\bepygoqu|ImagePath, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\jnsl485A.tmp, , [7d7c8a84c9c23afcdbaee0c046be6b95]
PUP.Optional.MultiPlug, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\wukytogo|ImagePath, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\nsq349.tmpfs, , [4bae69a53d4e62d4bfc8f8a843c1d828]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-18\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}|Name, C:\Program Files\shopperz240820151333\Conrygi.exe, , [34c5a16d711a3ff7666980f615ef4eb2]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}|Name, C:\Program Files\shopperz240820151333\Conrygi.exe, , [b64361ad117a11252ea18de9887c8d73]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}|Name, C:\Program Files\shopperz240820151333\Conrygi.exe, , [d227bb5399f2f343c708cbab09fb5da3]
PUP.Optional.AnyProtect, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\ANYPROTECT|ABTest, {"general":{"test_id":"B6","installer_pre_page":true,"scanner_pre_page":false},"1":{"email_check":true},"7":{"notification_20_mins":"3A"},"9":{"scan_page_id":2},"12":{"upclick_exit_show":false,"upclick_exit_countries":{"US":{"phone":"(855) 602-9762"},"CA":{"phone":"(855) 602-9762"},"UK":{"phone":"0800 031 4647"},"GB":{"phone":"0800 031 4647"},"AU":{"phone":"1800-762-367"}}},"14":{"upclick_scan_id_show":false,"upclick_scan_id":"000-000-000"},"15":{"upclick_bottom_offer_show":false,"upclick_bottom_offer_countries":{"US":{"phone":"(855) 602-9762"},"GB":{"phone":"0800 031 4647"},"UK":{"phone":"0800 031 4647"},"DE":{"phone":"800-182-0188"},"CA":{"phone":"(855) 602-9762"},"AU":{"phone":"1800-762-367"},"FR":{"phone":"9 75 18 72 00"}}},"18":{"movie":1}}, , [9069907e87043006faaf175a5aaa1ae6]
PUP.Optional.CinemaPlus, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\ARENAHD|value, 1, , [1edb2be3eaa12a0c60dcd8a9679d4bb5]
PUP.Optional.GlobalUpdate, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY|source, IE, , [2fcae02e75169d9938329df4a75d8080]
PUP.Optional.PCTuner, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\HIGHDEFACTION|value, 1, , [d72208068cff7db9f4d31292659fbb45]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3ED684EA-205A-456C-98EA-A5EC94DCDB1E}|AppName, e62f0f5f-582d-480d-b895-6729bbd35482-2.exe-codedownloader.exe, , [768357b7305b1323ca4efc8c12f202fe]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{4EF6B6F5-5254-40FF-9361-9C6FF355A572}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-buttonutil.exe, , [8c6d0fffcbc08aacf81fe3a534d010f0]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5BC11A9B-1E6A-445F-B9E6-85F54DF0CE1E}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-codedownloader.exe, , [8f6a1cf2177451e533e58dfbb25236ca]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6A296256-4285-48DC-B432-DC1BFFECE986}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-codedownloader.exe, , [9366020cc2c980b65fb9c3c53fc520e0]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7FB775E1-F48F-43DE-8C8E-D7721B95916F}|AppName, 5b7e2ba1-6311-48dc-a43a-755369663def-2.exe-buttonutil.exe, , [f702b658701b5bdb987f1276ff05ff01]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{8C547B02-E0A0-4EB6-BD8B-F3BE88E53B56}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-buttonutil.exe, , [9e5b67a72764eb4be235e3a58d771fe1]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{8C86488D-F138-4221-AAB4-D48FCD6588B0}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-codedownloader.exe, , [6b8e44cacdbef145c1574543a064eb15]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{9D42A7F8-DAE9-43E0-80B0-58EE944723F0}|AppName, Plus-HD-4.6-enabler.exe-buttonutil.exe, , [b74285898407e15537e06523fd072fd1]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{A86FD34D-D962-4CF4-97F7-63EB6A5911DA}|AppName, e62f0f5f-582d-480d-b895-6729bbd35482-2.exe-buttonutil.exe, , [19e0b9559fecdc5ad6415b2dab59c53b]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E2826D17-80FA-4C0B-8A90-EDC58842D25E}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-codedownloader.exe, , [b2478d8119720234997fa9df49bb03fd]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{EA46FF3B-42F8-4B60-AACC-56681FF21D79}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-buttonutil.exe, , [42b7eb232863d3638a8d2662d430c838]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F7479128-B8E4-414B-BE55-9010C85F8A17}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-buttonutil.exe, , [6f8aa46a5536b383cc4bc0c857adb947]
PUP.Optional.Trovi, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|URL, http://www.trovi.com/Results.aspx?gd=&ctid=CT3330124&octid=EB_ORIGINAL_CTID&ISID=M2A606968-AAEF-43DF-A45F-303089A8B16B&SearchSource=58&CUI=&UM=8&UP=SPA3A7E527-C6A3-47EE-BEA4-579BBA90D866&D=083015&q={searchTerms}&SSPV=, , [49b0f51906850c2a90937740ee16857b]
PUP.Optional.Conduit, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|SuggestionsURL_JSON, http://suggest.seccint.com/CSuggestJson.ashx?prefix={searchTerms}&SSPV=, , [3dbc14fa7d0eba7c6219622127dd8f71]
PUP.Optional.Trovi, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|DisplayName, Trovi, , [64959d71e7a454e266bd9126a55fbb45]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}|Name, C:\Program Files\shopperz240820151333\Conrygi.exe, , [6990020c04873303c80766109d67b947]
PUP.Optional.InstallBrain, HKU\S-1-5-21-1037735796-1459874005-2169763421-501\SOFTWARE\WNLT|URL, , [6198947adab17abc1464d2c426def60a],
Données du registre: 7
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\GOOGLE CHROME\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0, Bon : (Chrome.exe), Mauvais : ("C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0),,[c336c44aa2e92313b36d2b2738cdbc44]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0, Bon : (iexplore.exe), Mauvais : ("C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0),,[34c58d817f0c53e36db18ac86f96d927]
PUP.Optional.SimplyTech, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\ABOUTURLS|newtab, %appdata%\SimplyTech\home\home.htm, Bon : (www.google.com), Mauvais : (%appdata%\SimplyTech\home\home.htm),,[10e965a9e1aa3105241f233c1bea3fc1]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\GOOGLE CHROME\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0, Bon : (Chrome.exe), Mauvais : ("C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0),,[3bbea668b0db023461bf440ef31217e9]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0, Bon : (iexplore.exe), Mauvais : ("C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0),,[08f18886781387af2cf20052ef16e818]
