J'ai DL un malware, help svp !

Résolu/Fermé

Utilisateur anonyme - Modifié par Loulscar le 12/06/2015 à 17:25
ArnaudLy6 Messages postés 4412 Date d'inscription samedi 22 mai 2010 Statut Membre Dernière intervention 13 février 2016 - 16 juin 2015 à 20:20

Bonjour,

Je viens de DL un fichier vidéo, qui se trouve être un fake accompagné d'un fichier que je trouvais louche. J'ai donc ouvert les propriétés du dit fichier, et 2 éléments m'inquiètent. Primo, sous l'onglet général, 2 infos qui "m'étonnent": le fichier est un fichier de type Raccourci(.lnk), et dans la "description" du fichier, il est écrit qu'il interprète des commandes windows... ce qu'il ne devrait pas faire ce me semble^^ Deuzio, sous l'onglet "raccourci", il est écrit type de cible : nicedeal

M'y connaissant (très très peu, mais un peu quand même) en informatique, il me semble avoir lu quelque part qu'il s'agissait d'un malware... quelqu'un peut me confirmer, et si oui, m'aider à le dégager svp?
Souhaitant prendre un peu les devants et essayer de me débrouiller seul, j'ai lancé un scan adwcleaner, et ai nettoyé mon PC. Et c'est avec surprise que j'ai alors remarqué qu'il a détecté (et supprimé?) un autre programme qui dans ma tête est classifié comme "saloperie" : eastobuy. Je copie le rapport adwcleaner a la fin du message, j'eus voulu savoir s'il a vraiment bien été supprimé sivouplé, parce que j'ai l'impression que ce n'est pas la première fois que mon adwcleaner le détecte et que je l'ai déjà dégagé plusieurs fois.

D'avance merci pour votre temps et votre aide, et n'hésitez pas a me poser toutes les questions du monde. Voici toutefois la base de la base :

Windows 7 64 bits
Je me sers de chrome en navigateur par défaut
Windows defender en guise de (piètre) anti-virus (si vous avez un conseil de meilleur anti-virus gratis ou pas trop cher je suis preneur d'ailleurs ! <3 )

----------------------------------------------------------------------------------------

# AdwCleaner v4.110 - Rapport créé le 12/06/2015 à 16:42:52
# Mis à jour le 05/02/2015 par Xplode
# Base de données : 2015-06-09.1 [Serveur]
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (x64)
# Nom d'utilisateur : USER - USER-HP
# Exécuté depuis : C:\Users\USER\Downloads\adwcleaner_4.110.exe
# Option : Nettoyer

*

- - - - [ Services ] *****
      - [ Fichiers / Dossiers ] *****

Dossier Supprimé : C:\Program Files (x86)\eastobuy
Dossier Supprimé : C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg
Dossier Supprimé : C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioibekcejncfgenmkgopcbmbolmgmocm
Fichier Supprimé : C:\USERs\USER\AppData\Roaming\Mozilla\Firefox\Profiles\8ggnh9eg.default\user.js
Fichier Supprimé : C:\Users\Oscar Lourdin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_licjnkifamhpbaefhdpacpmihicfbomb_0.localstorage
Fichier Supprimé : C:\Users\Oscar Lourdin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_licjnkifamhpbaefhdpacpmihicfbomb_0.localstorage-journal

*

- - - - [ Tâches planifiées ] *****
      - [ Raccourcis ] *****
      - [ Registre ] *****
      - [ Navigateurs ] *****

-\\ Internet Explorer v11.0.9600.17801

-\\ Mozilla Firefox v35.0.1 (x86 fr)

-\\ Google Chrome v43.0.2357.124

*

AdwCleaner[R0].txt - [12771 octets] - [12/01/2014 03:34:18]
AdwCleaner[R1].txt - [15115 octets] - [11/08/2014 16:49:36]
AdwCleaner[R2].txt - [4164 octets] - [12/02/2015 21:12:26]
AdwCleaner[R3].txt - [1194 octets] - [14/02/2015 15:03:52]
AdwCleaner[R4].txt - [1991 octets] - [12/06/2015 16:36:33]
AdwCleaner[S0].txt - [11815 octets] - [12/01/2014 03:35:08]
AdwCleaner[S1].txt - [12503 octets] - [11/08/2014 16:51:04]
AdwCleaner[S2].txt - [4292 octets] - [12/02/2015 21:14:42]
AdwCleaner[S3].txt - [1926 octets] - [12/06/2015 16:42:52]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1986 octets] ##########

A voir également:

Michael tippach virus
Malware byte - Télécharger - Antivirus & Antimalwares
Winrar dl - Télécharger - Compression & Décompression
Supprimer malware - Guide
Tor.jack malware - Forum Antivirus
Steam dl - Télécharger - Téléchargement & Transfert

