Format du document : text/plain
Prévisualisation
~ ZHPDiag v2016.10.12.186 Par Nicolas Coolman (2016/10/12)
~ Démarré par youssef (Administrator) (2016/10/12 23:10:50)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version:
~ Mode: Scanner
~ Rapport: C:\Documents and Settings\youssef.YOUSSEF-F856F36\Bureau\ZHPDiag.txt
~ Rapport: C:\Documents and Settings\youssef.YOUSSEF-F856F36\Application Data\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows XP, 32-bit Service Pack 3 (Build 2600) =>.Microsoft Corporation
---\\ Navigateurs Internet (4) - 0s
~ GCIE: Google Chrome v49.0.2623.112
~ MFIE: Mozilla Firefox 40.0 (x86 fr)
~ OPIE: Opera 36.0.2130.80
~ MSIE: Internet Explorer v6.0.2900.5512
---\\ Informations sur les produits Windows (3) - 0s
Windows Automatic Updates : OK
Windows Activation Technologies : KO
Windows Genuine Advantage : OK
---\\ Logiciels de protection (1) - 2s
ESET Smart Security v9.0.386.1 => Software.Protection
---\\ Logiciels d'optimisation (1) - 3s
CCleaner v3.26 =>.Software.Optimization
---\\ Surveillance de Logiciels (1) - 3s
Adobe Flash Player 23 NPAPI =>.Software.Surveillance
---\\ Logiciels de partage P2P (1) - 3s
µTorrent v3.4.9.42606 =>.Software.P2P
---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 15 Stepping 2, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3136.752 MB (55% free)
System Restore: Désactivé (Disabled)
System drive C: has 2 GB () free of 29 GB =>Alerte espace disque inférieur à 20 Go
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: YOUSSEF-F856F36
~ User Name: youssef
~ Logged in as Administrator
---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 2 GB free of 29 GB (System)
~ Drive D: has 18 GB free of 35 GB
---\\ Etat du Centre de Sécurité Windows (9) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (23) - 1s
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - 14/04/2008 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [1037824] =>.Microsoft Corporation
[MD5.93AD0B78C7357A05F50E594EC7C22300] - 14/04/2008 - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS\System32\rundll32.exe [33792] =>.Microsoft Corporation
[MD5.ACDDE3874BF2BEDB91B334307C68CA53] - 12/10/2013 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [672768] =>.Microsoft Corporation
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - 14/04/2008 - (.Microsoft Corporation - Application d'ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [512000] =>.Microsoft Corporation
[MD5.D76A076ADB74F8132924E498D63123A2] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [149504] =>.Microsoft Corporation
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - 17/08/2011 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [138496] =>.Microsoft Corporation
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - 13/04/2008 - (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [96512] =>.Microsoft Corporation
[MD5.C885B02847F5D2FD45A24E219ED93B32] - 14/04/2008 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744] =>.Microsoft Corporation
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - 14/04/2008 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976] =>.Microsoft Corporation
[MD5.31F923EB2170FC172C81ABDA0045D18C] - 14/04/2008 - (.Microsoft Corporation - Pilote de cryptographie FIPS.) -- C:\WINDOWS\System32\drivers\Fips.sys [44672] =>.Microsoft Corporation
[MD5.573C7D0A32852B48F3058CFD8026F511] - 14/04/2008 - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - 14/04/2008 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [54144] =>.Microsoft Corporation
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - 14/04/2008 - (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS\System32\drivers\Imapi.sys [42112] =>.Microsoft Corporation
