Publicité
Publicité
Format du document : text/plain
Prévisualisation
start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)
HKLM\...\Run: [Windesk Winsearch] => C:\Program Files (x86)\WindeskWinsearch\Windesk Winsearch.exe [1061256 2015-04-08] (Windesk Winsearch)
HKLM\...\Run: [shopperz22072015] => C:\Program Files\shopperz22072015\Huyde.exe [434040 2015-07-22] ()
HKLM\...\Run: [shopperz2207201564] => C:\Program Files\shopperz22072015\Huyde64.exe [464760 2015-07-22] ()
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2013-04-26] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [3576784 2012-12-19] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [SmartWeb] => C:\Users\GREENBIRDIE\AppData\Local\SmartWeb\SmartWebHelper.exe [270368 2015-02-17] (SoftBrain Technologies Ltd.)
HKLM-x32\...\Run: [gmsd_fr_005010038] => [X]
HKLM-x32\...\Run: [MovieDea] => C:\Program Files (x86)\MovieDea\MovieDea.exe [3184640 2015-06-03] (MovieDea)
HKLM-x32\...\RunOnce: [upgmsd_fr_005010038.exe] => C:\Users\GREENBIRDIE\AppData\Local\gmsd_fr_005010038\upgmsd_fr_005010038.exe [3296912 2015-07-22] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WebBrowserMixVideoPlayer.lnk [2015-07-23]
ShortcutTarget: WebBrowserMixVideoPlayer.lnk -> C:\Program Files (x86)\MixVideoPlayer\BrowserWeb.exe ()
Startup: C:\Users\GREENBIRDIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\crossbrowse.lnk [2015-07-23]
ShortcutTarget: crossbrowse.lnk -> C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (Crossbrowse)
Startup: C:\Users\GREENBIRDIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2014-08-30]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\GREENBIRDIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk [2015-07-23]
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\OLBPre\OLBPre.exe ()
Startup: C:\Users\GREENBIRDIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RapidMediaConverterApp.lnk [2015-07-23]
ShortcutTarget: RapidMediaConverterApp.lnk -> C:\Program Files (x86)\RapidMediaConverter\RapidMediaConverterApp.exe ()
Startup: C:\Users\GREENBIRDIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk [2015-07-23]
ShortcutTarget: SmartWeb.lnk -> C:\Users\GREENBIRDIE\AppData\Local\SmartWeb\SmartWebHelper.exe (SoftBrain Technologies Ltd.)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131050092512941390&GUID=669C7809-6770-430E-A02D-FB2BD0E4B317
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=ds&ts=1437644650&z=fe34a1a42f297363a7b0962g0zac3m5qbz1zcq1g0e&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=ds&ts=1437644650&z=fe34a1a42f297363a7b0962g0zac3m5qbz1zcq1g0e&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hppp&ts=1437642575&z=401320b7f8509b21c9d0e20g4z0c1mcqdzbo3w4caw&from=tugs&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hppp&ts=1437642575&z=401320b7f8509b21c9d0e20g4z0c1mcqdzbo3w4caw&from=tugs&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1437644650&z=fe34a1a42f297363a7b0962g0zac3m5qbz1zcq1g0e&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1437644650&z=fe34a1a42f297363a7b0962g0zac3m5qbz1zcq1g0e&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&q={searchTerms}
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.delta-homes.com/web/?type=ds&ts=1426070063&from=wpm03113&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&q={searchTerms}
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131050092512947679&GUID=669C7809-6770-430E-A02D-FB2BD0E4B317
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hppp&ts=1437642575&z=401320b7f8509b21c9d0e20g4z0c1mcqdzbo3w4caw&from=tugs&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://go.microsoft.com/fwlink/?LinkID=226786&Mkt=fr-FR&Src=WD8&Tid=000328B0&OHP=http%3A%2F%2Fwww.mystartsearch.com%2F%3Ftype%3Dhp%26ts%3D1437643307%26z%3D5085be0b98f3f2d6d4262a0gdz3c1m6qez2c3odq3m%26from%3Dcmi%26uid%3DHGSTXHTS541075A9E680%5FJA12021G0RKZEK0RKZEKX&OSP=http%3A%2F%2Fwww.mystartsearch.com%2Fweb%2F%3Futm%5Fsource%3Db%26utm%5Fmedium%3Dcmi%26utm%5Fcampaign%3Dinstall%5Fie%26utm%5Fcontent%3Dds%26from%3Dcmi%26uid%3DHGSTXHTS541075A9E680%5FJA12021G0RKZEK0RKZEKX%26ts%3D1437643371%26type%3Ddefault%26q%3D%7BsearchTerms%7D
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://speedial.com/results.php?f=4&q={searchTerms}&a=spd_tele_14_20_ie&cd=2XzuyEtN2Y1L1Qzu0EtDtA0FyEzytAyC0AyByEyB0AyBzyzztN0D0Tzu0SzzyCtAtN1L2XzutBtFtBtDtFzytFtCtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtByDtA0F0CtD0DtGyB0CtC0EtGyEtB0AyDtGzyyEzy0AtGyDyC0DtB0DtA0BtAyDtC0DyC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyC0F0EyD0AtB0AtBtGzytD0EzztG0CyC0ByBtGzy0A0B0BtGyB0FyDzzzyyDyBzzyEtAtAtB2Q&cr=441742821&ir=
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {c9ab6446-7efc-47fe-966c-dc54324eff9f} URL =
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> OldSearch URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&ts=1437644706&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> {31090377-0740-419E-BEFC-A56E50500D5B} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&ts=1437644706&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&ts=1437644706&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> {c9ab6446-7efc-47fe-966c-dc54324eff9f} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&ts=1437644706&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&ts=1437644706&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> {ED91A497-2513-4015-AAC6-FAAF7C4CD3FA} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&ts=1437644706&type=default&q={searchTerms}
BHO: shopperz22072015 -> {318d2d55-9ce3-446e-8640-a43be68a550f} -> C:\Program Files\shopperz22072015\Gaalmi64.dll [2015-07-22] ()
BHO-x32: shopperz22072015 -> {318d2d55-9ce3-446e-8640-a43be68a550f} -> C:\Program Files\shopperz22072015\Gaalmi.dll [2015-07-22] ()
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FF ProfilePath: C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default
FF NewTab: hxxp://fr.search.yahoo.com/?fr=hp-ddc-bd-tab&type=pr-bfr-re__alt__ddc_dsssyctab_bd_com
FF DefaultSearchEngine: Yahoo! Search
FF SelectedSearchEngine: Yahoo! Search
FF Homepage: hxxp://fr.search.yahoo.com/?fr=hp-ddc-bd&type=pr-bfr-re__alt__ddc_dsssyc_bd_com
FF Keyword.URL: hxxp://fr.search.yahoo.com/yhs/search?hspart=ddc&hsimp=yhs-ddc_bd&type=pr-bfr-re__alt__ddc_dss_bd_com&p=
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-03-12] [non signé]
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-03-12] [non signé]
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-03-12] [non signé]
FF Extension: Default SearchProtected - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\defsearchp@gmail.com [2015-07-23] [non signé]
FF Extension: deskCut - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\deskCutv2@gmail.com [2015-07-23] [non signé]
FF Extension: Search Enginer - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\sweetsearch@gmail.com [2015-07-23] [non signé]
FF Extension: Product Deals 1.0.1 - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\{33ec41ea-c5a6-4add-92af-1f91084dc817}.xpi [2015-07-22] [non signé]
FF Extension: shopperz22072015 - C:\Program Files\shopperz22072015\Firefox [2015-07-23] [non signé]
FF Extension: Cinema_Plus-1.2V23.07 - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\d4db60df25f14dae9dd18@185c395f9e794c9ab86be3eb.com [2015-07-23] [non signé]
FF Extension: GoHD - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\f8783004-c434-4bd0-9f81-9a39dd64baaa@08ad07c4-3f21-451d-9045-9e0d5dc8aa9e.com [2015-07-23] [non signé]
FF Extension: Shop and Save Up - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\ffddf830-f24b-489e-9e90-a42d11893b1c@gmail.com [2015-07-23] [non signé]
FF Extension: PriicELess - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\Extensions\2@htrKAUR.com [2015-07-23] [non signé]
FF Extension: youtubeadblocker - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\Extensions\celQyPDeb@5.org [2015-07-23] [non signé]
FF HKLM\...\Firefox\Extensions: [support@vdownloader.com] - C:\Program Files\VDownloader\Addons\FireFox => non trouvé(e)
CHR dev: Chrome dev build détecté(e)! <======= ATTENTION
CHR HomePage: Default -> hxxp://www.istartsurf.com/?type=hppp&ts=1437642575&z=401320b7f8509b21c9d0e20g4z0c1mcqdzbo3w4caw&from=tugs&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX
CHR StartupUrls: Default -> "hxxp://www.istartsurf.com/?type=hppp&ts=1437642575&z=401320b7f8509b21c9d0e20g4z0c1mcqdzbo3w4caw&from=tugs&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX"
CHR DefaultSearchURL: Default -> hxxp://www.mystartsearch.com/web/?type=ds&ts=1437644650&z=fe34a1a42f297363a7b0962g0zac3m5qbz1zcq1g0e&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&q={searchTerms}
CHR DefaultSearchKeyword: Default -> mystartsearch
CHR Extension: (Shop and Save Up) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\ablgnpngfaaficpckehadaljnjgjkhbi [2015-07-23]
CHR Extension: (Google Docs) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-24] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (Google Drive) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-20] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (Adblock Pro) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjdbnpinaifafahjegmcldajnjfgplnb [2015-03-12] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (YouTube) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-24]
CHR Extension: (Ecosia - Le moteur de recherche qui plante des arbres) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\clellnciejhoedgepbdilbkdkaoecgpc [2015-07-10] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (Recherche Google) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-02]
CHR Extension: (Kaspersky Protection) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-03-13] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (MindMup - Free Mind Map web site) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnenaecjcgeppfpaokiifokeieopppej [2015-02-23] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (GoHD) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\fijhlnmmmgflacagjecncpmpnhjieggk [2015-07-23]
CHR Extension: (Salesforce integration for Gmail) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmdomiplhgolgpibfdjjhgbcbkdcfkmk [2015-07-23] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (AdBlock) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-07-20] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-07-02] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (Google Wallet) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-02] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (Cinema_Plus-1.2V23.07) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\papbadoldddalgcjcicnikcfenodpghp [2015-07-23] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (PriicELess) - C:\ProgramData\iphmemiodikbbiakdefilapgjbanonie\ []
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM\...\Chrome\Extension: [eoccbpoodnckjdnackiffhjfkogfhnhh] - C:\Program Files\VDownloader\Addons\Chrome.crx
CHR HKLM\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - hxxps://clients2.google.com/service/update2/crx
S2 buvuvydu; C:\Program Files (x86)\00000011-1437642725-0000-0000-E03F4936A747\knsn2E5C.tmp [449536 2015-07-23] () [Fichier non signé]
S2 c31ed948; c:\Program Files (x86)\Optimizer Pro 3.99\OptProMon.dll [2570896 2015-07-23] () <==== ATTENTION
S2 cae99edb; c:\Program Files (x86)\Super Optimizer\SupOptStats.dll [2914864 2015-07-23] ()
