Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ Rapport de ZHPDiag v2013.8.26.36 - Nicolas Coolman (26/08/2013)
~ Lanc� par switch (27/08/2013 16:08:12)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version : Version � jour.
~ Liste blanche : Activ�e par le programme
~ El�vation des Privil�ges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16660
GCIE: Google Chrome v24.0.1312.52 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Fran�ais
Windows 7 Home Premium Edition, 32-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
Software Protection Service (Protection logicielle) : KO
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du syst�me
Computer Security 12.56.100.0
Pack S�curit� v1.57.391.0
Pack S�curit� v1.57.391.0
Windows Defender W7
---\\ Logiciels d'optimisation du syst�me
CCleaner v3.20 =>Piriform Ltd
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 11 ActiveX
Adobe Reader X
---\\ Informations sur le syst�me
~ Processor: x86 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Sans �chec avec prise en charge du r�seau (Fail-safe with network boot)
Total RAM: 3575 MB (77% free)
System Restore: Activ� (Enable)
System drive C: has 29 GB (13%) free of 225 GB
---\\ Mode de connexion au syst�me
~ Computer Name: SWITCH-PC
~ User Name: switch
~ All Users Names: UpdatusUser, switch, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : C:\Users\switch\AppData\Roaming\
~ %Desktop% : C:\Users\switch\Desktop\
~ %Favorites% : C:\Users\switch\Favoris\
~ %LocalAppData% : C:\Users\switch\AppData\Local\
~ %StartMenu% : C:\Users\switch\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enum�ration des unit�s disques
C:\ Hard drive, Flash drive, Thumb drive (Free 29 Go of 225 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 7 Go of 8 Go)
E:\ CD-ROM drive (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Etat du Centre de S�curit� Windows
~ Security Center: 26 Legitimates Filtered in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.DAA3903F06116AE9EE7AC1D1B93684A4] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/07/2013 - 04:13:24.) -- C:\Windows\System32\wininet.dll [1767936]
[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.20/11/2010 - 13:17:54.) -- C:\Windows\System32\Winlogon.exe [286720]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Biblioth�que de licences.) (.20/11/2010 - 13:21:24.) -- C:\Windows\System32\sppcomapi.dll [193536]
[MD5.9EBBBA55060F786F0FCAA3893BFA2806] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:18:03.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 09:38:10.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 09:42:32.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 10:59:29.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:17:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123904]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 09:39:44.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.12/04/2013 - 14:45:29.) -- C:\Windows\system32\Drivers\ntfs.sys [1211752]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 09:39:17.) -- C:\Windows\system32\Drivers\tdx.sys [74752]
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.20/11/2010 - 13:30:16.) -- C:\Windows\system32\Drivers\volsnap.sys [245632]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 3/1136
~ Mes musiques (My Musics) : 60/412
~ Mes Videos (My Videos) : 2/14
~ Mes Favoris (My Favorites) : 1/56
~ Mes Documents (My Documents) : 12/3270
~ Mon Bureau (My Desktop) : 1/392
~ Menu demarrer (Programs) : 1/41
~ Hidden Files: Scanned in 00mn 19s
---\\ Processus lanc�s au d�marrage du syst�me
[MD5.A63DC5C2EA944E6657203E0C8EDEAF61] - (.Microsoft Corporation - COM Surrogate.) -- C:\Windows\system32\DllHost.exe [7168] [PID.1640]
[MD5.7BA1862B8A5698DC5FCFDFF3BC359DE9] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [770648] [PID.1440]
[MD5.CC19B60A901A415624F5771F1F0A6060] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1248360] [PID.1240]
[MD5.80A5A61530384C6A3614C745217919DE] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7837184] [PID.1320]
~ Processes Running: Scanned in 00mn 00s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\switch\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default] http://aol.fr
G1 - GCS: Preference [User Data\Default] http://dts.search-results.com =>PUP.SearchResults
G2 - GCE: Preference [User Data\Default] [pbpohikckhbcljgombipcdoinkaedlfa] Smart Display v.1.6 (Activ�) =>Spyware.SmartDisplay
~ Google Browser: 4 Legitimates Filtered in 00mn 06s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@oberon-media.com/ONCAdapter] - (...) -- C:\Program Files\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (.not file.)
~ Firefox Browser: 15 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.chatzum.com
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: WiseConvert 1.5 Toolbar - {19803860-b306-423c-bbb5-f60a7d82cde5} . (...) (No version) -- (.not file.) =>Toolbar.Conduit
R3 - URLSearchHook: FileConverter 1.5 Toolbar - {cfcb809c-3a22-4616-a916-6c007bd9d920} . (...) (No version) -- (.not file.)
~ IE Browser: 16 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: WiseConvert 1.5 - {19803860-b306-423c-bbb5-f60a7d82cde5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\WiseConvert_1.5\prxtbWis0.dll =>Toolbar.Conduit
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} . (.AOL - Librairie de lien dynamique AOL Toolbar pou.) -- C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O2 - BHO: DataMngr - {C1ED9DA0-AFD0-4b90-AC6A-D3874F591014} . (.Bandoo Media Inc - Url Helper.) -- C:\Program Files\Search Results Toolbar\Datamngr\BrowserConnection.dll =>Adware.Bandoo
O2 - BHO: FileConverter 1.5 - {cfcb809c-3a22-4616-a916-6c007bd9d920} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\FileConverter_1.5\prxtbFil0.dll =>Toolbar.Conduit
O2 - BHO: BHO_PROJECT - {D0DBA715-D402-4801-9F0A-4A31165F6CAA} . (...) -- C:\Program Files\OApps\bho_project.dll (.not file.)
~ BHO: 24 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: AOL Toolbar - [HKLM]{DE9C389F-3316-41A7-809B-AA305ED9D922} . (.AOL - Librairie de lien dynamique AOL Toolbar pou.) -- C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O3 - Toolbar: Browsing Protection Toolbar - [HKLM]{265EEE8E-3228-44D3-AEA5-F7FDF5860049} . (.F-Secure Corporation - Litmus.) -- C:\Program Files\SFR\Pack S�curit�\apps\OnlineSafety\BPP\iescript\BaseLitmus.dll
O3 - Toolbar: Search-Results Toolbar - [HKLM]{f34c9277-6577-4dff-b2d7-7d58092f272f} . (...) -- C:\Program Files\SEARCH~1\Datamngr\SRTOOL~1\searchresultsDx.dll =>PUP.SearchResults
O3 - Toolbar: WiseConvert 1.5 Toolbar - [HKLM]{19803860-b306-423c-bbb5-f60a7d82cde5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\WiseConvert_1.5\prxtbWis0.dll =>Toolbar.Conduit
O3 - Toolbar: FileConverter 1.5 Toolbar - [HKLM]{cfcb809c-3a22-4616-a916-6c007bd9d920} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\FileConverter_1.5\prxtbFil0.dll =>Toolbar.Conduit
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Cl� orpheline
~ Toolbar: Scanned in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [BCU] . (.DeviceVM, Inc. - Browser Configuration Utility.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [HostManager] . (.America Online, Inc. - AOL.) -- C:\Program Files\Common Files\AOL\1304624729\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Run: [ROC_roc_dec12] C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe (.not file.) =>Toolbar.AVGSearch
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [F-Secure Hoster (44996)] . (.F-Secure Corporation - F-Secure Host Process.) -- C:\Program Files\SFR\Pack S�curit�\fshoster32.exe
O4 - HKLM\..\Run: [F-Secure Manager] . (.F-Secure Corporation - F-Secure Settings and Statistics.) -- C:\Program Files\SFR\Pack S�curit�\apps\ComputerSecurity\Common\FSM32.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [SmartSoft PDF Printer Agent] . (...) -- C:\Program Files\Convertisseur PDF Pro\SmartSoft PDF Printer Agent.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O4 - HKLM\..\Run: [Memeo Instant Backup] . (.Memeo Inc. - Memeo Backup Launcher.) -- C:\Program Files\Memeo\AutoBackup\MemeoLauncher2.exe
O4 - HKLM\..\Run: [Memeo AutoSync] . (.Memeo Inc. - Memeo AutoBackup Launcher.) -- C:\Program Files\Memeo\AutoSync\MemeoLauncher2.exe
O4 - HKLM\..\Run: [Memeo Send] . (.Pas de propri�taire - Memeo Launcher.) -- C:\Program Files\Memeo\Memeo Send\MemeoLauncher.exe
O4 - HKLM\..\Run: [Seagate Dashboard] . (.Pas de propri�taire - Memeo Dashboard Launcher.) -- C:\Program Files\Seagate\Seagate Dashboard\MemeoLauncher.exe
O4 - HKCU\..\Run: [msnmsgr] ~"C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.)
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propri�t�s de la connexion SFR.) -- C:\Program Files\SFR\Kit\9PROPS.exe
O4 - HKCU\..\Run: [Driver Manager] . (.PC Drivers Headquarters - DriverManager.) -- C:\Program Files\Driver Manager\Driver Manager\DriverManager.exe
O4 - HKCU\..\Run: [KiesPDLR] . (.Samsung - KiesPDLR.) -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files\Samsung\Kies\KiesAirMessage.exe
O4 - HKCU\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\Kies.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\switch\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [Driver Whiz] . (.PC Drivers Headquarters - Driver Whiz.) -- C:\Program Files\Driver Whiz\Driver Whiz\DriverWhiz.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [msnmsgr] ~"C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.)
