Virus pubs et ads intempestives ZHPDiag installé

bonsoir,

j'ai des ads et des bannières publicitaires intempestifs que j'aimerais supprimer.

j'ai téléchargé ZHPDiag et je l'ai lancé, il m'a donné ça comme rapport :

~ Rapport de ZHPDiag v2014.3.2.6 - Nicolas Coolman (03/03/2014)
~ Lancé par Union Musulman Mée (08/03/2014 00:22:03)
~ Adresse du Site Web https://nicolascoolman.webs.com/
~ Forums gratuits d'Assistance à la désinfection : https://nicolascoolman.webs.com/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Activée par le programme
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16798
GCIE: Google Chrome v33.0.1750.146 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8, 64-bit (Build 9200)
Windows Server License Manager Script : OK

---\\ Logiciels de protection du système
Norton Internet Security v20.4.0.40
Windows Defender W8

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3988 MB (42% free)
System Restore: Activé (Enable)
System drive C: has 853 GB (93%) free of 908 GB

---\\ Mode de connexion au système
~ Computer Name: MUSULMANSDUMEE
~ User Name: Union Musulman Mée
~ All Users Names: Union Musulman Mée, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Union Musulman Mée\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Union Musulman Mée\AppData\Roaming\
~ %Desktop% : C:\Users\Union Musulman Mée\Desktop\
~ %Favorites% : C:\Users\Union Musulman Mée\Favorites\
~ %LocalAppData% : C:\Users\Union Musulman Mée\AppData\Local\
~ %StartMenu% : C:\Users\Union Musulman Mée\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 853 Go of 908 Go)
D: Hard drive, Flash drive, Thumb drive (Free 2 Go of 23 Go)
E: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
~ Security Center: 41 Legitimates Filtered in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.0E8E6463F81C80AFBED533E0F1F8895D] - (.Microsoft Corporation - Explorateur Windows.) (.01/06/2013 - 12:34:21.) -- C:\Windows\Explorer.exe [2391280]
[MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de démarrage de Windows.) (.26/07/2012 - 04:08:50.) -- C:\Windows\System32\Wininit.exe [132608]
[MD5.90860E913075B03369BEB7B0B510DC2F] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.01/02/2014 - 10:19:49.) -- C:\Windows\System32\wininet.dll [2241536]
[MD5.BCF2036A0DD579E47C008C133550283E] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.23/03/2013 - 22:51:31.) -- C:\Windows\System32\Winlogon.exe [517120]
[MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Bibliothèque de licences.) (.26/07/2012 - 04:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408]
[MD5.7C0E0EDF18D6CC565D7BFBB451709FA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.04/09/2013 - 04:11:23.) -- C:\Windows\system32\Drivers\AFD.sys [576512]
[MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 06:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840]
[MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 03:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544]
[MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 03:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.09D9EB9E7898F8E6561473A20CC808B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/07/2012 - 03:26:53.) -- C:\Windows\system32\Drivers\DfsC.sys [118784]
[MD5.7D87B5B6C7188D553E11B59DC7F0B111] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.23/03/2013 - 22:36:48.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168]
[MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 03:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640]
[MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 03:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920]
[MD5.93179D48066918323628CB016D8C94DC] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.05/02/2013 - 23:29:09.) -- C:\Windows\system32\Drivers\MRxSmb.sys [370688]
[MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 03:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776]
[MD5.76929F4A69E425911A63B407E26C2589] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.02/02/2013 - 11:54:54.) -- C:\Windows\system32\Drivers\ntfs.sys [1933544]
[MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parallèle.) (.26/07/2012 - 03:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984]
[MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 03:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.26/07/2012 - 03:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712]
[MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248]
[MD5.78A5BBA3819FFFC62FFEC3E2220D102D] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.01/06/2013 - 12:26:33.) -- C:\Windows\system32\Drivers\volsnap.sys [327936]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/2
~ Mes Favoris (My Favorites) : 1/9
~ Mes Documents (My Documents) : 1/28
~ Mon Bureau (My Desktop) : 1/877
~ Menu demarrer (Programs) : 1/34
~ Hidden Files: Scanned in 00mn 01s



---\\ Processus lancés
[MD5.224F6B374852153C8C24BED141AE3A20] - (...) -- [0] [PID.0]
[MD5.AB7DFD707604D17894109926666EDC8B] - (...) -- C:\Users\Union Musulman Mée\AppData\Local\fst_fr_50\upfst_fr_50.exe [3153904] [PID.2940] =>PUA.FSTfr9
[MD5.B7F55E2AE978D3D34F7876EE5D689AAE] - (.CyberLink - YouCam Mirage.) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488] [PID.3316]
[MD5.4E9AF25BA5E8219310E384AEA5B0EED8] - (.CyberLink - CyberLink MediaLibrary Service.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576] [PID.2088]
[MD5.D1C8B0DC04347B6B9B5B3B9204DF6756] - (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904] [PID.1012]
[MD5.1BF9D6476061B31CD7FC2BF848529A56] - (.Symantec Corporation - Symantec Service Framework.) -- C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe [144368] [PID.1644]