Hijacker.Application, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ASSOCIATIONS|Application, http://www.helpmeopen.com/?n=app&ext=%s, Bon : (http://shell.windows.com/fileassoc/Mauvais : (http://www.helpmeopen.com/?n=app&ext=%s),,[3ebb76983f4c78befd620d4c11f42dd3]x/xml/redir.asp?Ext=%s), %5
PUP.Optional.SearchCertifiedTB, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), http://search.certified-toolbar.com?si=66805&st=bs&tid=6748&ver=4.8&ts=1382479200000.000008&tguid=66805-6748-1382527643480-3C480ED367F3FA8BC1F94E5DA8C88B83&q=%s, Bon : (www.google.com), Mauvais : (http://search.certified-toolbar.com?si=66805&st=bs&tid=6748&ver=4.8&ts=1382479200000.000008&tguid=66805-6748-1382527643480-3C480ED367F3FA8BC1F94E5DA8C88B83&q=%s),,[e0197698f8939f97cbde49158283cd33]
Dossiers: 26
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.IOProtect, C:\Users\ambre1908\AppData\Local\Temp\WIZZ, , [e019cb43a5e67eb802d08016da2aaf51],
Rogue.Multiple, C:\ProgramData\600440862, , [d920ea245a31fa3c55692fad12f039c7],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\ambre1908\AppData\Roaming\mystartsearch, , [fffa52bcd7b43ff7c54b5b992bd7c23e],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\installer, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\language, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\logs, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\scan_results, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\swf, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.CrossBrowse, C:\Program Files (x86)\Crossbrowse, , [c63341cd24678babb8571ce11be7758b],
PUP.Optional.CrossBrowse, C:\Program Files (x86)\Crossbrowse\Crossbrowse, , [c63341cd24678babb8571ce11be7758b],
PUP.Optional.CrossBrowse, C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application, , [c63341cd24678babb8571ce11be7758b],
PUP.Optional.CrossBrowse, C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95, , [c63341cd24678babb8571ce11be7758b],
PUP.Optional.GamesDesktop, C:\Users\ambre1908\AppData\Local\gmsd_fr_005010074, , [1edb36d856355dd91c59cb3df01347b9],
PUP.Optional.GamesDesktop, C:\Program Files (x86)\gmsd_fr_005010074, , [7980b25c6e1de84e63137296fb0827d9],
PUP.Optional.MiniLite, C:\Program Files (x86)\MiniLite, , [13e6e12ddfac85b1da7264ac669dcc34],
PUP.Optional.ProtectWindowsManager, C:\ProgramData\nWinManPron, , [00f9da3427643bfb0820b55f33d0d729],
PUP.Optional.ProtectWindowsManager, C:\ProgramData\nWinManPron\update, , [00f9da3427643bfb0820b55f33d0d729],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\mz, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\skin, , [f30613fbe4a7a98dc8bd01170201db25],
Fichiers: 91
PUP.Optional.EoRezo, C:\Users\ambre1908\AppData\Local\gmsd_fr_005010074\upgmsd_fr_005010074.exe, , [c53431dd2f5cc67016783b5662a30000],
PUP.Optional.WProtectManager, C:\ProgramData\nWdsManPron\WdsManPro.exe, , [fcfd6ca2eba0270f84c394fff80db947],
PUP.Optional.Bundle, C:\Program Files (x86)\MiniLite\ProtectService.exe, , [05f469a55d2e64d2ba015345e41e0af6],
Trojan.Dropper, C:\ProgramData\nWinManPron\WinManPro.exe, , [cc2dcb43f7947cba4331478602ffd42c],
PUP.Optional.CrossRider, C:\Users\ambre1908\AppData\Roaming\4FhXsuGiy.exe, , [c73231dd6922072f4cc510c05fa2d42c],
PUP.Optional.CrossRider, C:\Users\ambre1908\AppData\Roaming\74k28EQCS.exe, , [57a2cd41afdcc472759c359bfa07d030],
PUP.Optional.CrossRider, C:\Users\ambre1908\AppData\Roaming\ImO6OFrXUHgA6MEKc0DICRv.exe, , [9861dc32c4c7b08657ba9d334ab79d63],
PUP.Optional.CrossRider, C:\Users\ambre1908\AppData\Roaming\HwI0ROk.exe, , [f5048f7fc1cace6851c0f0e02ed3b54b],
PUP.Optional.InstallCore, C:\Program Files (x86)\Adobe\5c61a21a-ba41-40bb-a6dc-33bff59a4a59.dll, , [0aefac6293f80135cd7e0290c441b848],
PUP.Optional.Nova, C:\Program Files (x86)\Adobe\63bc2917-d3c8-427c-960c-0c9a1575de5d.dll, , [a455f6182c5f1a1c9c02d1028081728e],
PUP.Optional.MiniLite, C:\Program Files (x86)\MiniLite\Uninstall.exe, , [d92069a5305b2a0c81a5815202ff57a9],
PUP.Optional.EoRezo, C:\Program Files (x86)\gmsd_fr_005010074\gamesdesktop_widget.exe, , [1edb9b730388e452404e6130ad58eb15],
PUP.Optional.Tuto4PC, C:\Program Files (x86)\gmsd_fr_005010074\predm.exe, , [7683fb13a3e8e5516ec3c1d07f86aa56],
PUP.Optional.Tuto4PC, C:\Program Files (x86)\gmsd_fr_005010074\unins000.exe, , [5a9fba543a516fc776bbefa222e38878],
PUP.Optional.SupraSavings, C:\temp\t.msi, , [55a44cc27c0f66d0d5b51d3442c360a0],
PUP.Optional.Winsock.HijackBoot, C:\Windows\System32\Ooteeotoor64.dll, , [50a97896a4e77fb7f7087e455ea35ea2],
PUP.Optional.Winsock.HijackBoot, C:\Windows\SysWOW64\Ooteeotoor.dll, , [f7029876a2e92214df1fa320847d9e62],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\ambre1908\AppData\Local\Temp\nsx6349.tmp, , [6b8ec04e4e3db284b768a4ea46bf966a],
PUP.Optional.Tuto4PC, C:\Users\ambre1908\AppData\Local\Temp\_iu14D2N.tmp, , [ec0d947a0b806bcbd859dbb6d0350ff1],
PUP.Optional.MiniLite, C:\Users\ambre1908\AppData\Local\Temp\20150830113656\I\tmp\MiniLite_v6.6.2.2771.exe, , [da1f888684077eb8c46219ba5ea350b0],
PUP.Optional.WProtectManager, C:\Users\ambre1908\AppData\Local\Temp\20150830113656\I\tmp\wpm_v20.0.0.2298.exe, , [8970b658ec9f88aec582573c699c55ab],
Trojan.MSIL.Dropper, C:\Users\ambre1908\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\OfferInstaller.exe, , [86738886e6a5290d5fe17bd112f332ce],
PUP.Optional.CheckOffer, C:\Users\ambre1908\AppData\Local\Temp\nsd94D2.tmp\nsCBHTML5.dll, , [9267ea245d2eb58137736f2d49b82fd1],
PUP.Optional.ModGoog, C:\Windows\Temp\globalupdate.exe11b682, , [ce2bad610685ec4a6841483ef70a17e9],
PUP.Optional.ModGoog, C:\Windows\Temp\goopdate.dll11b692, , [0aef848aa4e794a27633bbcb946d669a],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Local\nsdB2BE.tmp, , [b445ba548dfeaa8c86342067649edc24],
PUP.Optional.SmartWeb, C:\Users\ambre1908\AppData\Local\SmartWeb\__u.exe, , [5c9d0b03c3c853e3af6f478e49b858a8],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\ambre1908\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mystartsearch.com_0.localstorage, , [f6036ba36b20c373c588b0753fc406fa],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\ambre1908\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mystartsearch.com_0.localstorage-journal, , [47b2c14dacdf7cba3914e93c47bcae52],