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propri�t�s de la connexion SFR.) -- C:\Program Files\SFR\Kit\9PROPS.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [Driver Manager] . (.PC Drivers Headquarters - DriverManager.) -- C:\Program Files\Driver Manager\Driver Manager\DriverManager.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [KiesPDLR] . (.Samsung - KiesPDLR.) -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files\Samsung\Kies\KiesAirMessage.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\Kies.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\switch\AppData\Local\Akamai\netsession_win.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [Driver Whiz] . (.PC Drivers Headquarters - Driver Whiz.) -- C:\Program Files\Driver Whiz\Driver Whiz\DriverWhiz.exe
~ Application: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar: LibreOffice Base.lnk . (.The Document Foundation - LibreOffice Base.) -- C:\Program Files\LibreOffice 3\program\sbase.exe
O4 - GS\TaskBar: LibreOffice Calc.lnk . (.The Document Foundation - LibreOffice Calc.) -- C:\Program Files\LibreOffice 3\program\scalc.exe
O4 - GS\TaskBar: LibreOffice Impress.lnk . (.The Document Foundation - LibreOffice Impress.) -- C:\Program Files\LibreOffice 3\program\simpress.exe
O4 - GS\TaskBar: LibreOffice Writer.lnk . (.The Document Foundation - LibreOffice Writer.) -- C:\Program Files\LibreOffice 3\program\swriter.exe
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Programs: iLivid.lnk . (...) -- C:\Users\switch\AppData\Local\iLivid\iLivid.exe (.not file.) =>Adware.Bandoo
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: AOL 9.0 VR.lnk . (.AOL - AOL.) -- C:\Program Files\AOL 9.0 VRa\aol.exe
O4 - GS\QuickLaunch: Babylon.lnk . (...) -- C:\Program Files\Babylon\Babylon-Pro\Babylon.exe (.not file.) =>Toolbar.Babylon
O4 - GS\QuickLaunch: iLivid.lnk . (...) -- C:\Users\switch\AppData\Local\iLivid\iLivid.exe (.not file.) =>Adware.Bandoo
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Picasa 3.lnk . (.Google Inc. - Picasa.) -- C:\Program Files\Google\Picasa3\Picasa3.exe
O4 - GS\QuickLaunch: Samsung Kies.lnk . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\Kies.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Desktop: Alliance of Valiant Arms FR.lnk . (.Aeria Games & Entertainment - Ignite Launcher.) -- C:\AeriaGames\AVA-FR\aeria_launcher.exe
O4 - Global Startup: C:\Users\switch\Desktop\Call of Duty Modern Warfare 3 - Multiplayer.url . (...) -- C:\Users\switch\Desktop\Call of Duty Modern Warfare 3 - Multiplayer.url
~ Global Startup: Scanned in 00mn 00s
---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} . (.AOL - AOL Toolbar.) -- c:\program files\aol\aol toolbar 4.0\resources\fr-FR\aoltbres.dll
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains] http.aeriagames.com
~ IE Zone Confiance: Scanned in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
~ Objets ActiveX: Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{F2FE3D07-8F61-4500-87BA-599A94EA77EB}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{F2FE3D07-8F61-4500-87BA-599A94EA77EB}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{F2FE3D07-8F61-4500-87BA-599A94EA77EB}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Titr_HJT34=Protocole additionnel (O18)
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\PROGRA~2\Wincert\WIN32C~1.dll
~ AppInit DLL: Scanned in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job [1070]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job [1074]
~ Scheduled Task: 7 Legitimates Filtered in 00mn 00s
---\\ Pilotes lanc�s au d�marrage du syst�me (O41)
O41 - Driver: (fsvista) . (...) - C:\Program Files\SFR\Pack S�curit�\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys
~ Drivers: 75 Legitimates Filtered in 00mn 00s
---\\ Logiciels install�s (O42)
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU] -- Akamai
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM] -- {EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071} =>Adware.Boxore
O42 - Logiciel: FileConverter 1.5 Toolbar - (.FileConverter 1.5.) [HKLM] -- FileConverter_1.5 Toolbar
O42 - Logiciel: Full Tilt Poker - (.Full Tilt Poker.) [HKLM] -- {D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}
O42 - Logiciel: IB Updater Service - (...) [HKLM] -- WNLT =>Adware.InstallBrain
O42 - Logiciel: Lollipop - (...) [HKCU] -- buqle =>Adware.Lollipop
O42 - Logiciel: Search-Results Toolbar - (.APN LLC.) [HKLM] -- ilividtoolbarguid =>Adware.Bandoo
O42 - Logiciel: SweetIM for Messenger 3.7 - (.SweetIM Technologies Ltd..) [HKLM] -- {A0C9DF2B-89B5-4483-8983-18A68200F1B4} =>PUP.SweetIM
O42 - Logiciel: SweetPacks bundle uninstaller - (.SweetIM Technologies Ltd..) [HKLM] -- {953AA732-9AFB-49C9-84A4-7F96CA0A08DA} =>PUP.SweetIM
O42 - Logiciel: Update Manager for SweetPacks 1.1 - (.SweetIM Technologies Ltd..) [HKLM] -- {EA8FA6BE-29BE-4AF2-9352-841F83215EB0} =>PUP.SweetIM
O42 - Logiciel: Wajam - (.Wajam.) [HKLM] -- Wajam =>Toolbar.Wajam
O42 - Logiciel: WiseConvert 1.5 Toolbar - (.WiseConvert 1.5.) [HKLM] -- WiseConvert_1.5 Toolbar =>Toolbar.Conduit
O42 - Logiciel: iLivid - (.Bandoo Media Inc.) [HKLM] -- iLivid =>Adware.Bandoo
~ Logic: 119 Legitimates Filtered in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ChatZum Toolbar]
[HKCU\Software\Full Tilt Poker.fr]
[HKCU\Software\Full Tilt Poker]
[HKCU\Software\IncrediMail]
[HKCU\Software\PartyFrance]
[HKCU\Software\WNLT] =>Adware.IncrediBar
[HKCU\Software\lollipop] =>Adware.Lollipop
[HKLM\Software\ChatZum Toolbar]
[HKLM\Software\FileConverter_1.5]
[HKLM\Software\Full Tilt Poker]
[HKLM\Software\IncrediMail]
[HKLM\Software\Trymedia Systems] =>Adware.Trymedia
[HKLM\Software\WiseConvert_1.5] =>Toolbar.Conduit
[HKLM\Software\iLividSRTB] =>Adware.Bandoo
[HKLM\Software\iNTERNET Turbo]
~ Key Software: 239 Legitimates Filtered in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 17/01/2013 - 23:22:35 - [5,017] ----D C:\Program Files\FileConverter_1.5
O43 - CFD: 06/02/2013 - 21:12:07 - [0] ----D C:\Program Files\GUM1E82.tmp
O43 - CFD: 28/06/2013 - 15:13:56 - [0] ----D C:\Program Files\GUMEF72.tmp
O43 - CFD: 20/10/2012 - 09:28:45 - [0,063] ----D C:\Program Files\OApps
O43 - CFD: 17/01/2013 - 22:24:48 - [9,385] ----D C:\Program Files\Search Results Toolbar =>PUP.SearchResults
O43 - CFD: 19/05/2011 - 19:01:50 - [0,038] ----D C:\Program Files\Universal Interactive
O43 - CFD: 17/01/2013 - 22:57:30 - [5,049] ----D C:\Program Files\WiseConvert_1.5 =>Toolbar.Conduit
O43 - CFD: 22/09/2012 - 10:18:45 - [1,929] ----D C:\Program Files\~Web Assistant =>Adware.IncrediBar
O43 - CFD: 01/11/2012 - 22:03:00 - [0] ----D C:\ProgramData\GamesBar =>Adware.GamesBar
O43 - CFD: 23/04/2012 - 16:48:52 - [0,000] ----D C:\ProgramData\Trymedia =>Adware.Trymedia
O43 - CFD: 26/08/2013 - 18:19:52 - [42,847] ----D C:\Users\switch\AppData\Local\Akamai
O43 - CFD: 05/05/2011 - 21:02:22 - [0,006] ----D C:\Users\switch\AppData\Local\FullTiltPoker
O43 - CFD: 17/06/2011 - 03:19:32 - [0,647] ----D C:\Users\switch\AppData\Local\FullTiltPoker.fr
O43 - CFD: 04/02/2013 - 22:12:53 - [0,357] ----D C:\Users\switch\AppData\Local\Lollipop =>Adware.Lollipop
~ 211 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 457 Legitimates Filtered in 01mn 28s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.3B0A4F4217CA14CCBDE5A7138AF901A0] - 27/08/2013 - 09:11:44 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [23568]
O44 - LFC:[MD5.3B0A4F4217CA14CCBDE5A7138AF901A0] - 27/08/2013 - 09:11:44 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [23568]
O44 - LFC:[MD5.C2F920849BA625DF37E9738393F76C8A] - 27/08/2013 - 08:57:08 ---A- . (...) -- C:\Windows\System32\log.txt [44]
~ Files: 40 Legitimates Filtered in 00mn 06s
---\\ Enum�ration des cl�s de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Legitimates Filtered in 00mn 00s
---\\ Liste des pilotes du syst�me (SDL) (O58)
O58 - SDL:[MD5.75A8B998EB259DD512F01EA25BEC7F3B] - 27/04/2010 - 10:56:44 ---A- . (...) -- C:\Windows\System32\Drivers\AppleCharger.sys [19496]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
~ Drivers: 16 Legitimates Filtered in 00mn 00s
---\\ Liste des outils de d�sinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s
---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - ??\??\???? - Pas de propri�taire (vtany) .(...) - LEGACY_VTANY
O64 - Services: CurCS - ??\??\???? - Pas de propri�taire (xhunter1) .(...) - LEGACY_XHUNTER1
~ Legacy: 82 Legitimates Filtered in 00mn 00s
---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 19 Legitimates Filtered in 00mn 00s
---\\ Menu de d�marrage Internet (SMI) (O68)
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.AOL - AOL.) -- C:\Program Files\AOL 9.0 VRa\aol.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {443789B7-F39C-4b5c-9287-DA72D38F4FE6} - (AOL Recherche) - http://search.aol.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {E36FB773-C83A-4e06-8E10-583D09EA35C6} [DefaultScope] - (Yahoo) - http://fr.search.yahoo.com =>Toolbar.Yahoo
O69 - SBI: SearchScopes [HKCU] {E61467EF-7284-4e60-AFB6-96AE50F278AE} - (Google) - http://www.google.com
~ Keys: Scanned in 00mn 00s
---\\ Recherche particuli�re � la racine du syst�me (SPRF) (O84)
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][27/08/2013] (...) -- C:\Users\switch\AppData\Local\Temp\9urjaz7m.dll [0]
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][27/08/2013] (...) -- C:\Users\switch\AppData\Local\Temp\wdslwx0x.dll [0]
[MD5.F113E03804BEA40350F691B671534CC0] [SPRF][18/02/2003] (.Pas de propri�taire - bren MFC Application.) -- C:\Users\switch\Desktop\Autorun.exe [184395]
[MD5.411D2645665B53B4FA4B153C6D76F2DD] [SPRF][11/07/2012] (...) -- C:\Users\switch\Desktop\decoder_del.bat [117]
~ Files: 8 Legitimates Filtered in 00mn 00s
---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "{964D02B3-1CDB-4D64-92E5-F59747FDE1E6}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\AOL 9.0 VR\waol.exe (.not file.)
