Publicité
Publicité
Format du document : text/plain
Prévisualisation
Script ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
O4 - HKLM\..\Run: [gpuminer] C:\Users\Abdou\AppData\Roaming\cpuminer\sgminer\sgminer.cmd (.not file.) =>PUP.Optional.CPUminer
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} =>.Superfluous.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} =>.Superfluous.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} =>.Superfluous.Orphan
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} =>.Superfluous.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} =>.Superfluous.Orphan
HKLM64\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup
O39 - APT: ATKOSD2 - (...) -- C:\Windows\System32\Tasks\ATKOSD2 [317400] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: JetBoost_AutoUpdate - (...) -- C:\Windows\System32\Tasks\JetBoost_AutoUpdate [317400] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {57169999-917F-464F-B94B-68D2F384D66C} - (...) -- C:\Windows\System32\Tasks\{57169999-917F-464F-B94B-68D2F384D66C} [317400] (.Orphan.) =>.Superfluous.Orphan
G0 - GCSP: Preferences [User Data\Default][HomePage] http://gc.kis.scr.kaspersky-labs.com =>.Kaspersky Labs
G0 - GCSP: Preferences [User Data\Default][HomePage] http://i.imgur.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://me-cdn.effectivemeasure.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://platform.twitter.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://store2.up-00.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://up.graaam.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.startimes.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://stats.g.doubleclick.net
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Abdou\AppData\Local\Temp?
O69 - SBI: prefs.js [Abdou - 1wiobo5e.default] user_pref("CT2851639.mam_gk_localization.enc", "eyJkaWFsb2dPSyI6eyJUZXh0IjoiT0sifSwiZG1ib3gxIjp7IlRleHQiOiJQcm9tb1xuZHUgam91ciJ9LC[...] =>.Superfluous.Conduit
O23 - Service: (AppMgmt) . (...) - C:\Windows\System32\appmgmts.dll (.not file.)
O23 - Service: Mobizen plugin (Mobizen plugin) . (...) - D:\MobizenService\MobizenService.exe (.not file.)
O23 - Service: Bitdefender 60-Second Virus Scanner Service (pdserv) . (...) - C:\Program Files\Bitdefender\60-Second Virus Scanner\pdscan.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [JetBoost_AutoUpdate] (...) -- D:\JetBoost\AutoUpdate.exe (.not file.) [317400] (.Activate.)
[MD5.00000000000000000000000000000000] [APT] [{57169999-917F-464F-B94B-68D2F384D66C}] (...) -- F:\Ace Combat Assault\TPTB-ACAHEE\Ace Combat Assault Horizon\Ace Combat_AH.exe (.not file.) [317400] (.Activate.)
O4 - HKLM\..\Run: [Andy] C:\Program Files\Andy\HandyAndy.exe (.not file.)
O87 - FAEL: "{9D4E7FE3-4BCA-4966-981F-84828E1B9B15}" [In-None-P6-TRUE] .(...) -- C:\Users\Abdou\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)
O87 - FAEL: "{E6A13792-E02D-4E53-A5A6-B062FC569E82}" [In-None-P17-TRUE] .(...) -- C:\Users\Abdou\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)
O87 - FAEL: "{9A728E14-BC8B-4EA7-9DD3-20B61FA9A7E7}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe (.not file.)
O87 - FAEL: "{E469D3F8-C5BD-44C3-82FC-E3B1337E658F}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe (.not file.)
O87 - FAEL: "{93BB9808-E489-44B9-9FDB-8BAD0548B3ED}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe (.not file.)
O87 - FAEL: "{14D21305-A4D6-4751-9D92-CB29224E1A2F}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe (.not file.)
O87 - FAEL: "{C14E1702-7998-4C6B-A420-79D3A12893EA}" [In-None-P6-TRUE] .(...) -- F:\Diablo III\Diablo III.exe (.not file.)
O87 - FAEL: "{83810330-2019-40B9-A35A-06EC65D163FE}" [In-None-P17-TRUE] .(...) -- F:\Diablo III\Diablo III.exe (.not file.)
O87 - FAEL: "TCP Query User{4830403C-E495-41CF-8394-A23063D51022}D:\greedytorrent\gtor.exe" [In-None-P6-TRUE] .(...) -- D:\greedytorrent\gtor.exe
O87 - FAEL: "UDP Query User{A3DDF916-7724-415A-9AE5-4BCE0226675D}D:\greedytorrent\gtor.exe" [In-None-P17-TRUE] .(...) -- D:\greedytorrent\gtor.exe
O87 - FAEL: "{970A5381-39ED-422C-9594-189527ABF7F1}" [In-None-P17-TRUE] .(...) -- D:\greedytorrent\gtor.exe
O87 - FAEL: "{1C4A5CF6-0087-4071-BA39-900591EFDF32}" [In-None-P6-TRUE] .(...) -- D:\greedytorrent\gtor.exe
O87 - FAEL: "{5D88A310-18BD-47CE-A72D-82B084AB2E42}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe (.not file.)
O87 - FAEL: "{F98C98FF-BCFE-455E-841A-FFB3C952B749}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe (.not file.)
O87 - FAEL: "{5EAFAE9B-4365-4B5B-B579-7036D3461AE1}" [Out-None-P6-TRUE] .(...) -- F:\StarCraft II\Versions\Base24944\SC2.exe (.not file.)
O87 - FAEL: "{C5EF9AFD-03F2-4F5E-85F7-157BE2CB5F64}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe (.not file.)
O87 - FAEL: "{038F6380-8DF2-403A-A137-DF4C3C4C0416}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe (.not file.)
O87 - FAEL: "{B81B98E4-923A-4B4E-BC77-D8FB872F59C7}" [In-None-P6-TRUE] .(...) -- F:\StarCraft II\Versions\Base24944\SC2.exe (.not file.)