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - 14/04/2008 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [152832] =>.Microsoft Corporation
[MD5.23C74D75E36E7158768DD63D92789A91] - 14/04/2008 - (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS\System32\drivers\IPSec.sys [75264] =>.Microsoft Corporation
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - 15/07/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [456320] =>.Microsoft Corporation
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - 14/04/2008 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [162816] =>.Microsoft Corporation
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - 14/04/2008 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [574976] =>.Microsoft Corporation
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - 14/04/2008 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [80384] =>.Microsoft Corporation
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - 14/04/2008 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328] =>.Microsoft Corporation
[MD5.15CABD0F7C00C47C70124907916AF3F1] - 13/04/2008 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224] =>.Microsoft Corporation
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - 13/04/2008 - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) -- C:\WINDOWS\System32\drivers\redbook.sys [58752] =>.Microsoft Corporation
[MD5.46DE1126684369BACE4849E4FC8C43CA] - 14/04/2008 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [53376] =>.Microsoft Corporation
---\\ Liste des services NT non Microsoft et non désactivés (7) - 0s
O23 - Service: Intel(R) AMT System Status Service (atchksrv) . (.Intel Corporation - Displays state of Intel® Active Management.) - C:\Program Files\Intel\AMT\atchksrv.exe =>.Intel Corporation®
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Smart Security\ekrn.exe =>.ESET, spol. s r.o.®
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: File-/Update Service (ksupmgr) . (.Salfeld Computer - Salfeld Security Service.) - C:\WINDOWS\system32\ksupmgr.exe {3CF5D7FB7A37ED86E51463FCB92A3ED5}
O23 - Service: Intel(R) Active Management Technology LMS Service (LMS) . (.Intel - Local Manageability Service.) - C:\Program Files\Intel\AMT\LMS.exe =>.Intel
O23 - Service: Ma-Config Agent (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe =>.Cybelsoft®
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe =>.DEVGURU CO LTD®
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (11) - 13s
SS - Demand [12/10/2016] [ 270016] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [12/12/2006] [ 179016] Intel(R) AMT System Status Service (atchksrv) . (.Intel Corporation.) - C:\Program Files\Intel\AMT\atchksrv.exe =>.Intel Corporation®
SR - Auto [12/10/2016] [ 2171280] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\ekrn.exe =>.ESET, spol. s r.o.®
SS - Auto [21/10/2015] [ 107848] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [21/10/2015] [ 107848] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Auto [14/04/2008] [ 1190224] File-/Update Service (ksupmgr) . (.Salfeld Computer.) - C:\WINDOWS\system32\ksupmgr.exe {3CF5D7FB7A37ED86E51463FCB92A3ED5}
SR - Auto [12/12/2006] [ 98304] Intel(R) Active Management Technology LMS Service (LMS) . (.Intel.) - C:\Program Files\Intel\AMT\LMS.exe =>.Intel
SR - Auto [24/06/2014] [ 2117448] Ma-Config Agent (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe =>.Cybelsoft®
SS - Demand [07/08/2015] [ 149160] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [16/06/2014] [ 741640] SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD..) - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe =>.DEVGURU CO LTD®
---\\ Tâches planifiées en automatique (14) - 4s