O87 - FAEL: "{A7EF5BCC-E216-45C7-86E0-B070C3E47510}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\AOL 9.0 VR\waol.exe (.not file.)
O87 - FAEL: "{19937642-0D7F-4C29-B062-19D7F857A960}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{5CA95792-9D0C-42DA-9A0F-75374D809C82}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{C5FC46E7-EBA6-4624-8CD4-2EFCDA960EA8}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{A1EB9627-7921-4B14-B124-525B7F43B036}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{2356ED4D-3C9B-400E-9270-3C116C70185D}" | In - Private - P6 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe =>PUP.SearchResults
O87 - FAEL: "{96CF5F99-82CC-484E-B09D-FB66A204060A}" | In - Private - P17 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe =>PUP.SearchResults
O87 - FAEL: "{8BE9A466-2840-4AF8-A2E2-8FBA51D95D6A}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
O87 - FAEL: "{38777ED7-AF13-4074-BF21-5AEF2E5989B5}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
~ Firewall: 290 Legitimates Filtered in 00mn 01s
---\\ Enum�re les codes produits des logiciels (PUC) (O90)
O90 - PUC: "1EAD96AE2CB1DE84BAA9425A8CCA0817" . (.Boxore Client.) -- C:\Windows\Installer\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}\boxore.ico =>Adware.Boxore
O90 - PUC: "9EE58E3C298524145B73CBBED3CAC4D3" . (.Internet Explorer Toolbar 4.6 by SweetPacks.) -- C:\Windows\Installer\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}\ARPPRODUCTICON.exe =>PUP.SweetIM
~ Update Products: 76 Legitimates Filtered in 00mn 00s
---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.A672E4C77ED7CCC851575B10B46CC8AD] [WIS][10/07/2012] (.IMinent - IMinent Toolbar.) -- C:\Windows\Installer\18e367.msi [1019392] =>Adware.IMBooster
[MD5.04A8D3C35E6D6D379A2B4346D9A26B43] [WIS][03/11/2012] (.Driver Manager - Driver Manager.) -- C:\Windows\Installer\202733.msi [6008832]
[MD5.DB30D95BB743A11B26CE4CA8ECE79350] [WIS][15/03/2013] (.Boxore OU - Boxore Client Installer.) -- C:\Windows\Installer\30f7dd.msi [1511424] =>Adware.Boxore
[MD5.B1D3387302EDCDAAD857E49B12D87CEC] [WIS][11/03/2013] (.Driver Whiz - Driver Whiz.) -- C:\Windows\Installer\37659a.msi [5978112]
[MD5.39509F7D4B7E345BE537D01B3E1ABEB9] [WIS][17/01/2013] (.SweetIM Technologies Ltd. - SweetIM for Messenger 3.7.) -- C:\Windows\Installer\4e0b2d.msi [3760128] =>PUP.SweetIM
[MD5.46F2667ADB3EF8EFBEB0505D2FAD321B] [WIS][17/01/2013] (.SweetIM Technologies Ltd. - SweetPacks Toolbar for Internet Explorer 4.0.) -- C:\Windows\Installer\4e0b33.msi [3350528] =>PUP.SweetIM
[MD5.3CD19859CD377AD00B30E4BEE49D374E] [WIS][17/01/2013] (.SweetIM Technologies Ltd. - Sweetpacks Communicator 1.1.) -- C:\Windows\Installer\4e0b39.msi [2997248] =>PUP.SweetIM
[MD5.75D85870A4671CD092E5D8DA4A8B93BC] [WIS][17/01/2013] (.SweetIM Technologies Ltd. - SweetPacks bundle uninstaller.) -- C:\Windows\Installer\4e0b3f.msi [2579456] =>PUP.SweetIM
[MD5.B67811645C5A3B8E4E4B1A1DB1EE271C] [WIS][17/01/2013] (.Boxore OU. - Software Update Helper.) -- C:\Windows\Installer\680459.msi [45056] =>Adware.Boxore
[MD5.22C9E7805145D0A0C4C62DDB591D2DAE] [WIS][27/06/2012] (.Babylon Ltd - BabylonObjectInstaller.) -- C:\Windows\Installer\fa6bb7.msi [353280] =>Toolbar.Babylon
~ WIS: 82 Legitimates Filtered in 00mn 11s
---\\ Etat g�n�ral des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Auto 10/05/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 21/08/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 23/10/2006 46640 | (AOL ACS) . (.AOL LLC.) - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
SS - | Demand 00\00\0000 0 | C:\Windows\System32\AppleChargerSrv.exe (AppleChargerSrv) . (...) - c:\system32\AppleChargerSrv.exe
SS - | Auto 15/10/2009 223464 | (BCUService) . (.DeviceVM, Inc..) - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
SS - | Demand 15/03/2012 610472 | (FSDFWD) . (.F-Secure Corporation.) - C:\Program Files\SFR\Pack S�curit�\apps\ComputerSecurity\FWES\Program\fsdfwd.exe
SS - | Auto 21/06/2012 163536 | (fshoster) . (.F-Secure Corporation.) - C:\Program Files\SFR\Pack S�curit�\fshoster32.exe
SS - | Demand 15/03/2012 213672 | (FSMA) . (.F-Secure Corporation.) - C:\Program Files\SFR\Pack S�curit�\apps\ComputerSecurity\Common\FSMA32.exe
SS - | Auto 25/06/2013 60352 | (FSORSPClient) . (.F-Secure Corporation.) - C:\Program Files\SFR\Pack S�curit�\apps\CCF_Reputation\fsorsp.exe
SS - | Auto 24/06/2010 233472 | (FsUsbExService) . (.Teruten.) - C:\Windows\system32\FsUsbExService.exe
SS - | Auto 06/04/2012 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 06/04/2012 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 10/11/2012 194032 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Auto 30/09/2009 268824 | (LMS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SS - | Auto 23/04/2010 25824 | (MemeoBackgroundService) . (.Memeo.) - C:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe
SS - | Auto 20/03/2013 132504 | (Norton PC Checkup Application Launcher) . (.Symantec Corporation.) - C:\Program Files\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe
SS - | Auto 18/01/2013 639776 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SS - | Auto 25/02/2013 1260320 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SS - | Auto 30/04/2010 14088 | (SeagateDashboardService) . (.Memeo.) - C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe
SS - | Demand 24/08/2013 563624 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files\Common Files\Steam\SteamService.exe
SS - | Auto 18/01/2013 383264 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SS - | Auto 30/09/2009 2320920 | (UNS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SS - | Demand 14/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SS - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 13s
---\\ Scan Additionnel (O88)
Database Version : v2.12866 - (26/08/2013)
Cl�s trouv�es (Keys found) : 220
Valeurs trouv�es (Values found) : 3
Dossiers trouv�s (Folders found) : 10
Fichiers trouv�s (Files found) : 17
[HKLM\Software\Google\Chrome\Extensions\pbpohikckhbcljgombipcdoinkaedlfa] =>Spyware.SmartDisplay^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{19803860-B306-423C-BBB5-F60A7D82CDE5}] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CFCB809C-3A22-4616-A916-6C007BD9D920}] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WNLT] =>Adware.InstallBrain^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\buqle] =>Adware.Lollipop^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ilividtoolbarguid] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{953AA732-9AFB-49C9-84A4-7F96CA0A08DA}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Wajam] =>Toolbar.Wajam^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WiseConvert_1.5 Toolbar] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\iLivid] =>Adware.Bandoo^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKLM\Software\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{186E19A3-B909-4F48-B687-BB81EB8BC7CE}] =>Trojan.BHO
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{19803860-B306-423C-BBB5-F60A7D82CDE5}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{19803860-B306-423C-BBB5-F60A7D82CDE5}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{19803860-B306-423C-BBB5-F60A7D82CDE5}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Code Store Database\Distribution Units\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}] =>Adware.MetaStream
[HKLM\Software\Classes\TypeLib\{1FDC0B61-91AC-4157-9B27-CAD9A09AB67E}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{26c9e18c-3717-4be1-a225-04e4471f5b6e}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{26c9e18c-3717-4be1-a225-04e4471f5b6e}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{26c9e18c-3717-4be1-a225-04e4471f5b6e}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{27100E88-8830-44ED-9D6A-CA24F3523F39}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{27100E88-8830-44ED-9D6A-CA24F3523F39}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{493CCB71-DCAD-4257-9F08-8750F63BD792}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{493CCB71-DCAD-4257-9F08-8750F63BD792}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}] =>Toolbar.Wajam