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\nsq349.tmpfs, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\jnsl485A.tmp, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\rnsa3C83.exe, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\Uninstall.exe, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\vnskDBF3.tmp, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\lraoguip.exe.config, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\lraoguip.exe, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\sqlite3.dll, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\time.dat, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\dat.dat, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-1-6, , [18e161ad810a67cf736086f1fc08ac54],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-1-7, , [70894dc10289e55104cfb8bf8183f40c],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-5, , [53a6f6183b500c2a8b48cea9a163a55b],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-5_user, , [c534937b3655ee486e65b6c1ea1a6b95],
PUP.Optional.CrossRider, C:\Windows\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-1-6.job, , [cc2d9579840771c59242b3c4ef156a96],
PUP.Optional.CrossRider, C:\Windows\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-1-7.job, , [ca2f17f7a9e2fd39f2e2c0b74eb6c937],
PUP.Optional.CrossRider, C:\Windows\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-5.job, , [639662acddae70c69242a7d035cfe11f],
PUP.Optional.CrossRider, C:\Windows\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-5_user.job, , [6f8afc121c6f3ef80bc947308c785ca4],
PUP.Optional.ABengine, C:\Windows\Temp\lengine.ini.log, , [41b856b8a0eb71c53949a6d24fb50cf4],
PUP.Optional.Acengine, C:\Windows\Temp\acengine.log, , [ad4c07077b102214800d89ef9a6a9f61],
PUP.Optional.AnyProtect, C:\Windows\System32\Tasks\APSnotifierPP1, , [10e9749a5e2d6bcb55b71c5e4bb97090],
PUP.Optional.AnyProtect, C:\Windows\Tasks\APSnotifierPP1.job, , [8970a06eabe056e0a26b215915efc838],
PUP.Optional.AnyProtect, C:\Windows\Tasks\APSnotifierPP2.job, , [c732ee20a7e487af7d90a7d3bc4845bb],
PUP.Optional.FastSearch, C:\Windows\System32\Tasks\cfr3011, , [d52434dac3c894a2adcc5d3011f36898],
PUP.Optional.IOProtect, C:\Users\ambre1908\AppData\Local\Temp\WIZZ\ioprotect_conf.xml, , [e019cb43a5e67eb802d08016da2aaf51],
PUP.Optional.IOProtect, C:\Users\ambre1908\AppData\Local\Temp\WIZZ\config.cfg, , [e019cb43a5e67eb802d08016da2aaf51],
PUP.Optional.IOProtect, C:\Users\ambre1908\AppData\Local\Temp\WIZZ\ioproduct.exe, , [e019cb43a5e67eb802d08016da2aaf51],
PUP.Optional.IOProtect, C:\Users\ambre1908\AppData\Local\Temp\WIZZ\ioprotect.exe, , [e019cb43a5e67eb802d08016da2aaf51],
PUP.Optional.SmartWeb, C:\Windows\System32\Tasks\SmartWeb Upgrade Trigger Task, , [b1488a84c2c990a605f6634c7c888d73],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\installer\ab.test.json, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\installer\tempfile.t, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\language\de.xml, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\language\en.xml, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\language\fr.xml, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\scan_results\aps.scan.quick.results, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\scan_results\aps.scan.results, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\swf\mov01.swf, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\swf\swfOE.swf, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.GamesDesktop, C:\Program Files (x86)\gmsd_fr_005010074\unins000.dat, , [7980b25c6e1de84e63137296fb0827d9],
PUP.Optional.GamesDesktop, C:\Program Files (x86)\gmsd_fr_005010074\unins000.msg, , [7980b25c6e1de84e63137296fb0827d9],
PUP.Optional.MiniLite, C:\Program Files (x86)\MiniLite\msvcp110.dll, , [13e6e12ddfac85b1da7264ac669dcc34],
PUP.Optional.MiniLite, C:\Program Files (x86)\MiniLite\msvcr110.dll, , [13e6e12ddfac85b1da7264ac669dcc34],
PUP.Optional.ProtectWindowsManager, C:\ProgramData\nWinManPron\updateconf, , [00f9da3427643bfb0820b55f33d0d729],
PUP.Optional.ProtectWindowsManager, C:\ProgramData\nWinManPron\WinManPro.exe, , [00f9da3427643bfb0820b55f33d0d729],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome.manifest, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\install.rdf, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\background.html, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\button.xml, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\config.js, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\content.js, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\framework.js, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\framework.xul, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\icon128.png, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\icon16.png, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\icon48.png, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\jquery-1.6.2.min.js, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\options.xul, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\settings.json, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\mz\background.js, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\mz\content.js, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\skin\framework.css, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.HijackHosts.Gen, C:\Windows\System32\abis\cuuf\fah.dat, , [8178df2f523956e047fc8016da2b39c7],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)
www.malwarebytes.org
Date de l'analyse: 31/08/2015
Heure de l'analyse: 10:45
Fichier journal: malwarebytes.txt
Administrateur: Oui
Version: 2.1.8.1057
Base de données de programmes malveillants: v2015.08.30.01
Base de données de rootkits: v2015.08.16.01
Licence: Gratuit
Protection contre les programmes malveillants: Désactivé
Protection contre les sites Web malveillants: Désactivé
Autoprotection: Désactivé
Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: ambre1908
Type d'analyse: Analyse des menaces
Résultat: Terminé
Objets analysés: 565996
Temps écoulé: 24 min, 45 s
Mémoire: Activé
Démarrage: Activé
Système de fichiers: Activé
Archives: Activé
Rootkits: Activé
Heuristique: Activé
PUP: Activé
PUM: Activé
Processus: 6
PUP.Optional.EoRezo, C:\Users\ambre1908\AppData\Local\gmsd_fr_005010074\upgmsd_fr_005010074.exe, 3464, , [c53431dd2f5cc67016783b5662a30000]
PUP.Optional.WProtectManager, C:\ProgramData\nWdsManPron\WdsManPro.exe, 6972, , [fcfd6ca2eba0270f84c394fff80db947]
PUP.Optional.Bundle, C:\Program Files (x86)\MiniLite\ProtectService.exe, 6420, , [05f469a55d2e64d2ba015345e41e0af6]
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\nsq349.tmpfs, 2364, , [08f116f86a2187af9f49f07b966e728e]
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\lraoguip.exe, 1668, , [82778985f497be786f279dd37e862bd5]
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\lraoguip.exe, 368, , [82778985f497be786f279dd37e862bd5]
Modules: 3