O87 - FAEL: "{5E85948C-A253-40F6-B770-B2D8BF8C655C}" [In-None-P17-TRUE] .(...) -- F:\StarCraft II\Versions\Base24944\SC2.exe (.not file.)
O87 - FAEL: "{B15C7FA4-AB7F-4756-B820-C38BC6CE3902}" [In-None-P6-TRUE] .(...) -- F:\StarCraft II\Versions\Base24944\SC2.exe (.not file.)
O87 - FAEL: "{949E3175-33B0-4FC3-9081-B677FC07FC3C}" [In-None-P17-TRUE] .(...) -- F:\StarCraft II\Versions\Base24944\SC2.exe (.not file.)
O87 - FAEL: "TCP Query User{7FA0D316-8F3F-436E-B691-785C39DDE303}F:\cs1.6\hl.exe" [In-None-P6-TRUE] .(...) -- F:\cs1.6\hl.exe (.not file.)
O87 - FAEL: "UDP Query User{8EF1F454-50FA-46D3-AD02-A5B7B4A51522}F:\cs1.6\hl.exe" [In-None-P17-TRUE] .(...) -- F:\cs1.6\hl.exe (.not file.)
O87 - FAEL: "TCP Query User{5242153E-6766-4CB8-8639-83807763B550}F:\wot\wotlauncher.exe" [In-None-P6-TRUE] .(...) -- F:\wot\wotlauncher.exe (.not file.)
O87 - FAEL: "UDP Query User{3ABDC354-15C7-413C-8D77-7D8C2B1A2120}F:\wot\wotlauncher.exe" [In-None-P17-TRUE] .(...) -- F:\wot\wotlauncher.exe (.not file.)
O87 - FAEL: "{85A72D78-6D62-4A11-9A1D-A80F076E814C}" [In-None-P17-TRUE] .(...) -- F:\wot\wotlauncher.exe (.not file.)
O87 - FAEL: "{6B966F70-E12B-4E10-A672-4B1105EFA23A}" [In-None-P6-TRUE] .(...) -- F:\wot\wotlauncher.exe (.not file.)
O87 - FAEL: "TCP Query User{BEB9020D-58D8-48FD-9557-8CA696B8A61B}F:\wot\worldoftanks.exe" [In-None-P6-TRUE] .(...) -- F:\wot\worldoftanks.exe (.not file.)
O87 - FAEL: "UDP Query User{1877842D-F51B-4691-9DF4-32B1098AB476}F:\wot\worldoftanks.exe" [In-None-P17-TRUE] .(...) -- F:\wot\worldoftanks.exe (.not file.)
O87 - FAEL: "TCP Query User{E982E6EA-CBB1-48F1-9CB4-AA2063730DAF}F:\cs1.6\server cs 1.6\hlds\hlds.exe" [In-None-P6-TRUE] .(...) -- F:\cs1.6\server cs 1.6\hlds\hlds.exe (.not file.)
O87 - FAEL: "UDP Query User{C6967574-1168-4A49-BA1E-50941DC6DEB6}F:\cs1.6\server cs 1.6\hlds\hlds.exe" [In-None-P17-TRUE] .(...) -- F:\cs1.6\server cs 1.6\hlds\hlds.exe (.not file.)
O87 - FAEL: "TCP Query User{C1F18244-12E3-4392-A327-50D60F14AC50}F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe" [In-None-P6-TRUE] .(...) -- F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe (.not file.)
O87 - FAEL: "UDP Query User{B96A0690-1A0B-49BD-A497-95A9F3E9E736}F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe" [In-None-P17-TRUE] .(...) -- F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe (.not file.)
O87 - FAEL: "{E7536EAE-6412-4868-917A-9555AC6CCAAB}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe (.not file.)
O87 - FAEL: "{D30ED795-51F1-4DFB-B648-71FEEEA22022}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe (.not file.)
O87 - FAEL: "{FB998E67-AD83-4517-B918-1B6D9EAE0570}" [In-None-P6-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\bingo.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{D9927A31-9503-4ECE-8B9A-316749762F3C}" [In-None-P17-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\bingo.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{9F29A62D-D13D-4F10-BF0A-8D8460B57FB3}" [In-None-P6-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\bingo.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{6E7F8C9A-9241-4300-B35D-D4AA865EF8E4}" [In-None-P17-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\bingo.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{1EED14D3-D4CE-48AD-8A2F-1EC7325F2CC8}" [In-None-P6-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\trojan.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{0BDC248F-CC57-4DA8-8C76-46E074121377}" [In-None-P17-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\trojan.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{DD6BC96C-A274-499F-B41E-FAA7A68C40E7}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe (.not file.)
O87 - FAEL: "{ED453396-579E-4FA9-83E8-51B0E916205D}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe (.not file.)
O87 - FAEL: "{B8D03DBC-CEEC-4B1C-B9B3-0FBB64EDB43E}" [In-None-P6-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\System.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{C9ECB522-7E02-4EEC-BDF7-7F7C25A08D03}" [In-None-P17-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\System.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "TCP Query User{0BC85137-1396-4445-BF44-DD12CA5BF4B1}F:\watch_dogs-deluxe.edition-sc\bin\watch_dogs.exe" [In-None-P6-TRUE] .(...) -- F:\watch_dogs-deluxe.edition-sc\bin\watch_dogs.exe (.not file.)
O87 - FAEL: "UDP Query User{BD9CFF65-9661-442C-8886-8A3B1F007C81}F:\watch_dogs-deluxe.edition-sc\bin\watch_dogs.exe" [In-None-P17-TRUE] .(...) -- F:\watch_dogs-deluxe.edition-sc\bin\watch_dogs.exe (.not file.)