S2 comyninu; C:\Program Files (x86)\00000011-1437642725-0000-0000-E03F4936A747\hnsb8EAA.tmp [161792 2015-07-23] () [Fichier non signé]
S2 d0ce99eb-258e-401b-b95b-9e860f91a566; C:\Program Files\shopperz22072015\Jmahzov.exe [285560 2015-07-22] ()
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608 2015-07-23] (globalUpdate) [Fichier non signé] <==== ATTENTION
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608 2015-07-23] (globalUpdate) [Fichier non signé] <==== ATTENTION
S2 gopibeko; C:\Users\GREENBIRDIE\AppData\Local\00000011-1437649969-0000-0000-E03F4936A747\snsnD161.tmp [120832 2015-07-23] () [Fichier non signé]
S2 hyverumu; C:\Program Files (x86)\00000011-1437642725-0000-0000-E03F4936A747\jnsm7841.tmp [209920 2015-07-23] () [Fichier non signé]
R3 Rofdhowal; C:\Program Files\shopperz22072015\Rofdhowal.exe [2020352 2015-07-20] () [Fichier non signé]
S2 shopperz22072015 Updater; C:\Program Files\shopperz22072015\Jvpmajlij.exe [174968 2015-07-22] ()
S2 wbsvc; C:\Program Files\WebBar\wbsvc.exe [37144 2015-04-06] (Web Bar Media) [Fichier non signé]
2016-04-13 10:20 - 2016-04-13 17:24 - 00417792 _____ C:\WINDOWS\hbc.exe
2016-04-13 09:56 - 2016-04-13 17:20 - 00279942 _____ C:\WINDOWS\ntbtlog.txt
2016-04-12 14:21 - 2016-04-12 14:21 - 00002175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\speed browser.lnk
2016-04-12 14:21 - 2016-04-12 14:21 - 00002146 _____ C:\Users\Public\Desktop\speed browser.lnk
2016-04-12 14:20 - 2016-04-12 14:21 - 00000000 ____D C:\Program Files (x86)\speed browser
2016-04-12 14:20 - 2016-04-12 14:20 - 01497848 _____ C:\ProgramData\setup_17e84341aaf3473c9a4119daeacca4d1.exe
2016-04-12 14:20 - 2016-04-12 14:20 - 00000000 ____D C:\Program Files\SpaceSoundPro
2016-04-12 14:19 - 2016-04-12 14:19 - 00001120 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-04-12 13:35 - 2016-04-12 13:35 - 00000000 ____D C:\ProgramData\Browser
2016-04-12 13:34 - 2016-04-12 13:34 - 00022174 _____ C:\WINDOWS\System32\Tasks\DNSPEACHBURG
2016-04-12 13:34 - 2016-04-12 13:34 - 00003740 _____ C:\WINDOWS\System32\Tasks\DNS Monitoring
2016-04-12 13:33 - 2016-04-12 13:34 - 00000000 ____D C:\Program Files (x86)\DNS Unlocker
2016-04-12 13:33 - 2016-04-12 13:33 - 00022836 _____ C:\WINDOWS\System32\Tasks\{7F0D7A47-090B-7D0C-0C11-0D790F79110A}
2016-04-12 13:33 - 2016-04-12 13:33 - 00000000 ____D C:\ProgramData\ed8c2b81-51d5-1
2016-04-12 13:33 - 2016-04-12 13:33 - 00000000 ____D C:\ProgramData\ed8c2b81-39f7-0
2016-04-12 13:32 - 2016-04-11 22:43 - 00048728 _____ (StdLib) C:\WINDOWS\system32\Drivers\{b040334a-4a7e-47a1-a857-df02a0047bbe}Gw64.sys
2016-04-13 17:25 - 2015-07-23 11:26 - 00000000 ____D C:\Program Files (x86)\NewGen
2016-04-13 16:04 - 2015-03-12 11:13 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-04-13 16:04 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-13 15:55 - 2015-07-23 11:55 - 00003158 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-7.job
2016-04-13 15:55 - 2015-07-23 11:55 - 00003158 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6.job
2016-04-13 15:55 - 2015-07-23 11:54 - 00005538 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-7.job
2016-04-13 15:55 - 2015-07-23 11:54 - 00005538 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-6.job
2016-04-13 15:55 - 2015-07-23 11:54 - 00004514 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-4.job
2016-04-13 15:55 - 2015-07-23 11:54 - 00002132 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-10_user.job
2016-04-13 15:55 - 2015-07-23 11:53 - 00003470 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-1-7.job
2016-04-13 15:55 - 2015-07-23 11:53 - 00003134 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-1-6.job
2016-04-13 15:55 - 2015-07-23 11:52 - 00005514 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-7.job
2016-04-13 15:55 - 2015-07-23 11:52 - 00005180 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-11.job
2016-04-13 15:55 - 2015-07-23 11:42 - 00005896 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-6.job
2016-04-13 15:55 - 2015-07-23 11:42 - 00005552 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-7.job
2016-04-13 15:55 - 2015-07-23 11:42 - 00003508 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-7.job
2016-04-13 15:55 - 2015-07-23 11:42 - 00003172 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-6.job
2016-04-13 15:55 - 2015-07-23 11:41 - 00002146 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-10_user.job
2016-04-13 15:55 - 2015-07-23 11:28 - 00002144 _____ C:\WINDOWS\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-10_user.job
2016-04-13 15:55 - 2015-07-23 11:20 - 00003504 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-7.job
2016-04-13 15:55 - 2015-07-23 11:20 - 00002476 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.job
2016-04-13 15:55 - 2015-07-23 11:19 - 00005548 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-7.job
2016-04-13 15:55 - 2015-07-23 11:19 - 00005548 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6.job
2016-04-13 15:55 - 2015-07-23 11:19 - 00002142 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-10_user.job
2016-04-13 15:55 - 2015-07-23 11:19 - 00000994 _____ C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job
2016-04-13 12:27 - 2015-07-23 15:32 - 00000000 ____D C:\Program Files (x86)\FastSearch
2016-04-13 10:20 - 2014-11-21 01:19 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DNSAPI.dll
2016-04-13 10:20 - 2014-11-21 01:18 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DNSAPI.dll
2016-04-13 09:52 - 2015-07-23 11:55 - 00002466 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-5.job
2016-04-13 09:52 - 2015-07-23 11:53 - 00002442 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-5.job
2016-04-13 09:52 - 2015-07-23 11:52 - 00005514 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-6.job
2016-04-13 09:52 - 2015-07-23 11:52 - 00002108 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-10_user.job
2016-04-13 09:52 - 2015-07-23 11:42 - 00001066 _____ C:\WINDOWS\Tasks\3gzWM8uilJDGkDtZQlX0Fwz1Wf.job
2016-04-13 09:52 - 2015-07-23 11:42 - 00001038 _____ C:\WINDOWS\Tasks\N3t9gpoylOE1.job
2016-04-13 09:52 - 2015-07-23 11:29 - 00001064 _____ C:\WINDOWS\Tasks\oo0uajIoW9iWd1fC8b0qTcgVm.job
2016-04-13 09:52 - 2015-07-23 11:29 - 00001044 _____ C:\WINDOWS\Tasks\BXW8HEPsp4LzpbX.job
2016-04-13 09:52 - 2015-07-23 11:20 - 00003168 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-6.job
2016-04-13 09:52 - 2015-07-23 11:20 - 00001058 _____ C:\WINDOWS\Tasks\ArQC7CfyPp734muDhoRaN1.job
2016-04-13 09:52 - 2015-07-23 11:20 - 00001048 _____ C:\WINDOWS\Tasks\qiBYxizj3HRne4Lsz.job
2016-04-13 09:51 - 2015-07-23 11:55 - 00002466 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-5_user.job
2016-04-13 09:51 - 2015-07-23 11:54 - 00005204 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-11.job
2016-04-13 09:51 - 2015-07-23 11:54 - 00004178 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-3.job
2016-04-13 09:51 - 2015-07-23 11:53 - 00004490 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-4.job
2016-04-13 09:51 - 2015-07-23 11:53 - 00002442 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-5_user.job
2016-04-13 09:51 - 2015-07-23 11:52 - 00004490 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-3.job
2016-04-13 09:51 - 2015-07-23 11:42 - 00004528 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-4.job
2016-04-13 09:51 - 2015-07-23 11:42 - 00002480 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5_user.job
2016-04-13 09:51 - 2015-07-23 11:42 - 00002480 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5.job
2016-04-13 09:51 - 2015-07-23 11:41 - 00005218 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-11.job
2016-04-13 09:51 - 2015-07-23 11:41 - 00004528 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-3.job
2016-04-13 09:51 - 2015-07-23 11:29 - 00002478 _____ C:\WINDOWS\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5_user.job
2016-04-13 09:51 - 2015-07-23 11:29 - 00002478 _____ C:\WINDOWS\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5.job
2016-04-13 09:51 - 2015-07-23 11:21 - 00001086 _____ C:\WINDOWS\Tasks\Crossbrowse.job
2016-04-13 09:51 - 2015-07-23 11:20 - 00002476 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5_user.job
2016-04-13 09:51 - 2015-07-23 11:19 - 00005214 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-11.job
2016-04-13 09:51 - 2015-07-23 11:19 - 00004524 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-4.job
2016-04-13 09:51 - 2015-07-23 11:19 - 00004188 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-3.job
2016-04-13 09:51 - 2015-07-23 11:19 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2016-04-13 09:49 - 2015-07-23 11:23 - 00003272 _____ C:\WINDOWS\System32\Tasks\Super Optimizer Schedule
2016-04-12 14:49 - 2015-02-26 13:58 - 00000000 ____D C:\Users\GREENBIRDIE
2016-04-12 14:39 - 2015-07-23 11:51 - 00003090 _____ C:\WINDOWS\System32\Tasks\RegClean Pro
2016-04-12 14:38 - 2015-07-23 11:52 - 00003074 _____ C:\WINDOWS\System32\Tasks\Advanced System~Protector_startup
2016-04-12 14:38 - 2015-07-22 10:25 - 00003116 _____ C:\WINDOWS\System32\Tasks\WinZip Malware Protector_startup
2016-04-12 14:21 - 2014-08-13 17:36 - 00001120 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2981138811-3486527071-2456265958-1001UA.job
2016-04-12 14:21 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-04-12 13:35 - 2015-07-23 11:17 - 00003466 _____ C:\WINDOWS\System32\Tasks\Jieinroouam
2016-04-12 13:35 - 2015-07-23 11:17 - 00000000 ____D C:\ProgramData\Jieinroouam
2016-04-12 13:34 - 2015-07-23 11:11 - 00000000 ___HD C:\ProgramData\hbc
2016-04-12 13:33 - 2014-03-12 19:26 - 00003960 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{87DB5E2B-FC16-48E4-87EB-0973CCA51A06}
2016-04-12 13:31 - 2015-07-23 11:46 - 00004664 _____ C:\WINDOWS\SysWOW64\Rofdhowal.ini
2016-04-12 13:31 - 2015-07-23 11:46 - 00002384 _____ C:\WINDOWS\SysWOW64\RofdhowalOff.ini
2016-04-12 13:31 - 2015-07-23 11:46 - 00002384 _____ C:\WINDOWS\system32\RofdhowalOff.ini
2016-04-12 13:31 - 2014-02-14 08:03 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2981138811-3486527071-2456265958-1001
2016-04-12 13:30 - 2015-10-21 18:53 - 00000000 ____D C:\Users\GREENBIRDIE\AppData\Local\ElevatedDiagnostics
2016-04-12 13:29 - 2015-07-23 11:24 - 00000000 ____D C:\Users\GREENBIRDIE\AppData\Local\gmsd_fr_005010038
2016-04-12 12:20 - 2015-03-19 17:13 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-04-12 12:12 - 2014-08-13 17:36 - 00001068 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2981138811-3486527071-2456265958-1001Core.job
2016-04-12 11:59 - 2015-07-23 11:19 - 00000998 _____ C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job
2016-04-12 11:48 - 2015-07-01 12:10 - 00003474 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-04-12 11:48 - 2015-07-01 12:10 - 00003464 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
HKLM\...\Run: [Windesk Winsearch] => C:\Program Files (x86)\WindeskWinsearch\Windesk Winsearch.exe [1061256 2015-04-08] (Windesk Winsearch)
Advanced-System Protector (HKLM-x32\...\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~9338DF9D_is1) (Version: 2.2.1000.15792 - Advanced System Protector) <==== ATTENTION
Advanced-System Protector (HKLM-x32\...\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~9338DF9D_is1) (Version: 2.2.1000.15792 - Advanced System Protector) <==== ATTENTION