2 réponses

Réponse 1 / 2

ArnaudLy6 Messages postés 4412 Date d'inscription samedi 22 mai 2010 Statut Membre Dernière intervention 13 février 2016 189
12 juin 2015 à 20:56

Salut,

On va voir s'il reste des infections :

Télécharge ZHPDiag : https://nicolascoolman.eu (Si Avast! bloque le fichier, désactive-le )
Lance-le (icone avec un parchemin)
Clique sur "Complet"
Attends la fin de l'analyse
Une fois l'analyse terminée, un fichier bloc note devrait se créer sur ton bureau (il devrait s'appeler ZHPDiag)
Rends-toi sur ce site : https://www.cjoint.com/
Clique sur "Choisir un fichier" et choisis le bloc note ZHPDiag qui est sur ton bureau
Dans le type de diffusion choisis "Privée"
Dans le champ "Pour quelle durée" choisis 4 jours
Remplis ensuite la suite du formulaire
Enfin, donne-nous le lien du fichier que tu viens de mettre sur le site

Utilisateur anonyme
12 juin 2015 à 23:10

Salut, merci beaucoup de prendre le temps, c'est sympa =D

Voici le lien, après la manip indiquée !

http://www.cjoint.com/c/EFmvjcJL4It

Cordialement !

ArnaudLy6 Messages postés 4412 Date d'inscription samedi 22 mai 2010 Statut Membre Dernière intervention 13 février 2016 189
13 juin 2015 à 00:15

Il reste quelques infections :

Télécharge Malwarebytes Anti-Malware

Décoche "Activer l'essai gratuit de Malwarebytes Anti-Malware Premium"
Lance MalwareBytes
Dans l'onglet Tableau de Bord, clique sur Mettre à jour
Clique ensuite sur l'onglet " Examen "
Coche " Examen Menaces "
Clique sur " Examiner maintenant "
Attends la fin de l'analyse
Une fois l'analyse terminée, clique sur " Supprimer la sélection "
Accepte le redémarrage du PC si demandé

Une fois que ton ordinateur a redémarré, relance Malwarebytes Anti-Malware et cette fois-ci rends toi dans l'onglet " Historique ",
puis " Journaux de l'application ".
Sélectionne le rapport le plus récent, il devrait s'appeler ScanLog, ouvre-le et clique en bas sur Coller dans le presse-papier.
Il ne te reste plus qu'à coller le rapport dans ton prochain message.

Utilisateur anonyme
13 juin 2015 à 13:28

Voilaaaa ! :)

Encore merci pour ton aide !

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 13/06/2015
Heure de l'examen: 12:31:05
Fichier journal:
Administrateur: Oui

Version: 2.01.6.1022
Base de données Malveillants: v2015.04.05.02
Base de données Rootkits: v2015.06.02.01
Licence: Gratuit
Protection contre les malveillants: Désactivé(e)
Protection contre les sites Web malveillants: Désactivé(e)
Auto-protection: Désactivé(e)

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: USER

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 438506
Temps écoulé: 46 min, 1 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Désactivé(e)
Heuristique: Activé(e)
PUP: Activé(e)
PUM: Activé(e)

Processus: 1
Riskware.BitcoinMiner, C:\ProgramData\USER-HP\USER-HP.exe, 6784, Supprimé-au-redémarrage, [599dff69e2a81e185691115f25dced13]

Modules: 0
(Aucun élément malicieux détecté)

Clés du Registre: 3
PUP.Optional.SaveSence.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{2e32cfe5-df92-4ae5-b0be-609ed0df74a6}, Mis en quarantaine, [9d591a4ec4c6a98dc286da5c857e56aa],
PUP.Optional.Koyote.A, HKU\S-1-5-21-3716463161-1971451847-3735898430-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Free mp3 Wma Converter, Mis en quarantaine, [f9fd1c4cf49633033df93b34ee139f61],
PUP.Optional.Iminent.A, HKU\S-1-5-21-3716463161-1971451847-3735898430-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOWREGISTRY\Iminent, Mis en quarantaine, [31c59acec6c45cda92b42bc939ca619f],

Valeurs du Registre: 2
PUP.Optional.FirstSeenToday.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|fst_fr_54, Mis en quarantaine, [e610a5c334560234cb6f23d29c67d42c],
PUP.Optional.Spigot.A, HKU\S-1-5-21-3716463161-1971451847-3735898430-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{19CE2852-D5F5-454C-8461-B59DDBE40000}|URL, https://uk.search.yahoo.com/web?fr=chr-greentree_ie{searchTerms}, Mis en quarantaine, [9d5952166822a09655626d487291c739]

Données du Registre: 0
(Aucun élément malicieux détecté)