O87 - FAEL: "TCP Query User{A85AC85F-21CD-4D78-A464-6CF54EF23BA1}F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe" [In-None-P6-TRUE] .(...) -- F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe (.not file.)
O87 - FAEL: "UDP Query User{A8D11AA5-04FA-4591-BA5C-18D247D12C97}F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe" [In-None-P17-TRUE] .(...) -- F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe (.not file.)
O87 - FAEL: "{6B7B0847-2E3A-410A-A3DF-EACE0EA632F6}" [In-None-P6-TRUE] .(...) -- F:\Watch Dogs\bin\Watch_Dogs.exe (.not file.)
O87 - FAEL: "{392EC91D-A2A3-443A-979B-46832A9E49D6}" [In-None-P17-TRUE] .(...) -- F:\Watch Dogs\bin\Watch_Dogs.exe (.not file.)
O87 - FAEL: "TCP Query User{2C380378-1972-4CA8-B90B-1409F4FBA0A0}D:\program files (x86)\origin games\battlefield 3\bf3.exe" [In-None-P6-TRUE] .(...) -- D:\program files (x86)\origin games\battlefield 3\bf3.exe (.not file.)
O87 - FAEL: "UDP Query User{5A99E588-0CAF-4222-8FDC-939518CD8609}D:\program files (x86)\origin games\battlefield 3\bf3.exe" [In-None-P17-TRUE] .(...) -- D:\program files (x86)\origin games\battlefield 3\bf3.exe (.not file.)
O87 - FAEL: "TCP Query User{BDE539D3-D63B-4D88-9810-03A77B03CB7F}F:\battlefield 4\bf4.exe" [In-None-P6-TRUE] .(...) -- F:\battlefield 4\bf4.exe (.not file.)
O87 - FAEL: "UDP Query User{180C5923-CF1A-464A-B264-C6DA6B93F55A}F:\battlefield 4\bf4.exe" [In-None-P17-TRUE] .(...) -- F:\battlefield 4\bf4.exe (.not file.)
O87 - FAEL: "TCP Query User{13048FC5-BF21-4755-A00C-FCDAA3FF2044}F:\wolfenstein the new order\wolfneworder_x64.exe" [In-None-P6-TRUE] .(...) -- F:\wolfenstein the new order\wolfneworder_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{77D0B915-2F7C-4939-AFF3-C77EEBBDBC9E}F:\wolfenstein the new order\wolfneworder_x64.exe" [In-None-P17-TRUE] .(...) -- F:\wolfenstein the new order\wolfneworder_x64.exe (.not file.)
O87 - FAEL: "TCP Query User{F7A5CF3D-40D3-4E07-9C49-4DC3E6EAD2FD}F:\crysis 3\bin32\crysis3.exe" [In-None-P6-TRUE] .(...) -- F:\crysis 3\bin32\crysis3.exe (.not file.)
O87 - FAEL: "UDP Query User{B52BCD04-31E6-4102-9965-B055BDB720E4}F:\crysis 3\bin32\crysis3.exe" [In-None-P17-TRUE] .(...) -- F:\crysis 3\bin32\crysis3.exe (.not file.)
O87 - FAEL: "{0CC9B737-F415-4D8D-95E4-5DB6B39149D7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steganos Online Shield\polipo\node.exe (.not file.)
O87 - FAEL: "{3ABCF530-7A50-4F51-9C50-AC8759FA8721}" [In-None-P6-TRUE] .(...) -- D:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe (.not file.)
O87 - FAEL: "{F3000A00-2EE4-4DFB-8F9F-718687E8D413}" [In-None-P17-TRUE] .(...) -- D:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe (.not file.)
O87 - FAEL: "TCP Query User{F21FB4E1-8A2A-49C3-BEDE-9BFDAB62668A}D:\program files (x86)\origin games\fifa world\fifaworld.exe" [In-None-P6-TRUE] .(...) -- D:\program files (x86)\origin games\fifa world\fifaworld.exe (.not file.)
O87 - FAEL: "UDP Query User{844D10E0-4C67-4275-9534-5D124A378446}D:\program files (x86)\origin games\fifa world\fifaworld.exe" [In-None-P17-TRUE] .(...) -- D:\program files (x86)\origin games\fifa world\fifaworld.exe (.not file.)
O87 - FAEL: "TCP Query User{65E64FAC-331A-412D-9098-1FCBF7D9545A}D:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe" [In-None-P6-TRUE] .(...) -- D:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe (.not file.)
O87 - FAEL: "UDP Query User{D21ED0BB-D9D1-45C8-B305-67C2FAC8C59C}D:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe" [In-None-P17-TRUE] .(...) -- D:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe (.not file.)
O87 - FAEL: "{F2B5DAF2-A06C-4F01-9308-B98E1777B9E6}" [In-None-P17-TRUE] .(...) -- D:\GlassWire\GWCtlSrv.exe (.not file.)
O87 - FAEL: "{D2CC6AD4-CC7B-4009-9198-28631930A023}" [Out-None-P17-TRUE] .(...) -- D:\GlassWire\GWCtlSrv.exe (.not file.)
O87 - FAEL: "TCP Query User{72560719-B06B-4D3A-A5D0-B74174560078}F:\fifa 15 pc ultimate team edition\3dmgame-fifa.15.pc.ultimate.team.edition.with.up.4.multi15.cracked-3dm\fifa 15\fifa15.exe" [In-None-P6-TRUE] .(...) -- F:\fifa 15 pc ultimate team edition\3dmgame-fifa.15.pc.ultimate.team.edition.with.up.4.multi15.cracked-3dm\fifa 15\fifa15.exe (.not file.)