[MD5.99BC5419169A7B12729D2CD34EBF0556] - (.PC Health Labs - PC Health Kit Smart Scan.) -- C:\Program Files (x86)\PC Health Kit\PCHKSmartScan.exe [489272] [PID.4652] =>PUP.DealPly
[MD5.043BF7BC943532ACFD356CDBF76DAFDB] - (.PC Health Labs - PC Health Kit Performance Monitor.) -- C:\Program Files (x86)\PC Health Kit\PCHKReminder.exe [1083704] [PID.2984] =>PUP.DealPly
[MD5.960D6C18AFBBB3B5AF4B05A4596ACE4F] - (.PC Utilities Software Limited - Optimizer Pro Smart Scan.) -- C:\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe [418808] [PID.4244] =>PUP.OptimizerPro
[MD5.3CE57B66E8FD9C87E0DC105039D7B790] - (.PC Utilities Software Limited - Optimizer Pro Speed Guard.) -- C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe [1177592] [PID.4412] =>PUP.OptimizerPro
[MD5.99E7D2BDB4F75A094AC73B7C98171C42] - (.Smart PC Solutions - PC Speed Maximizer Smart Scan.) -- C:\Program Files (x86)\PC Speed Maximizer\SPMSmartScan.exe [423536] [PID.2176] =>Rogue.PCSpeedMaximizer
[MD5.103E677D349674E8F49C1A08F6E3CADF] - (.Smart PC Solutions - Performance Monitor.) -- C:\Program Files (x86)\PC Speed Maximizer\SPMReminder.exe [900720] [PID.4504] =>Rogue.PCSpeedMaximizer
[MD5.B00E08BB95583541B2D2DC86792FE798] - (.CyberLink Corp. - Power2Go Desktop Burning Gadget.) -- C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1714952] [PID.4884]
[MD5.C0FEA1163B6D8A746082802859A83EEE] - (.prised - alabea.) -- C:\Users\Union Musulman Mée\AppData\Local\Lollipop\lollipop_03061517.exe [3379200] [PID.4856] =>Adware.Lollipop
[MD5.8112F9B3B4C2EBF3D5C0D465870CEC2F] - (.Iminent - Iminent.) -- C:\Program Files (x86)\Iminent\Iminent.exe [1074736] [PID.1288] =>Adware.IMBooster
[MD5.79E59525DB8CBFAA35F66786B62CFB54] - (.Iminent - Iminent.) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe [884784] [PID.4540] =>Adware.IMBooster
[MD5.E2043ABD9E13E1B7BF74B1D05E15AA47] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304] [PID.1172]
[MD5.D7774BD01B9EBAA36436E0B007649612] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192] [PID.1376]
[MD5.955B8DBC8ED160058902C0244F60139E] - (...) -- C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [761536] [PID.5088] =>PUP.Mobogenie
[MD5.9991169C24F4E2279B63E5E5451CD1A5] - (...) -- C:\Program Files (x86)\fst_fr_50\fst_fr_50.exe [3998152] [PID.2940] =>PUA.FSTfr9
[MD5.BB3152BE7A21289456CB299175962EC8] - (...) -- C:\Program Files (x86)\Bench\BService\bservice.exe [49664] [PID.2568] =>PUP.GiganticSavings
[MD5.0ABEEA039C171D5DB4EF78BCE6BAB73D] - (...) -- C:\Program Files (x86)\Bench\Wd\wd.exe [60416] [PID.4892] =>PUP.GiganticSavings
[MD5.B8562FB84999DAA567055D299175D3DD] - (.Boxore OU - Boxore Client.) -- C:\Program Files (x86)\Boxore\BoxoreClient\boxore.exe [970016] [PID.4932] =>Adware.Boxore
[MD5.026C4CA19FAE1F84894A99735B15AACA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [859464] [PID.2564]
[MD5.66EA3B698F9A7EA2DBF0E4B246B6C958] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8349696] [PID.6136]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Union Musulman Mée\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] http://search.conduit.com
G0 - GCSP: Preference [User Data\Default][HomePage] http://search.conduit.com
G2 - GCE: Preference [User Data\Default] [ajppokcpihekimknckddpgkbiphmaglg] Feven 1.7 v.1.26.70, (Activé) =>PUP.CrossRider
G2 - GCE: Preference [User Data\Default] [booedmolknjekdopkepjjeckmjkdpfgl] Extutil v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [eooncjejnppfjjklapaamhcdmjbilmde] Delta Toolbar v.1.5.1 (Désactivé) =>Toolbar.DeltaSearch
G2 - GCE: Preference [User Data\Default] [flpcjncodpafbgdpnkljologafpionhb] Managera v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nikdaiaidiiiogaidkkekcmokcgcdeac] Discount Dragon v.1.0, (Activé) =>PUP.DiscountDragon
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ombmmloebnfnpehgjnmkcgoegfachobp] Widget context v.3.0 (Activé)
G2 - GCE: Preference [User Data\Default] [omlekpegnfifjlpeoibaolakpgngemko] DealsCompare v.1.150 (Désactivé)
G2 - GCE: Preference [User Data\Default] [pbpohikckhbcljgombipcdoinkaedlfa] Smart Display v.1.7, (Activé) =>Spyware.SmartDisplay
G2 - GCE: Preference [User Data\Default] [pbpohilckhbcljgoabiecdoinkaedlca] Smart Display v.1.6 (Activé) =>Spyware.SmartDisplay
~ Google Browser: 23 Legitimates Filtered in 00mn 04s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com =>Adware.MyWebSearch
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com =>Adware.MyWebSearch
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ww7.nationzoom.com =>Hijacker.NationZoom
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://ww7.nationzoom.com =>Hijacker.NationZoom
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ww7.nationzoom.com =>Hijacker.NationZoom
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ww7.nationzoom.com =>Hijacker.NationZoom
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://ww7.nationzoom.com =>Hijacker.NationZoom
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ww7.nationzoom.com =>Hijacker.NationZoom
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ww7.nationzoom.com =>Hijacker.NationZoom
R3 - URLSearchHook: FR-mywebsites.pro Toolbar [64Bits] - {e78569be-555b-4b4a-b7e5-647c31ca7ddc} . (.Conduit Ltd. - Conduit Toolbar.) (6.17.2.8) -- C:\Program Files (x86)\FR-mywebsites.pro\prxtbFR-m.dll =>Toolbar.Conduit
~ IE Browser: 18 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
O1 - Hosts: 54.225.95.126 nikdaiaidiiiogaidkkekcmokcgcdeac =>PUP.DiscountDragon
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 23



