Lilibam
Participant
Nombre d'articles : 17

J’ai donc fini par ZHPDiag.
[spoiler:1jd5a35e]~ Rapport de ZHPDiag v2014.4.28.48 – Nicolas Coolman (28/04/2014)
~ Lancé par Elodie (29/04/2014 18:42:42)
~ Adresse du Site Web http://nicolascoolman.webs.com » onclick= »window.open(this.href);return false;
~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/ » onclick= »window.open(this.href);return false;
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Activée par le programme
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user

—\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17031
GCIE: Google Chrome v34.0.1847.116 (Defaut)

—\ Informations sur les produits Windows
~ Langage: Français
Windows 8.1, 64-bit (Build 9600)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : F6V36
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

—\ Logiciels de protection du système
Malwarebytes Anti-Malware version 2.0.1.1004
Windows Defender W8

—\ Logiciels d'optimisation du système

—\ Logiciels de partage PeerToPeer

—\ Surveillance de Logiciels
Adobe Flash Player 13 Plugin
Adobe Reader XI
Java 7 Update 9
Java 7 Update 9

—\ Informations sur le système
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3975 MB (44% free)
System Restore: Activé (Enable)
System drive C: has 612 GB (91%) free of 672 GB

—\ Mode de connexion au système
~ Computer Name: LILIBAM
~ User Name: Elodie
~ All Users Names: HomeGroupUser$, Elodie, Administrateur,
~ Unselected Option: None
Logged in as Administrator

—\ Variables d'environnement
~ System Unit : C:
~ %AppZHP% : C:UsersElodieAppDataRoamingZHP
~ %AppData% : C:UsersElodieAppDataRoaming
~ %Desktop% : C:UsersElodieDesktop
~ %Favorites% : C:UsersElodieFavorites
~ %LocalAppData% : C:UsersElodieAppDataLocal
~ %StartMenu% : C:UsersElodieAppDataRoamingMicrosoftWindowsStart Menu
~ %Windir% : C:Windows
~ %System% : C:WindowsSystem32

—\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 612 Go of 672 Go)
D: CD-ROM drive (Not Inserted)

—\ Etat du Centre de Sécurité Windows
[HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesExplorer] NoActiveDesktopChanges: Modified
~ Security Center: 41 Legitimates Filtered in 00mn 00s

—\ Recherche particulière de fichiers génériques
[MD5.81394C91B7B5A7C799E249AE82491F13] – (.Microsoft Corporation – Explorateur Windows.) (.04/03/2014 – 13:25:49.) — C:WindowsExplorer.exe [2373784]
[MD5.48CFA7BE561A7BE144C29BB912055016] – (.Microsoft Corporation – Application de démarrage de Windows.) (.22/08/2013 – 10:58:29.) — C:WindowsSystem32Wininit.exe [144384]
[MD5.65C36A29A131A3A5D64B29FAC4EF6DD6] – (.Microsoft Corporation – Extensions Internet pour Win32.) (.22/02/2014 – 10:11:56.) — C:WindowsSystem32wininet.dll [2262016]
[MD5.306EB21E5B480AE9065EA55AC8C35936] – (.Microsoft Corporation – Application d’ouverture de session Windows.) (.22/02/2014 – 10:45:48.) — C:WindowsSystem32Winlogon.exe [562176]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] – (.Microsoft Corporation – Bibliothèque de licences.) (.21/12/2013 – 09:54:07.) — C:WindowsSystem32sppcomapi.dll [447488]
[MD5.239268BAB58EAE9A3FF4E08334C00451] – (.Microsoft Corporation – Pilote de fonction connexe pour WinSock.) (.22/08/2013 – 14:25:35.) — C:Windowssystem32DriversAFD.sys [567296]
[MD5.74B14192CF79A72F7536B27CB8814FBD] – (.Microsoft Corporation – ATAPI IDE Miniport Driver.) (.22/08/2013 – 13:43:41.) — C:Windowssystem32Driversatapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] – (.Microsoft Corporation – CD-ROM File System Driver.) (.22/08/2013 – 12:40:15.) — C:Windowssystem32DriversCdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] – (.Microsoft Corporation – SCSI CD-ROM Driver.) (.22/08/2013 – 09:46:35.) — C:Windowssystem32DriversCdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] – (.Microsoft Corporation – DFS Namespace Client Driver.) (.06/03/2014 – 10:22:50.) — C:Windowssystem32DriversDfsC.sys [134144]
[MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] – (.Microsoft Corporation – High Definition Audio Bus Driver.) (.22/08/2013 – 12:38:38.) — C:Windowssystem32DriversHDAudBus.sys [78336]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] – (.Microsoft Corporation – Pilote de port i8042.) (.22/08/2013 – 12:39:15.) — C:Windowssystem32Driversi8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] – (.Microsoft Corporation – IP Network Address Translator.) (.27/11/2013 – 13:02:29.) — C:Windowssystem32DriversIpNat.sys [142848]
[MD5.C997E6A37BA8915224B3FB5024A34F69] – (.Microsoft Corporation – Minirdr SMB Windows NT.) (.06/03/2014 – 10:20:23.) — C:Windowssystem32DriversMRxSmb.sys [402944]
[MD5.0217532E19A748F0E5D569307363D5FD] – (.Microsoft Corporation – MBT Transport driver.) (.22/08/2013 – 12:37:02.) — C:Windowssystem32DriversnetBT.sys [282624]
[MD5.1C80517BE6836A812F6A9B99B8321351] – (.Microsoft Corporation – Pilote du système de fichiers NT.) (.20/03/2014 – 04:41:24.) — C:Windowssystem32Driversntfs.sys [2013016]
[MD5.764B1121867B2D9B31C491668AC72B2B] – (.Microsoft Corporation – Pilote de port parallèle.) (.22/08/2013 – 12:40:02.) — C:Windowssystem32DriversParport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] – (.Microsoft Corporation – RAS L2TP mini-port/call-manager driver.) (.22/08/2013 – 12:35:51.) — C:Windowssystem32DriversRasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] – (.Microsoft Corporation – Redirecteur de périphérique de Microsoft RDP.) (.14/11/2013 – 08:16:40.) — C:Windowssystem32Driversrdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] – (.Microsoft Corporation – TDI Translation Driver.) (.22/08/2013 – 14:25:35.) — C:Windowssystem32Driverstdx.sys [107520]
[MD5.3595FBDF25F8BA6256072D103937D7D6] – (.Microsoft Corporation – Pilote de cliché instantané du volume.) (.22/02/2014 – 16:44:13.) — C:Windowssystem32Driversvolsnap.sys [311640]
~ Generic Processes: Scanned in 00mn 00s