O87 - FAEL: "UDP Query User{E5D6F311-BBBC-4F26-AC19-1595E40488B3}F:\fifa 15 pc ultimate team edition\3dmgame-fifa.15.pc.ultimate.team.edition.with.up.4.multi15.cracked-3dm\fifa 15\fifa15.exe" [In-None-P17-TRUE] .(...) -- F:\fifa 15 pc ultimate team edition\3dmgame-fifa.15.pc.ultimate.team.edition.with.up.4.multi15.cracked-3dm\fifa 15\fifa15.exe (.not file.)
O87 - FAEL: "{7C9DFC94-2074-4763-875C-6CEE89297046}" [In-None-P6-TRUE] .(...) -- D:\UnHackMe\Unhackme.exe (.not file.)
O87 - FAEL: "{D9EA577E-022D-444E-B938-D1DC5A9E7EF8}" [In-None-P17-TRUE] .(...) -- D:\UnHackMe\Unhackme.exe (.not file.)
O87 - FAEL: "TCP Query User{7DB3F0E4-2058-4FA0-81E5-D51DCED37B70}F:\grand theft auto v-full unlocked-sg-chaos\grand theft auto v\gta5.exe" [In-None-P6-TRUE] .(...) -- F:\grand theft auto v-full unlocked-sg-chaos\grand theft auto v\gta5.exe (.not file.)
O87 - FAEL: "UDP Query User{B5D6B2D7-D4A8-4F6E-A3E4-E1E4EF80606F}F:\grand theft auto v-full unlocked-sg-chaos\grand theft auto v\gta5.exe" [In-None-P17-TRUE] .(...) -- F:\grand theft auto v-full unlocked-sg-chaos\grand theft auto v\gta5.exe (.not file.)
O87 - FAEL: "TCP Query User{2A9EBAEF-EE14-4A47-B4DD-6E6EB14CEDF1}C:\program files (x86)\miniget\miniget.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\miniget\miniget.exe (.not file.)
O87 - FAEL: "UDP Query User{EC6D57BF-9AF4-436C-A26B-850FAE01A447}C:\program files (x86)\miniget\miniget.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\miniget\miniget.exe (.not file.)
O87 - FAEL: "{E61778B3-6E84-4F62-9F4D-A9646B882D03}" [In-None-P6-TRUE] .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe (.not file.)
O87 - FAEL: "{1744BA2F-1B62-4D99-916D-4EFF60F0A340}" [In-None-P17-TRUE] .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe (.not file.)
O87 - FAEL: "{9EA676FE-1FA9-4F0F-B71B-26A33CCC45A5}" [In-None-P6-TRUE] .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe (.not file.)
O87 - FAEL: "{1E1527BC-93AA-4B84-BE30-2F687C2940E0}" [In-None-P17-TRUE] .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe (.not file.)
O87 - FAEL: "{654AD6EC-70A2-4865-9A8B-ECB3D10784D6}" [In-None-P6-TRUE] .(...) -- D:\Steam\Steam.exe (.not file.)
O87 - FAEL: "{CDE1917C-D919-4647-B654-8BFE1BAA3E4B}" [In-None-P17-TRUE] .(...) -- D:\Steam\Steam.exe (.not file.)
O87 - FAEL: "{5AE06060-E12F-405A-8929-131E805A0542}" [In-None-P6-TRUE] .(...) -- D:\Steam\bin\steamwebhelper.exe (.not file.)
O87 - FAEL: "{EF24CA29-22FB-43A7-AC7B-E22276541DBA}" [In-None-P17-TRUE] .(...) -- D:\Steam\bin\steamwebhelper.exe (.not file.)
O87 - FAEL: "TCP Query User{2EE39069-B4C2-4FA8-9213-649965E9B1EF}D:\embratoria\embratoriag1\http.exe" [In-None-P6-TRUE] .(...) -- D:\embratoria\embratoriag1\http.exe (.not file.)
O87 - FAEL: "UDP Query User{A6000EEA-334D-46AD-B8B8-EEF77351120B}D:\embratoria\embratoriag1\http.exe" [In-None-P17-TRUE] .(...) -- D:\embratoria\embratoriag1\http.exe (.not file.)
O39 - APT: Unknown - (.Microsoft Corporation.) -- C:\Windows\System32\Tasks\SidebarExecute [317400] =>.Microsoft Corporation
P2 - EXT: (.Unknow.) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
HKLM\SOFTWARE\Wow6432Node\Bunndle =>.Unknow
HKLM\SOFTWARE\Wow6432Node\Software =>.Unknow
O43 - CFD: 14/10/2013 - [] D -- C:\ProgramData\Uninstall =>.Unknow
O43 - CFD: 11/05/2014 - [] D -- C:\ProgramData\Update =>.Unknow
P2 - EXT: (.Yahoo! Inc..) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml =>.Yahoo! Inc.