Dossiers: 42
PUP.Optional.WebCake.A, C:\Users\Oscar Lourdin\AppData\Roaming\WebCake, Mis en quarantaine, [13e38edaf19901354ce51106af56946c],
PUP.Optional.WebCake.A, C:\Users\Oscar Lourdin\AppData\Roaming\WebCake\dat, Mis en quarantaine, [13e38edaf19901354ce51106af56946c],
PUP.Optional.WebCake.A, C:\Users\Oscar Lourdin\AppData\Roaming\WebCake\dat\update, Mis en quarantaine, [13e38edaf19901354ce51106af56946c],
Rogue.Multiple, C:\ProgramData\3637822563, Mis en quarantaine, [30c6baaee2a847efc71b3d349b682cd4],
Adware.ClickPotato, C:\Users\Oscar Lourdin\AppData\Roaming\ClickPotatoLite, Mis en quarantaine, [e511194feaa0e353cf6688ea5aa9f10f],
Adware.ShopperReports, C:\Users\Oscar Lourdin\AppData\Roaming\ShopperReports3, Mis en quarantaine, [33c34226672376c013f194dfda29e21e],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\chrome, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\chrome\content, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\defaults, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\defaults\preferences, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\locale, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\addon-kit, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\addon-kit\data, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\api-utils, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\api-utils\data, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\api-utils\lib, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\api-utils\lib\content, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\oneclickdownloader, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\oneclickdownloader\data, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\oneclickdownloader\tests, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\components, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\images, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\META-INF, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.Datamngr.A, C:\Users\Oscar Lourdin\AppData\LocalLow\DataMngr, Mis en quarantaine, [579f0f595139af87d13197f0ef146b95],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.SearchQu.A, C:\Users\Oscar Lourdin\AppData\LocalLow\searchquband, Mis en quarantaine, [9b5b303812783afc44ad7c14a55efd03],
PUP.Optional.Takegif.A, C:\ProgramData\takegif, Mis en quarantaine, [3bbba9bf0d7d3501e3314a5dc43f6f91],
PUP.Optional.Deal4Deal.A, C:\ProgramData\deal4deal, Mis en quarantaine, [3bbb84e4513992a4ee50d1d953b06f91],