—\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/1429
~ Mes musiques (My Musics) : 10/28
~ Mes Videos (My Videos) : 1/21
~ Mes Favoris (My Favorites) : 1/9
~ Mes Documents (My Documents) : 2/1630
~ Mon Bureau (My Desktop) : 2/138
~ Menu demarrer (Programs) : 1/32
~ Hidden Files: Scanned in 00mn 03s

—\ Processus lancés
[MD5.672E1B3140D78F01E5563C32A72E3ED3] – (.Pas de propriétaire – VaioCare Window Listener Application.) — C:Program FilesSonyVAIO Carelistener.exe [62464] [PID.3144]
[MD5.10E89F598469C60D8C87A8218089A87D] – (.Akamai Technologies, Inc. – Akamai NetSession Client.) — C:UsersElodieAppDataLocalAkamainetsession_win.exe [4489472] [PID.3260]
[MD5.2EBBBFC120593C683796092F2DDA0EFC] – (.Google Inc. – Google Chrome.) — C:Program Files (x86)GoogleChromeApplicationchrome.exe [841032] [PID.3820]
[MD5.2E2F360FF158A67F8128EFAAF974189C] – (.Sony Corporation – ISB Utility.) — C:Program Files (x86)SonyISB UtilityISBMgr.exe [68776] [PID.1056]
[MD5.717CECF8A6F55295A2A8B9ED4C64D800] – (.Sony Corporation – Media Check Tool.) — C:Program Files (x86)SonyPlayMemories HomePMBVolumeWatcher.exe [724576] [PID.1004]
[MD5.49CD8D25D932C5BF867EBFF00D432B75] – (.Intel Corporation – Intel Services Manager.) — C:Program Files (x86)IntelIntelAppStorebinismagent.exe [156000] [PID.2916]
[MD5.41AD6110110A2E89957F831DCBFAF892] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) — C:Program Files (x86)Malwarebytes Anti-Malwarembam.exe [6963512] [PID.1064]
[MD5.1780A53FCE5975B94604775CD9460F22] – (.Nicolas Coolman – ZHPDiag.) — C:Program Files (x86)ZHPDiagZHPDiag.exe [7865344] [PID.2704]
~ Processes Running: Scanned in 00mn 01s

—\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:UsersElodieAppDataLocalGoogleChromeUser DataDefaultPreferences
G2 – GCE: Preference [User DataDefault] [acpgallpembnhicfiaiplhabmefifcpk] video2mp3 v.1.0.3 (Activé)
G2 – GCE: Preference [User DataDefault] [giacfgjdclhnmkacnfbaljbmpnelflol] iVIDI.org plugin v.1.3 (Désactivé) =>PUP.Ividi
G2 – GCE: Preference [User DataDefault] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 – GCE: Preference [User DataDefault] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
G2 – GCE: Preference [User DataDefault] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé)
G2 – GCE: Preference [User DataDefault] [pbaohildkhbcljgoabiecdoinkaedlca] Smart Display v.1.7, (Activé) =>Spyware.SmartDisplay
G2 – GCE: Preference [User DataDefault] [pbpohilckhbcljgoabiecdoinkaedlca] Smart Display v.1.6 (Désactivé) =>Spyware.SmartDisplay

—\ Liste des dossiers d'extension Google Chrome
~ Google Lines Browser: 20 Legitimates Filtered in 00mn 01s

—\ Internet Explorer, Proxy Management (R5)
R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride =
R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyServer = no key
R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyEnable = 0
R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,MigrateProxy = 1
R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,EnableHttp1_1 = 1
R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s

—\ Analyse des lignes F0, F1, F2, F3 – IniFiles, Autoloading programs
F2 – REG:system.ini: USERINIT=C:Windowssystem32userinit.exe,
F2 – REG:system.ini: Shell=C:Windowsexplorer.exe
F2 – REG:system.ini: VMApplet=C:WindowsSystem32SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s

