O2 - BHO: Bubble Dock SurfMatch [64Bits] - {23AF19F7-1D5B-442c-B14C-3D1081953C94} . (...) -- C:\Program Files (x86)\Nosibay\Bubble Dock\extensions\axSurfMatch.dll (.not file.) => Infection PUP (Adware.SPointer)
O4 - Global Startup: C:\Users\cindy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Moovida.lnk . (...) -- C:\Program Files (x86)\Fluendo\Moovida\Moovida.exe (.not file.) => Infection BT (Adware.SPointer)
O4 - Global Startup: C:\Users\cindy\Desktop\Bubble Dock.lnk . (...) -- C:\Users\cindy\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.) => Infection PUP (Adware.SPointer)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll (.not file.) => Infection PUP (PUP.iMesh)
[MD5.00000000000000000000000000000000] [APT] [{767A52E9-9755-4C90-8435-A09BCCF6D66E}] (...) -- C:\Users\cindy\Downloads\VLCSetup.exe (.not file.) => Infection BT (Adware.Hotbar)
[MD5.00000000000000000000000000000000] [APT] [{ECE3EF5D-081D-4B33-B116-A9B74DD9A565}] (...) -- C:\Users\cindy\AppData\Roaming\FissaSearch\FissaUninstaller.exe (.not file.) => Infection BT (PUP.OfferBox)
[HKLM\Software\iMeshMediabarTb] => Infection PUP (PUP.iMesh)
O43 - CFD: 29/05/2012 - 16:28:41 - [0] ----D C:\Program Files (x86)\Fluendo => Infection BT (Adware.SPointer)
O43 - CFD: 31/03/2011 - 04:14:38 - [0,435] ----D C:\Users\cindy\AppData\Local\crazyloader Air => Infection BT (Adware.SPointer)
O43 - CFD: 31/03/2011 - 04:06:49 - [0,359] ----D C:\Users\cindy\AppData\Local\freecompressor Air => Infection BT (Adware.SPointer)
O43 - CFD: 15/04/2011 - 10:58:19 - [0,003] ----D C:\Users\cindy\AppData\Local\Moovida => Infection BT (Adware.SPointer)
O43 - CFD: 29/05/2012 - 16:32:33 - [0,002] ----D C:\Users\cindy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bubble Dock => Infection BT
O43 - CFD: 29/05/2012 - 16:28:36 - [0,001] ----D C:\Users\cindy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Moovida => Infection BT (Adware.SPointer)
O43 - CFD: 29/05/2012 - 16:28:41 - [0] ----D C:\Program Files (x86)\Fluendo => Infection BT (Adware.SPointer)
O87 - FAEL: "{B1DEE880-4DE6-4499-87BB-14FE8578DA3A}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\CrazyLoader\crazyloader.exe (.not file.) => Infection BT (Adware.SPointer)
O87 - FAEL: "{B4CE28F6-2836-4B4A-88E1-74F79CD3465A}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\CrazyLoader\crazyloader.exe (.not file.) => Infection BT (Adware.SPointer)
O87 - FAEL: "TCP Query User{D01EF9AC-48D9-410C-B290-1D9468C2BA12}C:\program files (x86)\imesh applications\imesh\imesh.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\imesh applications\imesh\imesh.exe (.not file.) => Infection PUP (PUP.iMesh)
O87 - FAEL: "UDP Query User{DE99E27C-BEAC-4DAC-8B0F-948A8B434843}C:\program files (x86)\imesh applications\imesh\imesh.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\imesh applications\imesh\imesh.exe (.not file.) => Infection PUP (PUP.iMesh)
O87 - FAEL: "{E1D138E0-D377-4654-926B-1109DA545CAA}" |In - Domain - P6 - TRUE | .(...) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe (.not file.) => Infection PUP (PUP.iMesh)
O87 - FAEL: "{326AC1E2-67D2-4905-AD5B-B83676108BAA}" |In - Domain - P17 - TRUE | .(...) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe (.not file.) => Infection PUP (PUP.iMesh)
O87 - FAEL: "{AC952DD0-06D8-4438-BABE-E73126A3897C}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe (.not file.) => Infection PUP (PUP.iMesh)
O87 - FAEL: "{E2253C08-735D-440B-ABCB-F34444C675C1}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe (.not file.) => Infection PUP (PUP.iMesh)
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1a93c934-025b-4c3a-b38e-9654a7003239}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{a83c3565-302c-4bf8-b000-6b6f1811d892}] => Infection BT (Adware.SPointer)
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{a83c3565-302c-4bf8-b000-6b6f1811d892}] => Infection BT (Adware.SPointer)
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E2A7BD67-0EAF-497f-B05B-748D7BF3C421}] => Infection BT (Adware.SPointer)
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E2A7BD67-0EAF-497f-B05B-748D7BF3C421}] => Infection BT (Adware.SPointer)
[HKLM\Software\WOW6432Node\iMeshMediabarTB] => Infection PUP (PUP.iMesh)
C:\Users\cindy\AppData\Local\Crazyloader Air => Infection BT (Adware.SPointer)
C:\Users\cindy\AppData\Local\Moovida => Infection BT (Adware.SPointer)
O43 - CFD: 10/10/2011 - 18:09:31 - [45,266] ----D C:\ProgramData\{D3B41B92-9BC2-43EB-916A-4FA9E8191837}
O4 - Global Startup: C:\Users\cindy\Desktop\AnumanLive.lnk . (...) -- C:\Users\cindy\AppData\Roaming\Anuman Interactive\AnumanLive\AnumanLive.exe (.not file.) => Unknown owner%Anuman Live
O4 - HKCU\..\Run: [PCFix] C:\Program Files (x86)\PCFix\PCFix.exe (.not file.)