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: SaveSense [64Bits] - {71e129ff-6c2a-4984-818c-7e2c998b8d99} . (.SaveSense - SaveSense for IE.) -- C:\Users\Union Musulman Mée\AppData\Local\SaveSense\SaveSenseIE.dll =>PUP.SaveSense
O2 - BHO: DealsCompare [64Bits] - {86d55d88-147c-42e2-8bdb-9daff17c485d} . (...) -- C:\Program Files (x86)\DealsCompare\150.dll
O2 - BHO: IMinent WebBooster [64Bits] - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} . (.SIEN - Minibar.) -- C:\Program Files (x86)\Iminent\Minibar.InternetExplorer.BHOx86.dll =>PUP.Minibar
O2 - BHO: delta Helper Object [64Bits] - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} . (.Delta-search.com - Pas de description.) -- C:\Program Files (x86)\Delta\delta\1.8.24.6\bh\delta.dll =>Toolbar.DeltaSearch
O2 - BHO: FR-mywebsites.pro [64Bits] - {e78569be-555b-4b4a-b7e5-647c31ca7ddc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\FR-mywebsites.pro\prxtbFR-m.dll =>Toolbar.Conduit
O2 - BHO: Discount Dragon BHO [64Bits] - {EA34C851-D481-49F5-A356-3A8B0A8F3B7E} . (.Pas de propriétaire - FrameworkBHO.) -- C:\Program Files (x86)\Discount Dragon\FrameworkBHO.dll =>PUP.DiscountDragon
O2 - BHO: mysearchdial Helper Object [64Bits] - {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} . (.MySearchDial - Pas de description.) -- C:\Program Files (x86)\Mysearchdial\1.8.21.0\bh\mysearchdial.dll =>Adware.MyWebSearch
O2 - BHO: CrossriderApp0040594 [64Bits] - {11111111-1111-1111-1111-110411051194} Clé orpheline =>PUP.CrossRider
O2 - BHO: CrossriderApp0049084 [64Bits] - {11111111-1111-1111-1111-110411901184} Clé orpheline =>PUP.CrossRider
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} Clé orpheline
~ BHO: 19 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{E78569BE-555B-4B4A-B7E5-647C31CA7DDC} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\Desktop [Public]: HP Connected Music.lnk . (.Meridian Audio Ltd - HP Connected Music.) -- C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
O4 - GS\Desktop [Public]: HP Games.lnk . (.WildTangent - WildTangent Games App.) -- C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe
O4 - GS\Desktop [Public]: HP Quick Start.lnk . (.Hewlett-Packard - HP Quick Start.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Start\HPQuickstart.exe
O4 - GS\Desktop [Public]: RegClean Pro.lnk . (.Systweak Inc - RegClean Pro.) -- C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe =>Rogue.RegistryPowerCleaner
O4 - GS\Desktop [Public]: SpeedUpMyPC.lnk . (.Uniblue Systems Limited - Uniblue SpeedUpMyPC.) -- C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe =>Rogue.SpeedUpMyPC
O4 - GS\Program [Public]: Desktop.lnk - Clé orpheline
O4 - GS\Program [Public]: HP Connected Music.lnk . (.Meridian Audio Ltd - HP Connected Music.) -- C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
O4 - GS\QuickLaunch [Union Musulman Mée]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [Union Musulman Mée]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://ww7.nationzoom.com =>Hijacker.NationZoom
O4 - GS\QuickLaunch [Union Musulman Mée]: SpeedUpMyPC.lnk . (.Uniblue Systems Limited - Uniblue SpeedUpMyPC.) -- C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe =>Rogue.SpeedUpMyPC
O4 - GS\TaskBar [Union Musulman Mée]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://ww7.nationzoom.com =>Hijacker.NationZoom
O4 - GS\TaskBar [Union Musulman Mée]: HP Quick Start.lnk . (.Hewlett-Packard - HP Quick Start.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Start\HPQuickstart.exe
O4 - GS\TaskBar [Union Musulman Mée]: HP Utility Center.lnk . (.Hewlett-Packard Development Company, L.P. - HP Utility Center.) -- C:\Program Files\Hewlett-Packard\HP Utility Center\HPPU.exe
O4 - GS\TaskBar [Union Musulman Mée]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://ww7.nationzoom.com =>Hijacker.NationZoom
O4 - GS\TaskBar [Union Musulman Mée]: Mobogenie.lnk . (...) -- C:\Program Files (x86)\Mobogenie\Mobogenie.exe =>PUP.Mobogenie
O4 - GS\Program [Union Musulman Mée]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://ww7.nationzoom.com =>Hijacker.NationZoom
O4 - GS\Program [Union Musulman Mée]: Lollipop.lnk . (.prised - alabea.) -- C:\Users\Union Musulman Mée\AppData\Local\Lollipop\lollipop_03061517.exe =>Adware.Lollipop
O4 - GS\Desktop [Union Musulman Mée]: Continue install activity - FlashPlayer.lnk . (.Amônétízé Ltd - Installer.) -- C:\Users\Union Musulman Mée\AppData\Local\Temp\FlashPlayersetup__3873_i304249164_il155.exe
O4 - GS\Desktop [Union Musulman Mée]: Mobogenie.lnk . (...) -- C:\Program Files (x86)\Mobogenie\Mobogenie.exe =>PUP.Mobogenie
O4 - GS\Desktop [Union Musulman Mée]: MyPC Backup.lnk . (.MyPCBackup.com - MyPC Backup.) -- C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe =>PUP.MyPCBackup
O4 - GS\Desktop [Union Musulman Mée]: Nettoyez votre registre gratuitement!.lnk - Clé orpheline
O4 - GS\Desktop [Union Musulman Mée]: Optimizer Pro.lnk . (.PC Utilities Software Limited - Optimizer Pro.) -- C:\Program Files (x86)\Optimizer Pro\OptimizerPro.exe =>PUP.OptimizerPro
O4 - GS\Desktop [Union Musulman Mée]: PC Health Kit.lnk . (.PC Health Labs - PC Health Kit.) -- C:\Program Files (x86)\PC Health Kit\PCHealthKit.exe =>PUP.DealPly
O4 - GS\Desktop [Union Musulman Mée]: PC Speed Maximizer.lnk . (.Smart PC Solutions - PC Speed Maximizer.) -- C:\Program Files (x86)\PC Speed Maximizer\PCSpeedMaximizer.exe =>Rogue.PCSpeedMaximizer
O4 - GS\Desktop [Union Musulman Mée]: Search.lnk . (...) -- C:\ProgramData\DSearchLink\DSearchLink.exe =>Toolbar.DeltaSearch
~ Global Startup: 55 Legitimates Filtered in 00mn 01s



---\\ Applications lancées au démarrage du sytème (O4)
O4 - GS\Startup [Union Musulman Mée]: FlashPlayerPlug.lnk . (...) -- C:\Users\UNIONM~1\AppData\Local\Temp\FlashPlayerMsj.exe (.not file.)