Fichiers: 242
Riskware.BitcoinMiner, C:\ProgramData\USER-HP\USER-HP.exe, Supprimé-au-redémarrage, [599dff69e2a81e185691115f25dced13],
PUP.Optional.NationZoom.A, C:\Users\USER\AppData\Roaming\nationzoom\nationzoom.exe, Mis en quarantaine, [72845c0cc1c939fdafa96ac52ad6c739],
PUP.Optional.SkyTech.A, C:\Users\USER\AppData\Roaming\nationzoom\UpDate.dll, Mis en quarantaine, [29cd99cf3a5075c192543dc72cd6c53b],
PUP.Optional.Koyote.A, C:\Program Files (x86)\Free mp3 Wma Converter\Uninstall.exe, Mis en quarantaine, [f9fd1c4cf49633033df93b34ee139f61],
PUP.Optional.Koyote.A, C:\Users\USER\Downloads\FreeMp3WmaConverterSetup-r0-n [1].exe, Mis en quarantaine, [d521095f01892b0b3bfb452a6f92de22],
PUP.Optional.Softonic.A, C:\Users\USER\Downloads\SoftonicDownloader_pour_adi-soundmax-ac97-integrated.exe, Mis en quarantaine, [0bebf177365474c26ae279d623de42be],
PUP.Optional.NextInt, C:\Users\USER\Downloads\Popcorn-Time-0.2.9-Win-32.exe, Mis en quarantaine, [b6408bdd35551323c7b899204db8639d],
Adware.Boxore, C:\Windows\Installer\f07cdd.msi, Mis en quarantaine, [975f57118efcb284874f507ca45ce818],
PUP.Optional.SweetIM.C, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\searchplugins\sweetim.xml, Mis en quarantaine, [02f44a1e701a53e38633ba02a063ec14],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\searchplugins\BabylonMngr.xml, Mis en quarantaine, [0fe789df4842e551cebe1ea6a85b03fd],
PUP.Optional.AZLyrics.A, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage, Mis en quarantaine, [1fd77aeee9a1fe3883be8d3e2ed517e9],
PUP.Optional.AZLyrics.A, C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.azlyrics.com_0.localstorage-journal, Mis en quarantaine, [c1352345167436001b26e9e21ae94cb4],
PUP.Optional.SearchResults.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\searchplugins\Search_Results.xml, Mis en quarantaine, [2accfc6c6d1d5fd723122ea739ca3fc1],
PUP.Optional.BrowserMngr, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\BrowserMngr_extensions.sqlite, Mis en quarantaine, [9363a2c665257eb837ff6d6c758e13ed],
PUP.Optional.BrowserMngr, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\BrowserMngr_prefs.js, Mis en quarantaine, [599d3f290d7dee48f6415a7f3ec5669a],
PUP.Optional.SweetPacks.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi, Mis en quarantaine, [738369ff503a60d64e05568b8b7837c9],
PUP.Optional.Iminent.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\webbooster@iminent.com.xpi, Mis en quarantaine, [48aeff69fa908da93035a25b0ff47a86],
PUP.Optional.WebCake.A, C:\Users\Oscar Lourdin\AppData\Roaming\WebCake\PlugIns.cache, Mis en quarantaine, [13e38edaf19901354ce51106af56946c],
PUP.Optional.WebCake.A, C:\Users\Oscar Lourdin\AppData\Roaming\WebCake\dat\Desktop.OS.Plugin.dll, Mis en quarantaine, [13e38edaf19901354ce51106af56946c],
PUP.Optional.WebCake.A, C:\Users\Oscar Lourdin\AppData\Roaming\WebCake\dat\Paladin.dat, Mis en quarantaine, [13e38edaf19901354ce51106af56946c],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Local\funmoods-speeddial.crx, Mis en quarantaine, [1cdab7b1d9b181b58db5c673f70e45bb],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Local\funmoods.crx, Mis en quarantaine, [bf3771f7fe8cbf77f34f0534d134b947],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\chrome.manifest, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\harness-options.json, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\icon.png, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\icon64.png, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\install.rdf, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\locales.json, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\chrome\content\jquery.js, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\chrome\content\ready.js, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\chrome\content\util.js, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\defaults\preferences\prefs.js, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\locale\en-GB.json, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\locale\eo.json, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\locale\fr-FR.json, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\addon-kit\data\index.html, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\addon-kit\data\pagemod-css-include-file.css, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\addon-kit\data\test-page-mod.html, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\addon-kit\data\test-page-worker.html, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\addon-kit\data\test.html, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\api-utils\data\test-trusted-document.html, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\oneclickdownloader\data\background.html, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.1ClickDownload.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\OneClickDownload@OneClickDownload.com\resources\oneclickdownloader\data\dt.txt, Mis en quarantaine, [d12574f4e7a3df5772b8196dab584ab6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\chrome.manifest, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\install.rdf, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\components\acplus-autocomplete.js, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\components\acplus-autocomplete.js_, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\components\ffdisp.dll, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\babylon.css, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\babylon.xul, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\loader.xul, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\mtstart.js, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\server.js, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\tmplt.js, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\arwDwn.gif, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\bbyln.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\claro.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\help_16.gif, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\home.gif, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\icon_seperator.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\logo.gif, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\logo.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\privecy_16_hot.gif, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\radio.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\search.PNG, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\specialoffer.gif, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\tellafriend.gif, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\toolbarIcons_casino.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\toolbar_icons_games.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\translate.PNG, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\za.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\ae.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\bg.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\ch.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\cn.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\cz.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\de.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\eg.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\en.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\es.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\fr.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\gr.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\he.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\il.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\it.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\ja.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\jp.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\nl.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\no.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\pl.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\pt.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\ro.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\ru.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\sa.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\se.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\sv.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\tr.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\ua.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\us.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\bg.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\chooseStation.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\lines.gif, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\pauseBtn.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\playBtn.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\rd_strp.png, Mis en quarantaine, [847282e67c0e6cca8fa0fe88a2610af6],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\install.rdf, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\funmoods.css, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\funmoods.xul, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\loader.xul, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\preferences.xul, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\images\pref.jpg, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\arwDwn.gif, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\help_16.gif, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\home.gif, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\logo.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\privecy_16_hot.gif, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\tellafriend.gif, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ae.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\bg.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ch.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\cn.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\cz.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\de.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\eg.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\en.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\es.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\fr.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\gr.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\he.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\il.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\it.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ja.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\jp.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\nl.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\no.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\pl.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\pt.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ro.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ru.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\sa.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\se.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\sv.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\tr.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ua.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\us.png, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\META-INF\le_c6a58f26_4d2d_4341_b387_c4f2289b6170.rsa, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\META-INF\le_c6a58f26_4d2d_4341_b387_c4f2289b6170.sf, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.FunMoods.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@funmoods.com\META-INF\manifest.mf, Mis en quarantaine, [f2045711f8920c2a4114a4e263a0b848],
PUP.Optional.Datamngr.A, C:\Users\Oscar Lourdin\AppData\LocalLow\DataMngr\{7CA1F051-A4FB-4143-B263-02B41E571EED}, Mis en quarantaine, [579f0f595139af87d13197f0ef146b95],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\chrome.manifest, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\install.rdf, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\incredibar.css, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\incredibar.xul, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\mtstart.js, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\tmplt.js, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\arwDwn.gif, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\help_16.gif, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\home.gif, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\logo.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\privecy_16_hot.gif, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\specialoffer.gif, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\tellafriend.gif, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\uninstall.gif, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\ae.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\bg.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\ch.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\cn.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\cz.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\de.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\eg.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\en.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\es.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\fr.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\gr.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\he.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\il.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\it.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\ja.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\jp.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\nl.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\no.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\pl.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\pt.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\ro.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\ru.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\sa.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\se.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\sv.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\tr.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\ua.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Incredibar.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\extensions\ffxtlbr@incredibar.com\content\imgs\flgs\us.png, Mis en quarantaine, [3cba7eea8703a2944af90584d62d04fc],
PUP.Optional.Takegif.A, C:\ProgramData\takegif\takegif.exe, Mis en quarantaine, [3bbba9bf0d7d3501e3314a5dc43f6f91],
PUP.Optional.Deal4Deal.A, C:\ProgramData\deal4deal\deal4deal.exe, Mis en quarantaine, [3bbb84e4513992a4ee50d1d953b06f91],
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Local\Google\Chrome\User Data\Default\BrowserMngrPreferences, Bon: (), Mauvais: ( "homepage" : "http://search.babylon.com/?affID=108988&tt=270912_ctrl2_3912_3&babsrc=HP_ss&mntrId=26436ccc0000000000004c0f6e52e1fe",), Remplacé,[9f57adbb0189a69009da80b69c6a56aa]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Local\Google\Chrome\User Data\Default\BrowserMngrPreferences, Bon: (), Mauvais: ( "plfijddblbcdcnammpdmfccchkbdekmm" : {
"blacklist" : true
},
"pnaiiipilbpcceggeanphcpkkihnojan" : {
), Remplacé,[aa4c99cfe8a2fc3a31b2d0668f77b64a]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (user_pref("browser.newtab.url", "http://search.babylon.com/?affID=112185&tt=2912_3&babsrc=NT_ss&mntrId=26436ccc000000000000560f6e52e1fe");), Remplacé,[71854622206a2412014e50e6a85e4db3]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.BabylonToolbar_i.aflt", "babsst");), Remplacé,[08eeaabe5e2ce056f47f47ef5da9dd23]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (nces