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [1002] =>.Superfluous.Orphan
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\b293f196-7f04-4f95-9b88-e865ef27a0d4-1-6.job [3124] =>PUP.Optional.CrossRider
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\b293f196-7f04-4f95-9b88-e865ef27a0d4-1-7.job [3124] =>PUP.Optional.CrossRider
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\b293f196-7f04-4f95-9b88-e865ef27a0d4-10_user.job [2098] =>PUP.Optional.CrossRider
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\b293f196-7f04-4f95-9b88-e865ef27a0d4-3.job [4144] =>PUP.Optional.CrossRider
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\b293f196-7f04-4f95-9b88-e865ef27a0d4-4.job [4144] =>PUP.Optional.CrossRider
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\b293f196-7f04-4f95-9b88-e865ef27a0d4-5.job [2432] =>PUP.Optional.CrossRider
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\b293f196-7f04-4f95-9b88-e865ef27a0d4-6.job [5504] =>PUP.Optional.CrossRider
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\b293f196-7f04-4f95-9b88-e865ef27a0d4-7.job [5168] =>PUP.Optional.CrossRider
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1052] =>.Superfluous.Orphan
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1056] =>.Superfluous.Orphan
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP - à la connexion.job [226] =>.Superfluous.Orphan
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job [220] =>.Superfluous.Orphan
O39 - APT: Orphan - (...) -- C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1445544853.job [450] =>.Superfluous.Orphan
---\\ Processus lancés (23) - 1s
[MD5.DE4A40C474100B5A03242D3DE52209E9] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2171280] [PID.976] =>.ESET, spol. s r.o.®
[MD5.389B425FB268D4309D2A0C0B5573FF25] - (.Intel Corporation - Displays state of Intel® Active Management.) -- C:\Program Files\Intel\AMT\atchksrv.exe [179016] [PID.1856] =>.Intel Corporation®
[MD5.4E7997432EA324502622D05BBC527F4F] - (.Intel - Local Manageability Service.) -- C:\Program Files\Intel\AMT\LMS.exe [98304] [PID.172] =>.Intel
[MD5.1A043617FFD1CA1675330EE1122C8FE5] - (.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe [2117448] [PID.196] =>.Cybelsoft®
[MD5.ADA04D0DC075479DC24AD3AE29EC33E2] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) -- C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [741640] [PID.284] =>.DEVGURU CO LTD®
[MD5.4805D3F1B58E943F00AC8BCA0CC23F4A] - (.Salfeld Computer - Salfeld Security Service.) -- C:\WINDOWS\system32\cchservice.exe [3651960] [PID.276] {3CF5D7FB7A37ED86E51463FCB92A3ED5}
[MD5.DFB09287DFC4A321C9DAC67815C5056A] - (.Cinema PlusV10.10 - CinemaP-1.9cV10.10 exe.) -- C:\Program Files\CinemaP-1.9cV10.10\b293f196-7f04-4f95-9b88-e865ef27a0d4-1-6.exe [1392208] [PID.1216] =>PUP.Optional.CrossRider
[MD5.B709090CC3C8775C743079F42AE4EA3B] - (.Salfeld Computer - Salfeld Security Software Syncer.) -- C:\WINDOWS\system32\ccsync.exe [4065656] [PID.2108] {3CF5D7FB7A37ED86E51463FCB92A3ED5}
[MD5.DABD70F9E22CF9D89E03BC4355B2AAA1] - (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe [5589120] [PID.2868] =>.ESET, spol. s r.o.®
[MD5.06FAA58219BF8B6D1BC25C2783763E11] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874648] [PID.3688] =>.Google Inc®
[MD5.06FAA58219BF8B6D1BC25C2783763E11] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874648] [PID.3696] =>.Google Inc®
[MD5.06FAA58219BF8B6D1BC25C2783763E11] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874648] [PID.4072] =>.Google Inc®
[MD5.06FAA58219BF8B6D1BC25C2783763E11] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874648] [PID.2152] =>.Google Inc®
[MD5.06FAA58219BF8B6D1BC25C2783763E11] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874648] [PID.2676] =>.Google Inc®