O4 - GS\Startup [Union Musulman Mée]: MyPC Backup.lnk . (.MyPCBackup.com - MyPC Backup.) -- C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe =>PUP.MyPCBackup
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\RunOnce: [NCPluginUpdater] . (.Hewlett-Packard - NCPluginUpdater.) -- C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe
O4 - HKCU\..\Run: [PC Health Kit] . (.PC Health Labs - Fix PC problems and optimize performance.) -- C:\Program Files (x86)\PC Health Kit\PCHKLauncher.exe =>PUP.DealPly
O4 - HKCU\..\Run: [Facebook.vbs] . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Temp\Facebook.vbs
O4 - HKCU\..\Run: [NextLive] . (.NewNextDotMe - NewNext Helper Engine.) -- C:\Users\Union Musulman Mée\AppData\Roaming\newnext.me\nengine.dll =>PUP.NextLive
O4 - HKCU\..\Run: [Optimizer Pro] . (.PC Utilities Software Limited - Optimizer Pro Launcher.) -- C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe =>PUP.OptimizerPro
O4 - HKCU\..\Run: [PC Speed Maximizer] . (.Smart PC Solutions - Fix PC problems and optimize performance.) -- C:\Program Files (x86)\PC Speed Maximizer\SPMLauncher.exe =>Rogue.PCSpeedMaximizer
O4 - HKCU\..\Run: [BackgroundContainer] . (.Conduit Ltd. - Background Container.) -- C:\Users\Union Musulman Mée\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll =>PUP.Babylon
O4 - HKCU\..\Run: [Power2GoExpress8] . (.CyberLink Corp. - Power2Go Desktop Burning Gadget.) -- C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
O4 - HKCU\..\Run: [lollipop_03061517] . (.prised - alabea.) -- c:\users\union musulman mée\appdata\local\lollipop\lollipop_03061517.exe =>Adware.Lollipop
O4 - HKLM\..\Wow6432Node\Run: [Iminent] . (.Iminent - Iminent.) -- C:\Program Files (x86)\Iminent\Iminent.exe =>Adware.IMBooster
O4 - HKLM\..\Wow6432Node\Run: [IminentMessenger] . (.Iminent - Iminent.) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe =>Adware.IMBooster
O4 - HKLM\..\Wow6432Node\Run: [HPMessageService] . (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
O4 - HKLM\..\Wow6432Node\Run: [mobilegeni daemon] . (...) -- C:\Program Files (x86)\Mobogenie\DaemonProcess.exe =>PUP.Mobogenie
O4 - HKLM\..\Wow6432Node\Run: [fst_fr_50] . (...) -- C:\Program Files (x86)\fst_fr_50\fst_fr_50.exe =>PUA.FSTfr9
O4 - HKLM\..\Wow6432Node\Run: [BService] . (...) -- C:\Program Files (x86)\Bench\BService\bservice.exe =>PUP.GiganticSavings
O4 - HKLM\..\Wow6432Node\Run: [Wd] . (...) -- C:\Program Files (x86)\Bench\Wd\wd.exe =>PUP.GiganticSavings
O4 - HKLM\..\Wow6432Node\Run: [Boxore Client] . (.Boxore OU - Boxore Client.) -- C:\Program Files (x86)\Boxore\BoxoreClient\boxore.exe =>Adware.Boxore
O4 - HKLM\..\Wow6432Node\RunOnce: [Discount Dragon-repairJob] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>PUP.DiscountDragon
O4 - HKLM\..\Wow6432Node\RunOnce: [upfst_fr_50.exe] . (...) -- C:\Users\Union Musulman Mée\AppData\Local\fst_fr_50\upfst_fr_50.exe =>PUA.FSTfr9
O4 - HKUS\S-1-5-21-2212490908-733176813-154597174-1001\..\Run: [PC Health Kit] . (.PC Health Labs - Fix PC problems and optimize performance.) -- C:\Program Files (x86)\PC Health Kit\PCHKLauncher.exe =>PUP.DealPly
O4 - HKUS\S-1-5-21-2212490908-733176813-154597174-1001\..\Run: [Facebook.vbs] . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Temp\Facebook.vbs
O4 - HKUS\S-1-5-21-2212490908-733176813-154597174-1001\..\Run: [NextLive] . (.NewNextDotMe - NewNext Helper Engine.) -- C:\Users\Union Musulman Mée\AppData\Roaming\newnext.me\nengine.dll =>PUP.NextLive
O4 - HKUS\S-1-5-21-2212490908-733176813-154597174-1001\..\Run: [Optimizer Pro] . (.PC Utilities Software Limited - Optimizer Pro Launcher.) -- C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe =>PUP.OptimizerPro
O4 - HKUS\S-1-5-21-2212490908-733176813-154597174-1001\..\Run: [PC Speed Maximizer] . (.Smart PC Solutions - Fix PC problems and optimize performance.) -- C:\Program Files (x86)\PC Speed Maximizer\SPMLauncher.exe =>Rogue.PCSpeedMaximizer
O4 - HKUS\S-1-5-21-2212490908-733176813-154597174-1001\..\Run: [BackgroundContainer] . (.Conduit Ltd. - Background Container.) -- C:\Users\Union Musulman Mée\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll =>PUP.Babylon
O4 - HKUS\S-1-5-21-2212490908-733176813-154597174-1001\..\Run: [Power2GoExpress8] . (.CyberLink Corp. - Power2Go Desktop Burning Gadget.) -- C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
O4 - HKUS\S-1-5-21-2212490908-733176813-154597174-1001\..\Run: [lollipop_03061517] . (.prised - alabea.) -- c:\users\union musulman mée\appdata\local\lollipop\lollipop_03061517.exe =>Adware.Lollipop
~ Application: Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 [64Bits] - {25510184-5A38-4A99-B273-DCA8EEF6CD08} . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\Resources\Icons\HP.ico
O9 - Extra button: Se&nd to OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: Lync Click to Call [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\lync.exe (.not file.)
O9 - Extra button: OneNote Lin&ked Notes [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll =>.Microsoft Corporation
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{18441CE5-9422-4BEF-BE0F-0C1516F675FF}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5162DA4-7F7C-4A39-8F14-F69D60EBE27B}: DhcpNameServer = 40.20.1.201 40.20.1.202
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5162DA4-7F7C-4A39-8F14-F69D60EBE27B}: DhcpDomain = A1-Line.COM
O17 - HKLM\System\CS1\Services\Tcpip\..\{18441CE5-9422-4BEF-BE0F-0C1516F675FF}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{E5162DA4-7F7C-4A39-8F14-F69D60EBE27B}: DhcpNameServer = 40.20.1.201 40.20.1.202
O17 - HKLM\System\CS1\Services\Tcpip\..\{E5162DA4-7F7C-4A39-8F14-F69D60EBE27B}: DhcpDomain = A1-Line.COM
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll (.not file.) =>Toolbar.Conduit