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\sqlite3.dll, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.MiniLite, C:\Program Files (x86)\MiniLite\msvcp110.dll, , [13e6e12ddfac85b1da7264ac669dcc34],
PUP.Optional.MiniLite, C:\Program Files (x86)\MiniLite\msvcr110.dll, , [13e6e12ddfac85b1da7264ac669dcc34],
Clés du registre: 87
PUP.Optional.WProtectManager, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WdsManPro, , [fcfd6ca2eba0270f84c394fff80db947],
PUP.Optional.Bundle, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IHProtect Service, , [05f469a55d2e64d2ba015345e41e0af6],
PUP.Optional.MediaBar, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}, , [a1582de19cef989ed62324b2cf33817f],
PUP.Optional.MediaBar, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{28387537-E3F9-4ED7-860C-11E69AF4A8A0}, , [a1582de19cef989ed62324b2cf33817f],
PUP.Optional.HomePageProtector, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{336D0C35-8A85-403A-B9D2-65C292C39087}, , [6495ad61bad1de58d67b62746b9724dc],
PUP.Optional.HomePageProtector, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{336D0C35-8A85-403A-B9D2-65C292C39087}, , [6495ad61bad1de58d67b62746b9724dc],
PUP.Optional.DataMangr, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}, , [8f6a15f94348e74f51ccb71e000238c8],
PUP.Optional.DataMangr, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}, , [8f6a15f94348e74f51ccb71e000238c8],
PUP.Optional.Yontoo, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}, , [2acf66a84c3f9b9b7e19627ab84aa35d],
PUP.Optional.Yontoo, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}, , [2acf66a84c3f9b9b7e19627ab84aa35d],
PUP.Optional.Blabbers, HKU\S-1-5-21-1037735796-1459874005-2169763421-501\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{963B125B-8B21-49A2-A3A8-E37092276531}, , [2bce040a9af1e3532a3baefbec16fd03],
PUP.Optional.Blabbers, HKU\S-1-5-21-1037735796-1459874005-2169763421-1006\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{00CBB66B-1D3B-46D3-9577-323A336ACB50}, , [68919f6ff09b57dfbea8f2b7b84a47b9],
PUP.Optional.MultiPlug.Gen, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\wukytogo, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.MultiPlug.Gen, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\bepygoqu, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.HighDefAction, HKLM\SOFTWARE\HighDefAction, , [11e8f816028941f5d096345f07fd0ef2],
PUP.Optional.YorkNewCin, HKLM\SOFTWARE\YorkNewCin, , [40b9db33ec9fcc6a175ef9c4b1530ef2],
PUP.Optional.CinemaPlus, HKLM\SOFTWARE\ARENAHD, , [f70289856a210c2aa5b6f48df90bfe02],
PUP.Optional.CrossRider, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\30935, , [a8516da1256661d542f4266243c16e92],
PUP.Optional.AnyProtect, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\APSnotifierPP1, , [06f3c24c513a013562adf78393713fc1],
PUP.Optional.FastSearch, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\cfr3011, , [748553bb84071125cbb45f2e689ce21e],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\d023905b-2dcc-4676-ab11-e50881a6e624-1-6, , [d82159b5dcaf4ee8ba81c0c826deb54b],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\d023905b-2dcc-4676-ab11-e50881a6e624-1-7, , [d4259c723754b0864bf06b1dfb092dd3],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\d023905b-2dcc-4676-ab11-e50881a6e624-5, , [788159b5414a9a9cab904345f311768a],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\d023905b-2dcc-4676-ab11-e50881a6e624-5_user, , [32c72fdf06855fd7e15a8cfcf50f2ed2],
PUP.Optional.SmartWeb, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\SmartWeb Upgrade Trigger Task, , [ef0ae02eafdc41f55f9e2c83e91b857b],
PUP.Optional.CrossBrowse, HKLM\SOFTWARE\WOW6432NODE\Crossbrowse, , [39c0d13dd9b22f07e64c5b2a4fb525db],
PUP.Optional.HighDefAction, HKLM\SOFTWARE\WOW6432NODE\HighDefAction, , [18e1030b7b102f071c4afa99ed176799],
PUP.Optional.IHProtect, HKLM\SOFTWARE\WOW6432NODE\IHProtect, , [cd2c34dacebd4cea2c2d781dd13334cc],
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\mystartsearchSoftware, , [a059c34b6f1ce056197932f6887bf808],
PUP.Optional.PhraseProfessor, HKLM\SOFTWARE\WOW6432NODE\PhraseProfessor_1.10.0.22, , [f90021ed4744d85e8a7d5f4628dc7a86],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\PlusHD_v3.1V29.08-nv-ie, , [2ccd2de1c3c86dc97da95e2ae22256aa],
PUP.Optional.WordShark, HKLM\SOFTWARE\WOW6432NODE\WordShark_1.10.0.20, , [1cdd11fdaedd082e39d19a235ea62dd3],
PUP.Optional.WordSurfer, HKLM\SOFTWARE\WOW6432NODE\WordSurfer_1.10.0.19, , [64959c7215762016ba5a8d308b7950b0],
PUP.Optional.YorkNewCin, HKLM\SOFTWARE\WOW6432NODE\YorkNewCin, , [f5045fafe8a3eb4b066f4e6f1aeaab55],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\APPDATALOW\SOFTWARE\Crossrider, , [f7024fbf5f2c13232c01f494d034ad53],
PUP.Optional.CinemaPlus, HKLM\SOFTWARE\WOW6432NODE\ARENAHD, , [49b0bb53d8b3c1750b50344da65e8d73],
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\NATIVEMESSAGINGHOSTS\nmhostct2612669, , [9c5d22ec4546b383914628f7897a0cf4],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\INSTALLEDBROWSEREXTENSIONS\30935, , [7b7ebd510a814aec4ceab3d5c63e9967],
PUP.Optional.MyStartToolbar, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\${IEUTILSLIGHTELEVATIONPOLICYID}, , [b742ab630f7c3cfa084ec1e034d0d42c],
PUP.Optional.WordShark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\WordSharkAutoUpdateClient_RASAPI32, , [679236d86c1f67cfc147a21bc63e867a],
PUP.Optional.WordShark, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\WordSharkAutoUpdateClient_RASMANCS, , [8178e529a9e28da9dc2cffbe34d06f91],
PUP.Optional.VOPackage, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\VOPackage, , [f30659b5dab12a0c92346b4e37cd01ff],
PUP.Optional.Tuto4PC, HKLM\SOFTWARE\WOW6432NODE\TUTORIALS, , [3cbd61ad1873bf774548d3e415efb34d],
PUP.Optional.WinService, HKU\S-1-5-18\SOFTWARE\winservice86-nv-ie, , [90697b93820945f1158095273cc855ab],
PUP.Optional.HQVideo, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\HQ-Video-Professional-1.2, , [26d30b032566c96d3c30e9ab62a2659b],
PUP.Optional.PlusHD, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\Plus-HD-2.5, , [fbfe7d91117a1b1b3364168f5fa53ac6],
PUP.Optional.PlusHD, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\Plus-HD-4.6, , [33c6a46a4447a0968116c5e0ae5632ce],
PUP.Optional.TornTV, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\Torntv V9.0, , [22d752bc4e3da5917b2242742ed623dd],
PUP.Optional.CrossRider, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, , [20d941cda3e870c6c3255b2ba0640ff1],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-18\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}, , [34c5a16d711a3ff7666980f615ef4eb2],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}, , [b64361ad117a11252ea18de9887c8d73],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}, , [d227bb5399f2f343c708cbab09fb5da3],