P2 - EXT: (.eBay.) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml =>.eBay
P2 - EXT: (.Amazon Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml =>.Amazon Corporation
P2 - EXT FILE: (.Aaron Boodman; http://youngpup.net/ - A User Script Manager for Firefox.) -- C:\Users\Abdou\AppData\Roaming\Mozilla\Firefox\Profiles\1wiobo5e.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi =>.Aaron Boodman; http://youngpup.net/
P2 - EXT: (.Wikipedia.) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml =>.Wikipedia
M0 - MFSP: prefs.js [Abdou - 1wiobo5e.default] http://www.malwarebytes.org/
FirewallRaz
EmptyPrefetch
EmptyTemp
O4 - HKLM\..\Run: [gpuminer] C:\Users\Abdou\AppData\Roaming\cpuminer\sgminer\sgminer.cmd (.not file.) =>PUP.Optional.CPUminer
HKLM\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} =>.Superfluous.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} =>.Superfluous.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} =>.Superfluous.Orphan
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} =>.Superfluous.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} =>.Superfluous.Orphan
HKLM64\SOFTWARE\Microsoft\Tracing\BackupStack_RASMANCS =>PUP.Optional.MyPCBackup
O39 - APT: ATKOSD2 - (...) -- C:\Windows\System32\Tasks\ATKOSD2 [317400] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: JetBoost_AutoUpdate - (...) -- C:\Windows\System32\Tasks\JetBoost_AutoUpdate [317400] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {57169999-917F-464F-B94B-68D2F384D66C} - (...) -- C:\Windows\System32\Tasks\{57169999-917F-464F-B94B-68D2F384D66C} [317400] (.Orphan.) =>.Superfluous.Orphan
G0 - GCSP: Preferences [User Data\Default][HomePage] http://gc.kis.scr.kaspersky-labs.com =>.Kaspersky Labs
G0 - GCSP: Preferences [User Data\Default][HomePage] http://i.imgur.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://me-cdn.effectivemeasure.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://platform.twitter.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://store2.up-00.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://up.graaam.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.startimes.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://stats.g.doubleclick.net
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Abdou\AppData\Local\Temp?
O69 - SBI: prefs.js [Abdou - 1wiobo5e.default] user_pref("CT2851639.mam_gk_localization.enc", "eyJkaWFsb2dPSyI6eyJUZXh0IjoiT0sifSwiZG1ib3gxIjp7IlRleHQiOiJQcm9tb1xuZHUgam91ciJ9LC[...] =>.Superfluous.Conduit
O23 - Service: (AppMgmt) . (...) - C:\Windows\System32\appmgmts.dll (.not file.)
O23 - Service: Mobizen plugin (Mobizen plugin) . (...) - D:\MobizenService\MobizenService.exe (.not file.)
O23 - Service: Bitdefender 60-Second Virus Scanner Service (pdserv) . (...) - C:\Program Files\Bitdefender\60-Second Virus Scanner\pdscan.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [JetBoost_AutoUpdate] (...) -- D:\JetBoost\AutoUpdate.exe (.not file.) [317400] (.Activate.)
[MD5.00000000000000000000000000000000] [APT] [{57169999-917F-464F-B94B-68D2F384D66C}] (...) -- F:\Ace Combat Assault\TPTB-ACAHEE\Ace Combat Assault Horizon\Ace Combat_AH.exe (.not file.) [317400] (.Activate.)
O4 - HKLM\..\Run: [Andy] C:\Program Files\Andy\HandyAndy.exe (.not file.)
O87 - FAEL: "{9D4E7FE3-4BCA-4966-981F-84828E1B9B15}" [In-None-P6-TRUE] .(...) -- C:\Users\Abdou\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)
O87 - FAEL: "{E6A13792-E02D-4E53-A5A6-B062FC569E82}" [In-None-P17-TRUE] .(...) -- C:\Users\Abdou\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)
O87 - FAEL: "{9A728E14-BC8B-4EA7-9DD3-20B61FA9A7E7}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe (.not file.)
O87 - FAEL: "{E469D3F8-C5BD-44C3-82FC-E3B1337E658F}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe (.not file.)
O87 - FAEL: "{93BB9808-E489-44B9-9FDB-8BAD0548B3ED}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe (.not file.)
O87 - FAEL: "{14D21305-A4D6-4751-9D92-CB29224E1A2F}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe (.not file.)
O87 - FAEL: "{C14E1702-7998-4C6B-A420-79D3A12893EA}" [In-None-P6-TRUE] .(...) -- F:\Diablo III\Diablo III.exe (.not file.)
O87 - FAEL: "{83810330-2019-40B9-A35A-06EC65D163FE}" [In-None-P17-TRUE] .(...) -- F:\Diablo III\Diablo III.exe (.not file.)
O87 - FAEL: "TCP Query User{4830403C-E495-41CF-8394-A23063D51022}D:\greedytorrent\gtor.exe" [In-None-P6-TRUE] .(...) -- D:\greedytorrent\gtor.exe
O87 - FAEL: "UDP Query User{A3DDF916-7724-415A-9AE5-4BCE0226675D}D:\greedytorrent\gtor.exe" [In-None-P17-TRUE] .(...) -- D:\greedytorrent\gtor.exe
O87 - FAEL: "{970A5381-39ED-422C-9594-189527ABF7F1}" [In-None-P17-TRUE] .(...) -- D:\greedytorrent\gtor.exe
O87 - FAEL: "{1C4A5CF6-0087-4071-BA39-900591EFDF32}" [In-None-P6-TRUE] .(...) -- D:\greedytorrent\gtor.exe
O87 - FAEL: "{5D88A310-18BD-47CE-A72D-82B084AB2E42}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe (.not file.)
O87 - FAEL: "{F98C98FF-BCFE-455E-841A-FFB3C952B749}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe (.not file.)
O87 - FAEL: "{5EAFAE9B-4365-4B5B-B579-7036D3461AE1}" [Out-None-P6-TRUE] .(...) -- F:\StarCraft II\Versions\Base24944\SC2.exe (.not file.)
O87 - FAEL: "{C5EF9AFD-03F2-4F5E-85F7-157BE2CB5F64}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe (.not file.)
O87 - FAEL: "{038F6380-8DF2-403A-A137-DF4C3C4C0416}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe (.not file.)
O87 - FAEL: "{B81B98E4-923A-4B4E-BC77-D8FB872F59C7}" [In-None-P6-TRUE] .(...) -- F:\StarCraft II\Versions\Base24944\SC2.exe (.not file.)
