~ Rapport de ZHPDiag v2013.8.26.36 - Nicolas Coolman (26/08/2013) ~ Lancé par switch (27/08/2013 16:08:12) ~ Adresse du Site Web http://nicolascoolman.webs.com ~ Traduit par Nicolas Coolman ~ Etat de la version : Version à jour. ~ Liste blanche : Activée par le programme ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Activate by user ---\\ Navigateurs Internet MSIE: Internet Explorer v10.0.9200.16660 GCIE: Google Chrome v24.0.1312.52 (Defaut) ---\\ Informations sur les produits Windows ~ Langage: Français Windows 7 Home Premium Edition, 32-bit Service Pack 1 (Build 7601) Windows Server License Manager Script : OK Software Protection Service (Protection logicielle) : KO Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ Logiciels de protection du système Computer Security 12.56.100.0 Pack Sécurité v1.57.391.0 Pack Sécurité v1.57.391.0 Windows Defender W7 ---\\ Logiciels d'optimisation du système CCleaner v3.20 =>Piriform Ltd ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Adobe Flash Player 11 ActiveX Adobe Reader X ---\\ Informations sur le système ~ Processor: x86 Family 6 Model 37 Stepping 5, GenuineIntel ~ Operating System: 32 Bits Boot mode: Sans échec avec prise en charge du réseau (Fail-safe with network boot) Total RAM: 3575 MB (77% free) System Restore: Activé (Enable) System drive C: has 29 GB (13%) free of 225 GB ---\\ Mode de connexion au système ~ Computer Name: SWITCH-PC ~ User Name: switch ~ All Users Names: UpdatusUser, switch, HomeGroupUser$, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89 Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppData% : C:\Users\switch\AppData\Roaming\ ~ %Desktop% : C:\Users\switch\Desktop\ ~ %Favorites% : C:\Users\switch\Favoris\ ~ %LocalAppData% : C:\Users\switch\AppData\Local\ ~ %StartMenu% : C:\Users\switch\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques C:\ Hard drive, Flash drive, Thumb drive (Free 29 Go of 225 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 7 Go of 8 Go) E:\ CD-ROM drive (Not Inserted) G:\ Floppy drive, Flash card reader, USB Key (Not Inserted) H:\ Floppy drive, Flash card reader, USB Key (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Not Inserted) J:\ Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Etat du Centre de Sécurité Windows ~ Security Center: 26 Legitimates Filtered in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320] [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256] [MD5.DAA3903F06116AE9EE7AC1D1B93684A4] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/07/2013 - 04:13:24.) -- C:\Windows\System32\wininet.dll [1767936] [MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 13:17:54.) -- C:\Windows\System32\Winlogon.exe [286720] [MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 13:21:24.) -- C:\Windows\System32\sppcomapi.dll [193536] [MD5.9EBBBA55060F786F0FCAA3893BFA2806] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:18:03.) -- C:\Windows\system32\Drivers\AFD.sys [338944] [MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584] [MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656] [MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 09:38:10.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544] [MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 09:42:32.) -- C:\Windows\system32\Drivers\DfsC.sys [78336] [MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 10:59:29.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544] [MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896] [MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888] [MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:17:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123904] [MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 09:39:44.) -- C:\Windows\system32\Drivers\netBT.sys [187904] [MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 14:45:29.) -- C:\Windows\system32\Drivers\ntfs.sys [1211752] [MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360] [MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848] [MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168] [MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 09:39:17.) -- C:\Windows\system32\Drivers\tdx.sys [74752] [MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 13:30:16.) -- C:\Windows\system32\Drivers\volsnap.sys [245632] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 3/1136 ~ Mes musiques (My Musics) : 60/412 ~ Mes Videos (My Videos) : 2/14 ~ Mes Favoris (My Favorites) : 1/56 ~ Mes Documents (My Documents) : 12/3270 ~ Mon Bureau (My Desktop) : 1/392 ~ Menu demarrer (Programs) : 1/41 ~ Hidden Files: Scanned in 00mn 19s ---\\ Processus lancés au démarrage du système [MD5.A63DC5C2EA944E6657203E0C8EDEAF61] - (.Microsoft Corporation - COM Surrogate.) -- C:\Windows\system32\DllHost.exe [7168] [PID.1640] [MD5.7BA1862B8A5698DC5FCFDFF3BC359DE9] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [770648] [PID.1440] [MD5.CC19B60A901A415624F5771F1F0A6060] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1248360] [PID.1240] [MD5.80A5A61530384C6A3614C745217919DE] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7837184] [PID.1320] ~ Processes Running: Scanned in 00mn 00s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\switch\AppData\Local\Google\Chrome\User Data\Default\Preferences G0 - GCSP: Preference [User Data\Default] http://aol.fr G1 - GCS: Preference [User Data\Default] http://dts.search-results.com =>PUP.SearchResults G2 - GCE: Preference [User Data\Default] [pbpohikckhbcljgombipcdoinkaedlfa] Smart Display v.1.6 (Activé) =>Spyware.SmartDisplay ~ Google Browser: 4 Legitimates Filtered in 00mn 06s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKLM] [@oberon-media.com/ONCAdapter] - (...) -- C:\Program Files\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (.not file.) ~ Firefox Browser: 15 Legitimates Filtered in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.chatzum.com R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} . (...) (No version) -- (.not file.) R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} . (...) (No version) -- (.not file.) R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (...) (No version) -- (.not file.) R3 - URLSearchHook: WiseConvert 1.5 Toolbar - {19803860-b306-423c-bbb5-f60a7d82cde5} . (...) (No version) -- (.not file.) =>Toolbar.Conduit R3 - URLSearchHook: FileConverter 1.5 Toolbar - {cfcb809c-3a22-4616-a916-6c007bd9d920} . (...) (No version) -- (.not file.) ~ IE Browser: 16 Legitimates Filtered in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local; R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 21 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: WiseConvert 1.5 - {19803860-b306-423c-bbb5-f60a7d82cde5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\WiseConvert_1.5\prxtbWis0.dll =>Toolbar.Conduit O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} . (.AOL - Librairie de lien dynamique AOL Toolbar pou.) -- C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll O2 - BHO: DataMngr - {C1ED9DA0-AFD0-4b90-AC6A-D3874F591014} . (.Bandoo Media Inc - Url Helper.) -- C:\Program Files\Search Results Toolbar\Datamngr\BrowserConnection.dll =>Adware.Bandoo O2 - BHO: FileConverter 1.5 - {cfcb809c-3a22-4616-a916-6c007bd9d920} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\FileConverter_1.5\prxtbFil0.dll =>Toolbar.Conduit O2 - BHO: BHO_PROJECT - {D0DBA715-D402-4801-9F0A-4A31165F6CAA} . (...) -- C:\Program Files\OApps\bho_project.dll (.not file.) ~ BHO: 24 Legitimates Filtered in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: AOL Toolbar - [HKLM]{DE9C389F-3316-41A7-809B-AA305ED9D922} . (.AOL - Librairie de lien dynamique AOL Toolbar pou.) -- C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll O3 - Toolbar: Browsing Protection Toolbar - [HKLM]{265EEE8E-3228-44D3-AEA5-F7FDF5860049} . (.F-Secure Corporation - Litmus.) -- C:\Program Files\SFR\Pack Sécurité\apps\OnlineSafety\BPP\iescript\BaseLitmus.dll O3 - Toolbar: Search-Results Toolbar - [HKLM]{f34c9277-6577-4dff-b2d7-7d58092f272f} . (...) -- C:\Program Files\SEARCH~1\Datamngr\SRTOOL~1\searchresultsDx.dll =>PUP.SearchResults O3 - Toolbar: WiseConvert 1.5 Toolbar - [HKLM]{19803860-b306-423c-bbb5-f60a7d82cde5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\WiseConvert_1.5\prxtbWis0.dll =>Toolbar.Conduit O3 - Toolbar: FileConverter 1.5 Toolbar - [HKLM]{cfcb809c-3a22-4616-a916-6c007bd9d920} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\FileConverter_1.5\prxtbFil0.dll =>Toolbar.Conduit O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline ~ Toolbar: Scanned in 00mn 00s ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [BCU] . (.DeviceVM, Inc. - Browser Configuration Utility.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe O4 - HKLM\..\Run: [HostManager] . (.America Online, Inc. - AOL.) -- C:\Program Files\Common Files\AOL\1304624729\ee\AOLSoftware.exe O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe O4 - HKLM\..\Run: [ROC_roc_dec12] C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe (.not file.) =>Toolbar.AVGSearch O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Run: [F-Secure Hoster (44996)] . (.F-Secure Corporation - F-Secure Host Process.) -- C:\Program Files\SFR\Pack Sécurité\fshoster32.exe O4 - HKLM\..\Run: [F-Secure Manager] . (.F-Secure Corporation - F-Secure Settings and Statistics.) -- C:\Program Files\SFR\Pack Sécurité\apps\ComputerSecurity\Common\FSM32.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe O4 - HKLM\..\Run: [SmartSoft PDF Printer Agent] . (...) -- C:\Program Files\Convertisseur PDF Pro\SmartSoft PDF Printer Agent.exe O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe O4 - HKLM\..\Run: [Memeo Instant Backup] . (.Memeo Inc. - Memeo Backup Launcher.) -- C:\Program Files\Memeo\AutoBackup\MemeoLauncher2.exe O4 - HKLM\..\Run: [Memeo AutoSync] . (.Memeo Inc. - Memeo AutoBackup Launcher.) -- C:\Program Files\Memeo\AutoSync\MemeoLauncher2.exe O4 - HKLM\..\Run: [Memeo Send] . (.Pas de propriétaire - Memeo Launcher.) -- C:\Program Files\Memeo\Memeo Send\MemeoLauncher.exe O4 - HKLM\..\Run: [Seagate Dashboard] . (.Pas de propriétaire - Memeo Dashboard Launcher.) -- C:\Program Files\Seagate\Seagate Dashboard\MemeoLauncher.exe O4 - HKCU\..