/* Do not edit this file.
*

If you mak), Remplacé,[52a480e8e6a44de91b585cdae026fc04]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (ferences

/* Do not edit this file.
*

If you make changes to this fi), Remplacé,[83731e4a6f1b52e4fd7651e5ab5bb24e]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (it this file.
*

If you make changes to this file while the application is runn), Remplacé,[d026c7a1d5b5f541e093bb7b838319e7]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (file.
*

If you make changes to this file while the application is running,), Remplacé,[43b3db8d0486da5c9cd793a37c8a3ec2]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (his file.
*

If you make changes to this file while th), Remplacé,[946279ef177373c36e0578be61a527d9]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (s

/* Do not edit this file.
*

If you make change), Remplacé,[cc2a3137dbaf3df94f247eb88581cf31]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (ces

/* Do not edit this file.
*

If you make c), Remplacé,[e80efb6d99f1a2942e45d4621aec30d0]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (rences

/* Do not edit this file.
*

If you make changes to this file while the application is running,
the changes will be overwritten when the a), Remplacé,[bd39f870fb8fad89f182e353c244817f]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (unning,

the changes will be overwritten when the application ), Remplacé,[9165b7b1f9918ea86d060b2b4bbb3cc4]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (* Do not edit this file.
*

If you make changes to this), Remplacé,[40b6e68244462b0b4d26ca6c28dee51b]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (

/* Do not edit this file.
*

If you make changes), Remplacé,[46b016520783979fcea5e2541fe7dd23]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (rences

/* Do not edit this file.
*

If you make ), Remplacé,[9b5b9ecaa3e773c363100d295caae21e]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (nces

/* Do not edit this file.
*

If you make chan), Remplacé,[3fb780e8523870c690e3d264957111ef]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (es

/* Do not edit this file.
*

If you make changes to this), Remplacé,[7e786afea3e7ee4803704aecb74f2dd3]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\prefs.js, Bon: (), Mauvais: (Do not edit this file.
*

If you make changes to this ), Remplacé,[4fa79fc98ffb72c4bbb8ab8b5ea8ae52]

PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (user_pref("extensions.BabylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe");), Remplacé,[1dd99bcddfab40f6ea28d0664cba01ff]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (6436ccc000000000000560f6e52e1fe");
user_pref("extensions.BabylonToolbar_i.hardId", ), Remplacé,[27cf75f3c5c5999de32f92a46e983cc4]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (ccc000000000000560f6e52e1fe");
user_pref("extensions.Babyl), Remplacé,[3bbbfb6daedce05613ff1b1b679f758b]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (ylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe");
u), Remplacé,[6a8c105895f50036b65ce353d92d2ed2]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (bylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe");
u), Remplacé,[16e0095fe1a953e30b0793a342c407f9]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (ylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe");
use), Remplacé,[74824523ee9c66d067abc76f15f1e31d]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (lonToolbar_i.id", "26436ccc000000000000560f6e52e1fe");
user_pref), Remplacé,[33c31c4c9bef231365ad63d37d89827e]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (olbar_i.id", "26436ccc000000000000560f6e52e1fe");
user_), Remplacé,[3abc7deba4e6fc3a6ba786b0c6400df3]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (BabylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe"), Remplacé,[40b6aabefd8d54e264aeef472dd99070]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (BabylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe")), Remplacé,[bd3996d2dab0b87e7c96b97de620df21]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (ar_i.smplGrp", "none");
user_pref("extensions.incredibar), Remplacé,[777f4d1b16744fe7e72be74f25e1e21e]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (abylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe"), Remplacé,[a84ed692701a22143fd3d85e25e1fd03]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (.BabylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe");
user_pref("extensions.BabylonToolbar_i.hardId", "26436ccc000000000000560f6e52), Remplacé,[a45287e1701aa195977b67cf30d69e62]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (BabylonToolbar_i.hardId", "26436ccc000000000000560f6e52e1fe");
user_pref("ext), Remplacé,[3db979ef2e5c41f554be60d6f511af51]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: ("26436ccc000000000000560f6e52e1fe");
user_pref("extensions.BabylonToolbar_i.hardId", "), Remplacé,[24d2eb7db2d80d29f220181ef70f6f91]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (000000000000560f6e52e1fe");
user_pref("extensions.Babylo), Remplacé,[9561c1a787035bdb32e0b4825da96e92]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (abylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe")), Remplacé,[13e383e5a1e9ea4cb35f70c6b74fbb45]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (abylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe");
user_pref), Remplacé,[54a221471e6c9d99060c2e08a165758b]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (ar_i.id", "26436ccc000000000000560f6e52e1fe");
user_pref(), Remplacé,[28ce68009beff1450d05fc3a92741ee2]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (bylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe");
user_), Remplacé,[16e0ff69e5a58da902102016b353837d]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (Toolbar_i.id", "26436ccc000000000000560f6e52e1fe");
u), Remplacé,[85715117127849ed59b90c2aaa5c2bd5]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (s.BabylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe), Remplacé,[a84ef573701a44f2fd15d85ee5216799]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (abylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe), Remplacé,[e1159ccc593156e025edca6ccc3a659b]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (s.BabylonToolbar_i.id", "26436ccc000000000000560f6e52e1), Remplacé,[19dd35332f5ba78ff61c93a312f430d0]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (.BabylonToolbar_i.id", "26436ccc000000000000560f6e52e), Remplacé,[797d95d30b7f4aecab674ceac93d27d9]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (ns.BabylonToolbar_i.id", "26436ccc000000000000560f6e52), Remplacé,[896d293fbbcf48eea36f45f1887e9070]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (s.BabylonToolbar_i.id", "26436ccc000000000000560f6e5), Remplacé,[2acc491f0783e254ea2844f2808640c0]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (ons.BabylonToolbar_i.id", "26436ccc000000000000560f6e52e1fe");
user_pref("extensions.Bab), Remplacé,[8d6976f23555c07629e9ce68b84e8779]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (0000000000560f6e52e1fe");
user_pref("extensions.Bab), Remplacé,[ba3cfc6c7d0d979f1ef40f277e88d42c]
PUP.Optional.Babylon.A, C:\Users\Oscar Lourdin\AppData\Roaming\Mozilla\Firefox\Profiles\ltexz603.default\user.js, Bon: (), Mauvais: (ons.BabylonToolbar_i.id", "26436ccc000000000000560f6e5), Remplacé,[e6106503e2a871c554be241255b110f0]

Secteurs physiques: 0
(Aucun élément malicieux détecté)

(end)

ArnaudLy6 Messages postés 4412 Date d'inscription samedi 22 mai 2010 Statut Membre Dernière intervention 13 février 2016 189
13 juin 2015 à 19:13

On utilise un dernier logiciel : On vérifie s'il reste des infections :

Télécharge ZHPCleaner
Lance-le
Une fenêtre devrait s'ouvrir, clique alors sur J'accepte
Clique sur le bouton Scanner (a noter que le navigateur internet se fermera tout seul)
Si au cours de l'analyse, le logiciel de demande "Avez-vous installer un proxy" et que tu sais que tu n'en as pas installé un, clique sur "Non"
A la fin de l'analyse, un rapport devrait se créer sur ton Bureau, il ne reste plus qu'à nous le transmettre par cjoint.com par exemple.

Refais ensuite une analyse ZHPDiag

Utilisateur anonyme
14 juin 2015 à 16:10

Salut !