—\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21

—\ Applications lancées au démarrage du système (O4)
O4 – HKLM..Run: [RtHDVBg] . (.Realtek Semiconductor – HD Audio Background Process.) — C:Program FilesRealtekAudioHDARAVBg64.exe
O4 – HKLM..Run: [IgfxTray] . (.Intel Corporation – igfxTray Module.) — C:WINDOWSsystem32igfxtray.exe
O4 – HKLM..Run: [HotKeysCmds] . (.Intel Corporation – hkcmd Module.) — C:WINDOWSsystem32hkcmd.exe
O4 – HKLM..Run: [Persistence] . (.Intel Corporation – persistence Module.) — C:WINDOWSsystem32igfxpers.exe
O4 – HKLM..Run: [Zune Launcher] . (.Microsoft Corporation – Zune Auto-Launcher.) — C:Program FilesZuneZuneLauncher.exe
O4 – HKLM..Run: [SynTPEnh] C:Program Files (x86)SynapticsSynTPSynTPEnh.exe (.not file.)
O4 – HKCU..Run: [SandboxieControl] . (.Sandboxie Holdings, LLC – Sandboxie Control.) — C:Program FilesSandboxieSbieCtrl.exe
O4 – HKCU..Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. – Akamai NetSession Client.) — C:UsersElodieAppDataLocalAkamainetsession_win.exe
O4 – HKCU..Run: [Skype] . (.Skype Technologies S.A. – Skype.) — C:Program Files (x86)SkypePhoneSkype.exe =>.Skype Technologies S.A.
O4 – HKLM..Wow6432NodeRun: [ISBMgr.exe] . (.Sony Corporation – ISB Utility.) — C:Program Files (x86)SonyISB UtilityISBMgr.exe
O4 – HKLM..Wow6432NodeRun: [PMBVolumeWatcher] . (.Sony Corporation – Media Check Tool.) — C:Program Files (x86)SonyPlayMemories HomePMBVolumeWatcher.exe
O4 – HKLM..Wow6432NodeRun: [Adobe ARM] . (.Adobe Systems Incorporated – Adobe Reader and Acrobat Manager.) — C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe =>.Adobe Systems Incorporated
O4 – HKLM..Wow6432NodeRun: [Intel AppUp(R) center] . (.Intel Corporation – Intel Services Manager.) — C:Program Files (x86)IntelIntelAppStorebinismagent.exe
O4 – HKLM..Wow6432NodeRun: [Aeria Ignite] . (.Aeria Games & Entertainment – Aeria Ignite.) — C:Program Files (x86)Aeria GamesIgniteaeriaignite.exe
O4 – HKLM..Wow6432NodeRun: [tuto4pc_fr_62] Clé orpheline =>PUP.AgenceExclusive
O4 – HKLM..policiesExplorerRun: [BtvStack] . (.Qualcomm Atheros Commnucations – Extension Core.) — C:Program Files (x86)Bluetooth SuiteBtvStack.exe
O4 – HKUSS-1-5-21-2470874754-7409401-3501252667-1001..Run: [SandboxieControl] . (.Sandboxie Holdings, LLC – Sandboxie Control.) — C:Program FilesSandboxieSbieCtrl.exe
O4 – HKUSS-1-5-21-2470874754-7409401-3501252667-1001..Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. – Akamai NetSession Client.) — C:UsersElodieAppDataLocalAkamainetsession_win.exe
O4 – HKUSS-1-5-21-2470874754-7409401-3501252667-1001..Run: [Skype] . (.Skype Technologies S.A. – Skype.) — C:Program Files (x86)SkypePhoneSkype.exe =>.Skype Technologies S.A.
~ Application: Scanned in 00mn 00s

—\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 – Extra button: Send by Bluetooth to [64Bits] – {7815BE26-237D-41A8-A98F-F7BD75F71086} — Clé orpheline
~ IE Extra Buttons: Scanned in 00mn 00s

—\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 – Trusted Zone: [HKCU…Domains] http.aeriagames.com
~ IE Zone Confiance: Scanned in 00mn 00s

—\ Modification Domaine/Adresses DNS (O17)
O17 – HKLMSystemCCSServicesTcpip..{A0554886-15BC-497C-80D7-E87F43EB5E2A}: DhcpNameServer = 192.168.1.20
O17 – HKLMSystemCCSServicesTcpip..{D5005D95-BFD2-4A32-B835-6CEC9FBE2FB5}: DhcpNameServer = 192.50.104.21
O17 – HKLMSystemCS1ServicesTcpip..{A0554886-15BC-497C-80D7-E87F43EB5E2A}: DhcpNameServer = 192.168.1.20
O17 – HKLMSystemCS1ServicesTcpip..{D5005D95-BFD2-4A32-B835-6CEC9FBE2FB5}: DhcpNameServer = 192.50.104.21
O17 – HKLMSystemCCSServicesTcpipParameters: DhcpNameServer = 192.168.1.20
~ Domain: Scanned in 00mn 00s

—\ Protocole additionnel (O18)
O18 – Handler: vbscript [64Bits] – {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation – Visionneuse HTML Microsoft (R).) — C:WindowsSystem32mshtml.dll =>.Microsoft Corporation
O18 – Filter: application/x-msdownload [64Bits] – {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation – Microsoft .NET Runtime Execution Engine.) — C:WindowsSystem32mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s

—\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 – Winlogon Notify: igfxcui . (.Intel Corporation – igfxdev Module.) — C:WindowsSystem32igfxdev.dll
~ Winlogon: Scanned in 00mn 00s

—\ Tâches planifiées en automatique (O39)
[MD5.683CB5573951BF26251511CFBAF80B8C] [APT] [{3771C303-AA24-4CC9-8EEB-59A9B5503C40}] (.SIEN.) — C:UsersElodieAppDataLocalYappyzUninstallYappyzUninstall.exe [795968] =>PUP.Yappyz
[MD5.00000000000000000000000000000000] [APT] [{B1310AB5-C6C1-46F4-BD66-12EA7DFBB012}] (…) — C:Program Files (x86)Wajamuninstall.exe (.not file.) [0] =>PUP.Wajam
O39 – APT: – (..) — C:WindowsSystem32TasksAdobe Flash Player Updater [1002]
O39 – APT: – (..) — C:WindowsSystem32TasksGoogleUpdateTaskMachineCore [1074]
O39 – APT: – (..) — C:WindowsSystem32TasksGoogleUpdateTaskMachineUA [1078]
O39 – APT: – (..) — C:WindowsTasksSynaptics TouchPad Enhancements.job [264]
O39 – APT: – (..) — C:WindowsSystem32TasksSynaptics TouchPad Enhancements [264]
~ Scheduled Task: 20 Legitimates Filtered in 00mn 08s

—\ Logiciels installés (O42)
O42 – Logiciel: AuraKingdom-FR – (…) [HKLM][64Bits] — AuraKingdom-FR
O42 – Logiciel: Boxore Client – (.Boxore OU.) [HKLM][64Bits] — {0E365FDA-909F-4939-838A-261DD468D862} =>Adware.Boxore
~ Logic: 40 Legitimates Filtered in 00mn 00s