~ AppInit DLL: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Optimizer Pro Crash Monitor (70e6ca8c) . (...) - C:\Program Files (x86)\optimi~1\OptProCrash.exe =>PUP.OptimizerPro
O23 - Service: Computer Backup (MyPC Backup) (BackupStack) . (.Just Develop It - Backup Stack.) - C:\Program Files (x86)\MyPC Backup\BackupStack.exe =>PUP.MyPCBackup
O23 - Service: SaveSenseLive Service (savesenselive) (savesenselive) . (.SaveSense - SaveSenseLive Update.) - C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe =>PUP.SaveSense
O23 - Service: Service Software Update (Software_update) (Software_update) . (.The Software Group - Software Update.) - C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe =>Adware.Boxore
O23 - Service: SProtection (SProtection) . (.Iminent - Iminent Protection.) - C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe =>Adware.IMBooster
O23 - Service: Update bomlabio (Update bomlabio) . (...) - C:\Program Files (x86)\bomlabio\updatebomlabio.exe =>PUP.Bomlabio
O23 - Service: Util bomlabio (Util bomlabio) . (...) - C:\Program Files (x86)\bomlabio\bin\utilbomlabio.exe =>PUP.Bomlabio
O23 - Service: Wpm Service (Wpm) . (.Cherished Technololgy LIMITED - WPM Service.) - C:\ProgramData\WPM\wprotectmanager.exe =>PUP.WpManager
~ Services: 23 Legitimates Filtered in 00mn 04s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\bench-S-1-5-21-2212490908-733176813-154597174-1001.job [400] =>PUP.GiganticSavings
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\bench-sys.job [400] =>PUP.GiganticSavings
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\DealsCompare Update.job [446]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Feven 1.7-chromeinstaller.job [2054] =>PUP.CrossRider
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\MySearchDial.job [354] =>Adware.MyWebSearch
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\RegClean Pro_DEFAULT.job [332] =>Rogue.RegistryPowerCleaner
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\RegClean Pro_UPDATES.job [340] =>Rogue.RegistryPowerCleaner
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SaveSense.job [354] =>PUP.SaveSense
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineCore.job [982] =>PUP.SaveSense
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SaveSenseLiveUpdateTaskMachineUA.job [986] =>PUP.SaveSense
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job [968]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job [972]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SpeedUpMyPC Maintenance.job [334] =>Rogue.SpeedUpMyPC
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SpeedUpMyPC Startup.job [328] =>Rogue.SpeedUpMyPC
[MD5.2064E97CF3396C4EC5A497CE49E4515F] [APT] [bench-S-1-5-21-2212490908-733176813-154597174-1001] (...) -- C:\Program Files (x86)\Bench\Updater\updater.exe [254456] =>PUP.GiganticSavings
[MD5.2064E97CF3396C4EC5A497CE49E4515F] [APT] [bench-sys] (...) -- C:\Program Files (x86)\Bench\Updater\updater.exe [254456] =>PUP.GiganticSavings
[MD5.C34968C46A99BBD6248D30F9F1B778C2] [APT] [BoxSoftwareUpdate] (...) -- C:\ProgramData\BoxUpdChk\updchk.exe [177152] =>Adware.Boxore
[MD5.04EB0589430E4A896E9C91EEBE97DA53] [APT] [DealsCompare Update] (...) -- C:\Program Files (x86)\DealsCompare\DCompare.exe [251392]
[MD5.AFF8CCBB4019622FF8F4C8DE64E5EA5D] [APT] [Feven 1.7-chromeinstaller] (.Feven.) -- C:\Program Files (x86)\Feven 1.7\Feven 1.7-chromeinstaller.exe [926568] =>PUP.CrossRider
[MD5.7D6CDDF14256D0EBC06D61EEE50C0187] [APT] [MySearchDial] (...) -- C:\Users\Union Musulman Mée\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.exe [109056] =>Adware.MyWebSearch
[MD5.4B97ACB6627AC3561FDC535EAA51E395] [APT] [RegClean Pro] (.Systweak Inc.) -- C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe [7262080] =>Rogue.RegistryPowerCleaner
[MD5.4B97ACB6627AC3561FDC535EAA51E395] [APT] [RegClean Pro_DEFAULT] (.Systweak Inc.) -- C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe [7262080] =>Rogue.RegistryPowerCleaner
[MD5.4B97ACB6627AC3561FDC535EAA51E395] [APT] [RegClean Pro_UPDATES] (.Systweak Inc.) -- C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe [7262080] =>Rogue.RegistryPowerCleaner
[MD5.135E8ACB7B2FF7B5BDA4A230C393D2EC] [APT] [SaveSense] (...) -- C:\Users\Union Musulman Mée\AppData\Roaming\SAVESE~1\UPDATE~1\UPDATE~1.exe [195072] =>PUP.SaveSense
[MD5.C495D8665A32539660625182D23D5C59] [APT] [SaveSenseLiveUpdateTaskMachineCore] (.SaveSense.) -- C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe [146920] =>PUP.SaveSense
[MD5.C495D8665A32539660625182D23D5C59] [APT] [SaveSenseLiveUpdateTaskMachineUA] (.SaveSense.) -- C:\Program Files (x86)\SaveSenseLive\Update\SaveSenseLive.exe [146920] =>PUP.SaveSense
[MD5.95E0514907B680814073BB945DDB800B] [APT] [SoftwareUpdateTaskMachineCore] (.The Software Group.) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe [119408] =>Adware.Boxore
[MD5.95E0514907B680814073BB945DDB800B] [APT] [SoftwareUpdateTaskMachineUA] (.The Software Group.) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe [119408] =>Adware.Boxore
~ Scheduled Task: 53 Legitimates Filtered in 00mn 08s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: (qwlgeecn) . (. - .) - C:\Windows\system32\drivers\qwlgeecn.sys (.not file.)
~ Drivers: 38 Legitimates Filtered in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM][64Bits] -- {4C6F4EE5-F42F-4288-B970-2B5FAD1D85BD} =>Adware.Boxore
O42 - Logiciel: Delta toolbar - (.Delta.) [HKLM][64Bits] -- delta =>Toolbar.DeltaSearch
O42 - Logiciel: Discount Dragon - (.Smart Apps.) [HKLM][64Bits] -- 38900_Discount Dragon =>PUP.DiscountDragon
O42 - Logiciel: FR-mywebsites.pro Toolbar for IE - (.FR-mywebsites.pro.) [HKLM][64Bits] -- IECT3232586 =>Toolbar.MyWebsites
O42 - Logiciel: Feven 1.7 - (.Feven.) [HKLM][64Bits] -- Feven 1.7 =>PUP.CrossRider
O42 - Logiciel: Iminent - (.Iminent.) [HKLM][64Bits] -- IMBoosterARP =>Adware.IMBooster