PUP.Optional.SelectionTool, HKU\S-1-5-21-1037735796-1459874005-2169763421-1000\SOFTWARE\WTOOLS\Selection Tools, , [49b02ae4a3e8dd596f587637ec18e61a],
PUP.Optional.CinemaPlus, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\CinemaPlus-3.2cV27.08-nv-ie, , [2bceeb23bbd0b18560eb7e03dc287888],
PUP.Optional.CrossBrowse, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\Crossbrowse, , [e41527e7b2d92016b5775035828246ba],
PUP.Optional.HighDefAction, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\HighDefAction, , [21d89a747417d3636401c3d017edd62a],
PUP.Optional.iWebar, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\iWebar-nv-ie, , [a950e22c6724e74f779e9601f311966a],
PUP.Optional.MyBrowser, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MyBrowser 1.0.2V29.08-nv-ie, , [13e626e898f305317456a7f90ef6649c],
PUP.Optional.ObjectBrowser, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\Object Browser-nv-ie, , [f5041fef771488ae73192b7756ae59a7],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\PlusHD_v3.1V29.08-nv-ie, , [bf3aef1fd4b748ee30a6f98d9173ba46],
PUP.Optional.Tuto4PC, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\TutoTag, , [19e0030bdab10b2b4e3b0fa8ce36867a],
PUP.Optional.YorkNewCin, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\YorkNewCin, , [d6238886ee9d78be690bdce15ca85ea2],
PUP.Optional.AnyProtect, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\ANYPROTECT, , [9069907e87043006faaf175a5aaa1ae6],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, , [29d0070797f4a0963dabe2a462a2a957],
PUP.Optional.CinemaPlus, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\ARENAHD, , [1edb2be3eaa12a0c60dcd8a9679d4bb5],
PUP.Optional.GlobalUpdate, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY, , [2fcae02e75169d9938329df4a75d8080],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\GOOGLE\CHROME\NATIVEMESSAGINGHOSTS\nmhostct2612669, , [31c89b73d3b832043d95ee3106fdd62a],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\30935, , [53a6f618c6c5b68067964c3ade26df21],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\Video HDV29.08, , [7d7ce9255f2cde587b84226407fd9967],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3ED684EA-205A-456C-98EA-A5EC94DCDB1E}, , [768357b7305b1323ca4efc8c12f202fe],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{4EF6B6F5-5254-40FF-9361-9C6FF355A572}, , [8c6d0fffcbc08aacf81fe3a534d010f0],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5BC11A9B-1E6A-445F-B9E6-85F54DF0CE1E}, , [8f6a1cf2177451e533e58dfbb25236ca],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6A296256-4285-48DC-B432-DC1BFFECE986}, , [9366020cc2c980b65fb9c3c53fc520e0],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7FB775E1-F48F-43DE-8C8E-D7721B95916F}, , [f702b658701b5bdb987f1276ff05ff01],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{8C547B02-E0A0-4EB6-BD8B-F3BE88E53B56}, , [9e5b67a72764eb4be235e3a58d771fe1],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{8C86488D-F138-4221-AAB4-D48FCD6588B0}, , [6b8e44cacdbef145c1574543a064eb15],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{9D42A7F8-DAE9-43E0-80B0-58EE944723F0}, , [b74285898407e15537e06523fd072fd1],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{A86FD34D-D962-4CF4-97F7-63EB6A5911DA}, , [19e0b9559fecdc5ad6415b2dab59c53b],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E2826D17-80FA-4C0B-8A90-EDC58842D25E}, , [b2478d8119720234997fa9df49bb03fd],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{EA46FF3B-42F8-4B60-AACC-56681FF21D79}, , [42b7eb232863d3638a8d2662d430c838],
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F7479128-B8E4-414B-BE55-9010C85F8A17}, , [6f8aa46a5536b383cc4bc0c857adb947],
PUP.Optional.Trovi, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}, , [4faa2ee07318350180a483347f85be42],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\CHCT2612669, , [788116f8f59692a472670569798b9a66],
PUP.Optional.Tuto4PC, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\TUTORIALS\updatetutorialeshp, , [7e7b9c720982cd699aec684f25df06fa],
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}, , [6990020c04873303c80766109d67b947],
PUP.Optional.InstallBrain, HKU\S-1-5-21-1037735796-1459874005-2169763421-501\SOFTWARE\WNLT, , [6198947adab17abc1464d2c426def60a],
PUP.Optional.SelectionTool, HKU\S-1-5-21-1037735796-1459874005-2169763421-501\SOFTWARE\WTOOLS\Selection Tools, , [2ccde727dab12214b4131e8fe71d32ce],
Valeurs du registre: 42
PUP.Optional.EoRezo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|upgmsd_fr_005010074.exe, C:\Users\ambre1908\AppData\Local\gmsd_fr_005010074\upgmsd_fr_005010074.exe -runonce, , [c53431dd2f5cc67016783b5662a30000]
PUP.Optional.CinemaPlus, HKLM\SOFTWARE\ARENAHD|value, 1, , [f70289856a210c2aa5b6f48df90bfe02]
PUP.Optional.PCTuner, HKLM\SOFTWARE\HIGHDEFACTION|value, 1, , [1adfa965d3b893a3c8034b59d0349967]
Hijacker.Application, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ASSOCIATIONS|bak_application, http://go.microsoft.com/fwlink/?LinkId=57426&Ext=%s, , [a752b7570c7f4aec07a2a61a83808d73]
PUP.Optional.SpaceSoundPro, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SpaceSoundPro, "C:\Program Files\SpaceSoundPro\SpaceSoundPro.exe", , [ae4bf31b94f7ae881516c1f0e42022de]
PUP.Optional.Shopperz.BrwsrFlsh, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|{0420BEC0-F2C1-4578-8F19-471B9E5C63A5}, C:\Program Files\shopperz240820151333\Firefox, , [6e8b7c9296f5072f01e9354136cee11f]
PUP.Optional.CinemaPlus, HKLM\SOFTWARE\WOW6432NODE\ARENAHD|value, 1, , [49b0bb53d8b3c1750b50344da65e8d73]
PUP.Optional.PCTuner, HKLM\SOFTWARE\WOW6432NODE\HIGHDEFACTION|value, 1, , [8d6ccc428506e1551bb00b99ce36b34d]
PUP.Optional.MyStartToolbar, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\${IEUTILSLIGHTELEVATIONPOLICYID}|AppPath, C:\Program Files (x86)\mystarttb, , [b742ab630f7c3cfa084ec1e034d0d42c]
PUP.Optional.CertifiedToolBar.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), http://search.certified-toolbar.com?si=66805&st=bs&tid=6748&ver=4.8&ts=1382479200000.000008&tguid=66805-6748-1382527643480-3C480ED367F3FA8BC1F94E5DA8C88B83&q=%s, , [42b72de12863082e7aca9f9462a1fb05]
Hijacker.Application, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ASSOCIATIONS|bak_Application, http://go.microsoft.com/fwlink/?LinkId=57426&Ext=%s, , [12e7e5295c2ffe382b7e328ef80bfc04]
PUP.Optional.GamesDesktop, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|gmsd_fr_005010073, , [ed0cae60fc8fe0567b03721e38cc27d9],