—\ HKCU & HKLM Software Keys
[HKCUSoftwareYappyz] =>PUP.Yappyz
[HKLMSoftwareInternet Content Filter]
[HKLMSoftwareWow6432NodeDJOnlineFB]
[HKLMSoftwareWow6432NodeInternet Content Filter]
~ Key Software: 307 Legitimates Filtered in 00mn 00s

—\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 – CFD: 18/09/2013 – 20:29:31 – [0] —-D C:ProgramDataBabylon =>PUP.Babylon
O43 – CFD: 29/04/2014 – 18:32:16 – [] —-D C:ProgramDataBoxUpdChk =>Adware.Boxore
O43 – CFD: 29/04/2014 – 18:32:16 – [0] —-D C:ProgramDataDSearchLink =>Toolbar.DeltaSearch
O43 – CFD: 22/04/2013 – 14:15:33 – [] —-D C:ProgramDataInternet Content Filter
O43 – CFD: 25/01/2014 – 22:02:19 – [] —-D C:ProgramDataWPM =>PUP.WpManager
O43 – CFD: 18/09/2013 – 20:36:55 – [] —-D C:UsersElodieAppDataLocalYappyzUninstall =>PUP.Yappyz
~ Program Folder: 137 Legitimates Filtered in 00mn 00s

—\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 – LFC:[MD5.385AF1C48CE3E86B37B9E66749FFEC1B] – 29/04/2014 – 12:33:48 —A- . (…) — C:WindowsSystem32srms.dat [50053]
O44 – LFC:[MD5.E7B53AF004BEE5112F787A6E5B04D737] – 29/04/2014 – 12:33:52 —A- . (…) — C:WindowsSystem32connectedsearch-results.searchconnector-ms [11109]
O44 – LFC:[MD5.F1DB86EA935C13CDFF27AB957297136A] – 29/04/2014 – 12:34:08 —A- . (…) — C:WindowsSystem32connectedsearch-suggestions.searchconnector-ms [7762]
O44 – LFC:[MD5.1FDF29F970E2E843B4DC5D0626D0EDD5] – 29/04/2014 – 12:34:08 —A- . (…) — C:WindowsSystem32connectedsearch-zeroinput.searchconnector-ms [7130]
O44 – LFC:[MD5.DE461B86C05946D10E519F512D09E389] – 29/04/2014 – 12:34:09 —A- . (…) — C:WindowsSystem32RacRules.xml [100197]
O44 – LFC:[MD5.119E0F7A71775A5CFB208B036ECE35E1] – 29/04/2014 – 12:35:12 —A- . (…) — C:WindowsSystem32WimBootCompress.ini [2255]
O44 – LFC:[MD5.DCF2510E0745720E543E84F5E921FCC0] – 29/04/2014 – 12:37:47 —A- . (…) — C:WindowsSystem32dfpinc.dat [262335]
O44 – LFC:[MD5.FFFCC3C3ED6886A95D3C0E1B49C652BA] – 29/04/2014 – 12:39:39 —A- . (…) — C:WindowsSystem32systemsf.ebd [139600]
O44 – LFC:[MD5.12B0701B1CEC1A7BB0E4C71D97661E23] – 29/04/2014 – 12:45:38 —A- . (…) — C:WindowsSystem32ApnDatabase.xml [387210]
O44 – LFC:[MD5.08750A50CF027F93070C8BB78E27C3B7] – 29/04/2014 – 15:37:15 -SH– . (…) — C:WindowsSystem32desktop.ini [75]
~ Files: 563 Legitimates Filtered in 00mn 15s

—\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 – LFCP:[MD5.36E0C4C62491AAA1B4A26CB81A8C0BC7] – 22/01/2014 – 21:33:16 —A- – C:WindowsPrefetchBICLIENT.EXE-E407720C.pf =>Adware.MegaSearch
O45 – LFCP:[MD5.656A58A1C5CECFAC05B514241CB6F6A2] – 25/12/2013 – 01:30:31 —A- – C:WindowsPrefetchPACKBARRE.EXE-03291176.pf =>Adware.ADON
~ Prefetcher: 2 Legitimates Filtered in 00mn 00s

—\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 – MWPS:[HKLM…PoliciesSystem] – « EnableUIADesktopToggle »=0
O55 – MWPS:[HKLM…PoliciesSystem] – « FilterAdministratorToken »=0
O55 – MWPS:[HKLM…PoliciesSystem] – « DisableCAD »=1
~ MWPS: 20 Legitimates Filtered in 00mn 00s

—\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 – MWPE:[HKLM…policiesExplorer] – « NoActiveDesktopChanges »=1
~ MWPE Keys: 5 Legitimates Filtered in 00mn 00s

—\ Liste des pilotes du système (SDL) (O58)
O58 – SDL:13/08/2013 – 00:25:46 —A- . (.Windows (R) Win 7 DDK provider – BCM Function 2 Device Driver.) — C:WindowsSystem32Driversbcmfn2.sys [17624]
O58 – SDL:22/08/2013 – 13:43:32 —A- . (.Promise Technology, Inc. – Promise SuperTrak EX Series Driver for Windows x64.) — C:WindowsSystem32Driversstexstor.sys [31072]
~ Drivers: 57 Legitimates Filtered in 00mn 02s

—\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 – LFC: 22/04/2014 – 18:44:02 —A- . (…) — C:UsersElodieDownloadsLame_v3.99.3_for_Windows.exe [527423]
O61 – LFC: 23/04/2014 – 18:43:46 —A- . (…) — C:UsersElodieAppDataLocalMicrosoftWindowsSqmManifestSqm10237.bin [217776]
O61 – LFC: 29/04/2014 – 18:43:46 —A- . (.SQLite Development Team.) — C:UsersElodieAppDataLocalMicrosoftWindowsINetCacheIEVY1OIEXYSQLite3_300700200[1].dll [536576]
O61 – LFC: 29/04/2014 – 18:44:00 —A- . (…) — C:UsersElodieDesktopadwcleaner.exe [1310621]
~ 176 Fichiers temporaires (Temporary files)
~ Files: 11 Legitimates Filtered in 00mn 23s