O42 - Logiciel: Iminent - (.Iminent.) [HKLM][64Bits] -- {81FCC50B-950F-4063-8E4A-D99CAA4FBB1F} =>Adware.IMBooster
O42 - Logiciel: Lollipop - (.Lollipop Network, S.L..) [HKCU][64Bits] -- lollipop_03061517 =>Adware.Lollipop
O42 - Logiciel: MyPC Backup - (.MyPC Backup.) [HKLM][64Bits] -- MyPC Backup =>PUP.MyPCBackup
O42 - Logiciel: Mysearchdial - (.Mysearchdial.) [HKLM][64Bits] -- mysearchdial =>Adware.MyWebSearch
O42 - Logiciel: PC Health Kit v3.2 - (.PC Health Labs.) [HKLM][64Bits] -- PC Health Kit_is1 =>PUP.DealPly
O42 - Logiciel: Plus-HD-5.8 - (.Plus HD.) [HKLM][64Bits] -- Plus-HD-5.8 =>Adware.PlusHD
O42 - Logiciel: RegClean Pro - (.Systweak Inc.) [HKLM][64Bits] -- RegClean Pro_is1 =>Rogue.RegistryPowerCleaner
O42 - Logiciel: SaveSense - (.SaveSense.) [HKCU][64Bits] -- SaveSense =>PUP.SaveSense
O42 - Logiciel: Search Protect - (.Conduit.) [HKLM][64Bits] -- SearchProtect =>Toolbar.Conduit
O42 - Logiciel: WPM17.8.0.3297 - (.Cherished Technololgy LIMITED.) [HKLM][64Bits] -- WPM =>PUP.WpManager
O42 - Logiciel: bomlabio 3.0.0 - (.bomlabio.) [HKLM][64Bits] -- bomlabio =>PUP.Bomlabio
O42 - Logiciel: fst_fr_50 - (.FREESOFTTODAY.) [HKLM][64Bits] -- fst_fr_50_is1 =>PUA.FSTfr9
~ Logic: 64 Legitimates Filtered in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\49084InstEnd]
[HKCU\Software\848bdfe669ec48] =>PUP.BitGuard
[HKCU\Software\BabSolution] =>Hijacker.BabSolution
[HKCU\Software\Boxore] =>Adware.Boxore
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\DataMngr] =>PUP.Datamngr
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr
[HKCU\Software\Delta]
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\InstalledBrowserExtensions] =>Adware.VidSaver
[HKCU\Software\PC Health Kit] =>PUP.DealPly
[HKCU\Software\SaveSenseLive] =>PUP.SaveSense
[HKCU\Software\TutoTag] =>Spyware.AgenceExclusive
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKCU\Software\bomlabio] =>PUP.Bomlabio
[HKCU\Software\freesofttoday] =>Adware.FreeSoftToday
[HKCU\Software\lollipop] =>Adware.Lollipop
[HKCU\Software\mysearchdial] =>Adware.MyWebSearch
[HKLM\Software\DomaIQ] =>Adware.DomaIQ
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\848bdfe669ec48] =>PUP.BitGuard
[HKLM\Software\Wow6432Node\Boxore] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\DataMngr] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\DealPlyLive] =>PUP.DealPly
[HKLM\Software\Wow6432Node\Delta]
[HKLM\Software\Wow6432Node\Discount Dragon] =>PUP.DiscountDragon
[HKLM\Software\Wow6432Node\FR-mywebsites.pro] =>Toolbar.MyWebsites
[HKLM\Software\Wow6432Node\FREESOFTTODAY] =>Adware.FreeSoftToday
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\InstallCore] =>Adware.InstallCore
[HKLM\Software\Wow6432Node\MySearchDial] =>Adware.MyWebSearch
[HKLM\Software\Wow6432Node\SaveSenseLive] =>PUP.SaveSense
[HKLM\Software\Wow6432Node\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Wow6432Node\Umbrella]
[HKLM\Software\Wow6432Node\bomlabio] =>PUP.Bomlabio
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager
~ Key Software: 333 Legitimates Filtered in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 20/12/2013 - 17:03:01 - [3,044] ----D C:\Program Files (x86)\bomlabio =>PUP.Bomlabio
O43 - CFD: 07/03/2014 - 19:05:33 - [2,877] ----D C:\Program Files (x86)\Boxore =>Adware.Boxore
O43 - CFD: 24/01/2014 - 07:50:31 - [0,609] ----D C:\Program Files (x86)\Conduit
O43 - CFD: 16/09/2013 - 07:47:46 - [2,393] ----D C:\Program Files (x86)\Delta
O43 - CFD: 05/03/2014 - 23:25:16 - [1,038] ----D C:\Program Files (x86)\Discount Dragon =>PUP.DiscountDragon
O43 - CFD: 08/03/2014 - 00:04:08 - [6,527] ----D C:\Program Files (x86)\Feven 1.7 =>PUP.CrossRider
O43 - CFD: 24/01/2014 - 07:50:28 - [7,787] ----D C:\Program Files (x86)\FR-mywebsites.pro =>Toolbar.MyWebsites
O43 - CFD: 11/01/2014 - 19:59:22 - [8,189] ----D C:\Program Files (x86)\fst_fr_50 =>PUA.FSTfr9
O43 - CFD: 22/02/2014 - 11:40:15 - [16,544] ----D C:\Program Files (x86)\Iminent =>Adware.IMBooster
O43 - CFD: 19/01/2014 - 19:45:21 - [28,522] ----D C:\Program Files (x86)\MyPC Backup =>PUP.MyPCBackup
O43 - CFD: 24/01/2014 - 07:45:21 - [2,975] ----D C:\Program Files (x86)\Mysearchdial =>Adware.MyWebSearch
O43 - CFD: 16/09/2013 - 08:02:03 - [26,717] ----D C:\Program Files (x86)\PC Health Kit =>PUP.DealPly
O43 - CFD: 08/03/2014 - 00:04:08 - [5,593] ----D C:\Program Files (x86)\Plus-HD-5.8 =>Adware.PlusHD
O43 - CFD: 16/01/2014 - 21:09:20 - [12,622] ----D C:\Program Files (x86)\RegClean Pro =>Rogue.RegistryPowerCleaner
O43 - CFD: 24/01/2014 - 07:45:27 - [3,431] ----D C:\Program Files (x86)\SaveSenseLive =>PUP.SaveSense
O43 - CFD: 07/03/2014 - 23:54:36 - [5,558] ----D C:\Program Files (x86)\Common Files\Umbrella
O43 - CFD: 16/09/2013 - 07:46:59 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 16/01/2014 - 20:00:01 - [0,169] ----D C:\ProgramData\BoxUpdChk =>Adware.Boxore
O43 - CFD: 24/01/2014 - 07:50:29 - [3,274] ----D C:\ProgramData\Conduit
O43 - CFD: 16/09/2013 - 07:47:24 - [0,147] ----D C:\ProgramData\DSearchLink =>Toolbar.DeltaSearch
O43 - CFD: 16/09/2013 - 08:01:36 - [0,030] ----D C:\ProgramData\Iminent =>Adware.IMBooster
O43 - CFD: 24/01/2014 - 07:45:27 - [1,178] ----D C:\ProgramData\SaveSenseLive =>PUP.SaveSense
O43 - CFD: 07/01/2014 - 15:20:26 - [0,477] ----D C:\ProgramData\WPM =>PUP.WpManager
O43 - CFD: 16/09/2013 - 07:47:24 - [1,265] ----D C:\Users\Union Musulman Mée\AppData\Roaming\BabSolution =>Hijacker.BabSolution
O43 - CFD: 16/09/2013 - 07:46:59 - [0,003] ----D C:\Users\Union Musulman Mée\AppData\Roaming\Babylon =>PUP.Babylon
O43 - CFD: 16/09/2013 - 08:01:39 - [0,016] ----D C:\Users\Union Musulman Mée\AppData\Roaming\Iminent =>Adware.IMBooster
O43 - CFD: 24/01/2014 - 07:45:24 - [0,177] ----D C:\Users\Union Musulman Mée\AppData\Roaming\mysearchdial =>Adware.MyWebSearch
O43 - CFD: 08/03/2014 - 00:07:21 - [1,228] ----D C:\Users\Union Musulman Mée\AppData\Roaming\newnext.me =>PUP.NextLive