O87 - FAEL: "{5E85948C-A253-40F6-B770-B2D8BF8C655C}" [In-None-P17-TRUE] .(...) -- F:\StarCraft II\Versions\Base24944\SC2.exe (.not file.)
O87 - FAEL: "{B15C7FA4-AB7F-4756-B820-C38BC6CE3902}" [In-None-P6-TRUE] .(...) -- F:\StarCraft II\Versions\Base24944\SC2.exe (.not file.)
O87 - FAEL: "{949E3175-33B0-4FC3-9081-B677FC07FC3C}" [In-None-P17-TRUE] .(...) -- F:\StarCraft II\Versions\Base24944\SC2.exe (.not file.)
O87 - FAEL: "TCP Query User{7FA0D316-8F3F-436E-B691-785C39DDE303}F:\cs1.6\hl.exe" [In-None-P6-TRUE] .(...) -- F:\cs1.6\hl.exe (.not file.)
O87 - FAEL: "UDP Query User{8EF1F454-50FA-46D3-AD02-A5B7B4A51522}F:\cs1.6\hl.exe" [In-None-P17-TRUE] .(...) -- F:\cs1.6\hl.exe (.not file.)
O87 - FAEL: "TCP Query User{5242153E-6766-4CB8-8639-83807763B550}F:\wot\wotlauncher.exe" [In-None-P6-TRUE] .(...) -- F:\wot\wotlauncher.exe (.not file.)
O87 - FAEL: "UDP Query User{3ABDC354-15C7-413C-8D77-7D8C2B1A2120}F:\wot\wotlauncher.exe" [In-None-P17-TRUE] .(...) -- F:\wot\wotlauncher.exe (.not file.)
O87 - FAEL: "{85A72D78-6D62-4A11-9A1D-A80F076E814C}" [In-None-P17-TRUE] .(...) -- F:\wot\wotlauncher.exe (.not file.)
O87 - FAEL: "{6B966F70-E12B-4E10-A672-4B1105EFA23A}" [In-None-P6-TRUE] .(...) -- F:\wot\wotlauncher.exe (.not file.)
O87 - FAEL: "TCP Query User{BEB9020D-58D8-48FD-9557-8CA696B8A61B}F:\wot\worldoftanks.exe" [In-None-P6-TRUE] .(...) -- F:\wot\worldoftanks.exe (.not file.)
O87 - FAEL: "UDP Query User{1877842D-F51B-4691-9DF4-32B1098AB476}F:\wot\worldoftanks.exe" [In-None-P17-TRUE] .(...) -- F:\wot\worldoftanks.exe (.not file.)
O87 - FAEL: "TCP Query User{E982E6EA-CBB1-48F1-9CB4-AA2063730DAF}F:\cs1.6\server cs 1.6\hlds\hlds.exe" [In-None-P6-TRUE] .(...) -- F:\cs1.6\server cs 1.6\hlds\hlds.exe (.not file.)
O87 - FAEL: "UDP Query User{C6967574-1168-4A49-BA1E-50941DC6DEB6}F:\cs1.6\server cs 1.6\hlds\hlds.exe" [In-None-P17-TRUE] .(...) -- F:\cs1.6\server cs 1.6\hlds\hlds.exe (.not file.)
O87 - FAEL: "TCP Query User{C1F18244-12E3-4392-A327-50D60F14AC50}F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe" [In-None-P6-TRUE] .(...) -- F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe (.not file.)
O87 - FAEL: "UDP Query User{B96A0690-1A0B-49BD-A497-95A9F3E9E736}F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe" [In-None-P17-TRUE] .(...) -- F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe (.not file.)
O87 - FAEL: "{E7536EAE-6412-4868-917A-9555AC6CCAAB}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe (.not file.)
O87 - FAEL: "{D30ED795-51F1-4DFB-B648-71FEEEA22022}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe (.not file.)
O87 - FAEL: "{FB998E67-AD83-4517-B918-1B6D9EAE0570}" [In-None-P6-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\bingo.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{D9927A31-9503-4ECE-8B9A-316749762F3C}" [In-None-P17-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\bingo.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{9F29A62D-D13D-4F10-BF0A-8D8460B57FB3}" [In-None-P6-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\bingo.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{6E7F8C9A-9241-4300-B35D-D4AA865EF8E4}" [In-None-P17-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\bingo.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{1EED14D3-D4CE-48AD-8A2F-1EC7325F2CC8}" [In-None-P6-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\trojan.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{0BDC248F-CC57-4DA8-8C76-46E074121377}" [In-None-P17-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\trojan.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{DD6BC96C-A274-499F-B41E-FAA7A68C40E7}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe (.not file.)
O87 - FAEL: "{ED453396-579E-4FA9-83E8-51B0E916205D}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe (.not file.)
O87 - FAEL: "{B8D03DBC-CEEC-4B1C-B9B3-0FBB64EDB43E}" [In-None-P6-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\System.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "{C9ECB522-7E02-4EEC-BDF7-7F7C25A08D03}" [In-None-P17-TRUE] .(...) -- C:\Users\Abdou\AppData\Local\Temp\System.exe (.not file.) =>.Temporary file not necessary
O87 - FAEL: "TCP Query User{0BC85137-1396-4445-BF44-DD12CA5BF4B1}F:\watch_dogs-deluxe.edition-sc\bin\watch_dogs.exe" [In-None-P6-TRUE] .(...) -- F:\watch_dogs-deluxe.edition-sc\bin\watch_dogs.exe (.not file.)
O87 - FAEL: "UDP Query User{BD9CFF65-9661-442C-8886-8A3B1F007C81}F:\watch_dogs-deluxe.edition-sc\bin\watch_dogs.exe" [In-None-P17-TRUE] .(...) -- F:\watch_dogs-deluxe.edition-sc\bin\watch_dogs.exe (.not file.)