—\ Liste des outils de désinfection (LATC) (O63)
O63 – Logiciel: ZHPDiag 2014 – (.Nicolas Coolman.) [HKLM] — ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s

—\ Associations Shell Spawning (O67)
O67 – Shell Spawning: [HKCU..openCommand] (.Not Key.)
~ FASS Keys: 11 Legitimates Filtered in 00mn 00s

—\ Menu de démarrage Internet (SMI) (O68)
O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Google Inc. – Google Chrome.) — C:Program Files (x86)GoogleChromeApplicationchrome.exe
O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Microsoft Corporation – Internet Explorer.) — C:Program Files (x86)Internet Exploreriexplore.exe
~ Keys: Scanned in 00mn 00s

—\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 – SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} – (Bing) – http://www.bing.com » onclick= »window.open(this.href);return false;
O69 – SBI: SearchScopes [HKCU] {6EAC3558-5CBD-4436-B75E-513FE79A9537} – (Bing) – http://www.bing.com » onclick= »window.open(this.href);return false;
O69 – SBI: SearchScopes [HKCU] {D91206ED-63B7-4818-877D-E3B8BD03830A} – (eBay) – http://rover.ebay.com » onclick= »window.open(this.href);return false; =>Toolbar.eBay
~ Keys: Scanned in 00mn 00s

—\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.A8DDCC18FC3706A5752713E9CC05A0BD] [SPRF][29/04/2014] (…) — C:UsersElodieDesktopadwcleaner.exe [1310621]
[MD5.443C9DAA92E9224A9BF086550AC9D59B] [SPRF][19/08/2013] (…) — C:UsersElodieDesktopNostaleBot Online v.1.2.exe [255581]
~ Files: 4 Legitimates Filtered in 00mn 00s

—\ Enumère les codes produits des logiciels (PUC) (O90)
O90 – PUC: « ADF563E0F909939438A862D14D868D26 » . (.Boxore Client.) — C:WINDOWSInstaller{0E365FDA-909F-4939-838A-261DD468D862}boxore.ico =>Adware.Boxore
~ Update Products: 1 Legitimates Filtered in 00mn 00s

—\ Enumère les données de la clé NameSpace (MNS) (O92)
O92 – MNS: – {1CF1260C-4DD0-4ebb-811F-33C572699FDE}
O92 – MNS: – {374DE290-123F-4565-9164-39C4925E467B}
O92 – MNS: – {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA}
O92 – MNS: – {A0953C92-50DC-43bf-BE83-3742FED03C9C}
O92 – MNS: – {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0}
O92 – MNS: – {B4BFCC3A-DB2C-424C-B029-7FE99A87C641}
~ MNS: 6 Legitimates Filtered in 00mn 00s

—\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS – | Demand 28/04/2014 257712 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) – C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe
SS – | Demand 03/10/2013 279000 | (cphs) . (.Intel Corporation.) – C:WindowsSysWow64IntelCpHeciSvc.exe
SS – | Demand 12/10/2010 206072 | (GamesAppService) . (.WildTangent, Inc..) – C:Program Files (x86)WildTangent GamesAppGamesAppService.exe
SS – | Auto 31/07/2013 116648 | (gupdate) . (.Google Inc..) – C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
SS – | Demand 31/07/2013 116648 | (gupdatem) . (.Google Inc..) – C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
SS – | Disabled 10/07/1658 0 | (McOobeSv2) . (…) – C:Program FilesCommon FilesmcafeePlatformMcSvcHostMcSvHost.exe
SS – | Demand 17/10/2012 623784 | (NetworkSupport) . (.Sony Corporation.) – C:Program Files (x86)SonyVAIO Control CenterNetworkSettingNetworkSupport.exe
SS – | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) – C:Program Files (x86)SkypeUpdaterUpdater.exe
SS – | Demand 15/10/2012 123616 | (SOHCImp) . (.Sony Corporation.) – C:Program Files (x86)Common FilesSony SharedSOHLibSOHCImp.exe
SS – | Demand 15/10/2012 461024 | (SOHDms) . (.Sony Corporation.) – C:Program Files (x86)Common FilesSony SharedSOHLibSOHDms.exe
SS – | Demand 15/10/2012 78560 | (SOHDs) . (.Sony Corporation.) – C:Program Files (x86)Common FilesSony SharedSOHLibSOHDs.exe
SS – | Demand 01/12/2011 289952 | (SpfService) . (.Sony Corporation.) – C:Program FilesCommon FilesSony SharedVAIO Entertainment PlatformSPFSpfService64.exe
SS – | Demand 19/07/2012 476328 | (VAIO Power Management) . (.Sony Corporation.) – C:Program FilesSonyVAIO Power ManagementSPMService.exe
SS – | Demand 28/09/2012 964608 | (VCFw) . (.Sony Corporation.) – C:Program Files (x86)Common FilesSony SharedVAIO Content Folder WatcherVCFw.exe
SS – | Demand 10/07/1658 0 | (WMPNetworkSvc) . (…) – C:Program Files (x86)Windows Media Playerwmpnetwk.exe =>.Microsoft Corporation
SR – | Auto 11/05/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) – c:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe
SR – | Auto 28/12/2012 226944 | (AtherosSvc) . (.Qualcomm Atheros Commnucations.) – C:Program Files (x86)Bluetooth Suiteadminservice.exe
SR – | Auto 09/10/2012 2445968 | (IconMan_R) . (.Realsil Microelectronics Inc..) – C:Program Files (x86)RealtekRealtek PCIE Card ReaderRIconMan.exe
SR – | Auto 20/04/2012 635104 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) – C:Program FilesInteliCLS ClientHeciServer.exe
SR – | Auto 27/06/2012 129856 | (Intel(R) ME Service) . (.Intel Corporation.) – C:Program Files (x86)IntelIntel(R) Management Engine ComponentsFWServiceIntelMeFWService.exe
SR – | Auto 25/06/2012 166720 | (jhi_service) . (.Intel Corporation.) – C:Program Files (x86)IntelIntel(R) Management Engine ComponentsDALjhi_service.exe
SR – | Auto 17/07/2012 277824 | (LMS) . (.Intel Corporation.) – C:Program Files (x86)IntelIntel(R) Management Engine ComponentsLMSLMS.exe
SR – | Auto 03/04/2014 1809720 | (MBAMScheduler) . (.Malwarebytes Corporation.) – C:Program Files (x86)Malwarebytes Anti-Malwarembamscheduler.exe
SR – | Auto 03/04/2014 857912 | (MBAMService) . (.Malwarebytes Corporation.) – C:Program Files (x86)Malwarebytes Anti-Malwarembamservice.exe
SR – | Auto 27/07/2012 474208 | (PMBDeviceInfoProvider) . (.Sony Corporation.) – C:Program Files (x86)SonyPlayMemories HomePMBDeviceInfoProvider.exe
SR – | Auto 06/08/2012 156672 | (SampleCollector) . (…) – C:Program FilesSonyVAIO CareVCPerfService.exe
SR – | Auto 17/01/2014 187592 | (SbieSvc) . (.Sandboxie Holdings, LLC.) – C:Program FilesSandboxieSbieSvc.exe
SR – | Auto 17/07/2012 365376 | (UNS) . (.Intel Corporation.) – C:Program Files (x86)IntelIntel(R) Management Engine ComponentsUNSUNS.exe
SR – | Auto 14/09/2012 67536 | (VAIO Event Service) . (.Sony Corporation.) – C:Program Files (x86)SonyVAIO Control CenterVESMgr.exe
SR – | Demand 12/10/2012 54760 | (VCService) . (.Sony Corporation.) – C:Program FilesSonyVAIO CareVCService.exe
SR – | Demand 25/09/2013 1369136 | (VUAgent) . (.Sony Corporation.) – C:Program FilesSonyVAIO UpdateVUAgent.exe
SR – | Demand 10/07/1658 0 | (WdNisSvc) . (…) – C:Program Files (x86)Windows DefenderNisSrv.exe
SR – | Auto 10/07/1658 0 | (WinDefend) . (…) – C:Program Files (x86)Windows DefenderMsMpEng.exe
SR – | Demand 22/08/2013 37768 | C:WindowsSystem32wuaueng.dll (wuauserv) . (.Microsoft Corporation.) – C:WindowsSystem32svchost.exe
SR – | Auto 28/12/2012 323584 | (ZAtheros Bt and Wlan Coex Agent) . (.Atheros.) – C:Program Files (x86)Bluetooth SuiteAth_CoexAgent.exe
~ Services: Scanned in 00mn 09s