Akamai NetSession Interface (HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
AnyProtect (HKLM-x32\...\AnyProtect) (Version: 1.0.0.4 - CMI Limited) <==== ATTENTION
AnySend (HKLM-x32\...\ASPackage) (Version: - CMI Limited) <==== ATTENTION
Cinema_Plus-1.2V23.07 (HKLM-x32\...\Cinema_Plus-1.2V23.07) (Version: 1.36.01.22 - Cinema_Plus-1.2V23.07) <==== ATTENTION
Cinemax Plus 1.9cV23.07 (HKLM-x32\...\Cinemax Plus 1.9cV23.07) (Version: 1.36.01.22 - Cinema PlusV23.07) <==== ATTENTION
Com NotificationV22.07 (HKLM-x32\...\Com NotificationV22.07) (Version: 1.36.01.22 - Com NotificationV22.07) <==== ATTENTION
Crossbrowse (HKLM-x32\...\Crossbrowse) (Version: 39.6.2171.95 - The Crossbrowse Authors) <==== ATTENTION
DNS Unlocker (HKLM-x32\...\DNSUnlocker.ns) (Version: - ) <==== ATTENTION
Forum Terminal (HKLM-x32\...\SoftwareUpdater) (Version: 1.0.0.0 - Forum Terminal) <==== ATTENTION
Friendly Error (HKLM-x32\...\FriendlyError) (Version: - ) <==== ATTENTION
globalupdate Helper (x32 Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== ATTENTION
GoHD (HKLM-x32\...\GoHD) (Version: 1.36.01.22 - InstallMoon) <==== ATTENTION
GUPlayer (remove only) (HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\GUPlayer) (Version: - ) <==== ATTENTION
MixVideoPlayer (HKLM-x32\...\MixVideoPlayer) (Version: v1.0.0.23 - SoftForce LLC) <==== ATTENTION
MovieDea 1.0 (HKLM-x32\...\MovieDea) (Version: 1.0 - MovieDea) <==== ATTENTION
MyPC Backup (HKLM\...\OLBPre) (Version: - MyPC Backup) <==== ATTENTION
Optimizer Pro v3.2 (HKLM-x32\...\Optimizer Pro_is1) (Version: 3.3.1.7 - PCUtilities Software Limited) <==== ATTENTION
Picasa Packages (HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\Picasa Packages) (Version: - ) <==== ATTENTION
PriicELess (HKLM-x32\...\{75F9BF4A-AF67-A478-A37B-31D73186D3F3}) (Version: - ) <==== ATTENTION
Pro PC Cleaner (HKLM-x32\...\Pro PC Cleaner) (Version: 2.9.6 - Pro PC Cleaner) <==== ATTENTION
Product Deals (HKLM\...\Product Deals) (Version: 2015.07.23.072923 - Product Deals) <==== ATTENTION
RapidMediaConverter (HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\RapidMediaConverter) (Version: 1.0.1.16 - RapidMediaConverter) <==== ATTENTION
RegClean-Pro (HKLM-x32\...\RegClean-Pro_is1) (Version: 6.21 - systweak.com) <==== ATTENTION
Remote Desktop Access (VuuPC) (HKLM-x32\...\VOPackage) (Version: 1.0.0.0 - CMI Limited) <==== ATTENTION
RinoReader (HKLM-x32\...\RinoReader) (Version: 0.1 - RinoReader) <==== ATTENTION
Salesforce integration for Gmail (HKLM-x32\...\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}) (Version: - ) <==== ATTENTION
Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version: - ) <==== ATTENTION
shopperz22072015 2.0.0.471 (HKLM\...\{318d2d55-9ce3-446e-8640-a43be68a550f}_is1) (Version: 2.0.0.471 - shopperz) <==== ATTENTION
SmartWeb (HKLM-x32\...\SmartWeb) (Version: 8.0.9 - SoftBrain Technologies Ltd.) <==== ATTENTION
speed browser (HKLM-x32\...\speed browser) (Version: 48.0.2564.103 - Fast Applications) <==== ATTENTION
Super Optimizer v3.2 (HKLM-x32\...\Super Optimizer_is1) (Version: 3.2.0.1 - Super PC Tools ltd) <==== ATTENTION
Web Bar 2.0.5574.22315 (HKLM\...\{0BCE8B0A-1E76-44E5-9909-3CF804D92E4D}_is1) (Version: 2.0.5574.22315 - Web Bar Media) <==== ATTENTION
WordAnchor 1.10.0.20 (HKLM-x32\...\WordAnchor_1.10.0.20) (Version: 1.10.0.20 - WordAnchor) <==== ATTENTION
Zombie Invasion (HKLM-x32\...\ZombieInvasion) (Version: 2.7.69 - Time Lapse Solutions) <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001_Classes\CLSID\{B77E471C-FBF3-4CB5-880F-D7528AD4B349}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - English\acad.exe /Automation => Pas de fichier
Task: {030CA3A0-9813-4188-B610-3B1D625EB3DD} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-7 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-7.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {04120CA4-A80C-4944-85A2-CA2DBB9A5C2B} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2015-07-23] (AnyProtect.com) <==== ATTENTION
Task: {0C508CDA-3B81-44B3-AD11-132CD298C784} - System32\Tasks\ArQC7CfyPp734muDhoRaN1 => C:\Users\GREENBIRDIE\AppData\Roaming\ArQC7CfyPp734muDhoRaN1.exe [2015-04-20] () <==== ATTENTION
Task: {0DE8CA1F-740B-48A3-941B-88AB60BC28CA} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
Task: {14D25967-62EF-4D6E-8C5F-F624F1D12A66} - System32\Tasks\DNS Monitoring => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~2\DNSUNL~1\DNSMON~1.DLL" <==== ATTENTION
Task: {19395F71-1B8C-4E56-872B-4A310E83FC1D} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5_user => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {1BDE3CD1-121B-454A-9CF8-223C55DD1C75} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-11 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-11.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {1F153F23-2F52-4449-B172-547C7DC72F07} - System32\Tasks\MixVideoPlayer Update => C:\Program Files (x86)\MixVideoPlayer\mixUpdater.exe [2015-07-08] () <==== ATTENTION
Task: {1FA7B1B4-C38C-4E4C-A30C-8AE447454141} - System32\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-10_user => C:\Program Files (x86)\Com NotificationV22.07\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-10.exe [2015-07-23] (Com NotificationV22.07) <==== ATTENTION
Task: {2D6C74B3-5F18-4513-B8C1-63C9080BE7F0} - System32\Tasks\Crossbrowse => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe [2015-07-23] () <==== ATTENTION
Task: {3687417D-7CE7-4951-ADC9-D9376B7459EA} - System32\Tasks\LaunchPreSignup => C:\Program Files (x86)\OLBPre\OLBPre.exe [2015-07-23] () <==== ATTENTION
Task: {36A83340-6C53-470D-B8A0-54CE2F991FA6} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-3 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-3.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {36C116A6-90FF-4319-A911-9A2D390F363D} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-5_user => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-5.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {378BA1E9-D7B1-44C5-BDBD-EA459A703903} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-10_user => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-10.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {3F09EAE2-F7FA-4470-84B2-F645A303F3C0} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-1-6 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-1-6.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {3F65318E-9312-4390-8C84-8043F0F1794A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {4322284B-C5FC-4CCE-81CC-D02FEBA90473} - System32\Tasks\RegClean Pro_DEFAULT => C:\Program Files (x86)\RCP\RegCleanPro.exe [2015-07-02] () <==== ATTENTION
Task: {4337E7F3-6F36-405B-9217-37AB273B07CC} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2015-07-23] (AnyProtect.com) <==== ATTENTION
Task: {45139744-3FA3-4D7C-8742-09557DF1A203} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-4 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-4.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {49AF55C8-65BA-4F22-89F2-8D4D01CEF1EB} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-11 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-11.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {4F241C01-1158-46D6-90BC-08A4FCF76FCD} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-7 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-7.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {5379246B-F647-400D-A9C3-6D70F648132D} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {53F16BBC-A017-4E23-835B-1876E090B562} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-5 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-5.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {5A54A016-7669-46C6-90FE-F004E218A2D3} - System32\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5_user => C:\Program Files (x86)\Com NotificationV22.07\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5.exe [2015-07-23] (Com NotificationV22.07) <==== ATTENTION
Task: {5B59A449-DCAB-4903-BCE4-E73BEA327D93} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-7 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-7.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {5FAFF5CC-BC07-4A40-AC02-D02EF0D31253} - System32\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5 => C:\Program Files (x86)\Com NotificationV22.07\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5.exe [2015-07-23] (Com NotificationV22.07) <==== ATTENTION
Task: {62D406F4-7EA1-4641-A054-42E52208205A} - System32\Tasks\RegClean Pro => C:\Program Files (x86)\RCP\RegCleanPro.exe [2015-07-02] () <==== ATTENTION
Task: {6362E07D-FE0C-4CA7-A72B-4F9BCC4EDDC0} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-3 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-3.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {66090BCD-3807-40F1-837C-331C802F4E17} - System32\Tasks\ProPCCleaner_Start => C:\Program Files (x86)\Pro PC Cleaner\ProPCCleaner.exe [2015-07-03] (Pro PC Cleaner) <==== ATTENTION
Task: {66A9B1FB-2750-4F1A-BA14-82CF17274CE0} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-4 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-4.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {6C4D98F0-8003-4926-B30F-AB1234B9AE59} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-6 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-6.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {6FCD4D9A-F673-4842-B150-891768A6A447} - System32\Tasks\Optimizer Pro Schedule => C:\Program Files (x86)\Optimizer Pro 3.99\OptProLauncher.exe [2015-07-03] () <==== ATTENTION
Task: {7301F9E0-40DB-4F90-93EB-8848CF44B019} - System32\Tasks\WinZip Malware Protector_startup => C:\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe [2015-05-20] (Nico Mak Computing)
Task: {732F2BB6-0C6F-4D0D-998D-4C302E04EF9E} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {7A7CFF50-73C3-4E14-AA8F-731C3CF1B24B} - System32\Tasks\Superclean => c:\programdata\{b48d95df-0402-062f-b48d-d95df040577c}\hqghumeaylnlf.exe [2014-07-23] (Super PC Tools Ltd) <==== ATTENTION
Task: {7AAB506F-8795-47B7-AA26-54B1D5689792} - System32\Tasks\WebBarLaunchTask => C:\Program Files\WebBar\wbsvc.exe [2015-04-06] (Web Bar Media) <==== ATTENTION
Task: {7AB9E485-59A2-4CF3-91A4-44F3B4617DAC} - System32\Tasks\oo0uajIoW9iWd1fC8b0qTcgVm => C:\Users\GREENBIRDIE\AppData\Roaming\oo0uajIoW9iWd1fC8b0qTcgVm.exe [2015-04-20] () <==== ATTENTION
Task: {7DCE7E63-0EC8-4936-A09A-4BE9C2ECE958} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-5 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-5.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {81680882-98D4-41F1-85A4-699B82AB21E8} - System32\Tasks\3gzWM8uilJDGkDtZQlX0Fwz1Wf => C:\Users\GREENBIRDIE\AppData\Roaming\3gzWM8uilJDGkDtZQlX0Fwz1Wf.exe [2015-04-20] () <==== ATTENTION
Task: {822498B3-D7CD-4ED9-9BEC-427BACBFB855} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-3 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-3.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {8537F7B6-DFE5-49C2-8886-35320E93AE35} - System32\Tasks\{7F0D7A47-090B-7D0C-0C11-0D790F79110A} => powershell.exe -nologo -executionpolicy bypass -noninteractive -windowstyle hidden -EncodedCommand OwAkAEUAcgByAG8AcgBBAGMAdABpAG8AbgBQAHIAZQBmAGUAcgBlAG4AYwBlAD0AIgBzAHQAbwBwACIAOwAkAHMAYwA9ACIAUwBpAGwAZQBuAHQAbAB5AEMAbwBuAHQAaQBuAHUAZQAiADsAJABXAGEAcgBuAGkAbgBnAFAAcgBlAGYAZQByAGUAbgBjAGUAPQAkAHMAYwA7ACQAUAByAG8A (l'élément de données a 9252 caractères en plus).