Voici le rapport ZHPCleaner --> http://www.cjoint.com/c/EFolFHkmKZt
Et le rapport d'analyse ZHP Diag

~ Rapport de ZHPDiag v2015.6.4.54 - Nicolas Coolman (31/05/2015)
~ Lancé par USER (14/06/2015 14:25:24)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program

---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17801
MFIE: Mozilla Firefox 35.0.1
GCIE: Google Chrome v43.0.2357.124 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 1
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

---\\ Logiciels de protection du système
Avira Antivirus v15.0.10.434
Malwarebytes Anti-Malware version 2.1.6.1022
Windows Defender W7 (Deactivate)

---\\ Logiciels d'optimisation du système
CCleaner v5.05

---\\ Logiciels de partage PeerToPeer
qBittorrent 3.2.0 v3.2.0 =>P2P.BitTorrent

---\\ Surveillance de Logiciels
Adobe Flash Player 17 NPAPI
Adobe Reader X

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 6091 MB (53% free)
System Restore: Activé (Enable)
System drive C: has 178 GB (19%) free of 916 GB

---\\ Mode de connexion au système
~ Computer Name: USER-HP
~ User Name: USER
~ All Users Names: USER, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\USER\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\USER\AppData\Roaming\
~ %Desktop% : C:\Users\USER\Desktop\
~ %Favorites% : C:\Users\USER\Favorites\
~ %LocalAppData% : C:\Users\USER\AppData\Local\
~ %StartMenu% : C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 178 Go of 916 Go)
D: Hard drive, Flash drive, Thumb drive (Free 2 Go of 15 Go)
E: CD-ROM drive (Not Inserted)
F: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)

---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s

---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.F0289B3A341429117696F0279DA977B6] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/04/2015 - 16:27:25.) -- C:\Windows\System32\wininet.dll [2352128]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.17/07/2014 - 03:07:24.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 02s

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/115
~ Mes musiques (My Musics) : 1/936
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/11
~ Mes Documents (My Documents) : 1/2598
~ Mon Bureau (My Desktop) : 2/29517
~ Menu demarrer (Programs) : 1/44
~ Hidden Files: Scanned in 01mn 15s

---\\ Processus lancés
[MD5.B7F55E2AE978D3D34F7876EE5D689AAE] - (.CyberLink - YouCam Mirage.) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488] [PID.4260]
[MD5.6FA1F6B8090F04D581E16212886BD861] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\USER\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1178168] [PID.4756]
[MD5.DC73E11DC27E7D9AEF884EBE816C4240] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440] [PID.4440]
[MD5.AE797B72D85E87D403FC11135507922C] - (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288] [PID.4280]
[MD5.BC6390A6736A5F4A048AC75168DD7869] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008] [PID.2328]
[MD5.8A3B69683E63808719D24E1C68C21CC7] - (.Hewlett-Packard Development Company, L.P. - HP On Screen Display.) -- C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960] [PID.4296]
[MD5.42E4E281D9646F15E5C4D0CFD61CE684] - (.Wondershare - Wondershare Studio.) -- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2020192] [PID.3748]
[MD5.66177D4C99FD8B578C7C56DE445E4D5D] - (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [728312] [PID.5252]
[MD5.43B5696A844FB705D1E9595E8C3351B6] - (.Avira Operations GmbH & Co. KG - Avira.) -- C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [130864] [PID.5956]
[MD5.F893E691690CB722404FA94D1D499F72] - (.Intel Corporation - Bluetooth Media Player Controller.) -- C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe [979008] [PID.6056]
[MD5.E02DD156BC6085F1E722E2A0CBF4C248] - (...) -- C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe [821600] [PID.6288]
[MD5.097C23A896BDDA8DD98856FB0C06CA48] - (.Razer Inc. - Razer Game Booster.) -- C:\Program Files (x86)\Razer\Razer Game Booster\main.exe [1195712] [PID.9616]
[MD5.CCBD07ACEB6ADC4E4A238810A505F20D] - (.LoL Skin Installer - Skin Installer Ultimate.) -- C:\Users\USER\Desktop\Games\SIU 4.34-Lite\Skin Installer Ultimate.exe [5182976] [PID.9756]
[MD5.4547360EB0D90804B3AD080CE1D1D814] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.5924]
[MD5.12E2FC1F74265881402DE856D01EFFFE] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8214016] [PID.12100]
[MD5.EC705D6ED3A7F3D9AE42F6239707D9FE] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\Antivirus\sched.exe [434424] [PID.1928]
[MD5.FC5B75CA6A1DA31EDD4F8D53F5540B98] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088] [PID.1344]
[MD5.EC705D6ED3A7F3D9AE42F6239707D9FE] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\Antivirus\avguard.exe [434424] [PID.2068]
[MD5.C440483A5CE0E0AB03A79A33ACE35D91] - (.Intel Corporation - Bluetooth Device Monitor.) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [901184] [PID.2148]
[MD5.CA793DCC1D5F619021EF1D37CC7A831E] - (.EasyBits Software AS - Shared EasyBits services for Windows.) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232] [PID.2748]
[MD5.BCC4A8B2E2E902F52E7F2E7D8E125765] - (.Hewlett-Packard Company - HP Quick Synchronization Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [94264] [PID.2932]
[MD5.491CE9B6321FB74E4B37AF2C47F98434] - (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [26680] [PID.2984]
[MD5.5C8BC8A28798FD010E7ABC4E0D588CAA] - (.Nero AG - NService Application.) -- C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368] [PID.3012]
[MD5.446462BBA744DA60379574926FD51EAB] - (.Pas de propriétaire - PassThruSvr Application.) -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912] [PID.2644]
[MD5.B932EEFE2A1C456856E44B8A9A79D36C] - (.pdfforge GmbH - PDF Architect 2.) -- C:\Program Files (x86)\PDF Architect 2\creator-ws.exe [738856] [PID.3076]
[MD5.71FF75BAE3D6E362BE3AD07E26C2D00A] - (.Pas de propriétaire - GameScannerService.) -- C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [186048] [PID.3116]
[MD5.E4E034F79D88B34C5B4BA28BAE2259F7] - (.Razer Inc. - RzKLService.) -- C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448] [PID.3232]
[MD5.1192C9C21592466D4131CD82F14FA7F5] - (.Company - Updater.) -- C:\Program Files (x86)\Popcorn Time\Updater.exe [179200] [PID.3360]
[MD5.8884C9DDA76D76BADFD390B33D1DE70D] - (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) -- C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [208632] [PID.3508]
[MD5.DF83FB0EB35C91339F1C84C6CF426100] - (.Intel Corporation - Bluetooth OBEX Service.) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [991296] [PID.3720]
[MD5.C8AB8CA3557CCE041AC4C88E76AFBAD0] - (.Intel Corporation - Bluetooth Media Service.) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [1298496] [PID.5296]
[MD5.D2946D9F020AE76E9CEF9B4A6DF838C0] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [1129760] [PID.5848]
[MD5.D41861E56E7552C13674D7F147A02464] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13592] [PID.7780]
[MD5.D7E0BED3EA21D7BDDD410ADE51708D90] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [325656] [PID.7904]
[MD5.A678E5DDD974903DD71F503BDCACA218] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2656280] [PID.4584]
~ Processes Running: Scanned in 00mn 00s