—\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by Elodie at 29/04/2014 18:45:47
~ OS 64 not supported by MBR tool
~ MBR: 0 Legitimates Filtered in 00mn 00s

—\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog » onclick= »window.open(this.href);return false;
Run by Elodie at 29/04/2014 18:45:49
********* Dump file Name *********
C:PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s

—\ Scan Additionnel (O88)
Database Version : 13045 – (28/04/2014)
Clés trouvées (Keys found) : 170
Valeurs trouvées (Values found) : 1
Dossiers trouvés (Folders found) : 8
Fichiers trouvés (Files found) : 2

[HKLMSoftwareGoogleChromeExtensionsgiacfgjdclhnmkacnfbaljbmpnelflol] =>PUP.Ividi^
[HKLMSoftwareGoogleChromeExtensionspbaohildkhbcljgoabiecdoinkaedlca] =>Spyware.SmartDisplay^
[HKLMSoftwareGoogleChromeExtensionspbpohilckhbcljgoabiecdoinkaedlca] =>Spyware.SmartDisplay^
[HKLMSoftwareMicrosoftWindowsCurrentVersionUninstall{0E365FDA-909F-4939-838A-261DD468D862}] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUpgradeCodes1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components124B064795BB484FA494FC7CF204C0C] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components1F8E7504D2D2644AB1185234D2AD5AC] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components4CDEDFDD6EF25443B78A49D1FE5B4F2] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components58911EBC07BAAE42B102E3F4B0D070D] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components5CE306CC244D284D8D8090E404CD7D3] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components89527E77AD22E345B0066D226E44F46] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsBD0B15D6F0C2BF428B339B2D2D732C9] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsC1AAA506D92B2D44BD6FEF6CDFB71E1] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsCAEC9AFF1716FF4DBACEED82F88C702] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsDD4444CBC682774C8E573CC73C5BC46] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsF68250201451D64EA71E91BA19832DC] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components126FFC99A0F214F41AE2D6C7A0FC09BF] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components12F72EF2521177A4BB467FF35A881382] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components14873772FE3926F4195C9280D52D3486] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components14CF11D787D40BF458A3B5CB123733CE] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components163A5460E4FB18343B4C0B781B27E813] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components1705977FCB2F22F4D8A9AB847C3FB9CE] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components19F133B6A0BA9B14493CE47703DF4CF3] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components1C735C7A54F53574CA5AEA93D0D1F01E] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components1CE2260B068265A488410CA171D93778] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components1DF1DD2609A2135479C19D72E41B64AA] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components1F72D9058D0863E4F8EB9FE6E980C385] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components2217D47FAFB0AC547820199B3A026CFB] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components22C5FD2815F5C7C4DB5F34F504BF9D96] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components26CF57FC035624845B9005289DFA1448] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components2719056FB4CDD294887140382819FFF7] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components2956CB28F45AAF746998774B3C9FF012] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components2AD5E582EBA9ED54989A134D9250922B] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components2BB672F8D2CA64146B6688371E75C986] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components2EA450B923F9C4D4BBEB203648FBFFDC] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components2ECA942EFDBD22B4EBB7FE3AB9EDDBDD] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components2F055C41FDCA50A43BE42A96D243AD47] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components2F4EE319A22490145BC4AEBC53B616CA] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components31E430E345D85D54CA33BC88AEFDB9D8] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components358096DA35E67B5479C2E880DF0C10C1] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components37345F678B330594E9E4AC16908F78CF] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components38641BF101151094F86DD62B534BDEC4] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components38762340C83E6764B87807B67154F5A4] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components3984BAF27BDA0DC4D8AED19FCB64BD7D] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components3D82200490995CE42AB754DCD90AC44D] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components3E9F0E4315A35D741873885200C6A454] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components3F261C3E5AD56E54598E24B106813C7E] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components40D753328E77EE842A82631EED62CEC5] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components40FDEFB25883CF140B9B5F89CB7E2871] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components412179CD2126BB34CAE51691856A3D68] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components43218F63264345445A73071C174FEEE8] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components439E8A02B7736CA488EECE28D7EE961A] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components456D8CED0106E1649AE5CBD8082AC705] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components459277E8A0EE8894F9D7F807DF90506A] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components463372A470C576443AE8802B1AC61D89] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components48F13E425ECD5F243A8A82AA2B65336D] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components4B6F3AD0EE690D2478C7D0528AADF8C4] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components4BB9D431259E08A499469636383B9935] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components4D3B0714BC82B2340AB18C031262573D] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components4D5809867D6C1D14180511D3AAD03F79] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components4DB13DED48DC4494C90DE800D31B086C] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components52C608FC2A61CCE479768A9719CABF7B] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components56861F0CE995D0E45835F5D31E105D54] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components58E44D082625757499995F9516313A9C] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components5A52F724764B00747A637F14FBBBB830] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components5B19839CB98BB914BA43E863BBE11B4E] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components613DCE6E373581A40B6C88D4F7C09096] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components6292C097F9759424BAFA3E32CD3DD562] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components62C171206461ED34885A4AE095F4A7AC] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components63E9F48D88AA940498502E29E3747471] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components64747EAAAE2BA5141AEBCF4F6651A144] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components6494B0B34076D6248B6E5F42E3252AD0] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components6495111F730311440BBC3AAAF3B8C7AC] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components65273BD75ADFA9146A0950469941299A] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components6543EA2E8E729CF4789BCD7361D58C03] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components658DABBCADB609E429A6769C46FAADD0] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components67A614CC45D7C5845BE2184211CC8F9C] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components6B6581D2CF6BB444D8ACBF79E3AF425B] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components6C0DB201BFD71284CB8CA279446863E8] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components6EA4E994723ECC940AE01A2507673199] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components6F2331E07AF9B414DB15E2E7BAB7F880] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components6F3E6739E6CECC64D9B7E5D24CF60746] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components73268B3F6C2206C4BAF14E3C5B4BC494] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components73D229597C7281E409FDEB3079E30E5A] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components75A49DF39158638428A0F7797D4CD1E6] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components75D223AE12684124794DD7D3FB067886] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components76937F723CDCAB547A9791D60867A5B5] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components78AD011E92C0B7D4A86E41451EC7A0F0] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components79080E81959ECB54E9E7B3C67AE5781A] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components7A8B37070412F4D47895AA40EFC2E39A] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components7F84DAA817EC0AB409DFE802184D5B09] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components82F14F44AA63A5945A2E960EF018794E] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components831071FAC16E2DA4682F55E0B0DE6979] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components83D0F8F1641145A42B26F71D534E9A34] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components84072C174C7F25148BFB33ADE8C704E1] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components872C7B3D2887D4E4EBF645D7AB9374D1] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components8C00987A23C36B145AB60EE274936EB3] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components8D736B12592E2E94094267BC5B7AA7EB] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components8F3E0221A8351144BB04AEF5266143CB] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components90E77522D1656DA4DABC673942243B44] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components920219BD6C542544893D7ECFCB5E2B6B] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components939840D09446FFF459FA6CB4F03C38BE] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components9459BDD3A7C686345A9B7A1AD1CC6BE4] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components95AC1A94BAFFE3D41B23B2097BA8B190] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components983EBB458AA802846BBC74D26C3209C8] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components98A0180804723E24AAA941C0B046363D] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components990A25796B2949842BACA56514B7316A] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components999D63C685BF046489CA3126029FE837] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components9AC4C1465926D52478BEC6D3DB946DD7] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components9CF7625ADC5FCFE43AD003DCC16B49CB] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsA2D54AC8D24E8F94ABBB993A69EF13EC] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsA357C02D064283D41978AFEEE1A48E0F] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsA4022CA9531268145AD6F8FD7F4F01DC] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsA5CDCC279604D6746A7DA9ED701BF41F] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsA6F4FE9AC6F165A4EAA8F90CE891C0DA] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsA960AC53CA238044A820A3B63D4536CA] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsAA3077BB9E4617440AF467D91146A8C4] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsAAC05EAA51DC78A41A1DCE3B31038584] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsAD7957C966A13904EA466152B29EA9AF] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsB13C910C1D6376A4BB2BDB9585253923] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsB1B5689BAD89AFD448923B5051E5BB50] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsB2CE0F97DFABDE446811F33E7273BFE2] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsB445461D74829AF4C8EF6C00B2861EF0] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsB4D011D14FD2DB74A9090EA633C0B98E] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsB551BEBCA0334AA40978C2137FD21AB2] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsB877893A942DC524580C7B45547FCBC8] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsBA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsBC651C0803618C44DA6F1DDD51AF35BF] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsBDE5B9F2A520B674BBB1BEAE5F5D51B8] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsBEE85C3D8F4816D4A9E5F4EAA4D80A2A] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsBFD48F71CCCEC97489147D4E852D3F6F] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsC05694CDCD2DD724F90F13A20E67EC7C] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsC42065D3060DD4648A38882BEA92941E] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsC5F606FB1152E344981B09071C472211] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsC77B53875F388AA4AA076F6F9D099011] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsC85EA06E73FF0A240B4C287EE0D9521D] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsCA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsCA30DE5A0DE293D4AA3BF5E13322823A] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsCA9ADF25A98C8074FA4CBBA3ED29FEFA] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsCCE886225BDEB6C43868B0AEDB036B02] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsCDD11BF4B1CAA584695EFBC611438213] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsCE1CCF5CABA1395409D54586592B319E] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsCE7392F9B9A81FA4EA952625BD5534FE] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsD12B7976E5CA7C34D932C1A8A1BF61C8] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsD91D500D43BD91A44B02BDBE41E0523F] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsDA2710A9158C6584C9677EB954F3AC97] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsDCF07B57C9DC38E419CF122EA180585E] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsDD2E1A561C7F1294BB3996EE77F6BBEE] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsDF14E9E130504B745A2AC47EF6145D24] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsDF7A4CDE9ED9CD7479FF74F35FA4149E] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsDFE39849AF921D045B613CD5852C76A6] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsE03EC5B80A22A7D4C92AB528A3D323E8] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsE1B9E95AA2730744AB926911484F8AD5] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsE3436415FB2833843B9EE970079A87C0] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsE3BBB86ACE9686A4281227D5F7EE95AE] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsE6B40E8EBBC3CD445BD2FC7D8FDCCFEC] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsE77C3F952C1F0354FAFADB6B080ACCF7] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsE84382A588F214C4C89C3DB758EA6AD6] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsE89B10C102BBEF941A920EE2269747C0] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsE9D73D5153C19FD48B6E10CB7E8572CE] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsEBAFF392ACA75ED4CA30BF821C1AE267] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsECFC746582988774684DB5D8D95F674D] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsEECC799BFA63E6146A81EAAA53540EDE] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsF1547261AA1C98C48B0ECDBC767C76CE] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsF1BDB464DE2D33547BB31C1B35D9C337] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsF29CFDBF9B20AB8448A1BD73A3FE863F] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsF5F8D8368E8CAE84188DE44DAF8C10F9] =>Adware.Boxore^
[HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsFAB510A06C6F4B24AAD055CE6EEA27CD] =>Adware.Boxore^
[HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun]:tuto4pc_fr_62 =>PUP.AgenceExclusive^
C:UsersElodieAppDataLocalGoogleChromeUser DataDefaultExtensionsgiacfgjdclhnmkacnfbaljbmpnelflol =>PUP.Ividi^
C:UsersElodieAppDataLocalGoogleChromeUser DataDefaultExtensionspbaohildkhbcljgoabiecdoinkaedlca =>Spyware.SmartDisplay^
C:UsersElodieAppDataLocalGoogleChromeUser DataDefaultExtensionspbpohilckhbcljgoabiecdoinkaedlca =>Spyware.SmartDisplay^
C:ProgramDataBabylon =>PUP.Babylon^
C:ProgramDataBoxUpdChk =>Adware.Boxore^
C:ProgramDataDSearchLink =>Toolbar.DeltaSearch^
C:ProgramDataWPM =>PUP.WpManager^
C:UsersElodieAppDataLocalYappyzUninstall =>PUP.Yappyz^
C:UsersElodieAppDataLocalYappyzUninstallYappyzUninstall.exe =>PUP.Yappyz^
[HKCUSoftwareYappyz] =>PUP.Yappyz^
~ Additionnel Scan: 237237 Items scanned in 00mn 17s