Task: {8A64D4BA-7320-4081-9A60-BE861D03A122} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2015-07-23] (AnyProtect.com) <==== ATTENTION
Task: {8B4E3C76-2776-4046-95E2-4ADA91F973E7} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-10_user => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-10.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {8FEA89A9-9EA0-47EA-B6DE-D48FFCD482D3} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-3 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-3.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {9047DAB8-006C-4C40-A7C2-0172BB35FB75} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [2015-07-23] (globalUpdate) <==== ATTENTION
Task: {94C4661B-1FE8-45ED-B0F0-F41D1E833491} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-4 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-4.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {96FCB866-B6CF-430E-BEF3-9FD29B74F4FF} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-5_user => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-5.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {9A16D3FD-14FF-4980-8BC4-0578BF83F16A} - System32\Tasks\Papuir => C:\Program Files\shopperz22072015\Asyofakaz.bat [2015-07-22] () <==== ATTENTION
Task: {9BAC73E2-83D5-4A0F-A282-10C946FCC761} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-10_user => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-10.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {9E80FE96-7633-4460-BB34-58BA1A5CE75C} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-4 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-4.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {A8378E8C-66EC-46CC-BA78-B8823F5387C7} - System32\Tasks\WebBarUpdateTask => C:\Program Files\WebBar\wbsvc.exe [2015-04-06] (Web Bar Media) <==== ATTENTION
Task: {A9653C15-93ED-4E59-B0B8-023A69A2AF93} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2981138811-3486527071-2456265958-1001Core => C:\Users\GREENBIRDIE\AppData\Local\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.)
Task: {ABA5A57F-7411-4BDA-9628-B8E80CBA6394} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-11 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-11.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {AE169B88-AF10-432A-846C-A2D5446B96D2} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-7 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-7.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {B2128A43-9941-4CA4-8304-114F51C4CCFC} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-6 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-6.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {B3FB2372-3313-4D86-8912-12CB56F5B68B} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2013-11-08] (AsusTek)
Task: {B499C09E-9812-41F8-8EFF-334D9D81E827} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-7 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-7.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {B69CFE21-F8B7-45FF-92CF-92828C4522CC} - System32\Tasks\Yahoo! Search Updater => Wscript.exe //B "C:\Users\GREENBIRDIE\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\..\updt.js" <==== ATTENTION
Task: {BC5B6A4D-4A56-4297-84DD-16043720550D} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-7 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-7.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {BC779C6B-3D45-4B1F-9D3A-D84DEB1913DE} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {C4AFB055-2053-4E4F-8447-8739D87920C2} - System32\Tasks\N3t9gpoylOE1 => C:\Users\GREENBIRDIE\AppData\Roaming\N3t9gpoylOE1.exe [2015-04-20] () <==== ATTENTION
Task: {C53638AA-C46D-4318-BF10-0543DD7521B6} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-6 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-6.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {C5C413A2-6A83-406E-AADF-B458F635AE34} - System32\Tasks\DNSPEACHBURG => dnspeachburg.exe <==== ATTENTION
Task: {C69B5268-DAB1-444E-A69A-4AE4BA8DD9FF} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-1-7 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-1-7.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {C94F6DCF-F8A6-46C7-85EC-F7E434165EA9} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-6 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-6.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {CC417564-D462-49D0-8F49-21D7DC6B5EA7} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [2015-07-23] (globalUpdate) <==== ATTENTION
Task: {CC46B04B-C696-4FCA-B0AF-9B380EA8F99A} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-6 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-6.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {D19D80C5-7BD7-46DF-89BC-4DA4365D2954} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {D498F37E-B6F5-4EB9-9940-AFCEB0A069D8} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {D5A5046F-8A48-4A03-BB49-6C5B77216EA0} - System32\Tasks\qiBYxizj3HRne4Lsz => C:\Users\GREENBIRDIE\AppData\Roaming\qiBYxizj3HRne4Lsz.exe [2015-04-20] () <==== ATTENTION
Task: {DBC3C388-5581-4094-A1C7-0B8545CD2F50} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {D19D80C5-7BD7-46DF-89BC-4DA4365D2954} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {D498F37E-B6F5-4EB9-9940-AFCEB0A069D8} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {D5A5046F-8A48-4A03-BB49-6C5B77216EA0} - System32\Tasks\qiBYxizj3HRne4Lsz => C:\Users\GREENBIRDIE\AppData\Roaming\qiBYxizj3HRne4Lsz.exe [2015-04-20] () <==== ATTENTION
Task: {DBC3C388-5581-4094-A1C7-0B8545CD2F50} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {E3799475-D9D8-4BCE-A026-8417E9B7E548} - System32\Tasks\sab3009 => C:\Program Files (x86)\FastSearch\sab3009.exe [2015-07-14] () <==== ATTENTION
Task: {E6E0BCAE-5408-4A19-BD68-A738512895A1} - System32\Tasks\RegClean Pro_UPDATES => C:\Program Files (x86)\RCP\RegCleanPro.exe [2015-07-02] () <==== ATTENTION
Task: {EB8A1A68-F228-4B72-B1CB-38C3D16609A3} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5_user => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {EBBA023A-3B72-43AD-9A1C-9035ED78193D} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-10_user => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-10.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {F1D87530-12C2-4DE1-9A21-F61417C92094} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-11 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-11.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {F60F0026-7110-4BF6-9197-69562149D40A} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-7 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-7.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {F76B7B41-0B65-4287-91E5-2DE916A47D1D} - System32\Tasks\Advanced System~Protector_startup => C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe [2015-06-30] () <==== ATTENTION
Task: {F9072C13-67A4-4646-9CAC-D4622A2AFE16} - System32\Tasks\LieSensor => c:\programdata\{1ffa3267-2457-d645-1ffa-a3267245c99c}\nsq874c.tmp.exe [2014-07-23] () <==== ATTENTION
Task: C:\WINDOWS\Tasks\3gzWM8uilJDGkDtZQlX0Fwz1Wf.job => C:\Users\GREENBIRDIE\AppData\Roaming\3gzWM8uilJDGkDtZQlX0Fwz1Wf.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-6.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-7.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-10_user.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-11.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-11.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-3.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-3.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-4.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5_user.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-7.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-7.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-10_user.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-11.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-11.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-3.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-3.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-4.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-5.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-5_user.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-6.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-7.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-6.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-7.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-10_user.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-11.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-11.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-3.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-3.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-4.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5_user.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-6.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-7.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-1-6.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-1-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-1-7.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-1-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-10_user.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-11.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-11.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-3.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-3.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-4.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-5.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-5_user.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-6.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-7.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\ArQC7CfyPp734muDhoRaN1.job => C:\Users\GREENBIRDIE\AppData\Roaming\ArQC7CfyPp734muDhoRaN1.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\BXW8HEPsp4LzpbX.job => C:\Users\GREENBIRDIE\AppData\Roaming\BXW8HEPsp4LzpbX.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Crossbrowse.job => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-10_user.job => C:\Program Files (x86)\Com NotificationV22.07\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5.job => C:\Program Files (x86)\Com NotificationV22.07\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5_user.job => C:\Program Files (x86)\Com NotificationV22.07\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2981138811-3486527071-2456265958-1001Core.job => C:\Users\GREENBIRDIE\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2981138811-3486527071-2456265958-1001UA.job => C:\Users\GREENBIRDIE\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\LieSensor.job => c:\programdata\{1ffa3267-2457-d645-1ffa-a3267245c99c}\nsq874c.tmp.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\N3t9gpoylOE1.job => C:\Users\GREENBIRDIE\AppData\Roaming\N3t9gpoylOE1.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\oo0uajIoW9iWd1fC8b0qTcgVm.job => C:\Users\GREENBIRDIE\AppData\Roaming\oo0uajIoW9iWd1fC8b0qTcgVm.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\qiBYxizj3HRne4Lsz.job => C:\Users\GREENBIRDIE\AppData\Roaming\qiBYxizj3HRne4Lsz.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\RegClean Pro_DEFAULT.job => C:\Program Files (x86)\RCP\RegCleanPro.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\RegClean Pro_UPDATES.job => C:\Program Files (x86)\RCP\RegCleanPro.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Superclean.job => c:\programdata\{b48d95df-0402-062f-b48d-d95df040577c}\hqghumeaylnlf.exe <==== ATTENTION
HKLM\...\StartupApproved\StartupFolder: => "WebBrowserMixVideoPlayer.lnk"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "shopperz2207201564"
HKLM\...\StartupApproved\Run: => "Windesk Winsearch"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "MovieDea"
HKLM\...\StartupApproved\Run32: => "SmartWeb"
HKLM\...\StartupApproved\Run32: => "gmsd_fr_005010038"
HKLM\...\StartupApproved\Run32: => "shopperz22072015"
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\StartupApproved\StartupFolder: => "crossbrowse.lnk"
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\StartupApproved\StartupFolder: => "SmartWeb.lnk"
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\StartupApproved\Run: => "Akamai NetSession Interface"
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\StartupApproved\Run: => "Google Update"
EmptyTemp
Reboot
end
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)
HKLM\...\Run: [Windesk Winsearch] => C:\Program Files (x86)\WindeskWinsearch\Windesk Winsearch.exe [1061256 2015-04-08] (Windesk Winsearch)
HKLM\...\Run: [shopperz22072015] => C:\Program Files\shopperz22072015\Huyde.exe [434040 2015-07-22] ()
HKLM\...\Run: [shopperz2207201564] => C:\Program Files\shopperz22072015\Huyde64.exe [464760 2015-07-22] ()
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2013-04-26] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [3576784 2012-12-19] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [SmartWeb] => C:\Users\GREENBIRDIE\AppData\Local\SmartWeb\SmartWebHelper.exe [270368 2015-02-17] (SoftBrain Technologies Ltd.)