\Run: [msnmsgr] ~"C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.) O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\SFR\Kit\9PROPS.exe O4 - HKCU\..\Run: [Driver Manager] . (.PC Drivers Headquarters - DriverManager.) -- C:\Program Files\Driver Manager\Driver Manager\DriverManager.exe O4 - HKCU\..\Run: [KiesPDLR] . (.Samsung - KiesPDLR.) -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe O4 - HKCU\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files\Samsung\Kies\KiesAirMessage.exe O4 - HKCU\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\Kies.exe O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\switch\AppData\Local\Akamai\netsession_win.exe O4 - HKCU\..\Run: [Driver Whiz] . (.PC Drivers Headquarters - Driver Whiz.) -- C:\Program Files\Driver Whiz\Driver Whiz\DriverWhiz.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [msnmsgr] ~"C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.) O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\SFR\Kit\9PROPS.exe O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [Driver Manager] . (.PC Drivers Headquarters - DriverManager.) -- C:\Program Files\Driver Manager\Driver Manager\DriverManager.exe O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [KiesPDLR] . (.Samsung - KiesPDLR.) -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files\Samsung\Kies\KiesAirMessage.exe O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\Kies.exe O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\switch\AppData\Local\Akamai\netsession_win.exe O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [Driver Whiz] . (.PC Drivers Headquarters - Driver Whiz.) -- C:\Program Files\Driver Whiz\Driver Whiz\DriverWhiz.exe ~ Application: Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\TaskBar: LibreOffice Base.lnk . (.The Document Foundation - LibreOffice Base.) -- C:\Program Files\LibreOffice 3\program\sbase.exe O4 - GS\TaskBar: LibreOffice Calc.lnk . (.The Document Foundation - LibreOffice Calc.) -- C:\Program Files\LibreOffice 3\program\scalc.exe O4 - GS\TaskBar: LibreOffice Impress.lnk . (.The Document Foundation - LibreOffice Impress.) -- C:\Program Files\LibreOffice 3\program\simpress.exe O4 - GS\TaskBar: LibreOffice Writer.lnk . (.The Document Foundation - LibreOffice Writer.) -- C:\Program Files\LibreOffice 3\program\swriter.exe O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe O4 - GS\Programs: iLivid.lnk . (...) -- C:\Users\switch\AppData\Local\iLivid\iLivid.exe (.not file.) =>Adware.Bandoo O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\QuickLaunch: AOL 9.0 VR.lnk . (.AOL - AOL.) -- C:\Program Files\AOL 9.0 VRa\aol.exe O4 - GS\QuickLaunch: Babylon.lnk . (...) -- C:\Program Files\Babylon\Babylon-Pro\Babylon.exe (.not file.) =>Toolbar.Babylon O4 - GS\QuickLaunch: iLivid.lnk . (...) -- C:\Users\switch\AppData\Local\iLivid\iLivid.exe (.not file.) =>Adware.Bandoo O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\QuickLaunch: Picasa 3.lnk . (.Google Inc. - Picasa.) -- C:\Program Files\Google\Picasa3\Picasa3.exe O4 - GS\QuickLaunch: Samsung Kies.lnk . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\Kies.exe O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\Desktop: Alliance of Valiant Arms FR.lnk . (.Aeria Games & Entertainment - Ignite Launcher.) -- C:\AeriaGames\AVA-FR\aeria_launcher.exe O4 - Global Startup: C:\Users\switch\Desktop\Call of Duty Modern Warfare 3 - Multiplayer.url . (...) -- C:\Users\switch\Desktop\Call of Duty Modern Warfare 3 - Multiplayer.url ~ Global Startup: Scanned in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} . (.AOL - AOL Toolbar.) -- c:\program files\aol\aol toolbar 4.0\resources\fr-FR\aoltbres.dll ~ IE Extra Buttons: Scanned in 00mn 00s ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKCU\...\Domains] http.aeriagames.com ~ IE Zone Confiance: Scanned in 00mn 00s ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab ~ Objets ActiveX: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{F2FE3D07-8F61-4500-87BA-599A94EA77EB}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{F2FE3D07-8F61-4500-87BA-599A94EA77EB}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{F2FE3D07-8F61-4500-87BA-599A94EA77EB}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ~ Domain: Scanned in 00mn 00s ---\\ Titr_HJT34=Protocole additionnel (O18) O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - AppInit_DLLs: . (...) - C:\PROGRA~2\Wincert\WIN32C~1.dll ~ AppInit DLL: Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job [1070] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job [1074] ~ Scheduled Task: 7 Legitimates Filtered in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: (fsvista) . (...) - C:\Program Files\SFR\Pack Sécurité\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys ~ Drivers: 75 Legitimates Filtered in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU] -- Akamai O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM] -- {EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071} =>Adware.Boxore O42 - Logiciel: FileConverter 1.5 Toolbar - (.FileConverter 1.5.) [HKLM] -- FileConverter_1.5 Toolbar O42 - Logiciel: Full