[HKLM\Software\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Office\Word\Addins\BabylonOfficeAddin.OfficeAddin] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Office\PowerPoint\Addins\BabylonOfficeAddin.OfficeAddin] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CFCB809C-3A22-4616-A916-6C007BD9D920}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CFCB809C-3A22-4616-A916-6C007BD9D920}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{CFCB809C-3A22-4616-A916-6C007BD9D920}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635] =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr
[HKLM\Software\Classes\CLSID\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr
[HKLM\Software\Classes\AppID\BrowserConnection.dll] =>Adware.Bandoo
[HKLM\Software\Classes\BrowserConnection.Loader] =>Adware.Bandoo
[HKLM\Software\Classes\BrowserConnection.Loader.1] =>Adware.Bandoo
[HKLM\Software\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9] =>Adware.MyWebSearch
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater] =>Toolbar.Wajam
[HKCU\Software\ChatZum Toolbar] =>Toolbar.ChatZum
[HKLM\Software\ChatZum Toolbar] =>Toolbar.ChatZum
[HKCU\Software\AppDataLow\Software\FileConverter_1.5] =>Toolbar.Agent
[HKLM\Software\FileConverter_1.5] =>Toolbar.Agent
[HKCU\Software\lollipop] =>Adware.Lollipop
[HKLM\Software\iLividSRTB] =>Adware.Bandoo
[HKCU\Software\PartyFrance] =>Casino.OnlineGames
[HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKCU\Software\AppDataLow\Software\WiseConvert_1.5] =>Toolbar.Conduit
[HKLM\Software\WiseConvert_1.5] =>Toolbar.Conduit
[HKCU\Software\WNLT] =>Adware.IncrediBar
[HKLM\Software\WNLT] =>Adware.IncrediBar
[HKLM\Software\Microsoft\Tracing\Babylon_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Tracing\Babylon_RASMANCS] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Tracing\IncredibarToolbar_RASAPI32] =>Adware.IncrediBar
[HKLM\Software\Microsoft\Tracing\IncredibarToolbar_RASMANCS] =>Adware.IncrediBar
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\FileConverter_1.5 Toolbar] =>Toolbar.Agent
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Tracing\offerbox_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Microsoft\Tracing\offerbox_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Microsoft\Tracing\OfferBoxHTTPProxy_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Microsoft\Tracing\OfferBoxHTTPProxy_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Microsoft\Tracing\OfferBoxUpdateService_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Microsoft\Tracing\OfferBoxUpdateService_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Classes\AppID\priam_bho.DLL] =>Toolbar.Wajam
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}] =>PUP.SweetIM
[HKLM\Software\Classes\AppID\secman.DLL] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}] =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Tarma
[HKLM\Software\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}] =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{A1489C85-4F6F-48C4-AC9E-18B63AF4703E}] =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{F310F027-15CB-4A7F-B10D-3A4AFB5013A5}] =>Toolbar.Babylon
[HKLM\Software\Classes\Installer\Features\3192AA38321C641458DBDAF83979D193] =>Toolbar.Babylon
[HKLM\Software\Classes\Installer\Products\3192AA38321C641458DBDAF83979D193] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3192AA38321C641458DBDAF83979D193] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420] =>PUP.SweetIM
[HKLM\Software\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{CE4DB5A3-58E6-41F1-8761-47238DF4F468}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{75E8DA27-44AF-40AE-927C-F2EEC99D65B1}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{8DEC3C75-9A5D-446C-B7B5-E4AB4FDD6309}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{B00FE392-639D-4688-976E-A1BFF368CB96}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{3AE26843-9171-4F23-A8E5-5421701276A4}] =>Adware.Agent
[HKLM\Software\Classes\Installer\Features\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Classes\TypeLib\{5C9A2304-70A5-11D5-AFB0-0050DAC67890}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{928FE5E7-D557-46B7-8AF6-17ACCE1FB4ED}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{947217BD-E967-400A-B14A-BA851A8EDCBB}] =>Toolbar.Conduit
[HKLM\Software\Classes\.bdc] =>Toolbar.Conduit
[HKLM\Software\Classes\.bgl] =>Toolbar.Conduit
[HKLM\Software\Classes\.bof] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Tracing\boxore_RASAPI32] =>Adware.Boxore
[HKLM\Software\Microsoft\Tracing\boxore_RASMANCS] =>Adware.Boxore
[HKLM\Software\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{BD5843ED-13C4-4EFF-ACE9-56CEE22BC087}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand] =>Adware.IMBooster
[HKLM\Software\Classes\AOLTB.AOLToolBand.1] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836] =>PUP.SweetIM^
[HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks]:{19803860-b306-423c-bbb5-f60a7d82cde5} =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{f34c9277-6577-4dff-b2d7-7d58092f272f} =>PUP.SearchResults^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:ROC_roc_dec12 =>Toolbar.AVGSearch^
C:\Program Files\Search Results Toolbar =>PUP.SearchResults^
C:\Program Files\WiseConvert_1.5 =>Toolbar.Conduit^
C:\Program Files\~Web Assistant =>Adware.IncrediBar^
C:\ProgramData\GamesBar =>Adware.GamesBar^
C:\ProgramData\Trymedia =>Adware.Trymedia^
C:\Users\switch\AppData\Local\Lollipop =>Adware.Lollipop^
C:\Program Files\OApps =>Toolbar.Agent
C:\Program Files\DeviceVM =>Toolbar.Splashtop
C:\Users\switch\AppData\LocalLow\searchresultstb =>Toolbar.Agent
C:\Users\switch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa =>Spyware.SmartDisplay
C:\Program Files\WiseConvert_1.5\prxtbWis0.dll =>Toolbar.Conduit^
C:\Program Files\Search Results Toolbar\Datamngr\BrowserConnection.dll =>Adware.Bandoo^
C:\Program Files\FileConverter_1.5\prxtbFil0.dll =>Toolbar.Conduit^
C:\Program Files\SEARCH~1\Datamngr\SRTOOL~1\searchresultsDx.dll =>PUP.SearchResults^
C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google^
[HKLM\Software\Trymedia Systems] =>Adware.Trymedia^
C:\Program Files\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe =>PUP.SearchResults^
C:\Windows\Installer\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}\boxore.ico =>Adware.Boxore^
C:\Windows\Installer\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}\ARPPRODUCTICON.exe =>PUP.SweetIM^
C:\Windows\Installer\18e367.msi =>Adware.IMBooster^
C:\Windows\Installer\30f7dd.msi =>Adware.Boxore^
C:\Windows\Installer\4e0b2d.msi =>PUP.SweetIM^
C:\Windows\Installer\4e0b33.msi =>PUP.SweetIM^
C:\Windows\Installer\4e0b39.msi =>PUP.SweetIM^
C:\Windows\Installer\4e0b3f.msi =>PUP.SweetIM^
C:\Windows\Installer\680459.msi =>Adware.Boxore^
C:\Windows\Installer\fa6bb7.msi =>Toolbar.Babylon^
~ Additionnel Scan: 258378 Items scanned in 00mn 09s
---\\ R�capitulatif des d�tections trouv�es sur votre station
~ http://nicolascoolman.webs.com30319724-pup-searchresults =>PUP.SearchResults
~ http://nicolascoolman.webs.com29507721-toolbar-conduit =>Toolbar.Conduit
~ http://nicolascoolman.webs.com26611092-adware-bandoo =>Adware.Bandoo
~ http://nicolascoolman.webs.com32384220-toolbar-google =>Toolbar.Google
~ http://nicolascoolman.webs.com26627369-toolbar-babylon =>Toolbar.Babylon
~ http://nicolascoolman.webs.com26626977-adware-boxore =>Adware.Boxore
~ http://nicolascoolman.webs.com26907365-adware-installbrain =>Adware.InstallBrain
~ http://nicolascoolman.webs.com26630902-adware-lollipop =>Adware.Lollipop
~ http://nicolascoolman.webs.com29216159-pup-sweetim =>PUP.SweetIM
~ http://nicolascoolman.webs.com27379491-toolbar-wajam =>Toolbar.Wajam
~ http://nicolascoolman.webs.com26898222-adware-incredibar =>Adware.Incredibar
~ http://nicolascoolman.webs.com29710349-adware-trymedia =>Adware.Trymedia
~ http://nicolascoolman.webs.com26808625-adware-gamesbar =>Adware.GamesBar
~ http://nicolascoolman.webs.com30268689-toolbar-yahoo =>Toolbar.Yahoo
~ http://nicolascoolman.webs.com26684723-adware-imbooster =>Adware.IMBooster
~ http://nicolascoolman.webs.com27046242-adware-metastream =>Adware.MetaStream
~ http://nicolascoolman.webs.com27583992-pup-datamngr =>PUP.Datamngr
~ http://nicolascoolman.webs.com28927746-toolbar-ask =>Toolbar.Ask
~ http://nicolascoolman.webs.com27146838-adware-mywebsearch =>Adware.MyWebSearch
~ http://nicolascoolman.webs.com28606910-pup-offerbox =>PUP.OfferBox
~ http://nicolascoolman.webs.com29637859-toolbar-tarma =>Toolbar.Tarma
~ MSI: 21 link(s) detected in 00mn 09s
~ 1487 Legitimates filtered by white list
End of the scan (801 lines in 02mn 37s)(0)
~ Lanc� par switch (27/08/2013 16:08:12)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version : Version � jour.