O4 - HKUS\S-1-5-21-3161962401-2901406763-876321108-1001\..\Run: [PCFix] C:\Program Files (x86)\PCFix\PCFix.exe (.not file.)
O4 - Global Startup: C:\Users\cindy\Desktop\LifeCam VX-800 - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\cindy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PokerStars.fr.lnk . (.PokerStars.) -- C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe
O4 - Global Startup: C:\Users\cindy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App - hp.lnk . (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe
[MD5.5608E451B9D69B548103BA9CF39A3527] [APT] [Ad-Aware Update (Weekly)] (.Lavasoft Limited.) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
[MD5.00000000000000000000000000000000] [APT] [{086F7E07-5066-4A80-BD14-5E20DFDB9E7A}] (...) -- C:\Users\cindy\Downloads\vlc_setup1.1.5-win32.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{54CB1AD0-3833-4600-8602-EC520922AEF5}] (...) -- C:\Users\cindy\Downloads\VLC_wawacity.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{66A302D0-607E-4A59-B31C-791BC8EA99DB}] (...) -- C:\Users\cindy\Downloads\burningromsuite-ESD_small-20100713185514782-10.0.10800.sfx.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{68DCCF55-A21E-4B8F-984F-79EF4DD40A56}] (...) -- C:\Users\cindy\Downloads\Complessi Anni 60-70 - I Dik Dik - 24 Brani.part1.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{6E573B08-1192-4C1D-AD21-336FE0783627}] (...) -- C:\Users\cindy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NERB8SX1\VLCSetup[1].exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{A738D263-7D55-41C2-9A86-62C554714C29}] (...) -- C:\Users\cindy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A109WXT2\vlc_setup1.1.5-win32[1].exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{D8922EB1-D65B-4FBA-A27C-EB294A51AF54}] (...) -- C:\Users\cindy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L4YIUNLO\VLCSetup[1].exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{FF1A3835-29F9-44C4-A189-2D7A1CDA26AB}] (...) -- C:\Users\cindy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L4YIUNLO\NERO10_SUITE_01NET.nsx[1].exe (.not file.)
O41 - Driver: (hidfltr) . (. - .) - C:\Windows\System32\drivers\MWhid.sys (.not file.)
O43 - CFD: 22/09/2010 - 12:44:45 - [0] ----D C:\Program Files (x86)\Common Files\BOONTY Shared => Boonty%Boonty Games
O44 - LFC:[MD5.36D2646C1C2209C1F56E43A16C58EC23] - 29/05/2012 - 15:34:50 ---A- . (...) -- C:\user.js [1492]
O68 - StartMenuInternet: <WYZO.EXE> <Wyzo>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files (x86)\Wyzo\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: <WYZO.EXE> <Wyzo>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files (x86)\Wyzo\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: <WYZO.EXE> <Wyzo>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files (x86)\Wyzo\uninstall\helper.exe (.not file.)
O87 - FAEL: "{2B1941D3-1B34-4A66-8D1B-045F6BBBE888}" |In - Private - P6 - TRUE | .(...) -- C:\Users\cindy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A109WXT2\SweetImSetup[1].exe (.not file.)
O87 - FAEL: "{F52D048F-2264-4230-9458-ADCA697CC2EF}" |In - Private - P17 - TRUE | .(...) -- C:\Users\cindy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A109WXT2\SweetImSetup[1].exe (.not file.)