Tilt Poker - (.Full Tilt Poker.) [HKLM] -- {D4C9692E-4EFA-4DA0-8B7F-9439466D9E31} O42 - Logiciel: IB Updater Service - (...) [HKLM] -- WNLT =>Adware.InstallBrain O42 - Logiciel: Lollipop - (...) [HKCU] -- buqle =>Adware.Lollipop O42 - Logiciel: Search-Results Toolbar - (.APN LLC.) [HKLM] -- ilividtoolbarguid =>Adware.Bandoo O42 - Logiciel: SweetIM for Messenger 3.7 - (.SweetIM Technologies Ltd..) [HKLM] -- {A0C9DF2B-89B5-4483-8983-18A68200F1B4} =>PUP.SweetIM O42 - Logiciel: SweetPacks bundle uninstaller - (.SweetIM Technologies Ltd..) [HKLM] -- {953AA732-9AFB-49C9-84A4-7F96CA0A08DA} =>PUP.SweetIM O42 - Logiciel: Update Manager for SweetPacks 1.1 - (.SweetIM Technologies Ltd..) [HKLM] -- {EA8FA6BE-29BE-4AF2-9352-841F83215EB0} =>PUP.SweetIM O42 - Logiciel: Wajam - (.Wajam.) [HKLM] -- Wajam =>Toolbar.Wajam O42 - Logiciel: WiseConvert 1.5 Toolbar - (.WiseConvert 1.5.) [HKLM] -- WiseConvert_1.5 Toolbar =>Toolbar.Conduit O42 - Logiciel: iLivid - (.Bandoo Media Inc.) [HKLM] -- iLivid =>Adware.Bandoo ~ Logic: 119 Legitimates Filtered in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\ChatZum Toolbar] [HKCU\Software\Full Tilt Poker.fr] [HKCU\Software\Full Tilt Poker] [HKCU\Software\IncrediMail] [HKCU\Software\PartyFrance] [HKCU\Software\WNLT] =>Adware.IncrediBar [HKCU\Software\lollipop] =>Adware.Lollipop [HKLM\Software\ChatZum Toolbar] [HKLM\Software\FileConverter_1.5] [HKLM\Software\Full Tilt Poker] [HKLM\Software\IncrediMail] [HKLM\Software\Trymedia Systems] =>Adware.Trymedia [HKLM\Software\WiseConvert_1.5] =>Toolbar.Conduit [HKLM\Software\iLividSRTB] =>Adware.Bandoo [HKLM\Software\iNTERNET Turbo] ~ Key Software: 239 Legitimates Filtered in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 17/01/2013 - 23:22:35 - [5,017] ----D C:\Program Files\FileConverter_1.5 O43 - CFD: 06/02/2013 - 21:12:07 - [0] ----D C:\Program Files\GUM1E82.tmp O43 - CFD: 28/06/2013 - 15:13:56 - [0] ----D C:\Program Files\GUMEF72.tmp O43 - CFD: 20/10/2012 - 09:28:45 - [0,063] ----D C:\Program Files\OApps O43 - CFD: 17/01/2013 - 22:24:48 - [9,385] ----D C:\Program Files\Search Results Toolbar =>PUP.SearchResults O43 - CFD: 19/05/2011 - 19:01:50 - [0,038] ----D C:\Program Files\Universal Interactive O43 - CFD: 17/01/2013 - 22:57:30 - [5,049] ----D C:\Program Files\WiseConvert_1.5 =>Toolbar.Conduit O43 - CFD: 22/09/2012 - 10:18:45 - [1,929] ----D C:\Program Files\~Web Assistant =>Adware.IncrediBar O43 - CFD: 01/11/2012 - 22:03:00 - [0] ----D C:\ProgramData\GamesBar =>Adware.GamesBar O43 - CFD: 23/04/2012 - 16:48:52 - [0,000] ----D C:\ProgramData\Trymedia =>Adware.Trymedia O43 - CFD: 26/08/2013 - 18:19:52 - [42,847] ----D C:\Users\switch\AppData\Local\Akamai O43 - CFD: 05/05/2011 - 21:02:22 - [0,006] ----D C:\Users\switch\AppData\Local\FullTiltPoker O43 - CFD: 17/06/2011 - 03:19:32 - [0,647] ----D C:\Users\switch\AppData\Local\FullTiltPoker.fr O43 - CFD: 04/02/2013 - 22:12:53 - [0,357] ----D C:\Users\switch\AppData\Local\Lollipop =>Adware.Lollipop ~ 211 Dossiers CLSID vides (CLSID Empty Folders) ~ Program Folder: 457 Legitimates Filtered in 01mn 28s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.3B0A4F4217CA14CCBDE5A7138AF901A0] - 27/08/2013 - 09:11:44 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [23568] O44 - LFC:[MD5.3B0A4F4217CA14CCBDE5A7138AF901A0] - 27/08/2013 - 09:11:44 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [23568] O44 - LFC:[MD5.C2F920849BA625DF37E9738393F76C8A] - 27/08/2013 - 08:57:08 ---A- . (...) -- C:\Windows\System32\log.txt [44] ~ Files: 40 Legitimates Filtered in 00mn 06s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ MWPS: 16 Legitimates Filtered in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:[MD5.75A8B998EB259DD512F01EA25BEC7F3B] - 27/04/2010 - 10:56:44 ---A- . (...) -- C:\Windows\System32\Drivers\AppleCharger.sys [19496] O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029] ~ Drivers: 16 Legitimates Filtered in 00mn 00s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ~ ADS: Scanned in 00mn 00s ---\\ Liste les services legacy du registre (LALS) (O64) O64 - Services: CurCS - ??\??\???? - Pas de propriétaire (vtany) .(...) - LEGACY_VTANY O64 - Services: CurCS - ??\??\???? - Pas de propriétaire (xhunter1) .(...) - LEGACY_XHUNTER1 ~ Legacy: 82 Legitimates Filtered in 00mn 00s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.) ~ FASS Keys: 19 Legitimates Filtered in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.AOL - AOL.) -- C:\Program Files\AOL 9.0 VRa\aol.