HKLM-x32\...\Run: [gmsd_fr_005010038] => [X]
HKLM-x32\...\Run: [MovieDea] => C:\Program Files (x86)\MovieDea\MovieDea.exe [3184640 2015-06-03] (MovieDea)
HKLM-x32\...\RunOnce: [upgmsd_fr_005010038.exe] => C:\Users\GREENBIRDIE\AppData\Local\gmsd_fr_005010038\upgmsd_fr_005010038.exe [3296912 2015-07-22] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WebBrowserMixVideoPlayer.lnk [2015-07-23]
ShortcutTarget: WebBrowserMixVideoPlayer.lnk -> C:\Program Files (x86)\MixVideoPlayer\BrowserWeb.exe ()
Startup: C:\Users\GREENBIRDIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\crossbrowse.lnk [2015-07-23]
ShortcutTarget: crossbrowse.lnk -> C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (Crossbrowse)
Startup: C:\Users\GREENBIRDIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2014-08-30]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\GREENBIRDIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk [2015-07-23]
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\OLBPre\OLBPre.exe ()
Startup: C:\Users\GREENBIRDIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RapidMediaConverterApp.lnk [2015-07-23]
ShortcutTarget: RapidMediaConverterApp.lnk -> C:\Program Files (x86)\RapidMediaConverter\RapidMediaConverterApp.exe ()
Startup: C:\Users\GREENBIRDIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk [2015-07-23]
ShortcutTarget: SmartWeb.lnk -> C:\Users\GREENBIRDIE\AppData\Local\SmartWeb\SmartWebHelper.exe (SoftBrain Technologies Ltd.)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131050092512941390&GUID=669C7809-6770-430E-A02D-FB2BD0E4B317
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=ds&ts=1437644650&z=fe34a1a42f297363a7b0962g0zac3m5qbz1zcq1g0e&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=ds&ts=1437644650&z=fe34a1a42f297363a7b0962g0zac3m5qbz1zcq1g0e&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hppp&ts=1437642575&z=401320b7f8509b21c9d0e20g4z0c1mcqdzbo3w4caw&from=tugs&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hppp&ts=1437642575&z=401320b7f8509b21c9d0e20g4z0c1mcqdzbo3w4caw&from=tugs&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1437644650&z=fe34a1a42f297363a7b0962g0zac3m5qbz1zcq1g0e&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1437644650&z=fe34a1a42f297363a7b0962g0zac3m5qbz1zcq1g0e&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&q={searchTerms}
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.delta-homes.com/web/?type=ds&ts=1426070063&from=wpm03113&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&q={searchTerms}
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131050092512947679&GUID=669C7809-6770-430E-A02D-FB2BD0E4B317
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hppp&ts=1437642575&z=401320b7f8509b21c9d0e20g4z0c1mcqdzbo3w4caw&from=tugs&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://go.microsoft.com/fwlink/?LinkID=226786&Mkt=fr-FR&Src=WD8&Tid=000328B0&OHP=http%3A%2F%2Fwww.mystartsearch.com%2F%3Ftype%3Dhp%26ts%3D1437643307%26z%3D5085be0b98f3f2d6d4262a0gdz3c1m6qez2c3odq3m%26from%3Dcmi%26uid%3DHGSTXHTS541075A9E680%5FJA12021G0RKZEK0RKZEKX&OSP=http%3A%2F%2Fwww.mystartsearch.com%2Fweb%2F%3Futm%5Fsource%3Db%26utm%5Fmedium%3Dcmi%26utm%5Fcampaign%3Dinstall%5Fie%26utm%5Fcontent%3Dds%26from%3Dcmi%26uid%3DHGSTXHTS541075A9E680%5FJA12021G0RKZEK0RKZEKX%26ts%3D1437643371%26type%3Ddefault%26q%3D%7BsearchTerms%7D
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://speedial.com/results.php?f=4&q={searchTerms}&a=spd_tele_14_20_ie&cd=2XzuyEtN2Y1L1Qzu0EtDtA0FyEzytAyC0AyByEyB0AyBzyzztN0D0Tzu0SzzyCtAtN1L2XzutBtFtBtDtFzytFtCtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDtByDtA0F0CtD0DtGyB0CtC0EtGyEtB0AyDtGzyyEzy0AtGyDyC0DtB0DtA0BtAyDtC0DyC2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyC0F0EyD0AtB0AtBtGzytD0EzztG0CyC0ByBtGzy0A0B0BtGyB0FyDzzzyyDyBzzyEtAtAtB2Q&cr=441742821&ir=
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {c9ab6446-7efc-47fe-966c-dc54324eff9f} URL =
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> OldSearch URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&ts=1437644706&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> {31090377-0740-419E-BEFC-A56E50500D5B} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&ts=1437644706&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&ts=1437644706&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> {c9ab6446-7efc-47fe-966c-dc54324eff9f} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&ts=1437644706&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&ts=1437644706&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001 -> {ED91A497-2513-4015-AAC6-FAAF7C4CD3FA} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cmi&utm_campaign=install_ie&utm_content=ds&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&ts=1437644706&type=default&q={searchTerms}
BHO: shopperz22072015 -> {318d2d55-9ce3-446e-8640-a43be68a550f} -> C:\Program Files\shopperz22072015\Gaalmi64.dll [2015-07-22] ()
BHO-x32: shopperz22072015 -> {318d2d55-9ce3-446e-8640-a43be68a550f} -> C:\Program Files\shopperz22072015\Gaalmi.dll [2015-07-22] ()
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FF ProfilePath: C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default
FF NewTab: hxxp://fr.search.yahoo.com/?fr=hp-ddc-bd-tab&type=pr-bfr-re__alt__ddc_dsssyctab_bd_com
FF DefaultSearchEngine: Yahoo! Search
FF SelectedSearchEngine: Yahoo! Search
FF Homepage: hxxp://fr.search.yahoo.com/?fr=hp-ddc-bd&type=pr-bfr-re__alt__ddc_dsssyc_bd_com
FF Keyword.URL: hxxp://fr.search.yahoo.com/yhs/search?hspart=ddc&hsimp=yhs-ddc_bd&type=pr-bfr-re__alt__ddc_dss_bd_com&p=
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-03-12] [non signé]
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-03-12] [non signé]
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-03-12] [non signé]
FF Extension: Default SearchProtected - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\defsearchp@gmail.com [2015-07-23] [non signé]
FF Extension: deskCut - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\deskCutv2@gmail.com [2015-07-23] [non signé]
FF Extension: Search Enginer - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\sweetsearch@gmail.com [2015-07-23] [non signé]
FF Extension: Product Deals 1.0.1 - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\{33ec41ea-c5a6-4add-92af-1f91084dc817}.xpi [2015-07-22] [non signé]
FF Extension: shopperz22072015 - C:\Program Files\shopperz22072015\Firefox [2015-07-23] [non signé]
FF Extension: Cinema_Plus-1.2V23.07 - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\d4db60df25f14dae9dd18@185c395f9e794c9ab86be3eb.com [2015-07-23] [non signé]
FF Extension: GoHD - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\f8783004-c434-4bd0-9f81-9a39dd64baaa@08ad07c4-3f21-451d-9045-9e0d5dc8aa9e.com [2015-07-23] [non signé]
FF Extension: Shop and Save Up - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\extensions\ffddf830-f24b-489e-9e90-a42d11893b1c@gmail.com [2015-07-23] [non signé]
FF Extension: PriicELess - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\Extensions\2@htrKAUR.com [2015-07-23] [non signé]
FF Extension: youtubeadblocker - C:\Users\GREENBIRDIE\AppData\Roaming\Mozilla\Firefox\Profiles\ics6rsa6.default\Extensions\celQyPDeb@5.org [2015-07-23] [non signé]
FF HKLM\...\Firefox\Extensions: [support@vdownloader.com] - C:\Program Files\VDownloader\Addons\FireFox => non trouvé(e)
CHR dev: Chrome dev build détecté(e)! <======= ATTENTION
CHR HomePage: Default -> hxxp://www.istartsurf.com/?type=hppp&ts=1437642575&z=401320b7f8509b21c9d0e20g4z0c1mcqdzbo3w4caw&from=tugs&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX
CHR StartupUrls: Default -> "hxxp://www.istartsurf.com/?type=hppp&ts=1437642575&z=401320b7f8509b21c9d0e20g4z0c1mcqdzbo3w4caw&from=tugs&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX"
CHR DefaultSearchURL: Default -> hxxp://www.mystartsearch.com/web/?type=ds&ts=1437644650&z=fe34a1a42f297363a7b0962g0zac3m5qbz1zcq1g0e&from=cmi&uid=HGSTXHTS541075A9E680_JA12021G0RKZEK0RKZEKX&q={searchTerms}
CHR DefaultSearchKeyword: Default -> mystartsearch
CHR Extension: (Shop and Save Up) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\ablgnpngfaaficpckehadaljnjgjkhbi [2015-07-23]
CHR Extension: (Google Docs) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-24] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (Google Drive) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-20] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (Adblock Pro) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjdbnpinaifafahjegmcldajnjfgplnb [2015-03-12] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (YouTube) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-24]
CHR Extension: (Ecosia - Le moteur de recherche qui plante des arbres) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\clellnciejhoedgepbdilbkdkaoecgpc [2015-07-10] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (Recherche Google) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-02]
CHR Extension: (Kaspersky Protection) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-03-13] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (MindMup - Free Mind Map web site) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnenaecjcgeppfpaokiifokeieopppej [2015-02-23] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (GoHD) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\fijhlnmmmgflacagjecncpmpnhjieggk [2015-07-23]
CHR Extension: (Salesforce integration for Gmail) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmdomiplhgolgpibfdjjhgbcbkdcfkmk [2015-07-23] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (AdBlock) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-07-20] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-07-02] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (Google Wallet) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-02] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (Cinema_Plus-1.2V23.07) - C:\Users\GREENBIRDIE\AppData\Local\Google\Chrome\User Data\Default\Extensions\papbadoldddalgcjcicnikcfenodpghp [2015-07-23] [UpdateUrl: hxxps://mynamedomain.koko/00service/update2/crx] <==== ATTENTION
CHR Extension: (PriicELess) - C:\ProgramData\iphmemiodikbbiakdefilapgjbanonie\ []
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM\...\Chrome\Extension: [eoccbpoodnckjdnackiffhjfkogfhnhh] - C:\Program Files\VDownloader\Addons\Chrome.crx
CHR HKLM\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - hxxps://clients2.google.com/service/update2/crx
S2 buvuvydu; C:\Program Files (x86)\00000011-1437642725-0000-0000-E03F4936A747\knsn2E5C.tmp [449536 2015-07-23] () [Fichier non signé]
S2 c31ed948; c:\Program Files (x86)\Optimizer Pro 3.99\OptProMon.dll [2570896 2015-07-23] () <==== ATTENTION
S2 cae99edb; c:\Program Files (x86)\Super Optimizer\SupOptStats.dll [2914864 2015-07-23] ()
S2 comyninu; C:\Program Files (x86)\00000011-1437642725-0000-0000-E03F4936A747\hnsb8EAA.tmp [161792 2015-07-23] () [Fichier non signé]
S2 d0ce99eb-258e-401b-b95b-9e860f91a566; C:\Program Files\shopperz22072015\Jmahzov.exe [285560 2015-07-22] ()
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608 2015-07-23] (globalUpdate) [Fichier non signé] <==== ATTENTION