O87 - FAEL: "TCP Query User{A85AC85F-21CD-4D78-A464-6CF54EF23BA1}F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe" [In-None-P6-TRUE] .(...) -- F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe (.not file.)
O87 - FAEL: "UDP Query User{A8D11AA5-04FA-4591-BA5C-18D247D12C97}F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe" [In-None-P17-TRUE] .(...) -- F:\nfs\need for speed rivals deluxe edition dlcs multi7 full unlocked\need for speed(tm) rivals-sg\nfs14.exe (.not file.)
O87 - FAEL: "{6B7B0847-2E3A-410A-A3DF-EACE0EA632F6}" [In-None-P6-TRUE] .(...) -- F:\Watch Dogs\bin\Watch_Dogs.exe (.not file.)
O87 - FAEL: "{392EC91D-A2A3-443A-979B-46832A9E49D6}" [In-None-P17-TRUE] .(...) -- F:\Watch Dogs\bin\Watch_Dogs.exe (.not file.)
O87 - FAEL: "TCP Query User{2C380378-1972-4CA8-B90B-1409F4FBA0A0}D:\program files (x86)\origin games\battlefield 3\bf3.exe" [In-None-P6-TRUE] .(...) -- D:\program files (x86)\origin games\battlefield 3\bf3.exe (.not file.)
O87 - FAEL: "UDP Query User{5A99E588-0CAF-4222-8FDC-939518CD8609}D:\program files (x86)\origin games\battlefield 3\bf3.exe" [In-None-P17-TRUE] .(...) -- D:\program files (x86)\origin games\battlefield 3\bf3.exe (.not file.)
O87 - FAEL: "TCP Query User{BDE539D3-D63B-4D88-9810-03A77B03CB7F}F:\battlefield 4\bf4.exe" [In-None-P6-TRUE] .(...) -- F:\battlefield 4\bf4.exe (.not file.)
O87 - FAEL: "UDP Query User{180C5923-CF1A-464A-B264-C6DA6B93F55A}F:\battlefield 4\bf4.exe" [In-None-P17-TRUE] .(...) -- F:\battlefield 4\bf4.exe (.not file.)
O87 - FAEL: "TCP Query User{13048FC5-BF21-4755-A00C-FCDAA3FF2044}F:\wolfenstein the new order\wolfneworder_x64.exe" [In-None-P6-TRUE] .(...) -- F:\wolfenstein the new order\wolfneworder_x64.exe (.not file.)
O87 - FAEL: "UDP Query User{77D0B915-2F7C-4939-AFF3-C77EEBBDBC9E}F:\wolfenstein the new order\wolfneworder_x64.exe" [In-None-P17-TRUE] .(...) -- F:\wolfenstein the new order\wolfneworder_x64.exe (.not file.)
O87 - FAEL: "TCP Query User{F7A5CF3D-40D3-4E07-9C49-4DC3E6EAD2FD}F:\crysis 3\bin32\crysis3.exe" [In-None-P6-TRUE] .(...) -- F:\crysis 3\bin32\crysis3.exe (.not file.)
O87 - FAEL: "UDP Query User{B52BCD04-31E6-4102-9965-B055BDB720E4}F:\crysis 3\bin32\crysis3.exe" [In-None-P17-TRUE] .(...) -- F:\crysis 3\bin32\crysis3.exe (.not file.)
O87 - FAEL: "{0CC9B737-F415-4D8D-95E4-5DB6B39149D7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steganos Online Shield\polipo\node.exe (.not file.)
O87 - FAEL: "{3ABCF530-7A50-4F51-9C50-AC8759FA8721}" [In-None-P6-TRUE] .(...) -- D:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe (.not file.)
O87 - FAEL: "{F3000A00-2EE4-4DFB-8F9F-718687E8D413}" [In-None-P17-TRUE] .(...) -- D:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe (.not file.)
O87 - FAEL: "TCP Query User{F21FB4E1-8A2A-49C3-BEDE-9BFDAB62668A}D:\program files (x86)\origin games\fifa world\fifaworld.exe" [In-None-P6-TRUE] .(...) -- D:\program files (x86)\origin games\fifa world\fifaworld.exe (.not file.)
O87 - FAEL: "UDP Query User{844D10E0-4C67-4275-9534-5D124A378446}D:\program files (x86)\origin games\fifa world\fifaworld.exe" [In-None-P17-TRUE] .(...) -- D:\program files (x86)\origin games\fifa world\fifaworld.exe (.not file.)
O87 - FAEL: "TCP Query User{65E64FAC-331A-412D-9098-1FCBF7D9545A}D:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe" [In-None-P6-TRUE] .(...) -- D:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe (.not file.)
O87 - FAEL: "UDP Query User{D21ED0BB-D9D1-45C8-B305-67C2FAC8C59C}D:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe" [In-None-P17-TRUE] .(...) -- D:\program files (x86)\origin games\fifa 15 demo\fifa15_demo.exe (.not file.)
O87 - FAEL: "{F2B5DAF2-A06C-4F01-9308-B98E1777B9E6}" [In-None-P17-TRUE] .(...) -- D:\GlassWire\GWCtlSrv.exe (.not file.)
O87 - FAEL: "{D2CC6AD4-CC7B-4009-9198-28631930A023}" [Out-None-P17-TRUE] .(...) -- D:\GlassWire\GWCtlSrv.exe (.not file.)
O87 - FAEL: "TCP Query User{72560719-B06B-4D3A-A5D0-B74174560078}F:\fifa 15 pc ultimate team edition\3dmgame-fifa.15.pc.ultimate.team.edition.with.up.4.multi15.cracked-3dm\fifa 15\fifa15.exe" [In-None-P6-TRUE] .(...) -- F:\fifa 15 pc ultimate team edition\3dmgame-fifa.15.pc.ultimate.team.edition.with.up.4.multi15.cracked-3dm\fifa 15\fifa15.exe (.not file.)