~ Liste blanche : Activ�e par le programme
~ El�vation des Privil�ges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16660
GCIE: Google Chrome v24.0.1312.52 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Fran�ais
Windows 7 Home Premium Edition, 32-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
Software Protection Service (Protection logicielle) : KO
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du syst�me
Computer Security 12.56.100.0
Pack S�curit� v1.57.391.0
Pack S�curit� v1.57.391.0
Windows Defender W7
---\\ Logiciels d'optimisation du syst�me
CCleaner v3.20 =>Piriform Ltd
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 11 ActiveX
Adobe Reader X
---\\ Informations sur le syst�me
~ Processor: x86 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Sans �chec avec prise en charge du r�seau (Fail-safe with network boot)
Total RAM: 3575 MB (77% free)
System Restore: Activ� (Enable)
System drive C: has 29 GB (13%) free of 225 GB
---\\ Mode de connexion au syst�me
~ Computer Name: SWITCH-PC
~ User Name: switch
~ All Users Names: UpdatusUser, switch, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : C:\Users\switch\AppData\Roaming\
~ %Desktop% : C:\Users\switch\Desktop\
~ %Favorites% : C:\Users\switch\Favoris\
~ %LocalAppData% : C:\Users\switch\AppData\Local\
~ %StartMenu% : C:\Users\switch\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enum�ration des unit�s disques
C:\ Hard drive, Flash drive, Thumb drive (Free 29 Go of 225 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 7 Go of 8 Go)
E:\ CD-ROM drive (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Etat du Centre de S�curit� Windows
~ Security Center: 26 Legitimates Filtered in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.DAA3903F06116AE9EE7AC1D1B93684A4] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/07/2013 - 04:13:24.) -- C:\Windows\System32\wininet.dll [1767936]
[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.20/11/2010 - 13:17:54.) -- C:\Windows\System32\Winlogon.exe [286720]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Biblioth�que de licences.) (.20/11/2010 - 13:21:24.) -- C:\Windows\System32\sppcomapi.dll [193536]
[MD5.9EBBBA55060F786F0FCAA3893BFA2806] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:18:03.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 09:38:10.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 09:42:32.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 10:59:29.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:17:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123904]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 09:39:44.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.12/04/2013 - 14:45:29.) -- C:\Windows\system32\Drivers\ntfs.sys [1211752]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 09:39:17.) -- C:\Windows\system32\Drivers\tdx.sys [74752]
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.20/11/2010 - 13:30:16.) -- C:\Windows\system32\Drivers\volsnap.sys [245632]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 3/1136
~ Mes musiques (My Musics) : 60/412
~ Mes Videos (My Videos) : 2/14
~ Mes Favoris (My Favorites) : 1/56
~ Mes Documents (My Documents) : 12/3270
~ Mon Bureau (My Desktop) : 1/392
~ Menu demarrer (Programs) : 1/41
~ Hidden Files: Scanned in 00mn 19s
---\\ Processus lanc�s au d�marrage du syst�me
[MD5.A63DC5C2EA944E6657203E0C8EDEAF61] - (.Microsoft Corporation - COM Surrogate.) -- C:\Windows\system32\DllHost.exe [7168] [PID.1640]
[MD5.7BA1862B8A5698DC5FCFDFF3BC359DE9] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [770648] [PID.1440]
[MD5.CC19B60A901A415624F5771F1F0A6060] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1248360] [PID.1240]
[MD5.80A5A61530384C6A3614C745217919DE] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7837184] [PID.1320]
~ Processes Running: Scanned in 00mn 00s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\switch\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default] http://aol.fr
G1 - GCS: Preference [User Data\Default] http://dts.search-results.com =>PUP.SearchResults
G2 - GCE: Preference [User Data\Default] [pbpohikckhbcljgombipcdoinkaedlfa] Smart Display v.1.6 (Activ�) =>Spyware.SmartDisplay
~ Google Browser: 4 Legitimates Filtered in 00mn 06s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@oberon-media.com/ONCAdapter] - (...) -- C:\Program Files\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (.not file.)
~ Firefox Browser: 15 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.chatzum.com
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: WiseConvert 1.5 Toolbar - {19803860-b306-423c-bbb5-f60a7d82cde5} . (...) (No version) -- (.not file.) =>Toolbar.Conduit
R3 - URLSearchHook: FileConverter 1.5 Toolbar - {cfcb809c-3a22-4616-a916-6c007bd9d920} . (...) (No version) -- (.not file.)
~ IE Browser: 16 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: WiseConvert 1.5 - {19803860-b306-423c-bbb5-f60a7d82cde5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\WiseConvert_1.5\prxtbWis0.dll =>Toolbar.Conduit
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} . (.AOL - Librairie de lien dynamique AOL Toolbar pou.) -- C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O2 - BHO: DataMngr - {C1ED9DA0-AFD0-4b90-AC6A-D3874F591014} . (.Bandoo Media Inc - Url Helper.) -- C:\Program Files\Search Results Toolbar\Datamngr\BrowserConnection.dll =>Adware.Bandoo
O2 - BHO: FileConverter 1.5 - {cfcb809c-3a22-4616-a916-6c007bd9d920} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\FileConverter_1.5\prxtbFil0.dll =>Toolbar.Conduit
O2 - BHO: BHO_PROJECT - {D0DBA715-D402-4801-9F0A-4A31165F6CAA} . (...) -- C:\Program Files\OApps\bho_project.dll (.not file.)
~ BHO: 24 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: AOL Toolbar - [HKLM]{DE9C389F-3316-41A7-809B-AA305ED9D922} . (.AOL - Librairie de lien dynamique AOL Toolbar pou.) -- C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O3 - Toolbar: Browsing Protection Toolbar - [HKLM]{265EEE8E-3228-44D3-AEA5-F7FDF5860049} . (.F-Secure Corporation - Litmus.) -- C:\Program Files\SFR\Pack S�curit�\apps\OnlineSafety\BPP\iescript\BaseLitmus.dll
O3 - Toolbar: Search-Results Toolbar - [HKLM]{f34c9277-6577-4dff-b2d7-7d58092f272f} . (...) -- C:\Program Files\SEARCH~1\Datamngr\SRTOOL~1\searchresultsDx.dll =>PUP.SearchResults
O3 - Toolbar: WiseConvert 1.5 Toolbar - [HKLM]{19803860-b306-423c-bbb5-f60a7d82cde5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\WiseConvert_1.5\prxtbWis0.dll =>Toolbar.Conduit
O3 - Toolbar: FileConverter 1.5 Toolbar - [HKLM]{cfcb809c-3a22-4616-a916-6c007bd9d920} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\FileConverter_1.5\prxtbFil0.dll =>Toolbar.Conduit
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Cl� orpheline
~ Toolbar: Scanned in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [BCU] . (.DeviceVM, Inc. - Browser Configuration Utility.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [HostManager] . (.America Online, Inc. - AOL.) -- C:\Program Files\Common Files\AOL\1304624729\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Run: [ROC_roc_dec12] C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe (.not file.) =>Toolbar.AVGSearch
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [F-Secure Hoster (44996)] . (.F-Secure Corporation - F-Secure Host Process.) -- C:\Program Files\SFR\Pack S�curit�\fshoster32.exe
O4 - HKLM\..\Run: [F-Secure Manager] . (.F-Secure Corporation - F-Secure Settings and Statistics.) -- C:\Program Files\SFR\Pack S�curit�\apps\ComputerSecurity\Common\FSM32.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [SmartSoft PDF Printer Agent] . (...) -- C:\Program Files\Convertisseur PDF Pro\SmartSoft PDF Printer Agent.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O4 - HKLM\..\Run: [Memeo Instant Backup] . (.Memeo Inc. - Memeo Backup Launcher.) -- C:\Program Files\Memeo\AutoBackup\MemeoLauncher2.exe
O4 - HKLM\..\Run: [Memeo AutoSync] . (.Memeo Inc. - Memeo AutoBackup Launcher.) -- C:\Program Files\Memeo\AutoSync\MemeoLauncher2.exe
O4 - HKLM\..\Run: [Memeo Send] . (.Pas de propri�taire - Memeo Launcher.) -- C:\Program Files\Memeo\Memeo Send\MemeoLauncher.exe
O4 - HKLM\..\Run: [Seagate Dashboard] . (.Pas de propri�taire - Memeo Dashboard Launcher.) -- C:\Program Files\Seagate\Seagate Dashboard\MemeoLauncher.exe
O4 - HKCU\..\Run: [msnmsgr] ~"C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.)
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propri�t�s de la connexion SFR.) -- C:\Program Files\SFR\Kit\9PROPS.exe
O4 - HKCU\..\Run: [Driver Manager] . (.PC Drivers Headquarters - DriverManager.) -- C:\Program Files\Driver Manager\Driver Manager\DriverManager.exe
O4 - HKCU\..\Run: [KiesPDLR] . (.Samsung - KiesPDLR.) -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files\Samsung\Kies\KiesAirMessage.exe
O4 - HKCU\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\Kies.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\switch\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [Driver Whiz] . (.PC Drivers Headquarters - Driver Whiz.) -- C:\Program Files\Driver Whiz\Driver Whiz\DriverWhiz.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [msnmsgr] ~"C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.)