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608 2015-07-23] (globalUpdate) [Fichier non signé] <==== ATTENTION
S2 gopibeko; C:\Users\GREENBIRDIE\AppData\Local\00000011-1437649969-0000-0000-E03F4936A747\snsnD161.tmp [120832 2015-07-23] () [Fichier non signé]
S2 hyverumu; C:\Program Files (x86)\00000011-1437642725-0000-0000-E03F4936A747\jnsm7841.tmp [209920 2015-07-23] () [Fichier non signé]
R3 Rofdhowal; C:\Program Files\shopperz22072015\Rofdhowal.exe [2020352 2015-07-20] () [Fichier non signé]
S2 shopperz22072015 Updater; C:\Program Files\shopperz22072015\Jvpmajlij.exe [174968 2015-07-22] ()
S2 wbsvc; C:\Program Files\WebBar\wbsvc.exe [37144 2015-04-06] (Web Bar Media) [Fichier non signé]
2016-04-13 10:20 - 2016-04-13 17:24 - 00417792 _____ C:\WINDOWS\hbc.exe
2016-04-13 09:56 - 2016-04-13 17:20 - 00279942 _____ C:\WINDOWS\ntbtlog.txt
2016-04-12 14:21 - 2016-04-12 14:21 - 00002175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\speed browser.lnk
2016-04-12 14:21 - 2016-04-12 14:21 - 00002146 _____ C:\Users\Public\Desktop\speed browser.lnk
2016-04-12 14:20 - 2016-04-12 14:21 - 00000000 ____D C:\Program Files (x86)\speed browser
2016-04-12 14:20 - 2016-04-12 14:20 - 01497848 _____ C:\ProgramData\setup_17e84341aaf3473c9a4119daeacca4d1.exe
2016-04-12 14:20 - 2016-04-12 14:20 - 00000000 ____D C:\Program Files\SpaceSoundPro
2016-04-12 14:19 - 2016-04-12 14:19 - 00001120 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-04-12 13:35 - 2016-04-12 13:35 - 00000000 ____D C:\ProgramData\Browser
2016-04-12 13:34 - 2016-04-12 13:34 - 00022174 _____ C:\WINDOWS\System32\Tasks\DNSPEACHBURG
2016-04-12 13:34 - 2016-04-12 13:34 - 00003740 _____ C:\WINDOWS\System32\Tasks\DNS Monitoring
2016-04-12 13:33 - 2016-04-12 13:34 - 00000000 ____D C:\Program Files (x86)\DNS Unlocker
2016-04-12 13:33 - 2016-04-12 13:33 - 00022836 _____ C:\WINDOWS\System32\Tasks\{7F0D7A47-090B-7D0C-0C11-0D790F79110A}
2016-04-12 13:33 - 2016-04-12 13:33 - 00000000 ____D C:\ProgramData\ed8c2b81-51d5-1
2016-04-12 13:33 - 2016-04-12 13:33 - 00000000 ____D C:\ProgramData\ed8c2b81-39f7-0
2016-04-12 13:32 - 2016-04-11 22:43 - 00048728 _____ (StdLib) C:\WINDOWS\system32\Drivers\{b040334a-4a7e-47a1-a857-df02a0047bbe}Gw64.sys
2016-04-13 17:25 - 2015-07-23 11:26 - 00000000 ____D C:\Program Files (x86)\NewGen
2016-04-13 16:04 - 2015-03-12 11:13 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-04-13 16:04 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-13 15:55 - 2015-07-23 11:55 - 00003158 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-7.job
2016-04-13 15:55 - 2015-07-23 11:55 - 00003158 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6.job
2016-04-13 15:55 - 2015-07-23 11:54 - 00005538 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-7.job
2016-04-13 15:55 - 2015-07-23 11:54 - 00005538 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-6.job
2016-04-13 15:55 - 2015-07-23 11:54 - 00004514 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-4.job
2016-04-13 15:55 - 2015-07-23 11:54 - 00002132 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-10_user.job
2016-04-13 15:55 - 2015-07-23 11:53 - 00003470 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-1-7.job
2016-04-13 15:55 - 2015-07-23 11:53 - 00003134 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-1-6.job
2016-04-13 15:55 - 2015-07-23 11:52 - 00005514 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-7.job
2016-04-13 15:55 - 2015-07-23 11:52 - 00005180 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-11.job
2016-04-13 15:55 - 2015-07-23 11:42 - 00005896 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-6.job
2016-04-13 15:55 - 2015-07-23 11:42 - 00005552 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-7.job
2016-04-13 15:55 - 2015-07-23 11:42 - 00003508 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-7.job
2016-04-13 15:55 - 2015-07-23 11:42 - 00003172 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-6.job
2016-04-13 15:55 - 2015-07-23 11:41 - 00002146 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-10_user.job
2016-04-13 15:55 - 2015-07-23 11:28 - 00002144 _____ C:\WINDOWS\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-10_user.job
2016-04-13 15:55 - 2015-07-23 11:20 - 00003504 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-7.job
2016-04-13 15:55 - 2015-07-23 11:20 - 00002476 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.job
2016-04-13 15:55 - 2015-07-23 11:19 - 00005548 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-7.job
2016-04-13 15:55 - 2015-07-23 11:19 - 00005548 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6.job
2016-04-13 15:55 - 2015-07-23 11:19 - 00002142 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-10_user.job
2016-04-13 15:55 - 2015-07-23 11:19 - 00000994 _____ C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job
2016-04-13 12:27 - 2015-07-23 15:32 - 00000000 ____D C:\Program Files (x86)\FastSearch
2016-04-13 10:20 - 2014-11-21 01:19 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DNSAPI.dll
2016-04-13 10:20 - 2014-11-21 01:18 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DNSAPI.dll
2016-04-13 09:52 - 2015-07-23 11:55 - 00002466 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-5.job
2016-04-13 09:52 - 2015-07-23 11:53 - 00002442 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-5.job
2016-04-13 09:52 - 2015-07-23 11:52 - 00005514 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-6.job
2016-04-13 09:52 - 2015-07-23 11:52 - 00002108 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-10_user.job
2016-04-13 09:52 - 2015-07-23 11:42 - 00001066 _____ C:\WINDOWS\Tasks\3gzWM8uilJDGkDtZQlX0Fwz1Wf.job
2016-04-13 09:52 - 2015-07-23 11:42 - 00001038 _____ C:\WINDOWS\Tasks\N3t9gpoylOE1.job
2016-04-13 09:52 - 2015-07-23 11:29 - 00001064 _____ C:\WINDOWS\Tasks\oo0uajIoW9iWd1fC8b0qTcgVm.job
2016-04-13 09:52 - 2015-07-23 11:29 - 00001044 _____ C:\WINDOWS\Tasks\BXW8HEPsp4LzpbX.job
2016-04-13 09:52 - 2015-07-23 11:20 - 00003168 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-6.job
2016-04-13 09:52 - 2015-07-23 11:20 - 00001058 _____ C:\WINDOWS\Tasks\ArQC7CfyPp734muDhoRaN1.job
2016-04-13 09:52 - 2015-07-23 11:20 - 00001048 _____ C:\WINDOWS\Tasks\qiBYxizj3HRne4Lsz.job
2016-04-13 09:51 - 2015-07-23 11:55 - 00002466 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-5_user.job
2016-04-13 09:51 - 2015-07-23 11:54 - 00005204 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-11.job
2016-04-13 09:51 - 2015-07-23 11:54 - 00004178 _____ C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-3.job
2016-04-13 09:51 - 2015-07-23 11:53 - 00004490 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-4.job
2016-04-13 09:51 - 2015-07-23 11:53 - 00002442 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-5_user.job
2016-04-13 09:51 - 2015-07-23 11:52 - 00004490 _____ C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-3.job
2016-04-13 09:51 - 2015-07-23 11:42 - 00004528 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-4.job
2016-04-13 09:51 - 2015-07-23 11:42 - 00002480 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5_user.job
2016-04-13 09:51 - 2015-07-23 11:42 - 00002480 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5.job
2016-04-13 09:51 - 2015-07-23 11:41 - 00005218 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-11.job
2016-04-13 09:51 - 2015-07-23 11:41 - 00004528 _____ C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-3.job
2016-04-13 09:51 - 2015-07-23 11:29 - 00002478 _____ C:\WINDOWS\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5_user.job
2016-04-13 09:51 - 2015-07-23 11:29 - 00002478 _____ C:\WINDOWS\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5.job
2016-04-13 09:51 - 2015-07-23 11:21 - 00001086 _____ C:\WINDOWS\Tasks\Crossbrowse.job
2016-04-13 09:51 - 2015-07-23 11:20 - 00002476 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5_user.job
2016-04-13 09:51 - 2015-07-23 11:19 - 00005214 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-11.job
2016-04-13 09:51 - 2015-07-23 11:19 - 00004524 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-4.job
2016-04-13 09:51 - 2015-07-23 11:19 - 00004188 _____ C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-3.job
2016-04-13 09:51 - 2015-07-23 11:19 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2016-04-13 09:49 - 2015-07-23 11:23 - 00003272 _____ C:\WINDOWS\System32\Tasks\Super Optimizer Schedule
2016-04-12 14:49 - 2015-02-26 13:58 - 00000000 ____D C:\Users\GREENBIRDIE
2016-04-12 14:39 - 2015-07-23 11:51 - 00003090 _____ C:\WINDOWS\System32\Tasks\RegClean Pro
2016-04-12 14:38 - 2015-07-23 11:52 - 00003074 _____ C:\WINDOWS\System32\Tasks\Advanced System~Protector_startup
2016-04-12 14:38 - 2015-07-22 10:25 - 00003116 _____ C:\WINDOWS\System32\Tasks\WinZip Malware Protector_startup
2016-04-12 14:21 - 2014-08-13 17:36 - 00001120 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2981138811-3486527071-2456265958-1001UA.job
2016-04-12 14:21 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-04-12 13:35 - 2015-07-23 11:17 - 00003466 _____ C:\WINDOWS\System32\Tasks\Jieinroouam
2016-04-12 13:35 - 2015-07-23 11:17 - 00000000 ____D C:\ProgramData\Jieinroouam
2016-04-12 13:34 - 2015-07-23 11:11 - 00000000 ___HD C:\ProgramData\hbc
2016-04-12 13:33 - 2014-03-12 19:26 - 00003960 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{87DB5E2B-FC16-48E4-87EB-0973CCA51A06}
2016-04-12 13:31 - 2015-07-23 11:46 - 00004664 _____ C:\WINDOWS\SysWOW64\Rofdhowal.ini
2016-04-12 13:31 - 2015-07-23 11:46 - 00002384 _____ C:\WINDOWS\SysWOW64\RofdhowalOff.ini
2016-04-12 13:31 - 2015-07-23 11:46 - 00002384 _____ C:\WINDOWS\system32\RofdhowalOff.ini
2016-04-12 13:31 - 2014-02-14 08:03 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2981138811-3486527071-2456265958-1001
2016-04-12 13:30 - 2015-10-21 18:53 - 00000000 ____D C:\Users\GREENBIRDIE\AppData\Local\ElevatedDiagnostics
2016-04-12 13:29 - 2015-07-23 11:24 - 00000000 ____D C:\Users\GREENBIRDIE\AppData\Local\gmsd_fr_005010038
2016-04-12 12:20 - 2015-03-19 17:13 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-04-12 12:12 - 2014-08-13 17:36 - 00001068 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2981138811-3486527071-2456265958-1001Core.job
2016-04-12 11:59 - 2015-07-23 11:19 - 00000998 _____ C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job
2016-04-12 11:48 - 2015-07-01 12:10 - 00003474 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-04-12 11:48 - 2015-07-01 12:10 - 00003464 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
HKLM\...\Run: [Windesk Winsearch] => C:\Program Files (x86)\WindeskWinsearch\Windesk Winsearch.exe [1061256 2015-04-08] (Windesk Winsearch)
Advanced-System Protector (HKLM-x32\...\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~9338DF9D_is1) (Version: 2.2.1000.15792 - Advanced System Protector) <==== ATTENTION
Advanced-System Protector (HKLM-x32\...\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~9338DF9D_is1) (Version: 2.2.1000.15792 - Advanced System Protector) <==== ATTENTION
Akamai NetSession Interface (HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
AnyProtect (HKLM-x32\...\AnyProtect) (Version: 1.0.0.4 - CMI Limited) <==== ATTENTION
AnySend (HKLM-x32\...\ASPackage) (Version: - CMI Limited) <==== ATTENTION