PUP.Optional.GamesDesktop, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|gmsd_fr_005010074, , [689126e8f79437ff0b73711fa65e50b0],
PUP.Optional.GamesDesktop, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|gmsd_fr_005010075, , [c732ba547e0d78be136bfe92699b857b],
PUP.Optional.Shopperz.BrwsrFlsh, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|{0420BEC0-F2C1-4578-8F19-471B9E5C63A5}, C:\Program Files\shopperz240820151333\Firefox, , [5e9bbd510d7e3ef8e307da9cfd0745bb]
PUP.Optional.Tuto4PC, HKLM\SOFTWARE\WOW6432NODE\TUTORIALS|HostGUID, A9F7A709-9985-4EF6-A1BB-321249E1C604, , [3cbd61ad1873bf774548d3e415efb34d]
PUP.Optional.MultiPlug, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\bepygoqu|ImagePath, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\jnsl485A.tmp, , [7d7c8a84c9c23afcdbaee0c046be6b95]
PUP.Optional.MultiPlug, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\wukytogo|ImagePath, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\nsq349.tmpfs, , [4bae69a53d4e62d4bfc8f8a843c1d828]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-18\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}|Name, C:\Program Files\shopperz240820151333\Conrygi.exe, , [34c5a16d711a3ff7666980f615ef4eb2]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-19\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}|Name, C:\Program Files\shopperz240820151333\Conrygi.exe, , [b64361ad117a11252ea18de9887c8d73]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-20\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}|Name, C:\Program Files\shopperz240820151333\Conrygi.exe, , [d227bb5399f2f343c708cbab09fb5da3]
PUP.Optional.AnyProtect, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\ANYPROTECT|ABTest, {"general":{"test_id":"B6","installer_pre_page":true,"scanner_pre_page":false},"1":{"email_check":true},"7":{"notification_20_mins":"3A"},"9":{"scan_page_id":2},"12":{"upclick_exit_show":false,"upclick_exit_countries":{"US":{"phone":"(855) 602-9762"},"CA":{"phone":"(855) 602-9762"},"UK":{"phone":"0800 031 4647"},"GB":{"phone":"0800 031 4647"},"AU":{"phone":"1800-762-367"}}},"14":{"upclick_scan_id_show":false,"upclick_scan_id":"000-000-000"},"15":{"upclick_bottom_offer_show":false,"upclick_bottom_offer_countries":{"US":{"phone":"(855) 602-9762"},"GB":{"phone":"0800 031 4647"},"UK":{"phone":"0800 031 4647"},"DE":{"phone":"800-182-0188"},"CA":{"phone":"(855) 602-9762"},"AU":{"phone":"1800-762-367"},"FR":{"phone":"9 75 18 72 00"}}},"18":{"movie":1}}, , [9069907e87043006faaf175a5aaa1ae6]
PUP.Optional.CinemaPlus, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\ARENAHD|value, 1, , [1edb2be3eaa12a0c60dcd8a9679d4bb5]
PUP.Optional.GlobalUpdate, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\GLOBALUPDATE\UPDATE\PROXY|source, IE, , [2fcae02e75169d9938329df4a75d8080]
PUP.Optional.PCTuner, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\HIGHDEFACTION|value, 1, , [d72208068cff7db9f4d31292659fbb45]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3ED684EA-205A-456C-98EA-A5EC94DCDB1E}|AppName, e62f0f5f-582d-480d-b895-6729bbd35482-2.exe-codedownloader.exe, , [768357b7305b1323ca4efc8c12f202fe]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{4EF6B6F5-5254-40FF-9361-9C6FF355A572}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-buttonutil.exe, , [8c6d0fffcbc08aacf81fe3a534d010f0]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5BC11A9B-1E6A-445F-B9E6-85F54DF0CE1E}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-codedownloader.exe, , [8f6a1cf2177451e533e58dfbb25236ca]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{6A296256-4285-48DC-B432-DC1BFFECE986}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-codedownloader.exe, , [9366020cc2c980b65fb9c3c53fc520e0]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{7FB775E1-F48F-43DE-8C8E-D7721B95916F}|AppName, 5b7e2ba1-6311-48dc-a43a-755369663def-2.exe-buttonutil.exe, , [f702b658701b5bdb987f1276ff05ff01]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{8C547B02-E0A0-4EB6-BD8B-F3BE88E53B56}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-buttonutil.exe, , [9e5b67a72764eb4be235e3a58d771fe1]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{8C86488D-F138-4221-AAB4-D48FCD6588B0}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-codedownloader.exe, , [6b8e44cacdbef145c1574543a064eb15]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{9D42A7F8-DAE9-43E0-80B0-58EE944723F0}|AppName, Plus-HD-4.6-enabler.exe-buttonutil.exe, , [b74285898407e15537e06523fd072fd1]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{A86FD34D-D962-4CF4-97F7-63EB6A5911DA}|AppName, e62f0f5f-582d-480d-b895-6729bbd35482-2.exe-buttonutil.exe, , [19e0b9559fecdc5ad6415b2dab59c53b]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E2826D17-80FA-4C0B-8A90-EDC58842D25E}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-codedownloader.exe, , [b2478d8119720234997fa9df49bb03fd]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{EA46FF3B-42F8-4B60-AACC-56681FF21D79}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-buttonutil.exe, , [42b7eb232863d3638a8d2662d430c838]
PUP.Optional.CrossRider, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F7479128-B8E4-414B-BE55-9010C85F8A17}|AppName, 345d3c72-b21e-4eb7-9074-20e283560ca4-2.exe-buttonutil.exe, , [6f8aa46a5536b383cc4bc0c857adb947]
PUP.Optional.Trovi, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|URL, http://www.trovi.com/Results.aspx?gd=&ctid=CT3330124&octid=EB_ORIGINAL_CTID&ISID=M2A606968-AAEF-43DF-A45F-303089A8B16B&SearchSource=58&CUI=&UM=8&UP=SPA3A7E527-C6A3-47EE-BEA4-579BBA90D866&D=083015&q={searchTerms}&SSPV=, , [49b0f51906850c2a90937740ee16857b]
PUP.Optional.Conduit, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|SuggestionsURL_JSON, http://suggest.seccint.com/CSuggestJson.ashx?prefix={searchTerms}&SSPV=, , [3dbc14fa7d0eba7c6219622127dd8f71]
PUP.Optional.Trovi, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}|DisplayName, Trovi, , [64959d71e7a454e266bd9126a55fbb45]
PUP.Optional.Shopperz.BrwsrFlsh, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\{9A1539FD-88FC-46C6-8B92-E6DF763A8168}|Name, C:\Program Files\shopperz240820151333\Conrygi.exe, , [6990020c04873303c80766109d67b947]
PUP.Optional.InstallBrain, HKU\S-1-5-21-1037735796-1459874005-2169763421-501\SOFTWARE\WNLT|URL, , [6198947adab17abc1464d2c426def60a],
Données du registre: 7