O43 - CFD: 16/09/2013 - 08:02:06 - [0] ----D C:\Users\Union Musulman Mée\AppData\Roaming\PC Health Kit =>PUP.DealPly
O43 - CFD: 24/01/2014 - 07:45:25 - [0,186] ----D C:\Users\Union Musulman Mée\AppData\Roaming\SaveSense =>PUP.SaveSense
O43 - CFD: 24/01/2014 - 07:50:28 - [0,918] ----D C:\Users\Union Musulman Mée\AppData\Local\Conduit
O43 - CFD: 05/03/2014 - 23:25:16 - [1,071] ----D C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon =>PUP.DiscountDragon
O43 - CFD: 08/03/2014 - 00:00:12 - [15,047] ----D C:\Users\Union Musulman Mée\AppData\Local\fst_fr_50 =>PUA.FSTfr9
O43 - CFD: 07/01/2014 - 15:32:55 - [1,224] ----D C:\Users\Union Musulman Mée\AppData\Local\genienext
O43 - CFD: 08/03/2014 - 00:17:56 - [5,161] ----D C:\Users\Union Musulman Mée\AppData\Local\Lollipop =>Adware.Lollipop
O43 - CFD: 24/01/2014 - 07:45:14 - [1,280] ----D C:\Users\Union Musulman Mée\AppData\Local\SaveSense =>PUP.SaveSense
O43 - CFD: 24/01/2014 - 07:45:27 - [0] ----D C:\Users\Union Musulman Mée\AppData\Local\SaveSenseLive =>PUP.SaveSense
O43 - CFD: 21/11/2013 - 20:51:48 - [0,001] ----D C:\Users\Union Musulman Mée\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard =>PUP.BitGuard
O43 - CFD: 07/01/2014 - 15:33:24 - [0,002] ----D C:\Users\Union Musulman Mée\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup =>PUP.MyPCBackup
O43 - CFD: 24/01/2014 - 07:45:14 - [0,001] ----D C:\Users\Union Musulman Mée\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SaveSense =>PUP.SaveSense
~ Program Folder: 162 Legitimates Filtered in 00mn 39s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.E5CC58945EC259536927FCC11912D2ED] - 05/03/2014 - 18:31:16 ---A- - C:\Windows\Prefetch\PCHKREMINDER.EXE-552B2EEC.pf
O45 - LFCP:[MD5.0BE14A5A3621C4BF7694A6805E52138F] - 07/02/2014 - 07:12:31 ---A- - C:\Windows\Prefetch\SETUP_RECOVER_FST_FR_33.TMP-0258A347.pf =>PUA.FSTfr9
O45 - LFCP:[MD5.6071127780529BCB62A5C8D2DEC6462E] - 07/03/2014 - 13:02:23 ---A- - C:\Windows\Prefetch\LAUNCHTM.EXE-B444BC8E.pf
O45 - LFCP:[MD5.C25311895698961BC97D169F1767951F] - 07/03/2014 - 14:01:00 ---A- - C:\Windows\Prefetch\PLUS-HD-5.8-CODEDOWNLOADER.EX-0A0C1A30.pf =>Adware.PlusHD
O45 - LFCP:[MD5.E3F31E47E85F2DC333068EECE133B137] - 07/03/2014 - 14:01:00 ---A- - C:\Windows\Prefetch\PLUS-HD-5.8-ENABLER.EXE-D313B223.pf =>Adware.PlusHD
O45 - LFCP:[MD5.78394F23E135F6236B25CE1F8B3B6022] - 07/03/2014 - 15:11:08 ---A- - C:\Windows\Prefetch\DCOMPARE.EXE-2D19CECA.pf
O45 - LFCP:[MD5.47AF7217C5D9BF1F54DDB87BD33802F4] - 07/03/2014 - 15:20:02 ---A- - C:\Windows\Prefetch\FEVEN 1.7-FIREFOXINSTALLER.EX-389CDB7D.pf =>PUP.CrossRider
O45 - LFCP:[MD5.C85740EA6BA80B18C196B017A9562176] - 07/03/2014 - 22:22:16 ---A- - C:\Windows\Prefetch\BOMLABIOBROWSERFILTER.EXE-49DDC920.pf =>PUP.Bomlabio
O45 - LFCP:[MD5.015193D7F73FBAFC2E2D9D1C8BECD259] - 07/03/2014 - 22:23:28 ---A- - C:\Windows\Prefetch\NMHOST.EXE-AD8E4A11.pf
O45 - LFCP:[MD5.6DB0503F408E976CFF8B7548B97E297E] - 07/03/2014 - 22:26:03 ---A- - C:\Windows\Prefetch\DISCDRPL.EXE-0B57FB4E.pf
O45 - LFCP:[MD5.00F0C3EFB393200DFD3BF33F748C01BA] - 07/03/2014 - 22:45:00 ---A- - C:\Windows\Prefetch\UPDATE~1.EXE-B4AD8366.pf
O45 - LFCP:[MD5.767A68D7BC26991E4CEEF37504444A6E] - 07/03/2014 - 22:45:00 ---A- - C:\Windows\Prefetch\UPDATE~1.EXE-E30A3A20.pf
O45 - LFCP:[MD5.9127002DF6262758E8A49C5D1F2570D6] - 07/03/2014 - 23:56:57 ---A- - C:\Windows\Prefetch\FEVEN 1.7-ENABLER.EXE-923CC955.pf =>PUP.CrossRider
O45 - LFCP:[MD5.BBBCB8C83129C526E2CE6436F30BAF61] - 07/03/2014 - 23:56:58 ---A- - C:\Windows\Prefetch\PLUS-HD-5.8-FIREFOXINSTALLER.-F071D59B.pf =>Adware.PlusHD
O45 - LFCP:[MD5.8020144E0EF8053A04E47F9BEE2BE520] - 07/03/2014 - 23:57:19 ---A- - C:\Windows\Prefetch\UMBRELLA_BKP.EXE-DACBD8BF.pf
O45 - LFCP:[MD5.85BD3C56D0F278F365725F7643CD0159] - 07/03/2014 - 23:58:04 ---A- - C:\Windows\Prefetch\GAMESAPPINTEGRATIONSERVICE.EX-D44D8C89.pf
O45 - LFCP:[MD5.BDC6BAFABFCFE43B7B346159E894CDA9] - 07/03/2014 - 23:58:17 ---A- - C:\Windows\Prefetch\SAVESENSELIVE.EXE-2C708688.pf =>PUP.SaveSense
O45 - LFCP:[MD5.1152D8C72AD64D91E417EE74AFB6FEBB] - 07/03/2014 - 23:58:17 ---A- - C:\Windows\Prefetch\SAVESENSELIVEHANDLER.EXE-BFFA6539.pf =>PUP.SaveSense
O45 - LFCP:[MD5.0BF7CEE4380B9B0E15D841863C712FC5] - 07/03/2014 - 23:58:17 ---A- - C:\Windows\Prefetch\SOFTWARECRASHHANDLER.EXE-5F240164.pf
O45 - LFCP:[MD5.C737EE7A2578035C93250C5F79DEEA9B] - 07/03/2014 - 23:58:23 ---A- - C:\Windows\Prefetch\HOTFIX1.EXE-DD354BEB.pf
O45 - LFCP:[MD5.0376F884C873CDB4B097B6AA9C039429] - 07/03/2014 - 23:58:41 ---A- - C:\Windows\Prefetch\LIVEUPDATE.TMP-60564378.pf
O45 - LFCP:[MD5.DD93FF0BDF6696F9FE6F13C747BD5361] - 08/03/2014 - 00:00:10 ---A- - C:\Windows\Prefetch\SPEEDUPMYPC.EXE-7C35B7A1.pf =>Rogue.SpeedUpMyPC
O45 - LFCP:[MD5.1872C18F6EBCAE31AA531B894B881234] - 08/03/2014 - 00:00:12 ---A- - C:\Windows\Prefetch\UPFST_FR_50.EXE-71952C4C.pf =>PUA.FSTfr9
O45 - LFCP:[MD5.3DD8E5F7E6423FA013DE7C386D1471D1] - 08/03/2014 - 00:07:19 ---A- - C:\Windows\Prefetch\SMRTADPTR.EXE-9A49AE8F.pf
O45 - LFCP:[MD5.28E7509B62A4F6A15029F2A35E7C70A9] - 08/03/2014 - 00:07:26 ---A- - C:\Windows\Prefetch\IMINENT.EXE-DDB5429B.pf =>Adware.IMBooster
O45 - LFCP:[MD5.D96A6492B809D61358AF904A4E1BFE6A] - 08/03/2014 - 00:07:26 ---A- - C:\Windows\Prefetch\MGUSB.EXE-2DCAF222.pf
O45 - LFCP:[MD5.FD4C4A5132FAF5A871423F3CFC48D46C] - 08/03/2014 - 00:07:28 ---A- - C:\Windows\Prefetch\PDVD10SERV.EXE-99C8A7B5.pf
O45 - LFCP:[MD5.F8CAF294B08634148D544019D0AD32D5] - 08/03/2014 - 00:07:29 ---A- - C:\Windows\Prefetch\DAEMONPROCESS.EXE-E4BDA2BB.pf
O45 - LFCP:[MD5.82AF865C8B939FF98BA65ED0F5D6161E] - 08/03/2014 - 00:07:30 ---A- - C:\Windows\Prefetch\IMINENT.MESSENGERS.EXE-71459735.pf =>Adware.IMBooster
O45 - LFCP:[MD5.D2976EA6B31227E64BC15245A7CD6178] - 08/03/2014 - 00:07:30 ---A- - C:\Windows\Prefetch\MYPC BACKUP.EXE-D2D9F9B9.pf =>PUP.MyPCBackup
O45 - LFCP:[MD5.7508948F3288B3F060CA6FEDC37E3E9A] - 08/03/2014 - 00:07:31 ---A- - C:\Windows\Prefetch\BSERVICE.EXE-FA5EE405.pf