—\ Récapitulatif des détections trouvées sur votre station
http://nicolascoolman.webs.com/apps/blog/show/33067902-pup-ividi » onclick= »window.open(this.href);return false; =>PUP.Ividi
http://nicolascoolman.webs.com/apps/blog/show/32662245-spyware-smartdisplay » onclick= »window.open(this.href);return false; =>Spyware.SmartDisplay
http://nicolascoolman.webs.com/apps/blog/show/26627641-spyware-agenceexclusive » onclick= »window.open(this.href);return false; =>PUP.AgenceExclusive
http://nicolascoolman.webs.com/apps/blog/show/33423242-pup-yappyz » onclick= »window.open(this.href);return false; =>PUP.Yappyz
http://nicolascoolman.webs.com/apps/blog/show/27379491-toolbar-wajam » onclick= »window.open(this.href);return false; =>PUP.Wajam
http://nicolascoolman.webs.com/apps/blog/show/26626977-adware-boxore » onclick= »window.open(this.href);return false; =>Adware.Boxore
http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon » onclick= »window.open(this.href);return false; =>PUP.Babylon
http://nicolascoolman.webs.com/apps/blog/show/27875657-toolbar-deltasearch » onclick= »window.open(this.href);return false; =>Toolbar.DeltaSearch
http://nicolascoolman.webs.com/apps/blog/show/38737316-pup-wpmanager » onclick= »window.open(this.href);return false; =>PUP.WpManager
http://nicolascoolman.webs.com/apps/blog/show/26919368-adware-megasearch » onclick= »window.open(this.href);return false; =>Adware.MegaSearch
http://nicolascoolman.webs.com/apps/blog/show/27154930-adware-adon » onclick= »window.open(this.href);return false; =>Adware.ADON
http://nicolascoolman.webs.com/apps/blog/show/27229962-adware-predictad » onclick= »window.open(this.href);return false; =>Adware.PredictAd
http://nicolascoolman.webs.com/apps/blog/show/29637859-toolbar-tarma » onclick= »window.open(this.href);return false; =>PUP.Tarma
~ MSI: 13 link(s) detected in 00mn 00s

~ 1160 Legitimates filtered by white list
End of the scan (641 lines in 03mn 25s)(0)[/spoiler:1jd5a35e]

Voilà ! Merci à celui qui jettera son oeil :)