[MD5.06FAA58219BF8B6D1BC25C2783763E11] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874648] [PID.1396] =>.Google Inc®
[MD5.06FAA58219BF8B6D1BC25C2783763E11] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874648] [PID.2056] =>.Google Inc®
[MD5.FD17B838A36DE276FEEB7A6035ABE588] - (.ESET - ESET Online payment protection frame.) -- C:\Program Files\ESET\ESET Smart Security\eOPPFrame.exe [178816] [PID.3188] =>.ESET, spol. s r.o.®
[MD5.06FAA58219BF8B6D1BC25C2783763E11] - (.Google Inc. - Google Chrome.) -- c:\program files\Google\Chrome\application\chrome.exe [874648] [PID.4020] =>.Google Inc®
[MD5.06FAA58219BF8B6D1BC25C2783763E11] - (.Google Inc. - Google Chrome.) -- c:\program files\Google\Chrome\application\chrome.exe [874648] [PID.2208] =>.Google Inc®
[MD5.06FAA58219BF8B6D1BC25C2783763E11] - (.Google Inc. - Google Chrome.) -- c:\program files\Google\Chrome\application\chrome.exe [874648] [PID.1328] =>.Google Inc®
[MD5.06FAA58219BF8B6D1BC25C2783763E11] - (.Google Inc. - Google Chrome.) -- c:\program files\Google\Chrome\application\chrome.exe [874648] [PID.3608] =>.Google Inc®
[MD5.06FAA58219BF8B6D1BC25C2783763E11] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874648] [PID.1412] =>.Google Inc®
[MD5.5B0856CEC3D279777DCA580A2A2D6A23] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\youssef.YOUSSEF-F856F36\Mes documents\Downloads\ZHPDiag3.exe [2404864] [PID.580] =>.Nicolas Coolman
---\\ Google Chrome, Démarrage,Recherche,Extensions (8) - 1s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://websearch.allsearches.info/
G2 - GCE: Preference [User Data\Default] [fgjgpadbipklaldkppibbffmfjdflpgn] NexTCoUp =>PUP.Optional.NextCoup
G2 - GCE: Preference [User Data\Default] [fidlffpkjchmiflngkkakcmbjmehkdbg] Zwinky
G2 - GCE: Preference [User Data\Default] [fpjnpabklnaaifclgealaepelncljadk] PhotoLive Download Facebook Photos
G2 - GCE: Preference [User Data\Default] [iamaffehfcagdgannmiobhdnnlmdofja] GoSavvE =>PUP.Optional.GoSave
G2 - GCE: Preference [User Data\Default] [jeaohhlajejodfjadcponpnjgkiikocn] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [lkadffjmnaiokkdncgdlecdegajoiemi] CinemaP-1.9cV10.10 =>PUP.Optional.CrossRider
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
---\\ Comodo Dragon, Démarrage,Recherche,Extensions (4) - 0s
C2 - CDE: Preference [User Data\Default] [fgjgpadbipklaldkppibbffmfjdflpgn] NexTCoUp =>PUP.Optional.NextCoup
C2 - CDE: Preference [User Data\Default] [fpjnpabklnaaifclgealaepelncljadk] PhotoLive Download Facebook Photos
C2 - CDE: Preference [User Data\Default] [iamaffehfcagdgannmiobhdnnlmdofja] GoSavvE =>PUP.Optional.GoSave
C2 - CDE: Preference [User Data\Default] [khhckppjhonfmcpegdjdibmngahahhck]
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (9) - 2s
P2 - EXT FILE: (.Firefox Hotfix - Firefox Hotfix: avoid updates that wou.) -- C:\Documents and Settings\youssef.YOUSSEF-F856F36\Application Data\Mozilla\Firefox\Profiles\k973xa10.default\extensions\firefox-hotfix@mozilla.org.xpi =>.Firefox Hotfix
P2 - EXT FILE: (.Visitors Facebook - Finally see, who has visited your page.) -- C:\Documents and Settings\youssef.YOUSSEF-F856F36\Application Data\Mozilla\Firefox\Profiles\k973xa10.default\extensions\jid1-yuNlgYDr5nIP2w@jetpack.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla
P2 - EXT: (.Cinema Plus - CinemaPlus-3.3c.) -- C:\Documents and Settings\youssef.YOUSSEF-F856F36\Application Data\Mozilla\Firefox\Profiles\k973xa10.default\extensions\AVJYFVOD75109374@HCDE39471360.com =>PUP.Optional.CrossRider
P2 - EXT: (. - kabltracarantiuscom.) -- C:\Documents and Settings\youssef.YOUSSEF-F856F36\Application Data\Mozilla\Firefox\Profiles\k973xa10.default\extensions\kabl@trac.arantius.com
P2 - EXT: (.Wips.com -