O45 - LFCP:[MD5.2997AF9EBA7BFAA929205A4A1D396BE5] - 08/03/2014 - 00:07:32 ---A- - C:\Windows\Prefetch\BOXORE.EXE-666CD123.pf =>Adware.Boxore
O45 - LFCP:[MD5.41CBADABDACF8A42A60EC2727E0C0DE2] - 14/02/2014 - 08:08:33 ---A- - C:\Windows\Prefetch\GLCND.EXE-E78A3D46.pf
O45 - LFCP:[MD5.3D27D9A8A42871027AE730898FDE481D] - 16/02/2014 - 09:11:05 ---A- - C:\Windows\Prefetch\dynreservedpri.db
O45 - LFCP:[MD5.5636AA9D7255B3FA0BEF419920A6BA5B] - 22/02/2014 - 12:03:47 ---A- - C:\Windows\Prefetch\FONTVIEW.EXE-FAED34E4.pf
~ Prefetcher: 165 Legitimates Filtered in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 17 Legitimates Filtered in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 3 Legitimates Filtered in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.4E85355B94CFCB67C135F6521A4895A7] - 26/07/2012 - 06:00:55 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [30960]
~ Drivers: 17 Legitimates Filtered in 00mn 05s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 05/03/2014 - 00:23:21 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\BenchUpdater\products.xml [446] =>PUP.GiganticSavings
O61 - LFC: 05/03/2014 - 00:23:21 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\AppFramework\appAPI_bg.js [2539] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\AppFramework\appAPI_browseraction.js [802] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\AppFramework\appAPI_common.js [6351] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\AppFramework\appAPI_content.js [1253] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\AppFramework\appAPI_settings.js [86] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\AppFramework\appAPI_webrequest.js [1112] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\AppFramework\jquery.min.js [83258] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\CanvasFramework\canvas_bg.js [5600] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\CanvasFramework\canvasscript_engine.js [440] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\CanvasFramework\md5.js [3264] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\CanvasFramework\registry.js [799] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\CanvasFramework\webrequest.js [4382] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\background.html [175] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\bootstrap.js [2834] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\chrome.manifest [57] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\extension_info.json [1727] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework-ui\browser_button.js [9095] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework-ui\contentNotification.tmpl [836] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework-ui\contentNotificationStyle.tmpl [3729] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework-ui\content_notifications.js [9069] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework-ui\context_menu.js [2144] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework-ui\framework_api.js [1583] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework-ui\notifications.js [3545] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework-ui\options.js [937] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework-ui\ui_base.js [1780] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\backgroundscript_engine.js [1295] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\base.js [2928] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\browser.js [12788] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\chrome_windows.js [2630] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\console.js [543] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\content_proxy.js [505] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\framework.js [4322] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\i18n.js [1601] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\invoke_async.js [2313] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\io.js [979] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\lang.js [3071] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\legacy.js [1273] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\message_target.js [857] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\messaging.js [1499] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\storage.js [6143] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\timer.js [980] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\uninstall.js [76] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\userscript_client.js [313] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\userscript_engine.js [3059] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\utils.js [2436] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\framework\xhr.js [2158] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\firefox\install.rdf [1204] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\icon.ico [32038] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:22 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Discount Dragon\uninstall.exe [146508] =>PUP.DiscountDragon
O61 - LFC: 05/03/2014 - 00:23:27 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.2.464\_platform_specific\win_x86\CdmAdapterVersion [13]
O61 - LFC: 05/03/2014 - 00:23:27 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.2.464\_platform_specific\win_x86\widevinecdm.dll [11769848]
O61 - LFC: 05/03/2014 - 00:23:27 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.2.464\manifest.fingerprint [66]
O61 - LFC: 05/03/2014 - 00:23:27 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.2.464\manifest.json [951]
O61 - LFC: 05/03/2014 - 00:23:30 ---A- . (...) -- C:\Users\Union Musulman Mée\AppData\Roaming\Iminent\Mediator\Datas\globalcache.dat [6144] =>Adware.IMBooster