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propri�t�s de la connexion SFR.) -- C:\Program Files\SFR\Kit\9PROPS.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [Driver Manager] . (.PC Drivers Headquarters - DriverManager.) -- C:\Program Files\Driver Manager\Driver Manager\DriverManager.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [KiesPDLR] . (.Samsung - KiesPDLR.) -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files\Samsung\Kies\KiesAirMessage.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\Kies.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\switch\AppData\Local\Akamai\netsession_win.exe
O4 - HKUS\S-1-5-21-3909121260-2013569229-1314267737-1000\..\Run: [Driver Whiz] . (.PC Drivers Headquarters - Driver Whiz.) -- C:\Program Files\Driver Whiz\Driver Whiz\DriverWhiz.exe
~ Application: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar: LibreOffice Base.lnk . (.The Document Foundation - LibreOffice Base.) -- C:\Program Files\LibreOffice 3\program\sbase.exe
O4 - GS\TaskBar: LibreOffice Calc.lnk . (.The Document Foundation - LibreOffice Calc.) -- C:\Program Files\LibreOffice 3\program\scalc.exe
O4 - GS\TaskBar: LibreOffice Impress.lnk . (.The Document Foundation - LibreOffice Impress.) -- C:\Program Files\LibreOffice 3\program\simpress.exe
O4 - GS\TaskBar: LibreOffice Writer.lnk . (.The Document Foundation - LibreOffice Writer.) -- C:\Program Files\LibreOffice 3\program\swriter.exe
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Programs: iLivid.lnk . (...) -- C:\Users\switch\AppData\Local\iLivid\iLivid.exe (.not file.) =>Adware.Bandoo
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: AOL 9.0 VR.lnk . (.AOL - AOL.) -- C:\Program Files\AOL 9.0 VRa\aol.exe
O4 - GS\QuickLaunch: Babylon.lnk . (...) -- C:\Program Files\Babylon\Babylon-Pro\Babylon.exe (.not file.) =>Toolbar.Babylon
O4 - GS\QuickLaunch: iLivid.lnk . (...) -- C:\Users\switch\AppData\Local\iLivid\iLivid.exe (.not file.) =>Adware.Bandoo
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Picasa 3.lnk . (.Google Inc. - Picasa.) -- C:\Program Files\Google\Picasa3\Picasa3.exe
O4 - GS\QuickLaunch: Samsung Kies.lnk . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\Kies.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Desktop: Alliance of Valiant Arms FR.lnk . (.Aeria Games & Entertainment - Ignite Launcher.) -- C:\AeriaGames\AVA-FR\aeria_launcher.exe
O4 - Global Startup: C:\Users\switch\Desktop\Call of Duty Modern Warfare 3 - Multiplayer.url . (...) -- C:\Users\switch\Desktop\Call of Duty Modern Warfare 3 - Multiplayer.url
~ Global Startup: Scanned in 00mn 00s
---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} . (.AOL - AOL Toolbar.) -- c:\program files\aol\aol toolbar 4.0\resources\fr-FR\aoltbres.dll
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains] http.aeriagames.com
~ IE Zone Confiance: Scanned in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
~ Objets ActiveX: Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{F2FE3D07-8F61-4500-87BA-599A94EA77EB}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{F2FE3D07-8F61-4500-87BA-599A94EA77EB}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{F2FE3D07-8F61-4500-87BA-599A94EA77EB}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Titr_HJT34=Protocole additionnel (O18)
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\PROGRA~2\Wincert\WIN32C~1.dll
~ AppInit DLL: Scanned in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job [1070]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job [1074]
~ Scheduled Task: 7 Legitimates Filtered in 00mn 00s
---\\ Pilotes lanc�s au d�marrage du syst�me (O41)
O41 - Driver: (fsvista) . (...) - C:\Program Files\SFR\Pack S�curit�\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys
~ Drivers: 75 Legitimates Filtered in 00mn 00s
---\\ Logiciels install�s (O42)
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU] -- Akamai
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM] -- {EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071} =>Adware.Boxore
O42 - Logiciel: FileConverter 1.5 Toolbar - (.FileConverter 1.5.) [HKLM] -- FileConverter_1.5 Toolbar
O42 - Logiciel: Full Tilt Poker - (.Full Tilt Poker.) [HKLM] -- {D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}
O42 - Logiciel: IB Updater Service - (...) [HKLM] -- WNLT =>Adware.InstallBrain
O42 - Logiciel: Lollipop - (...) [HKCU] -- buqle =>Adware.Lollipop
O42 - Logiciel: Search-Results Toolbar - (.APN LLC.) [HKLM] -- ilividtoolbarguid =>Adware.Bandoo
O42 - Logiciel: SweetIM for Messenger 3.7 - (.SweetIM Technologies Ltd..) [HKLM] -- {A0C9DF2B-89B5-4483-8983-18A68200F1B4} =>PUP.SweetIM
O42 - Logiciel: SweetPacks bundle uninstaller - (.SweetIM Technologies Ltd..) [HKLM] -- {953AA732-9AFB-49C9-84A4-7F96CA0A08DA} =>PUP.SweetIM
O42 - Logiciel: Update Manager for SweetPacks 1.1 - (.SweetIM Technologies Ltd..) [HKLM] -- {EA8FA6BE-29BE-4AF2-9352-841F83215EB0} =>PUP.SweetIM
O42 - Logiciel: Wajam - (.Wajam.) [HKLM] -- Wajam =>Toolbar.Wajam
O42 - Logiciel: WiseConvert 1.5 Toolbar - (.WiseConvert 1.5.) [HKLM] -- WiseConvert_1.5 Toolbar =>Toolbar.Conduit
O42 - Logiciel: iLivid - (.Bandoo Media Inc.) [HKLM] -- iLivid =>Adware.Bandoo
~ Logic: 119 Legitimates Filtered in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ChatZum Toolbar]
[HKCU\Software\Full Tilt Poker.fr]
[HKCU\Software\Full Tilt Poker]
[HKCU\Software\IncrediMail]
[HKCU\Software\PartyFrance]
[HKCU\Software\WNLT] =>Adware.IncrediBar
[HKCU\Software\lollipop] =>Adware.Lollipop
[HKLM\Software\ChatZum Toolbar]
[HKLM\Software\FileConverter_1.5]
[HKLM\Software\Full Tilt Poker]
[HKLM\Software\IncrediMail]
[HKLM\Software\Trymedia Systems] =>Adware.Trymedia
[HKLM\Software\WiseConvert_1.5] =>Toolbar.Conduit
[HKLM\Software\iLividSRTB] =>Adware.Bandoo
[HKLM\Software\iNTERNET Turbo]
~ Key Software: 239 Legitimates Filtered in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 17/01/2013 - 23:22:35 - [5,017] ----D C:\Program Files\FileConverter_1.5
O43 - CFD: 06/02/2013 - 21:12:07 - [0] ----D C:\Program Files\GUM1E82.tmp
O43 - CFD: 28/06/2013 - 15:13:56 - [0] ----D C:\Program Files\GUMEF72.tmp
O43 - CFD: 20/10/2012 - 09:28:45 - [0,063] ----D C:\Program Files\OApps
O43 - CFD: 17/01/2013 - 22:24:48 - [9,385] ----D C:\Program Files\Search Results Toolbar =>PUP.SearchResults
O43 - CFD: 19/05/2011 - 19:01:50 - [0,038] ----D C:\Program Files\Universal Interactive
O43 - CFD: 17/01/2013 - 22:57:30 - [5,049] ----D C:\Program Files\WiseConvert_1.5 =>Toolbar.Conduit
O43 - CFD: 22/09/2012 - 10:18:45 - [1,929] ----D C:\Program Files\~Web Assistant =>Adware.IncrediBar
O43 - CFD: 01/11/2012 - 22:03:00 - [0] ----D C:\ProgramData\GamesBar =>Adware.GamesBar
O43 - CFD: 23/04/2012 - 16:48:52 - [0,000] ----D C:\ProgramData\Trymedia =>Adware.Trymedia
O43 - CFD: 26/08/2013 - 18:19:52 - [42,847] ----D C:\Users\switch\AppData\Local\Akamai
O43 - CFD: 05/05/2011 - 21:02:22 - [0,006] ----D C:\Users\switch\AppData\Local\FullTiltPoker
O43 - CFD: 17/06/2011 - 03:19:32 - [0,647] ----D C:\Users\switch\AppData\Local\FullTiltPoker.fr
O43 - CFD: 04/02/2013 - 22:12:53 - [0,357] ----D C:\Users\switch\AppData\Local\Lollipop =>Adware.Lollipop
~ 211 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 457 Legitimates Filtered in 01mn 28s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.3B0A4F4217CA14CCBDE5A7138AF901A0] - 27/08/2013 - 09:11:44 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [23568]
O44 - LFC:[MD5.3B0A4F4217CA14CCBDE5A7138AF901A0] - 27/08/2013 - 09:11:44 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [23568]
O44 - LFC:[MD5.C2F920849BA625DF37E9738393F76C8A] - 27/08/2013 - 08:57:08 ---A- . (...) -- C:\Windows\System32\log.txt [44]
~ Files: 40 Legitimates Filtered in 00mn 06s
---\\ Enum�ration des cl�s de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Legitimates Filtered in 00mn 00s
---\\ Liste des pilotes du syst�me (SDL) (O58)
O58 - SDL:[MD5.75A8B998EB259DD512F01EA25BEC7F3B] - 27/04/2010 - 10:56:44 ---A- . (...) -- C:\Windows\System32\Drivers\AppleCharger.sys [19496]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
~ Drivers: 16 Legitimates Filtered in 00mn 00s
---\\ Liste des outils de d�sinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s
---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - ??\??\???? - Pas de propri�taire (vtany) .(...) - LEGACY_VTANY
O64 - Services: CurCS - ??\??\???? - Pas de propri�taire (xhunter1) .(...) - LEGACY_XHUNTER1
~ Legacy: 82 Legitimates Filtered in 00mn 00s
---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html>
~ FASS Keys: 19 Legitimates Filtered in 00mn 00s
---\\ Menu de d�marrage Internet (SMI) (O68)
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {443789B7-F39C-4b5c-9287-DA72D38F4FE6} - (AOL Recherche) - http://search.aol.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {E36FB773-C83A-4e06-8E10-583D09EA35C6} [DefaultScope] - (Yahoo) - http://fr.search.yahoo.com =>Toolbar.Yahoo
O69 - SBI: SearchScopes [HKCU] {E61467EF-7284-4e60-AFB6-96AE50F278AE} - (Google) - http://www.google.com
~ Keys: Scanned in 00mn 00s
---\\ Recherche particuli�re � la racine du syst�me (SPRF) (O84)
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][27/08/2013] (...) -- C:\Users\switch\AppData\Local\Temp\9urjaz7m.dll [0]
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][27/08/2013] (...) -- C:\Users\switch\AppData\Local\Temp\wdslwx0x.dll [0]
[MD5.F113E03804BEA40350F691B671534CC0] [SPRF][18/02/2003] (.Pas de propri�taire - bren MFC Application.) -- C:\Users\switch\Desktop\Autorun.exe [184395]
[MD5.411D2645665B53B4FA4B153C6D76F2DD] [SPRF][11/07/2012] (...) -- C:\Users\switch\Desktop\decoder_del.bat [117]
~ Files: 8 Legitimates Filtered in 00mn 00s
---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "{964D02B3-1CDB-4D64-92E5-F59747FDE1E6}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\AOL 9.0 VR\waol.exe (.not file.)