O87 - FAEL: "UDP Query User{E5D6F311-BBBC-4F26-AC19-1595E40488B3}F:\fifa 15 pc ultimate team edition\3dmgame-fifa.15.pc.ultimate.team.edition.with.up.4.multi15.cracked-3dm\fifa 15\fifa15.exe" [In-None-P17-TRUE] .(...) -- F:\fifa 15 pc ultimate team edition\3dmgame-fifa.15.pc.ultimate.team.edition.with.up.4.multi15.cracked-3dm\fifa 15\fifa15.exe (.not file.)
O87 - FAEL: "{7C9DFC94-2074-4763-875C-6CEE89297046}" [In-None-P6-TRUE] .(...) -- D:\UnHackMe\Unhackme.exe (.not file.)
O87 - FAEL: "{D9EA577E-022D-444E-B938-D1DC5A9E7EF8}" [In-None-P17-TRUE] .(...) -- D:\UnHackMe\Unhackme.exe (.not file.)
O87 - FAEL: "TCP Query User{7DB3F0E4-2058-4FA0-81E5-D51DCED37B70}F:\grand theft auto v-full unlocked-sg-chaos\grand theft auto v\gta5.exe" [In-None-P6-TRUE] .(...) -- F:\grand theft auto v-full unlocked-sg-chaos\grand theft auto v\gta5.exe (.not file.)
O87 - FAEL: "UDP Query User{B5D6B2D7-D4A8-4F6E-A3E4-E1E4EF80606F}F:\grand theft auto v-full unlocked-sg-chaos\grand theft auto v\gta5.exe" [In-None-P17-TRUE] .(...) -- F:\grand theft auto v-full unlocked-sg-chaos\grand theft auto v\gta5.exe (.not file.)
O87 - FAEL: "TCP Query User{2A9EBAEF-EE14-4A47-B4DD-6E6EB14CEDF1}C:\program files (x86)\miniget\miniget.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\miniget\miniget.exe (.not file.)
O87 - FAEL: "UDP Query User{EC6D57BF-9AF4-436C-A26B-850FAE01A447}C:\program files (x86)\miniget\miniget.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\miniget\miniget.exe (.not file.)
O87 - FAEL: "{E61778B3-6E84-4F62-9F4D-A9646B882D03}" [In-None-P6-TRUE] .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe (.not file.)
O87 - FAEL: "{1744BA2F-1B62-4D99-916D-4EFF60F0A340}" [In-None-P17-TRUE] .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe (.not file.)
O87 - FAEL: "{9EA676FE-1FA9-4F0F-B71B-26A33CCC45A5}" [In-None-P6-TRUE] .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe (.not file.)
O87 - FAEL: "{1E1527BC-93AA-4B84-BE30-2F687C2940E0}" [In-None-P17-TRUE] .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe (.not file.)
O87 - FAEL: "{654AD6EC-70A2-4865-9A8B-ECB3D10784D6}" [In-None-P6-TRUE] .(...) -- D:\Steam\Steam.exe (.not file.)
O87 - FAEL: "{CDE1917C-D919-4647-B654-8BFE1BAA3E4B}" [In-None-P17-TRUE] .(...) -- D:\Steam\Steam.exe (.not file.)
O87 - FAEL: "{5AE06060-E12F-405A-8929-131E805A0542}" [In-None-P6-TRUE] .(...) -- D:\Steam\bin\steamwebhelper.exe (.not file.)
O87 - FAEL: "{EF24CA29-22FB-43A7-AC7B-E22276541DBA}" [In-None-P17-TRUE] .(...) -- D:\Steam\bin\steamwebhelper.exe (.not file.)
O87 - FAEL: "TCP Query User{2EE39069-B4C2-4FA8-9213-649965E9B1EF}D:\embratoria\embratoriag1\http.exe" [In-None-P6-TRUE] .(...) -- D:\embratoria\embratoriag1\http.exe (.not file.)
O87 - FAEL: "UDP Query User{A6000EEA-334D-46AD-B8B8-EEF77351120B}D:\embratoria\embratoriag1\http.exe" [In-None-P17-TRUE] .(...) -- D:\embratoria\embratoriag1\http.exe (.not file.)
O39 - APT: Unknown - (.Microsoft Corporation.) -- C:\Windows\System32\Tasks\SidebarExecute [317400] =>.Microsoft Corporation
P2 - EXT: (.Unknow.) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
HKLM\SOFTWARE\Wow6432Node\Bunndle =>.Unknow
HKLM\SOFTWARE\Wow6432Node\Software =>.Unknow
O43 - CFD: 14/10/2013 - [] D -- C:\ProgramData\Uninstall =>.Unknow
O43 - CFD: 11/05/2014 - [] D -- C:\ProgramData\Update =>.Unknow
P2 - EXT: (.Yahoo! Inc..) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml =>.Yahoo! Inc.
P2 - EXT: (.eBay.) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml =>.eBay
P2 - EXT: (.Amazon Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml =>.Amazon Corporation
P2 - EXT FILE: (.Aaron Boodman; http://youngpup.net/ - A User Script Manager for Firefox.) -- C:\Users\Abdou\AppData\Roaming\Mozilla\Firefox\Profiles\1wiobo5e.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi =>.Aaron Boodman; http://youngpup.net/
P2 - EXT: (.Wikipedia.) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml =>.Wikipedia
M0 - MFSP: prefs.js [Abdou - 1wiobo5e.default] http://www.malwarebytes.org/