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\GOOGLE CHROME\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0, Bon : (Chrome.exe), Mauvais : ("C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0),,[c336c44aa2e92313b36d2b2738cdbc44]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0, Bon : (iexplore.exe), Mauvais : ("C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0),,[34c58d817f0c53e36db18ac86f96d927]
PUP.Optional.SimplyTech, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\ABOUTURLS|newtab, %appdata%\SimplyTech\home\home.htm, Bon : (www.google.com), Mauvais : (%appdata%\SimplyTech\home\home.htm),,[10e965a9e1aa3105241f233c1bea3fc1]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\GOOGLE CHROME\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0, Bon : (Chrome.exe), Mauvais : ("C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0),,[3bbea668b0db023461bf440ef31217e9]
PUP.Optional.MyStartSearch.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0, Bon : (iexplore.exe), Mauvais : ("C:\Program Files (x86)\Internet Explorer\iexplore.exe" http://www.mystartsearch.com/?type=sc&ts=1440927428&z=643f4ac43f206978ac710ecg2z8z3eatdodm8caeec&from=cmi&uid=ST31000524AS_6VPG5ZN0XXXX6VPG5ZN0),,[08f18886781387af2cf20052ef16e818]
Hijacker.Application, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ASSOCIATIONS|Application, http://www.helpmeopen.com/?n=app&ext=%s, Bon : (http://shell.windows.com/fileassoc/Mauvais : (http://www.helpmeopen.com/?n=app&ext=%s),,[3ebb76983f4c78befd620d4c11f42dd3]x/xml/redir.asp?Ext=%s), %5
PUP.Optional.SearchCertifiedTB, HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), http://search.certified-toolbar.com?si=66805&st=bs&tid=6748&ver=4.8&ts=1382479200000.000008&tguid=66805-6748-1382527643480-3C480ED367F3FA8BC1F94E5DA8C88B83&q=%s, Bon : (www.google.com), Mauvais : (http://search.certified-toolbar.com?si=66805&st=bs&tid=6748&ver=4.8&ts=1382479200000.000008&tguid=66805-6748-1382527643480-3C480ED367F3FA8BC1F94E5DA8C88B83&q=%s),,[e0197698f8939f97cbde49158283cd33]
Dossiers: 26
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.IOProtect, C:\Users\ambre1908\AppData\Local\Temp\WIZZ, , [e019cb43a5e67eb802d08016da2aaf51],
Rogue.Multiple, C:\ProgramData\600440862, , [d920ea245a31fa3c55692fad12f039c7],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\ambre1908\AppData\Roaming\mystartsearch, , [fffa52bcd7b43ff7c54b5b992bd7c23e],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\installer, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\language, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\logs, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\scan_results, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\swf, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.CrossBrowse, C:\Program Files (x86)\Crossbrowse, , [c63341cd24678babb8571ce11be7758b],
PUP.Optional.CrossBrowse, C:\Program Files (x86)\Crossbrowse\Crossbrowse, , [c63341cd24678babb8571ce11be7758b],
PUP.Optional.CrossBrowse, C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application, , [c63341cd24678babb8571ce11be7758b],
PUP.Optional.CrossBrowse, C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95, , [c63341cd24678babb8571ce11be7758b],
PUP.Optional.GamesDesktop, C:\Users\ambre1908\AppData\Local\gmsd_fr_005010074, , [1edb36d856355dd91c59cb3df01347b9],
PUP.Optional.GamesDesktop, C:\Program Files (x86)\gmsd_fr_005010074, , [7980b25c6e1de84e63137296fb0827d9],
PUP.Optional.MiniLite, C:\Program Files (x86)\MiniLite, , [13e6e12ddfac85b1da7264ac669dcc34],
PUP.Optional.ProtectWindowsManager, C:\ProgramData\nWinManPron, , [00f9da3427643bfb0820b55f33d0d729],
PUP.Optional.ProtectWindowsManager, C:\ProgramData\nWinManPron\update, , [00f9da3427643bfb0820b55f33d0d729],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\mz, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\skin, , [f30613fbe4a7a98dc8bd01170201db25],
Fichiers: 91
PUP.Optional.EoRezo, C:\Users\ambre1908\AppData\Local\gmsd_fr_005010074\upgmsd_fr_005010074.exe, , [c53431dd2f5cc67016783b5662a30000],
PUP.Optional.WProtectManager, C:\ProgramData\nWdsManPron\WdsManPro.exe, , [fcfd6ca2eba0270f84c394fff80db947],
PUP.Optional.Bundle, C:\Program Files (x86)\MiniLite\ProtectService.exe, , [05f469a55d2e64d2ba015345e41e0af6],
Trojan.Dropper, C:\ProgramData\nWinManPron\WinManPro.exe, , [cc2dcb43f7947cba4331478602ffd42c],
PUP.Optional.CrossRider, C:\Users\ambre1908\AppData\Roaming\4FhXsuGiy.exe, , [c73231dd6922072f4cc510c05fa2d42c],
PUP.Optional.CrossRider, C:\Users\ambre1908\AppData\Roaming\74k28EQCS.exe, , [57a2cd41afdcc472759c359bfa07d030],
PUP.Optional.CrossRider, C:\Users\ambre1908\AppData\Roaming\ImO6OFrXUHgA6MEKc0DICRv.exe, , [9861dc32c4c7b08657ba9d334ab79d63],
PUP.Optional.CrossRider, C:\Users\ambre1908\AppData\Roaming\HwI0ROk.exe, , [f5048f7fc1cace6851c0f0e02ed3b54b],
PUP.Optional.InstallCore, C:\Program Files (x86)\Adobe\5c61a21a-ba41-40bb-a6dc-33bff59a4a59.dll, , [0aefac6293f80135cd7e0290c441b848],
PUP.Optional.Nova, C:\Program Files (x86)\Adobe\63bc2917-d3c8-427c-960c-0c9a1575de5d.dll, , [a455f6182c5f1a1c9c02d1028081728e],
PUP.Optional.MiniLite, C:\Program Files (x86)\MiniLite\Uninstall.exe, , [d92069a5305b2a0c81a5815202ff57a9],
PUP.Optional.EoRezo, C:\Program Files (x86)\gmsd_fr_005010074\gamesdesktop_widget.exe, , [1edb9b730388e452404e6130ad58eb15],
PUP.Optional.Tuto4PC, C:\Program Files (x86)\gmsd_fr_005010074\predm.exe, , [7683fb13a3e8e5516ec3c1d07f86aa56],
PUP.Optional.Tuto4PC, C:\Program Files (x86)\gmsd_fr_005010074\unins000.exe, , [5a9fba543a516fc776bbefa222e38878],
PUP.Optional.SupraSavings, C:\temp\t.msi, , [55a44cc27c0f66d0d5b51d3442c360a0],
PUP.Optional.Winsock.HijackBoot, C:\Windows\System32\Ooteeotoor64.dll, , [50a97896a4e77fb7f7087e455ea35ea2],
PUP.Optional.Winsock.HijackBoot, C:\Windows\SysWOW64\Ooteeotoor.dll, , [f7029876a2e92214df1fa320847d9e62],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\ambre1908\AppData\Local\Temp\nsx6349.tmp, , [6b8ec04e4e3db284b768a4ea46bf966a],
PUP.Optional.Tuto4PC, C:\Users\ambre1908\AppData\Local\Temp\_iu14D2N.tmp, , [ec0d947a0b806bcbd859dbb6d0350ff1],
PUP.Optional.MiniLite, C:\Users\ambre1908\AppData\Local\Temp\20150830113656\I\tmp\MiniLite_v6.6.2.2771.exe, , [da1f888684077eb8c46219ba5ea350b0],
PUP.Optional.WProtectManager, C:\Users\ambre1908\AppData\Local\Temp\20150830113656\I\tmp\wpm_v20.0.0.2298.exe, , [8970b658ec9f88aec582573c699c55ab],
Trojan.MSIL.Dropper, C:\Users\ambre1908\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\OfferInstaller.exe, , [86738886e6a5290d5fe17bd112f332ce],
PUP.Optional.CheckOffer, C:\Users\ambre1908\AppData\Local\Temp\nsd94D2.tmp\nsCBHTML5.dll, , [9267ea245d2eb58137736f2d49b82fd1],
PUP.Optional.ModGoog, C:\Windows\Temp\globalupdate.exe11b682, , [ce2bad610685ec4a6841483ef70a17e9],