O87 - FAEL: "{A7EF5BCC-E216-45C7-86E0-B070C3E47510}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\AOL 9.0 VR\waol.exe (.not file.)
O87 - FAEL: "{19937642-0D7F-4C29-B062-19D7F857A960}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{5CA95792-9D0C-42DA-9A0F-75374D809C82}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{C5FC46E7-EBA6-4624-8CD4-2EFCDA960EA8}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{A1EB9627-7921-4B14-B124-525B7F43B036}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{2356ED4D-3C9B-400E-9270-3C116C70185D}" | In - Private - P6 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe =>PUP.SearchResults
O87 - FAEL: "{96CF5F99-82CC-484E-B09D-FB66A204060A}" | In - Private - P17 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe =>PUP.SearchResults
O87 - FAEL: "{8BE9A466-2840-4AF8-A2E2-8FBA51D95D6A}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
O87 - FAEL: "{38777ED7-AF13-4074-BF21-5AEF2E5989B5}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
~ Firewall: 290 Legitimates Filtered in 00mn 01s
---\\ Enum�re les codes produits des logiciels (PUC) (O90)
O90 - PUC: "1EAD96AE2CB1DE84BAA9425A8CCA0817" . (.Boxore Client.) -- C:\Windows\Installer\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}\boxore.ico =>Adware.Boxore
O90 - PUC: "9EE58E3C298524145B73CBBED3CAC4D3" . (.Internet Explorer Toolbar 4.6 by SweetPacks.) -- C:\Windows\Installer\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}\ARPPRODUCTICON.exe =>PUP.SweetIM
~ Update Products: 76 Legitimates Filtered in 00mn 00s
---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.A672E4C77ED7CCC851575B10B46CC8AD] [WIS][10/07/2012] (.IMinent - IMinent Toolbar.) -- C:\Windows\Installer\18e367.msi [1019392] =>Adware.IMBooster
[MD5.04A8D3C35E6D6D379A2B4346D9A26B43] [WIS][03/11/2012] (.Driver Manager - Driver Manager.) -- C:\Windows\Installer\202733.msi [6008832]
[MD5.DB30D95BB743A11B26CE4CA8ECE79350] [WIS][15/03/2013] (.Boxore OU - Boxore Client Installer.) -- C:\Windows\Installer\30f7dd.msi [1511424] =>Adware.Boxore
[MD5.B1D3387302EDCDAAD857E49B12D87CEC] [WIS][11/03/2013] (.Driver Whiz - Driver Whiz.) -- C:\Windows\Installer\37659a.msi [5978112]
[MD5.39509F7D4B7E345BE537D01B3E1ABEB9] [WIS][17/01/2013] (.SweetIM Technologies Ltd. - SweetIM for Messenger 3.7.) -- C:\Windows\Installer\4e0b2d.msi [3760128] =>PUP.SweetIM
[MD5.46F2667ADB3EF8EFBEB0505D2FAD321B] [WIS][17/01/2013] (.SweetIM Technologies Ltd. - SweetPacks Toolbar for Internet Explorer 4.0.) -- C:\Windows\Installer\4e0b33.msi [3350528] =>PUP.SweetIM
[MD5.3CD19859CD377AD00B30E4BEE49D374E] [WIS][17/01/2013] (.SweetIM Technologies Ltd. - Sweetpacks Communicator 1.1.) -- C:\Windows\Installer\4e0b39.msi [2997248] =>PUP.SweetIM
[MD5.75D85870A4671CD092E5D8DA4A8B93BC] [WIS][17/01/2013] (.SweetIM Technologies Ltd. - SweetPacks bundle uninstaller.) -- C:\Windows\Installer\4e0b3f.msi [2579456] =>PUP.SweetIM
[MD5.B67811645C5A3B8E4E4B1A1DB1EE271C] [WIS][17/01/2013] (.Boxore OU. - Software Update Helper.) -- C:\Windows\Installer\680459.msi [45056] =>Adware.Boxore
[MD5.22C9E7805145D0A0C4C62DDB591D2DAE] [WIS][27/06/2012] (.Babylon Ltd - BabylonObjectInstaller.) -- C:\Windows\Installer\fa6bb7.msi [353280] =>Toolbar.Babylon
~ WIS: 82 Legitimates Filtered in 00mn 11s
---\\ Etat g�n�ral des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Auto 10/05/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 21/08/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 23/10/2006 46640 | (AOL ACS) . (.AOL LLC.) - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
SS - | Demand 00\00\0000 0 | C:\Windows\System32\AppleChargerSrv.exe (AppleChargerSrv) . (...) - c:\system32\AppleChargerSrv.exe
SS - | Auto 15/10/2009 223464 | (BCUService) . (.DeviceVM, Inc..) - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
SS - | Demand 15/03/2012 610472 | (FSDFWD) . (.F-Secure Corporation.) - C:\Program Files\SFR\Pack S�curit�\apps\ComputerSecurity\FWES\Program\fsdfwd.exe
SS - | Auto 21/06/2012 163536 | (fshoster) . (.F-Secure Corporation.) - C:\Program Files\SFR\Pack S�curit�\fshoster32.exe
SS - | Demand 15/03/2012 213672 | (FSMA) . (.F-Secure Corporation.) - C:\Program Files\SFR\Pack S�curit�\apps\ComputerSecurity\Common\FSMA32.exe
SS - | Auto 25/06/2013 60352 | (FSORSPClient) . (.F-Secure Corporation.) - C:\Program Files\SFR\Pack S�curit�\apps\CCF_Reputation\fsorsp.exe
SS - | Auto 24/06/2010 233472 | (FsUsbExService) . (.Teruten.) - C:\Windows\system32\FsUsbExService.exe
SS - | Auto 06/04/2012 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 06/04/2012 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 10/11/2012 194032 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Auto 30/09/2009 268824 | (LMS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SS - | Auto 23/04/2010 25824 | (MemeoBackgroundService) . (.Memeo.) - C:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe
SS - | Auto 20/03/2013 132504 | (Norton PC Checkup Application Launcher) . (.Symantec Corporation.) - C:\Program Files\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe
SS - | Auto 18/01/2013 639776 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SS - | Auto 25/02/2013 1260320 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SS - | Auto 30/04/2010 14088 | (SeagateDashboardService) . (.Memeo.) - C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe
SS - | Demand 24/08/2013 563624 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files\Common Files\Steam\SteamService.exe
SS - | Auto 18/01/2013 383264 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SS - | Auto 30/09/2009 2320920 | (UNS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SS - | Demand 14/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SS - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 13s
---\\ Scan Additionnel (O88)
Database Version : v2.12866 - (26/08/2013)
Cl�s trouv�es (Keys found) : 220
Valeurs trouv�es (Values found) : 3
Dossiers trouv�s (Folders found) : 10
Fichiers trouv�s (Files found) : 17
[HKLM\Software\Google\Chrome\Extensions\pbpohikckhbcljgombipcdoinkaedlfa] =>Spyware.SmartDisplay^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{19803860-B306-423C-BBB5-F60A7D82CDE5}] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CFCB809C-3A22-4616-A916-6C007BD9D920}] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WNLT] =>Adware.InstallBrain^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\buqle] =>Adware.Lollipop^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ilividtoolbarguid] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{953AA732-9AFB-49C9-84A4-7F96CA0A08DA}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Wajam] =>Toolbar.Wajam^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WiseConvert_1.5 Toolbar] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\iLivid] =>Adware.Bandoo^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKLM\Software\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{186E19A3-B909-4F48-B687-BB81EB8BC7CE}] =>Trojan.BHO
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{19803860-B306-423C-BBB5-F60A7D82CDE5}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{19803860-B306-423C-BBB5-F60A7D82CDE5}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{19803860-B306-423C-BBB5-F60A7D82CDE5}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Code Store Database\Distribution Units\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}] =>Adware.MetaStream
[HKLM\Software\Classes\TypeLib\{1FDC0B61-91AC-4157-9B27-CAD9A09AB67E}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{26c9e18c-3717-4be1-a225-04e4471f5b6e}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{26c9e18c-3717-4be1-a225-04e4471f5b6e}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{26c9e18c-3717-4be1-a225-04e4471f5b6e}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{27100E88-8830-44ED-9D6A-CA24F3523F39}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{27100E88-8830-44ED-9D6A-CA24F3523F39}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{493CCB71-DCAD-4257-9F08-8750F63BD792}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{493CCB71-DCAD-4257-9F08-8750F63BD792}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}] =>Toolbar.Wajam