Cinema_Plus-1.2V23.07 (HKLM-x32\...\Cinema_Plus-1.2V23.07) (Version: 1.36.01.22 - Cinema_Plus-1.2V23.07) <==== ATTENTION
Cinemax Plus 1.9cV23.07 (HKLM-x32\...\Cinemax Plus 1.9cV23.07) (Version: 1.36.01.22 - Cinema PlusV23.07) <==== ATTENTION
Com NotificationV22.07 (HKLM-x32\...\Com NotificationV22.07) (Version: 1.36.01.22 - Com NotificationV22.07) <==== ATTENTION
Crossbrowse (HKLM-x32\...\Crossbrowse) (Version: 39.6.2171.95 - The Crossbrowse Authors) <==== ATTENTION
DNS Unlocker (HKLM-x32\...\DNSUnlocker.ns) (Version: - ) <==== ATTENTION
Forum Terminal (HKLM-x32\...\SoftwareUpdater) (Version: 1.0.0.0 - Forum Terminal) <==== ATTENTION
Friendly Error (HKLM-x32\...\FriendlyError) (Version: - ) <==== ATTENTION
globalupdate Helper (x32 Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== ATTENTION
GoHD (HKLM-x32\...\GoHD) (Version: 1.36.01.22 - InstallMoon) <==== ATTENTION
GUPlayer (remove only) (HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\GUPlayer) (Version: - ) <==== ATTENTION
MixVideoPlayer (HKLM-x32\...\MixVideoPlayer) (Version: v1.0.0.23 - SoftForce LLC) <==== ATTENTION
MovieDea 1.0 (HKLM-x32\...\MovieDea) (Version: 1.0 - MovieDea) <==== ATTENTION
MyPC Backup (HKLM\...\OLBPre) (Version: - MyPC Backup) <==== ATTENTION
Optimizer Pro v3.2 (HKLM-x32\...\Optimizer Pro_is1) (Version: 3.3.1.7 - PCUtilities Software Limited) <==== ATTENTION
Picasa Packages (HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\Picasa Packages) (Version: - ) <==== ATTENTION
PriicELess (HKLM-x32\...\{75F9BF4A-AF67-A478-A37B-31D73186D3F3}) (Version: - ) <==== ATTENTION
Pro PC Cleaner (HKLM-x32\...\Pro PC Cleaner) (Version: 2.9.6 - Pro PC Cleaner) <==== ATTENTION
Product Deals (HKLM\...\Product Deals) (Version: 2015.07.23.072923 - Product Deals) <==== ATTENTION
RapidMediaConverter (HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\RapidMediaConverter) (Version: 1.0.1.16 - RapidMediaConverter) <==== ATTENTION
RegClean-Pro (HKLM-x32\...\RegClean-Pro_is1) (Version: 6.21 - systweak.com) <==== ATTENTION
Remote Desktop Access (VuuPC) (HKLM-x32\...\VOPackage) (Version: 1.0.0.0 - CMI Limited) <==== ATTENTION
RinoReader (HKLM-x32\...\RinoReader) (Version: 0.1 - RinoReader) <==== ATTENTION
Salesforce integration for Gmail (HKLM-x32\...\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}) (Version: - ) <==== ATTENTION
Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version: - ) <==== ATTENTION
shopperz22072015 2.0.0.471 (HKLM\...\{318d2d55-9ce3-446e-8640-a43be68a550f}_is1) (Version: 2.0.0.471 - shopperz) <==== ATTENTION
SmartWeb (HKLM-x32\...\SmartWeb) (Version: 8.0.9 - SoftBrain Technologies Ltd.) <==== ATTENTION
speed browser (HKLM-x32\...\speed browser) (Version: 48.0.2564.103 - Fast Applications) <==== ATTENTION
Super Optimizer v3.2 (HKLM-x32\...\Super Optimizer_is1) (Version: 3.2.0.1 - Super PC Tools ltd) <==== ATTENTION
Web Bar 2.0.5574.22315 (HKLM\...\{0BCE8B0A-1E76-44E5-9909-3CF804D92E4D}_is1) (Version: 2.0.5574.22315 - Web Bar Media) <==== ATTENTION
WordAnchor 1.10.0.20 (HKLM-x32\...\WordAnchor_1.10.0.20) (Version: 1.10.0.20 - WordAnchor) <==== ATTENTION
Zombie Invasion (HKLM-x32\...\ZombieInvasion) (Version: 2.7.69 - Time Lapse Solutions) <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-2981138811-3486527071-2456265958-1001_Classes\CLSID\{B77E471C-FBF3-4CB5-880F-D7528AD4B349}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - English\acad.exe /Automation => Pas de fichier
Task: {030CA3A0-9813-4188-B610-3B1D625EB3DD} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-7 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-7.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {04120CA4-A80C-4944-85A2-CA2DBB9A5C2B} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2015-07-23] (AnyProtect.com) <==== ATTENTION
Task: {0C508CDA-3B81-44B3-AD11-132CD298C784} - System32\Tasks\ArQC7CfyPp734muDhoRaN1 => C:\Users\GREENBIRDIE\AppData\Roaming\ArQC7CfyPp734muDhoRaN1.exe [2015-04-20] () <==== ATTENTION
Task: {0DE8CA1F-740B-48A3-941B-88AB60BC28CA} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
Task: {14D25967-62EF-4D6E-8C5F-F624F1D12A66} - System32\Tasks\DNS Monitoring => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~2\DNSUNL~1\DNSMON~1.DLL" <==== ATTENTION
Task: {19395F71-1B8C-4E56-872B-4A310E83FC1D} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5_user => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {1BDE3CD1-121B-454A-9CF8-223C55DD1C75} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-11 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-11.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {1F153F23-2F52-4449-B172-547C7DC72F07} - System32\Tasks\MixVideoPlayer Update => C:\Program Files (x86)\MixVideoPlayer\mixUpdater.exe [2015-07-08] () <==== ATTENTION
Task: {1FA7B1B4-C38C-4E4C-A30C-8AE447454141} - System32\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-10_user => C:\Program Files (x86)\Com NotificationV22.07\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-10.exe [2015-07-23] (Com NotificationV22.07) <==== ATTENTION
Task: {2D6C74B3-5F18-4513-B8C1-63C9080BE7F0} - System32\Tasks\Crossbrowse => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe [2015-07-23] () <==== ATTENTION
Task: {3687417D-7CE7-4951-ADC9-D9376B7459EA} - System32\Tasks\LaunchPreSignup => C:\Program Files (x86)\OLBPre\OLBPre.exe [2015-07-23] () <==== ATTENTION
Task: {36A83340-6C53-470D-B8A0-54CE2F991FA6} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-3 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-3.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {36C116A6-90FF-4319-A911-9A2D390F363D} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-5_user => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-5.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {378BA1E9-D7B1-44C5-BDBD-EA459A703903} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-10_user => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-10.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {3F09EAE2-F7FA-4470-84B2-F645A303F3C0} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-1-6 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-1-6.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {3F65318E-9312-4390-8C84-8043F0F1794A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {4322284B-C5FC-4CCE-81CC-D02FEBA90473} - System32\Tasks\RegClean Pro_DEFAULT => C:\Program Files (x86)\RCP\RegCleanPro.exe [2015-07-02] () <==== ATTENTION
Task: {4337E7F3-6F36-405B-9217-37AB273B07CC} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2015-07-23] (AnyProtect.com) <==== ATTENTION
Task: {45139744-3FA3-4D7C-8742-09557DF1A203} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-4 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-4.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {49AF55C8-65BA-4F22-89F2-8D4D01CEF1EB} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-11 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-11.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {4F241C01-1158-46D6-90BC-08A4FCF76FCD} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-7 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-7.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {5379246B-F647-400D-A9C3-6D70F648132D} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {53F16BBC-A017-4E23-835B-1876E090B562} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-5 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-5.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {5A54A016-7669-46C6-90FE-F004E218A2D3} - System32\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5_user => C:\Program Files (x86)\Com NotificationV22.07\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5.exe [2015-07-23] (Com NotificationV22.07) <==== ATTENTION
Task: {5B59A449-DCAB-4903-BCE4-E73BEA327D93} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-7 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-7.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {5FAFF5CC-BC07-4A40-AC02-D02EF0D31253} - System32\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5 => C:\Program Files (x86)\Com NotificationV22.07\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5.exe [2015-07-23] (Com NotificationV22.07) <==== ATTENTION
Task: {62D406F4-7EA1-4641-A054-42E52208205A} - System32\Tasks\RegClean Pro => C:\Program Files (x86)\RCP\RegCleanPro.exe [2015-07-02] () <==== ATTENTION
Task: {6362E07D-FE0C-4CA7-A72B-4F9BCC4EDDC0} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-3 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-3.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {66090BCD-3807-40F1-837C-331C802F4E17} - System32\Tasks\ProPCCleaner_Start => C:\Program Files (x86)\Pro PC Cleaner\ProPCCleaner.exe [2015-07-03] (Pro PC Cleaner) <==== ATTENTION
Task: {66A9B1FB-2750-4F1A-BA14-82CF17274CE0} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-4 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-4.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {6C4D98F0-8003-4926-B30F-AB1234B9AE59} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-6 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-6.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {6FCD4D9A-F673-4842-B150-891768A6A447} - System32\Tasks\Optimizer Pro Schedule => C:\Program Files (x86)\Optimizer Pro 3.99\OptProLauncher.exe [2015-07-03] () <==== ATTENTION
Task: {7301F9E0-40DB-4F90-93EB-8848CF44B019} - System32\Tasks\WinZip Malware Protector_startup => C:\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe [2015-05-20] (Nico Mak Computing)
Task: {732F2BB6-0C6F-4D0D-998D-4C302E04EF9E} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {7A7CFF50-73C3-4E14-AA8F-731C3CF1B24B} - System32\Tasks\Superclean => c:\programdata\{b48d95df-0402-062f-b48d-d95df040577c}\hqghumeaylnlf.exe [2014-07-23] (Super PC Tools Ltd) <==== ATTENTION
Task: {7AAB506F-8795-47B7-AA26-54B1D5689792} - System32\Tasks\WebBarLaunchTask => C:\Program Files\WebBar\wbsvc.exe [2015-04-06] (Web Bar Media) <==== ATTENTION
Task: {7AB9E485-59A2-4CF3-91A4-44F3B4617DAC} - System32\Tasks\oo0uajIoW9iWd1fC8b0qTcgVm => C:\Users\GREENBIRDIE\AppData\Roaming\oo0uajIoW9iWd1fC8b0qTcgVm.exe [2015-04-20] () <==== ATTENTION
Task: {7DCE7E63-0EC8-4936-A09A-4BE9C2ECE958} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-5 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-5.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {81680882-98D4-41F1-85A4-699B82AB21E8} - System32\Tasks\3gzWM8uilJDGkDtZQlX0Fwz1Wf => C:\Users\GREENBIRDIE\AppData\Roaming\3gzWM8uilJDGkDtZQlX0Fwz1Wf.exe [2015-04-20] () <==== ATTENTION
Task: {822498B3-D7CD-4ED9-9BEC-427BACBFB855} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-3 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-3.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {8537F7B6-DFE5-49C2-8886-35320E93AE35} - System32\Tasks\{7F0D7A47-090B-7D0C-0C11-0D790F79110A} => powershell.exe -nologo -executionpolicy bypass -noninteractive -windowstyle hidden -EncodedCommand OwAkAEUAcgByAG8AcgBBAGMAdABpAG8AbgBQAHIAZQBmAGUAcgBlAG4AYwBlAD0AIgBzAHQAbwBwACIAOwAkAHMAYwA9ACIAUwBpAGwAZQBuAHQAbAB5AEMAbwBuAHQAaQBuAHUAZQAiADsAJABXAGEAcgBuAGkAbgBnAFAAcgBlAGYAZQByAGUAbgBjAGUAPQAkAHMAYwA7ACQAUAByAG8A (l'élément de données a 9252 caractères en plus).