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {443789B7-F39C-4b5c-9287-DA72D38F4FE6} - (AOL Recherche) - http://search.aol.com O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKCU] {E36FB773-C83A-4e06-8E10-583D09EA35C6} [DefaultScope] - (Yahoo) - http://fr.search.yahoo.com =>Toolbar.Yahoo O69 - SBI: SearchScopes [HKCU] {E61467EF-7284-4e60-AFB6-96AE50F278AE} - (Google) - http://www.google.com ~ Keys: Scanned in 00mn 00s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][27/08/2013] (...) -- C:\Users\switch\AppData\Local\Temp\9urjaz7m.dll [0] [MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][27/08/2013] (...) -- C:\Users\switch\AppData\Local\Temp\wdslwx0x.dll [0] [MD5.F113E03804BEA40350F691B671534CC0] [SPRF][18/02/2003] (.Pas de propriétaire - bren MFC Application.) -- C:\Users\switch\Desktop\Autorun.exe [184395] [MD5.411D2645665B53B4FA4B153C6D76F2DD] [SPRF][11/07/2012] (...) -- C:\Users\switch\Desktop\decoder_del.bat [117] ~ Files: 8 Legitimates Filtered in 00mn 00s ---\\ Liste des exceptions du parefeu (FirewallRules) (O87) O87 - FAEL: "{964D02B3-1CDB-4D64-92E5-F59747FDE1E6}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\AOL 9.0 VR\waol.exe (.not file.) O87 - FAEL: "{A7EF5BCC-E216-45C7-86E0-B070C3E47510}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\AOL 9.0 VR\waol.exe (.not file.) O87 - FAEL: "{19937642-0D7F-4C29-B062-19D7F857A960}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe O87 - FAEL: "{5CA95792-9D0C-42DA-9A0F-75374D809C82}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe O87 - FAEL: "{C5FC46E7-EBA6-4624-8CD4-2EFCDA960EA8}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe O87 - FAEL: "{A1EB9627-7921-4B14-B124-525B7F43B036}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe O87 - FAEL: "{2356ED4D-3C9B-400E-9270-3C116C70185D}" | In - Private - P6 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe =>PUP.SearchResults O87 - FAEL: "{96CF5F99-82CC-484E-B09D-FB66A204060A}" | In - Private - P17 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe =>PUP.SearchResults O87 - FAEL: "{8BE9A466-2840-4AF8-A2E2-8FBA51D95D6A}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM O87 - FAEL: "{38777ED7-AF13-4074-BF21-5AEF2E5989B5}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM ~ Firewall: 290 Legitimates Filtered in 00mn 01s ---\\ Enumère les codes produits des logiciels (PUC) (O90) O90 - PUC: "1EAD96AE2CB1DE84BAA9425A8CCA0817" . (.Boxore Client.) -- C:\Windows\Installer\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}\boxore.ico =>Adware.Boxore O90 - PUC: "9EE58E3C298524145B73CBBED3CAC4D3" . (.Internet Explorer Toolbar 4.6 by SweetPacks.) -- C:\Windows\Installer\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}\ARPPRODUCTICON.exe =>PUP.SweetIM ~ Update Products: 76 Legitimates Filtered in 00mn 00s ---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) [MD5.A672E4C77ED7CCC851575B10B46CC8AD] [WIS][10/07/2012] (.IMinent - IMinent Toolbar.) -- C:\Windows\Installer\18e367.msi [1019392] =>Adware.IMBooster [MD5.04A8D3C35E6D6D379A2B4346D9A26B43] [WIS][03/11/2012] (.Driver Manager - Driver Manager.) -- C:\Windows\Installer\202733.msi [6008832] [MD5.DB30D95BB743A11B26CE4CA8ECE79350] [WIS][15/03/2013] (.Boxore OU - Boxore Client Installer.) -- C:\Windows\Installer\30f7dd.msi [1511424] =>Adware.Boxore [MD5.B1D3387302EDCDAAD857E49B12D87CEC] [WIS][11/03/2013] (.Driver Whiz - Driver Whiz.) -- C:\Windows\Installer\37659a.msi [5978112] [MD5.39509F7D4B7E345BE537D01B3E1ABEB9] [WIS][17/01/2013] (.SweetIM Technologies Ltd. - SweetIM for Messenger 3.7.) -- C:\Windows\Installer\4e0b2d.msi [3760128] =>PUP.SweetIM [MD5.46F2667ADB3EF8EFBEB0505D2FAD321B] [WIS][17/01/2013] (.SweetIM Technologies Ltd. - SweetPacks Toolbar for Internet Explorer 4.0.) -- C:\Windows\Installer\4e0b33.msi [3350528] =>PUP.SweetIM [MD5.3CD19859CD377AD00B30E4BEE49D374E] [WIS][17/01/2013] (.SweetIM Technologies Ltd. - Sweetpacks Communicator 1.1.) -- C:\Windows\Installer\4e0b39.msi [2997248] =>PUP.SweetIM [MD5.75D85870A4671CD092E5D8DA4A8B93BC] [WIS][17/01/2013] (.SweetIM Technologies Ltd. - SweetPacks bundle uninstaller.) -- C:\Windows\Installer\4e0b3f.msi [2579456] =>PUP.SweetIM [MD5.B67811645C5A3B8E4E4B1A1DB1EE271C] [WIS][17/01/2013] (.Boxore OU. - Software Update Helper.) -- C:\Windows\Installer\680459.msi [45056] =>Adware.Boxore [MD5.22C9E7805145D0A0C4C62DDB591D2DAE] [WIS][27/06/2012] (.Babylon Ltd - BabylonObjectInstaller.) -- C:\Windows\Installer\fa6bb7.msi [353280] =>Toolbar.Babylon ~ WIS: 82 Legitimates Filtered in 00mn 11s ---\\ Etat général des services not Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Auto 10/05/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe SS - | Demand 21/08/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Auto 23/10/2006 46640 | (AOL ACS) . (.AOL LLC.) - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe SS - | Demand 00\00\0000 0 | C:\Windows\System32\AppleChargerSrv.exe (AppleChargerSrv) . (...) - c:\system32\AppleChargerSrv.exe SS - | Auto 15/10/2009 223464 | (BCUService) . (.DeviceVM, Inc..) - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe SS - | Demand 15/03/2012 610472 | (FSDFWD) . (.F-Secure Corporation.) - C:\Program Files\SFR\Pack Sécurité\apps\ComputerSecurity\FWES\Program\fsdfwd.exe SS - | Auto 21/06/2012 163536 | (fshoster) . (.F-Secure Corporation.) - C:\Program Files\SFR\Pack Sécurité\fshoster32.exe SS - | Demand 15/03/2012 213672 | (FSMA) . (.F-Secure Corporation.) - C:\Program Files\SFR\Pack Sécurité\apps\ComputerSecurity\Common\FSMA32.exe SS - | Auto 25/06/2013 60352 | (FSORSPClient) . (.F-Secure Corporation.) - C:\Program Files\SFR\Pack Sécurité\apps\CCF_Reputation\fsorsp.exe SS - | Auto 24/06/2010 233472 | (FsUsbExService) . (.Teruten.) - C:\Windows\system32\FsUsbExService.exe SS - | Auto 06/04/2012 