PUP.Optional.ModGoog, C:\Windows\Temp\goopdate.dll11b692, , [0aef848aa4e794a27633bbcb946d669a],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Local\nsdB2BE.tmp, , [b445ba548dfeaa8c86342067649edc24],
PUP.Optional.SmartWeb, C:\Users\ambre1908\AppData\Local\SmartWeb\__u.exe, , [5c9d0b03c3c853e3af6f478e49b858a8],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\ambre1908\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mystartsearch.com_0.localstorage, , [f6036ba36b20c373c588b0753fc406fa],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\ambre1908\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.mystartsearch.com_0.localstorage-journal, , [47b2c14dacdf7cba3914e93c47bcae52],
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\nsq349.tmpfs, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\jnsl485A.tmp, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\rnsa3C83.exe, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\Uninstall.exe, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.MultiPlug.Gen, C:\Users\ambre1908\AppData\Roaming\65635004-1424344858-E011-93F5-14DAE9A6CDC2\vnskDBF3.tmp, , [08f116f86a2187af9f49f07b966e728e],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\lraoguip.exe.config, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\lraoguip.exe, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\sqlite3.dll, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\1.0.4.1\time.dat, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.PullUpdate.Gen, C:\ProgramData\Geifilacroh\dat.dat, , [82778985f497be786f279dd37e862bd5],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-1-6, , [18e161ad810a67cf736086f1fc08ac54],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-1-7, , [70894dc10289e55104cfb8bf8183f40c],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-5, , [53a6f6183b500c2a8b48cea9a163a55b],
PUP.Optional.CrossRider, C:\Windows\System32\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-5_user, , [c534937b3655ee486e65b6c1ea1a6b95],
PUP.Optional.CrossRider, C:\Windows\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-1-6.job, , [cc2d9579840771c59242b3c4ef156a96],
PUP.Optional.CrossRider, C:\Windows\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-1-7.job, , [ca2f17f7a9e2fd39f2e2c0b74eb6c937],
PUP.Optional.CrossRider, C:\Windows\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-5.job, , [639662acddae70c69242a7d035cfe11f],
PUP.Optional.CrossRider, C:\Windows\Tasks\d023905b-2dcc-4676-ab11-e50881a6e624-5_user.job, , [6f8afc121c6f3ef80bc947308c785ca4],
PUP.Optional.ABengine, C:\Windows\Temp\lengine.ini.log, , [41b856b8a0eb71c53949a6d24fb50cf4],
PUP.Optional.Acengine, C:\Windows\Temp\acengine.log, , [ad4c07077b102214800d89ef9a6a9f61],
PUP.Optional.AnyProtect, C:\Windows\System32\Tasks\APSnotifierPP1, , [10e9749a5e2d6bcb55b71c5e4bb97090],
PUP.Optional.AnyProtect, C:\Windows\Tasks\APSnotifierPP1.job, , [8970a06eabe056e0a26b215915efc838],
PUP.Optional.AnyProtect, C:\Windows\Tasks\APSnotifierPP2.job, , [c732ee20a7e487af7d90a7d3bc4845bb],
PUP.Optional.FastSearch, C:\Windows\System32\Tasks\cfr3011, , [d52434dac3c894a2adcc5d3011f36898],
PUP.Optional.IOProtect, C:\Users\ambre1908\AppData\Local\Temp\WIZZ\ioprotect_conf.xml, , [e019cb43a5e67eb802d08016da2aaf51],
PUP.Optional.IOProtect, C:\Users\ambre1908\AppData\Local\Temp\WIZZ\config.cfg, , [e019cb43a5e67eb802d08016da2aaf51],
PUP.Optional.IOProtect, C:\Users\ambre1908\AppData\Local\Temp\WIZZ\ioproduct.exe, , [e019cb43a5e67eb802d08016da2aaf51],
PUP.Optional.IOProtect, C:\Users\ambre1908\AppData\Local\Temp\WIZZ\ioprotect.exe, , [e019cb43a5e67eb802d08016da2aaf51],
PUP.Optional.SmartWeb, C:\Windows\System32\Tasks\SmartWeb Upgrade Trigger Task, , [b1488a84c2c990a605f6634c7c888d73],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\installer\ab.test.json, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\installer\tempfile.t, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\language\de.xml, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\language\en.xml, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\language\fr.xml, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\scan_results\aps.scan.quick.results, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\scan_results\aps.scan.results, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\swf\mov01.swf, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.AnyProtect, C:\Users\ambre1908\AppData\Roaming\AnyProtectEx\swf\swfOE.swf, , [1edbd7372e5def4756a6d91c9d65fb05],
PUP.Optional.GamesDesktop, C:\Program Files (x86)\gmsd_fr_005010074\unins000.dat, , [7980b25c6e1de84e63137296fb0827d9],
PUP.Optional.GamesDesktop, C:\Program Files (x86)\gmsd_fr_005010074\unins000.msg, , [7980b25c6e1de84e63137296fb0827d9],
PUP.Optional.MiniLite, C:\Program Files (x86)\MiniLite\msvcp110.dll, , [13e6e12ddfac85b1da7264ac669dcc34],
PUP.Optional.MiniLite, C:\Program Files (x86)\MiniLite\msvcr110.dll, , [13e6e12ddfac85b1da7264ac669dcc34],
PUP.Optional.ProtectWindowsManager, C:\ProgramData\nWinManPron\updateconf, , [00f9da3427643bfb0820b55f33d0d729],
PUP.Optional.ProtectWindowsManager, C:\ProgramData\nWinManPron\WinManPro.exe, , [00f9da3427643bfb0820b55f33d0d729],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome.manifest, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\install.rdf, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\background.html, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\button.xml, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\config.js, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\content.js, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\framework.js, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\framework.xul, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\icon128.png, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\icon16.png, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\icon48.png, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\jquery-1.6.2.min.js, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\options.xul, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\settings.json, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\mz\background.js, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\content\mz\content.js, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.SmileyBar, C:\Users\ambre1908\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks\chrome\skin\framework.css, , [f30613fbe4a7a98dc8bd01170201db25],
PUP.Optional.HijackHosts.Gen, C:\Windows\System32\abis\cuuf\fah.dat, , [8178df2f523956e047fc8016da2b39c7],
Secteurs physiques: 0
(Aucun élément malveillant détecté)
(end)