Task: {8A64D4BA-7320-4081-9A60-BE861D03A122} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2015-07-23] (AnyProtect.com) <==== ATTENTION
Task: {8B4E3C76-2776-4046-95E2-4ADA91F973E7} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-10_user => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-10.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {8FEA89A9-9EA0-47EA-B6DE-D48FFCD482D3} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-3 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-3.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {9047DAB8-006C-4C40-A7C2-0172BB35FB75} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [2015-07-23] (globalUpdate) <==== ATTENTION
Task: {94C4661B-1FE8-45ED-B0F0-F41D1E833491} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-4 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-4.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {96FCB866-B6CF-430E-BEF3-9FD29B74F4FF} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-5_user => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-5.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {9A16D3FD-14FF-4980-8BC4-0578BF83F16A} - System32\Tasks\Papuir => C:\Program Files\shopperz22072015\Asyofakaz.bat [2015-07-22] () <==== ATTENTION
Task: {9BAC73E2-83D5-4A0F-A282-10C946FCC761} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-10_user => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-10.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {9E80FE96-7633-4460-BB34-58BA1A5CE75C} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-4 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-4.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {A8378E8C-66EC-46CC-BA78-B8823F5387C7} - System32\Tasks\WebBarUpdateTask => C:\Program Files\WebBar\wbsvc.exe [2015-04-06] (Web Bar Media) <==== ATTENTION
Task: {A9653C15-93ED-4E59-B0B8-023A69A2AF93} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2981138811-3486527071-2456265958-1001Core => C:\Users\GREENBIRDIE\AppData\Local\Google\Update\GoogleUpdate.exe [2014-08-13] (Google Inc.)
Task: {ABA5A57F-7411-4BDA-9628-B8E80CBA6394} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-11 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-11.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {AE169B88-AF10-432A-846C-A2D5446B96D2} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-7 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-7.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {B2128A43-9941-4CA4-8304-114F51C4CCFC} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-6 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-6.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {B3FB2372-3313-4D86-8912-12CB56F5B68B} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2013-11-08] (AsusTek)
Task: {B499C09E-9812-41F8-8EFF-334D9D81E827} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-7 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-7.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {B69CFE21-F8B7-45FF-92CF-92828C4522CC} - System32\Tasks\Yahoo! Search Updater => Wscript.exe //B "C:\Users\GREENBIRDIE\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.26.12\..\updt.js" <==== ATTENTION
Task: {BC5B6A4D-4A56-4297-84DD-16043720550D} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-7 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-7.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {BC779C6B-3D45-4B1F-9D3A-D84DEB1913DE} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {C4AFB055-2053-4E4F-8447-8739D87920C2} - System32\Tasks\N3t9gpoylOE1 => C:\Users\GREENBIRDIE\AppData\Roaming\N3t9gpoylOE1.exe [2015-04-20] () <==== ATTENTION
Task: {C53638AA-C46D-4318-BF10-0543DD7521B6} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-6 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-6.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {C5C413A2-6A83-406E-AADF-B458F635AE34} - System32\Tasks\DNSPEACHBURG => dnspeachburg.exe <==== ATTENTION
Task: {C69B5268-DAB1-444E-A69A-4AE4BA8DD9FF} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-1-7 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-1-7.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {C94F6DCF-F8A6-46C7-85EC-F7E434165EA9} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-6 => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-6.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {CC417564-D462-49D0-8F49-21D7DC6B5EA7} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [2015-07-23] (globalUpdate) <==== ATTENTION
Task: {CC46B04B-C696-4FCA-B0AF-9B380EA8F99A} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-6 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-6.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {D19D80C5-7BD7-46DF-89BC-4DA4365D2954} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {D498F37E-B6F5-4EB9-9940-AFCEB0A069D8} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {D5A5046F-8A48-4A03-BB49-6C5B77216EA0} - System32\Tasks\qiBYxizj3HRne4Lsz => C:\Users\GREENBIRDIE\AppData\Roaming\qiBYxizj3HRne4Lsz.exe [2015-04-20] () <==== ATTENTION
Task: {DBC3C388-5581-4094-A1C7-0B8545CD2F50} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {D19D80C5-7BD7-46DF-89BC-4DA4365D2954} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {D498F37E-B6F5-4EB9-9940-AFCEB0A069D8} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {D5A5046F-8A48-4A03-BB49-6C5B77216EA0} - System32\Tasks\qiBYxizj3HRne4Lsz => C:\Users\GREENBIRDIE\AppData\Roaming\qiBYxizj3HRne4Lsz.exe [2015-04-20] () <==== ATTENTION
Task: {DBC3C388-5581-4094-A1C7-0B8545CD2F50} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6 => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {E3799475-D9D8-4BCE-A026-8417E9B7E548} - System32\Tasks\sab3009 => C:\Program Files (x86)\FastSearch\sab3009.exe [2015-07-14] () <==== ATTENTION
Task: {E6E0BCAE-5408-4A19-BD68-A738512895A1} - System32\Tasks\RegClean Pro_UPDATES => C:\Program Files (x86)\RCP\RegCleanPro.exe [2015-07-02] () <==== ATTENTION
Task: {EB8A1A68-F228-4B72-B1CB-38C3D16609A3} - System32\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5_user => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5.exe [2015-07-23] (Cinema PlusV23.07) <==== ATTENTION
Task: {EBBA023A-3B72-43AD-9A1C-9035ED78193D} - System32\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-10_user => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-10.exe [2015-07-23] (Cinema_Plus-1.2V23.07) <==== ATTENTION
Task: {F1D87530-12C2-4DE1-9A21-F61417C92094} - System32\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-11 => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-11.exe [2015-07-23] (InstallMoon) <==== ATTENTION
Task: {F60F0026-7110-4BF6-9197-69562149D40A} - System32\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-7 => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-7.exe [2015-07-23] (InstallMonetizer) <==== ATTENTION
Task: {F76B7B41-0B65-4287-91E5-2DE916A47D1D} - System32\Tasks\Advanced System~Protector_startup => C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe [2015-06-30] () <==== ATTENTION
Task: {F9072C13-67A4-4646-9CAC-D4622A2AFE16} - System32\Tasks\LieSensor => c:\programdata\{1ffa3267-2457-d645-1ffa-a3267245c99c}\nsq874c.tmp.exe [2014-07-23] () <==== ATTENTION
Task: C:\WINDOWS\Tasks\3gzWM8uilJDGkDtZQlX0Fwz1Wf.job => C:\Users\GREENBIRDIE\AppData\Roaming\3gzWM8uilJDGkDtZQlX0Fwz1Wf.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-6.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-7.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-1-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-10_user.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-11.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-11.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-3.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-3.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-4.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5_user.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\4b5664cb-0fad-4725-8278-6afecf9d7e2f-7.job => C:\Program Files (x86)\Cinema_Plus-1.2V23.07\4b5664cb-0fad-4725-8278-6afecf9d7e2f-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-7.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-1-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-10_user.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-11.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-11.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-3.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-3.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-4.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-5.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-5_user.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-6.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\510a1805-9de7-4ca8-b7f5-72190db2b94d-7.job => C:\Program Files (x86)\Shop and Save Up\510a1805-9de7-4ca8-b7f5-72190db2b94d-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-6.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-7.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-1-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-10_user.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-11.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-11.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-3.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-3.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-4.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5_user.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-6.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\5a2c5472-a880-4621-b9ce-3f6a93eb163a-7.job => C:\Program Files (x86)\Cinemax Plus 1.9cV23.07\5a2c5472-a880-4621-b9ce-3f6a93eb163a-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-1-6.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-1-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-1-7.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-1-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-10_user.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-11.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-11.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-3.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-3.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-4.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-5.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-5_user.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-6.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-6.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\7d093e16-3b57-443f-a2da-368e364f4c40-7.job => C:\Program Files (x86)\GoHD\7d093e16-3b57-443f-a2da-368e364f4c40-7.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\ArQC7CfyPp734muDhoRaN1.job => C:\Users\GREENBIRDIE\AppData\Roaming\ArQC7CfyPp734muDhoRaN1.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\BXW8HEPsp4LzpbX.job => C:\Users\GREENBIRDIE\AppData\Roaming\BXW8HEPsp4LzpbX.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Crossbrowse.job => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-10_user.job => C:\Program Files (x86)\Com NotificationV22.07\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-10.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5.job => C:\Program Files (x86)\Com NotificationV22.07\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5_user.job => C:\Program Files (x86)\Com NotificationV22.07\ee1cc4a9-6b1d-4571-90c0-adddbb659ce8-5.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2981138811-3486527071-2456265958-1001Core.job => C:\Users\GREENBIRDIE\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2981138811-3486527071-2456265958-1001UA.job => C:\Users\GREENBIRDIE\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\LieSensor.job => c:\programdata\{1ffa3267-2457-d645-1ffa-a3267245c99c}\nsq874c.tmp.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\N3t9gpoylOE1.job => C:\Users\GREENBIRDIE\AppData\Roaming\N3t9gpoylOE1.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\oo0uajIoW9iWd1fC8b0qTcgVm.job => C:\Users\GREENBIRDIE\AppData\Roaming\oo0uajIoW9iWd1fC8b0qTcgVm.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\qiBYxizj3HRne4Lsz.job => C:\Users\GREENBIRDIE\AppData\Roaming\qiBYxizj3HRne4Lsz.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\RegClean Pro_DEFAULT.job => C:\Program Files (x86)\RCP\RegCleanPro.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\RegClean Pro_UPDATES.job => C:\Program Files (x86)\RCP\RegCleanPro.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Superclean.job => c:\programdata\{b48d95df-0402-062f-b48d-d95df040577c}\hqghumeaylnlf.exe <==== ATTENTION
HKLM\...\StartupApproved\StartupFolder: => "WebBrowserMixVideoPlayer.lnk"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "shopperz2207201564"
HKLM\...\StartupApproved\Run: => "Windesk Winsearch"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "MovieDea"
HKLM\...\StartupApproved\Run32: => "SmartWeb"
HKLM\...\StartupApproved\Run32: => "gmsd_fr_005010038"
HKLM\...\StartupApproved\Run32: => "shopperz22072015"
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\StartupApproved\StartupFolder: => "crossbrowse.lnk"
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\StartupApproved\StartupFolder: => "SmartWeb.lnk"
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\StartupApproved\Run: => "Akamai NetSession Interface"
HKU\S-1-5-21-2981138811-3486527071-2456265958-1001\...\StartupApproved\Run: => "Google Update"
EmptyTemp
Reboot
end