O87 - FAEL: "{EC2FF661-46B6-4E1E-AE9B-FA6AB8ECAD3E}" |In - Public - P6 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{BCE285BF-2AEA-4846-84FB-B8A9C7D5E25F}" |In - Public - P17 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{4F1BFF06-3C4D-4573-9E1E-E4425880562D}" |In - Public - P6 - TRUE | .(...) -- C:\Users\cindy\Downloads\SweetImSetup.exe (.not file.)
O87 - FAEL: "{6ACF5319-A813-4F0D-BDB2-81F2E5846D9C}" |In - Public - P17 - TRUE | .(...) -- C:\Users\cindy\Downloads\SweetImSetup.exe (.not file.)
O87 - FAEL: "{32895D4B-8221-474A-A7CC-D164DC450265}" |In - Private - P6 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{236AD0A4-EB8A-4DC1-BF55-8909665A3F94}" |In - Private - P17 - TRUE | .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
R3 - URLSearchHook: SFT_France Toolbar [64Bits] - {4d51f677-2a0b-43e2-b444-a2b384d24b91} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.4.1) -- C:\Program Files (x86)\SFT_France\prxtbSFT_.dll
R3 - URLSearchHook: WinZipBar_FR Toolbar [64Bits] - {bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files (x86)\WinZipBar_FR\prxtbWinZ.dll
R3 - URLSearchHook: Softonic_France Toolbar [64Bits] - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) (5, 7, 2, 2) -- C:\Program Files (x86)\Softonic_France\tbSof0.dll
R3 - URLSearchHook: SFT_France Toolbar [64Bits] - {4d51f677-2a0b-43e2-b444-a2b384d24b91} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.4.1) -- C:\Program Files (x86)\SFT_France\prxtbSFT_.dll
R3 - URLSearchHook: WinZipBar_FR Toolbar [64Bits] - {bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files (x86)\WinZipBar_FR\prxtbWinZ.dll
O2 - BHO: SFT_France [64Bits] - {4d51f677-2a0b-43e2-b444-a2b384d24b91} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\SFT_France\prxtbSFT_.dll
O2 - BHO: Softonic_France Toolbar [64Bits] - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Softonic_France\tbSof0.dll
O2 - BHO: WinZipBar_FR [64Bits] - {bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\WinZipBar_FR\prxtbWinZ.dll
[MD5.00000000000000000000000000000000] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe (.not file.) => Toolbar.Ask
O42 - Logiciel: Softonic_France Toolbar - (.Softonic_France.) [HKLM] -- Softonic_France Toolbar => Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\SFT_France] => SFT France
[HKCU\Software\AppDataLow\Software\Softonic_France] => Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\iGraal] => Toolbar.iGraal
[HKLM\Software\SFT_France] => SFT France
[HKLM\Software\Softonic_France] => Toolbar.Conduit
O43 - CFD: 18/09/2010 - 01:01:30 - [1,198] ----D C:\Users\cindy\AppData\Roaming\igraal => Toolbar.iGraal
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4daac69c-cba7-45e2-9bc8-1044483d3352}] => Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4daac69c-cba7-45e2-9bc8-1044483d3352}] => Toolbar.Conduit
[HKLM\Software\WOW6432Node\Classes\CLSID\{4daac69c-cba7-45e2-9bc8-1044483d3352}] => Toolbar.Conduit
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4daac69c-cba7-45e2-9bc8-1044483d3352}] => Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Softonic_France] => Toolbar.Conduit
[HKLM\Software\WOW6432Node\Softonic_France] => Toolbar.Conduit
C:\Users\cindy\AppData\LocalLow\Softonic_France => Toolbar.Conduit
C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar => Toolbar.Ask
EmptyTemp
EmptyFlash
EmptyCLSID
FirewallRaz
ProxyFix
• Si ton antivirus affiche une alerte, ignores-la et désactives l'antivirus temporairement.
• Branches toutes tes sources de données externes à ton PC
(Clé USB, Disque dur Externe, iPod/iPhone/iPad, MP3, Carte SD, etc ...) sans les ouvrir.
/!\ Si ton antivirus affiche une alerte, ignores-la et désactives l'antivirus temporairement /!\
• Branches toutes tes sources de données externes à ton PC
(Clé USB, Disque dur Externe, iPod/iPhone/iPad, MP3, Carte SD, etc ...) sans les ouvrir.
Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 4 invités
.: Nous contacter :: Flux RSS :: Données personnelles :. |