[HKLM\Software\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Office\Word\Addins\BabylonOfficeAddin.OfficeAddin] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Office\PowerPoint\Addins\BabylonOfficeAddin.OfficeAddin] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CFCB809C-3A22-4616-A916-6C007BD9D920}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CFCB809C-3A22-4616-A916-6C007BD9D920}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{CFCB809C-3A22-4616-A916-6C007BD9D920}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635] =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr
[HKLM\Software\Classes\CLSID\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F34C9277-6577-4DFF-B2D7-7D58092F272F}] =>PUP.Datamngr
[HKLM\Software\Classes\AppID\BrowserConnection.dll] =>Adware.Bandoo
[HKLM\Software\Classes\BrowserConnection.Loader] =>Adware.Bandoo
[HKLM\Software\Classes\BrowserConnection.Loader.1] =>Adware.Bandoo
[HKLM\Software\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9] =>Adware.MyWebSearch
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater] =>Toolbar.Wajam
[HKCU\Software\ChatZum Toolbar] =>Toolbar.ChatZum
[HKLM\Software\ChatZum Toolbar] =>Toolbar.ChatZum
[HKCU\Software\AppDataLow\Software\FileConverter_1.5] =>Toolbar.Agent
[HKLM\Software\FileConverter_1.5] =>Toolbar.Agent
[HKCU\Software\lollipop] =>Adware.Lollipop
[HKLM\Software\iLividSRTB] =>Adware.Bandoo
[HKCU\Software\PartyFrance] =>Casino.OnlineGames
[HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
[HKCU\Software\AppDataLow\Software\WiseConvert_1.5] =>Toolbar.Conduit
[HKLM\Software\WiseConvert_1.5] =>Toolbar.Conduit
[HKCU\Software\WNLT] =>Adware.IncrediBar
[HKLM\Software\WNLT] =>Adware.IncrediBar
[HKLM\Software\Microsoft\Tracing\Babylon_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Tracing\Babylon_RASMANCS] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Tracing\IncredibarToolbar_RASAPI32] =>Adware.IncrediBar
[HKLM\Software\Microsoft\Tracing\IncredibarToolbar_RASMANCS] =>Adware.IncrediBar
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\FileConverter_1.5 Toolbar] =>Toolbar.Agent
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Tracing\offerbox_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Microsoft\Tracing\offerbox_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Microsoft\Tracing\OfferBoxHTTPProxy_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Microsoft\Tracing\OfferBoxHTTPProxy_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Microsoft\Tracing\OfferBoxUpdateService_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Microsoft\Tracing\OfferBoxUpdateService_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Classes\AppID\priam_bho.DLL] =>Toolbar.Wajam
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}] =>PUP.SweetIM
[HKLM\Software\Classes\AppID\secman.DLL] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}] =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Tarma
[HKLM\Software\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}] =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{A1489C85-4F6F-48C4-AC9E-18B63AF4703E}] =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{F310F027-15CB-4A7F-B10D-3A4AFB5013A5}] =>Toolbar.Babylon
[HKLM\Software\Classes\Installer\Features\3192AA38321C641458DBDAF83979D193] =>Toolbar.Babylon
[HKLM\Software\Classes\Installer\Products\3192AA38321C641458DBDAF83979D193] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3192AA38321C641458DBDAF83979D193] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420] =>PUP.SweetIM
[HKLM\Software\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{CE4DB5A3-58E6-41F1-8761-47238DF4F468}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{75E8DA27-44AF-40AE-927C-F2EEC99D65B1}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{8DEC3C75-9A5D-446C-B7B5-E4AB4FDD6309}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{B00FE392-639D-4688-976E-A1BFF368CB96}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{3AE26843-9171-4F23-A8E5-5421701276A4}] =>Adware.Agent
[HKLM\Software\Classes\Installer\Features\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Classes\TypeLib\{5C9A2304-70A5-11D5-AFB0-0050DAC67890}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{928FE5E7-D557-46B7-8AF6-17ACCE1FB4ED}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{947217BD-E967-400A-B14A-BA851A8EDCBB}] =>Toolbar.Conduit
[HKLM\Software\Classes\.bdc] =>Toolbar.Conduit
[HKLM\Software\Classes\.bgl] =>Toolbar.Conduit
[HKLM\Software\Classes\.bof] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Tracing\boxore_RASAPI32] =>Adware.Boxore
[HKLM\Software\Microsoft\Tracing\boxore_RASMANCS] =>Adware.Boxore
[HKLM\Software\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{BD5843ED-13C4-4EFF-ACE9-56CEE22BC087}] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand] =>Adware.IMBooster
[HKLM\Software\Classes\AOLTB.AOLToolBand.1] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836] =>PUP.SweetIM^
[HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks]:{19803860-b306-423c-bbb5-f60a7d82cde5} =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{f34c9277-6577-4dff-b2d7-7d58092f272f} =>PUP.SearchResults^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:ROC_roc_dec12 =>Toolbar.AVGSearch^
C:\Program Files\Search Results Toolbar =>PUP.SearchResults^
C:\Program Files\WiseConvert_1.5 =>Toolbar.Conduit^
C:\Program Files\~Web Assistant =>Adware.IncrediBar^
C:\ProgramData\GamesBar =>Adware.GamesBar^
C:\ProgramData\Trymedia =>Adware.Trymedia^
C:\Users\switch\AppData\Local\Lollipop =>Adware.Lollipop^
C:\Program Files\OApps =>Toolbar.Agent
C:\Program Files\DeviceVM =>Toolbar.Splashtop
C:\Users\switch\AppData\LocalLow\searchresultstb =>Toolbar.Agent
C:\Users\switch\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa =>Spyware.SmartDisplay
C:\Program Files\WiseConvert_1.5\prxtbWis0.dll =>Toolbar.Conduit^
C:\Program Files\Search Results Toolbar\Datamngr\BrowserConnection.dll =>Adware.Bandoo^
C:\Program Files\FileConverter_1.5\prxtbFil0.dll =>Toolbar.Conduit^
C:\Program Files\SEARCH~1\Datamngr\SRTOOL~1\searchresultsDx.dll =>PUP.SearchResults^
C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google^
[HKLM\Software\Trymedia Systems] =>Adware.Trymedia^
C:\Program Files\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe =>PUP.SearchResults^
C:\Windows\Installer\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}\boxore.ico =>Adware.Boxore^
C:\Windows\Installer\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}\ARPPRODUCTICON.exe =>PUP.SweetIM^
C:\Windows\Installer\18e367.msi =>Adware.IMBooster^
C:\Windows\Installer\30f7dd.msi =>Adware.Boxore^
C:\Windows\Installer\4e0b2d.msi =>PUP.SweetIM^
C:\Windows\Installer\4e0b33.msi =>PUP.SweetIM^
C:\Windows\Installer\4e0b39.msi =>PUP.SweetIM^
C:\Windows\Installer\4e0b3f.msi =>PUP.SweetIM^
C:\Windows\Installer\680459.msi =>Adware.Boxore^
C:\Windows\Installer\fa6bb7.msi =>Toolbar.Babylon^
~ Additionnel Scan: 258378 Items scanned in 00mn 09s
---\\ R�capitulatif des d�tections trouv�es sur votre station
~ http://nicolascoolman.webs.com30319724-pup-searchresults =>PUP.SearchResults
~ http://nicolascoolman.webs.com29507721-toolbar-conduit =>Toolbar.Conduit
~ http://nicolascoolman.webs.com26611092-adware-bandoo =>Adware.Bandoo
~ http://nicolascoolman.webs.com32384220-toolbar-google =>Toolbar.Google
~ http://nicolascoolman.webs.com26627369-toolbar-babylon =>Toolbar.Babylon
~ http://nicolascoolman.webs.com26626977-adware-boxore =>Adware.Boxore
~ http://nicolascoolman.webs.com26907365-adware-installbrain =>Adware.InstallBrain
~ http://nicolascoolman.webs.com26630902-adware-lollipop =>Adware.Lollipop
~ http://nicolascoolman.webs.com29216159-pup-sweetim =>PUP.SweetIM
~ http://nicolascoolman.webs.com27379491-toolbar-wajam =>Toolbar.Wajam
~ http://nicolascoolman.webs.com26898222-adware-incredibar =>Adware.Incredibar
~ http://nicolascoolman.webs.com29710349-adware-trymedia =>Adware.Trymedia
~ http://nicolascoolman.webs.com26808625-adware-gamesbar =>Adware.GamesBar
~ http://nicolascoolman.webs.com30268689-toolbar-yahoo =>Toolbar.Yahoo
~ http://nicolascoolman.webs.com26684723-adware-imbooster =>Adware.IMBooster
~ http://nicolascoolman.webs.com27046242-adware-metastream =>Adware.MetaStream
~ http://nicolascoolman.webs.com27583992-pup-datamngr =>PUP.Datamngr
~ http://nicolascoolman.webs.com28927746-toolbar-ask =>Toolbar.Ask
~ http://nicolascoolman.webs.com27146838-adware-mywebsearch =>Adware.MyWebSearch
~ http://nicolascoolman.webs.com28606910-pup-offerbox =>PUP.OfferBox
~ http://nicolascoolman.webs.com29637859-toolbar-tarma =>Toolbar.Tarma
~ MSI: 21 link(s) detected in 00mn 09s
~ 1487 Legitimates filtered by white list
End of the scan (801 lines in 02mn 37s)(0)