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 06/04/2012 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 10/11/2012 194032 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe SS - | Auto 30/09/2009 268824 | (LMS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe SS - | Auto 23/04/2010 25824 | (MemeoBackgroundService) . (.Memeo.) - C:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe SS - | Auto 20/03/2013 132504 | (Norton PC Checkup Application Launcher) . (.Symantec Corporation.) - C:\Program Files\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe SS - | Auto 18/01/2013 639776 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SS - | Auto 25/02/2013 1260320 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe SS - | Auto 30/04/2010 14088 | (SeagateDashboardService) . (.Memeo.) - C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe SS - | Demand 24/08/2013 563624 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files\Common Files\Steam\SteamService.exe SS - | Auto 18/01/2013 383264 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe SS - | Auto 30/09/2009 2320920 | (UNS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe SS - | Demand 14/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SS - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 13s ---\\ Scan Additionnel (O88) Database Version : v2.12866 - (26/08/2013) Clés trouvées (Keys found) : 220 Valeurs trouvées (Values found) : 3 Dossiers trouvés (Folders found) : 10 Fichiers trouvés (Files found) : 17 [HKLM\Software\Google\Chrome\Extensions\pbpohikckhbcljgombipcdoinkaedlfa] =>Spyware.SmartDisplay^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{19803860-B306-423C-BBB5-F60A7D82CDE5}] =>Toolbar.Conduit^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}] =>Adware.Bandoo^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CFCB809C-3A22-4616-A916-6C007BD9D920}] =>Toolbar.Conduit^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WNLT] =>Adware.InstallBrain^ [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\buqle] =>Adware.Lollipop^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ilividtoolbarguid] =>Adware.Bandoo^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{953AA732-9AFB-49C9-84A4-7F96CA0A08DA}] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Wajam] =>Toolbar.Wajam^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WiseConvert_1.5 Toolbar] =>Toolbar.Conduit^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\iLivid] =>Adware.Bandoo^ [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent [HKLM\Software\Classes\CLSID\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent [HKLM\Software\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}] =>Toolbar.Agent [HKLM\Software\Classes\AppID\{186E19A3-B909-4F48-B687-BB81EB8BC7CE}] =>Trojan.BHO [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{19803860-B306-423C-BBB5-F60A7D82CDE5}] =>Toolbar.Agent [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{19803860-B306-423C-BBB5-F60A7D82CDE5}] =>Toolbar.Agent [HKLM\Software\Classes\CLSID\{19803860-B306-423C-BBB5-F60A7D82CDE5}] =>Toolbar.Agent [HKLM\Software\Microsoft\Code Store Database\Distribution Units\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}] =>Adware.MetaStream [HKLM\Software\Classes\TypeLib\{1FDC0B61-91AC-4157-9B27-CAD9A09AB67E}] =>Adware.Bandoo [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{26c9e18c-3717-4be1-a225-04e4471f5b6e}] =>Adware.IMBooster [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{26c9e18c-3717-4be1-a225-04e4471f5b6e}] =>Adware.IMBooster [HKLM\Software\Classes\CLSID\{26c9e18c-3717-4be1-a225-04e4471f5b6e}] =>Adware.IMBooster [HKLM\Software\Classes\CLSID\{27100E88-8830-44ED-9D6A-CA24F3523F39}] =>Toolbar.Agent [HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{27100E88-8830-44ED-9D6A-CA24F3523F39}] =>Toolbar.Agent [HKLM\Software\Classes\CLSID\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit [HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit [HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit [HKLM\Software\Classes\CLSID\{493CCB71-DCAD-4257-9F08-8750F63BD792}] =>Toolbar.Agent [HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{493CCB71-DCAD-4257-9F08-8750F63BD792}] =>Toolbar.Agent [HKLM\Software\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}] =>Toolbar.Wajam [HKLM\Software\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}] =>Toolbar.Babylon [HKCU\Software\Microsoft\Office\Word\Addins\BabylonOfficeAddin.OfficeAddin] =>Toolbar.Babylon [HKCU\Software\Microsoft\Office\PowerPoint\Addins\BabylonOfficeAddin.OfficeAddin] =>Toolbar.Babylon [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo [HKLM\Software\Classes\CLSID\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CFCB809C-3A22-4616-A916-6C007BD9D920}] =>Toolbar.Agent [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CFCB809C-3A22-4616-A916-6C007BD9D920}] =>Toolbar.Agent [HKLM\Software\Classes\CLSID\{CFCB809C-3A22-4616-A916-6C007BD9D920}] =>Toolbar.Agent [HKLM\Software\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}] =>Adware.Bandoo [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635] =>PUP.SweetIM [HKLM\Software\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}] =>Toolbar.Babylon [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr [HKLM\Software\Classes\CLSID\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr [HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr [HKLM\Software\Classes\AppID\BrowserConnection.dll] =>Adware.Bandoo [HKLM\Software\Classes\BrowserConnection.Loader] =>Adware.Bandoo [HKLM\Software\Classes\BrowserConnection.Loader.1] =>Adware.Bandoo [HKLM\Software\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7] =>Toolbar.Ask [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8] =>Toolbar.Ask [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01] =>Toolbar.Ask [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED] =>Toolbar.Ask [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472] =>Toolbar.Ask [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296] =>Toolbar.Ask [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888] =>Toolbar.Ask [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9] =>Adware.MyWebSearch [HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater] =>Toolbar.Wajam [HKCU\Software\ChatZum Toolbar] =>Toolbar.ChatZum [HKLM\Software\ChatZum Toolbar] =>Toolbar.ChatZum [HKCU\Software\AppDataLow\Software\FileConverter_1.5] =>Toolbar.Agent [HKLM\Software\FileConverter_1.5] =>Toolbar.Agent [HKCU\Software\lollipop] =>Adware.Lollipop [HKLM\Software\iLividSRTB] =>Adware.Bandoo [HKCU\Software\PartyFrance] =>Casino.OnlineGames [HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM [HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM [HKCU\Software\AppDataLow\Software\WiseConvert_1.5] =>Toolbar.Conduit [HKLM\Software\WiseConvert_1.5] =>Toolbar.Conduit [HKCU\Software\WNLT] =>Adware.IncrediBar [HKLM\Software\WNLT] =>Adware.IncrediBar [HKLM\Software\Microsoft\Tracing\Babylon_RASAPI32] =>Toolbar.Babylon [HKLM\Software\Microsoft\Tracing\Babylon_RASMANCS] =>Toolbar.Babylon [HKLM\Software\Microsoft\Tracing\IncredibarToolbar_RASAPI32] =>Adware.IncrediBar [HKLM\Software\Microsoft\Tracing\IncredibarToolbar_RASMANCS] =>Adware.IncrediBar [HKLM\Software\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon [HKLM\Software\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon [HKLM\Software\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>Toolbar.Babylon [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\FileConverter_1.5 Toolbar] =>Toolbar.Agent [HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon [HKLM\Software\Microsoft\Tracing\offerbox_RASAPI32] =>PUP.OfferBox [HKLM\Software\Microsoft\Tracing\offerbox_RASMANCS] =>PUP.OfferBox [HKLM\Software\Microsoft\Tracing\OfferBoxHTTPProxy_RASAPI32] =>PUP.OfferBox [HKLM\Software\Microsoft\Tracing\OfferBoxHTTPProxy_RASMANCS] =>PUP.OfferBox [HKLM\Software\Microsoft\Tracing\OfferBoxUpdateService_RASAPI32] =>PUP.OfferBox [HKLM\Software\Microsoft\Tracing\OfferBoxUpdateService_RASMANCS] =>PUP.OfferBox [HKLM\Software\Classes\AppID\priam_bho.DLL] =>Toolbar.Wajam [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore [HKLM\Software\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM [HKLM\Software\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}] =>PUP.SweetIM [HKLM\Software\Classes\AppID\secman.DLL] =>Toolbar.Babylon [HKLM\Software\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}] =>Toolbar.Agent [HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM [HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Tarma [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Tarma [HKLM\Software\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}] =>Toolbar.Babylon [HKLM\Software\Classes\TypeLib\{A1489C85-4F6F-48C4-AC9E-18B63AF4703E}] =>Toolbar.Babylon [HKLM\Software\Classes\TypeLib\{F310F027-15CB-4A7F-B10D-3A4AFB5013A5}] =>Toolbar.Babylon [HKLM\Software\Classes\Installer\Features\3192AA38321C641458DBDAF83979D193] =>Toolbar.Babylon [HKLM\Software\Classes\Installer\Products\3192AA38321C641458DBDAF83979D193] =>Toolbar.Babylon [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3192AA38321C641458DBDAF83979D193] =>Toolbar.Babylon [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2] =>Toolbar.Ask [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA] =>PUP.SweetIM [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420] =>PUP.SweetIM [HKLM\Software\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF}] =>Adware.Bandoo [HKLM\Software\Classes\CLSID\{CE4DB5A3-58E6-41F1-8761-47238DF4F468}] =>Adware.Bandoo [HKLM\Software\Classes\TypeLib\{75E8DA27-44AF-40AE-927C-F2EEC99D65B1}] =>Adware.Bandoo [HKLM\Software\Classes\Interface\{8DEC3C75-9A5D-446C-B7B5-E4AB4FDD6309}] =>Adware.Bandoo [HKLM\Software\Classes\TypeLib\{B00FE392-639D-4688-976E-A1BFF368CB96}] =>Adware.Agent [HKLM\Software\Classes\Interface\{3AE26843-9171-4F23-A8E5-5421701276A4}] =>Adware.Agent [HKLM\Software\Classes\Installer\Features\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore [HKLM\Software\Classes\Installer\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore [HKLM\Software\Classes\TypeLib\{5C9A2304-70A5-11D5-AFB0-0050DAC67890}] =>Toolbar.Conduit [HKLM\Software\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}] =>Toolbar.Conduit [HKLM\Software\Classes\Interface\{928FE5E7-D557-46B7-8AF6-17ACCE1FB4ED}] =>Toolbar.Conduit [HKLM\Software\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}] =>Toolbar.Conduit [HKLM\Software\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}] =>Toolbar.Conduit [HKLM\Software\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}] =>Toolbar.Conduit [HKLM\Software\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}] =>Toolbar.Conduit [HKLM\Software\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}] =>Toolbar.Conduit [HKLM\Software\Classes\CLSID\{947217BD-E967-400A-B14A-BA851A8EDCBB}] =>Toolbar.Conduit [HKLM\Software\Classes\.bdc] =>Toolbar.Conduit [HKLM\Software\Classes\.bgl] =>Toolbar.Conduit [HKLM\Software\Classes\.bof] =>Toolbar.Conduit [HKLM\Software\Microsoft\Tracing\boxore_RASAPI32] =>Adware.Boxore [HKLM\Software\Microsoft\Tracing\boxore_RASMANCS] =>Adware.Boxore [HKLM\Software\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}] =>Toolbar.Babylon [HKLM\Software\Classes\CLSID\{BD5843ED-13C4-4EFF-ACE9-56CEE22BC087}] =>Toolbar.AVGSearch [HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand] =>Adware.IMBooster [HKLM\Software\Classes\AOLTB.AOLToolBand.1] =>Toolbar.Agent [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836] =>PUP.SweetIM^ [HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks]:{19803860-b306-423c-bbb5-f60a7d82cde5} =>Toolbar.Conduit^ [HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{f34c9277-6577-4dff-b2d7-7d58092f272f} =>PUP.SearchResults^ [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:ROC_roc_dec12 =>Toolbar.AVGSearch^ C:\Program Files\Search Results Toolbar =>PUP.SearchResults^ C:\Program Files\WiseConvert_1.5 =>Toolbar.Conduit^ C:\Program Files\~Web Assistant =>Adware.IncrediBar^ C:\ProgramData\GamesBar =>Adware.GamesBar^ C:\ProgramData\Trymedia =>Adware.Trymedia^ C:\Users\switch\AppData\Local\Lollipop =>Adware.Lollipop^ C:\Program Files\OApps =>Toolbar.Agent C:\Program Files\DeviceVM =>Toolbar.Splashtop C:\Users\switch\AppData\LocalLow\searchresultstb =>Toolbar.Agent C:\Users\switch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa =>Spyware.SmartDisplay C:\Program Files\WiseConvert_1.5\prxtbWis0.dll =>Toolbar.Conduit^ C:\Program Files\Search Results Toolbar\Datamngr\BrowserConnection.dll =>Adware.Bandoo^ C:\Program Files\FileConverter_1.5\prxtbFil0.dll =>Toolbar.Conduit^ C:\Program Files\SEARCH~1\Datamngr\SRTOOL~1\searchresultsDx.dll =>PUP.SearchResults^ C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google^ [HKLM\Software\Trymedia Systems] =>Adware.Trymedia^ C:\Program Files\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe =>PUP.SearchResults^ C:\Windows\Installer\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}\boxore.ico =>Adware.Boxore^ C:\Windows\Installer\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}\ARPPRODUCTICON.exe =>PUP.SweetIM^ C:\Windows\Installer\18e367.msi =>Adware.IMBooster^ C:\Windows\Installer\30f7dd.msi =>Adware.Boxore^ C:\Windows\Installer\4e0b2d.msi =>PUP.SweetIM^ C:\Windows\Installer\4e0b33.msi =>PUP.SweetIM^ C:\Windows\Installer\4e0b39.msi =>PUP.SweetIM^ C:\Windows\Installer\4e0b3f.msi =>PUP.SweetIM^ C:\Windows\Installer\680459.msi =>Adware.Boxore^ C:\Windows\Installer\fa6bb7.msi =>Toolbar.Babylon^ ~ Additionnel Scan: 258378 Items scanned in 00mn 09s ---\\ Récapitulatif des détections trouvées sur votre station ~ http://nicolascoolman.webs.com30319724-pup-searchresults =>PUP.SearchResults ~ http://nicolascoolman.webs.com29507721-toolbar-conduit =>Toolbar.Conduit ~ http://nicolascoolman.webs.com26611092-adware-bandoo =>Adware.Bandoo ~ http://nicolascoolman.webs.com32384220-toolbar-google =>Toolbar.Google ~ http://nicolascoolman.webs.com26627369-toolbar-babylon =>Toolbar.Babylon ~ http://nicolascoolman.webs.com26626977-adware-boxore =>Adware.Boxore ~ http://nicolascoolman.webs.com26907365-adware-installbrain =>Adware.InstallBrain ~ http://nicolascoolman.webs.com26630902-adware-lollipop =>Adware.Lollipop ~ http://nicolascoolman.webs.com29216159-pup-sweetim =>PUP.SweetIM ~ http://nicolascoolman.webs.com27379491-toolbar-wajam =>Toolbar.Wajam ~ http://nicolascoolman.webs.com26898222-adware-incredibar =>Adware.Incredibar ~ http://nicolascoolman.webs.com29710349-adware-trymedia =>Adware.Trymedia ~ http://nicolascoolman.webs.com26808625-adware-gamesbar =>Adware.GamesBar ~ http://nicolascoolman.webs.com30268689-toolbar-yahoo =>Toolbar.Yahoo ~ http://nicolascoolman.webs.com26684723-adware-imbooster =>Adware.IMBooster ~ http://nicolascoolman.webs.com27046242-adware-metastream =>Adware.MetaStream ~ http://nicolascoolman.webs.com27583992-pup-datamngr =>PUP.Datamngr ~ http://nicolascoolman.webs.com28927746-toolbar-ask =>Toolbar.Ask ~ http://nicolascoolman.webs.com27146838-adware-mywebsearch =>Adware.MyWebSearch ~ http://nicolascoolman.webs.com28606910-pup-offerbox =>PUP.OfferBox ~ http://nicolascoolman.webs.com29637859-toolbar-tarma =>Toolbar.Tarma ~ MSI: 21 link(s) detected in 00mn 09s ~ 1487 Legitimates filtered by white list End of the scan (801 lines in 02mn 37s)(0)