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Preferences

---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [__MSG_appName__]
G2 - EXT: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [__MSG_appName__]
G2 - EXT: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [__MSG_appName__]
G2 - EXT: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [__MSG_appName__]
G2 - EXT: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [__MSG_name__]
G2 - EXT: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [__MSG_appName__]
G2 - EXT: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [__MSG_appName__]
G2 - EXT: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [__MSG_extName__]
G2 - EXT: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbkeegbaiigmenfmjfclcdgdpimamgkj [__MSG_extension_name__]
G2 - EXT: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioibekcejncfgenmkgopcbmbolmgmocm [SkyyartLive]
G2 - EXT: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [__MSG_APP_NAME__]
G2 - EXT: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [__MSG_appName__]
~ Google Lines Browser: 24 Scanned in 00mn 00s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\8ggnh9eg.default\prefs.js
M2 - MFEP: prefs.js [USER - 8ggnh9eg.default\abs@avira.com] [] SeguranÃ§a do navegador Avira v1.4.9 (..)
M2 - MFEP: Extension [USER - 8ggnh9eg.default] abs@avira.com
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.21.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=11.31.2] - (.Oracle Corporation - Next Generation Java Plug-in 11.31.2 for Mozilla browsers.) -- C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.40416.0.) -- c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
~ Firefox Browser: 22 Scanned in 00mn 00s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17631 (winblue_r7.150111-1500)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
~ IE Browser: 18 Scanned in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\System32\Userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s

---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File: Scanned in 00mn 00s

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion au compte Microsoft [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AviraBrowserSafety.BrowserSafety [64Bits] - {c3c77255-42c0-499f-b664-6e981a0b1647} . (...) -- mscoree.dll (.not file.)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper [64Bits] - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} . (.Hewlett-Packard - HP Network Check IE Plug-in.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
~ BHO: 9 Scanned in 00mn 00s

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} Clé orpheline
~ Toolbar: Scanned in 00mn 00s

---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: qBittorrent.lnk . (...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe =>P2P.BitTorrent
O4 - GS\TaskBar [USER]: qBittorrent.lnk . (...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe =>P2P.BitTorrent
~ Global Startup: 2 Scanned in 00mn 03s

---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [IntelWireless] . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Framework.) -- C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
O4 - HKLM\..\Run: [BTMTrayAgent] . (.Intel Corporation - Bluetooth Shell Extension.) -- C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\USER\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc
O4 - HKLM\..\Wow6432Node\Run: [NUSB3MON] . (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Quick Launch] . (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Wow6432Node\Run: [HPOSD] . (.Hewlett-Packard Development Company, L.P. - HP On Screen Display.) -- C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
O4 - HKLM\..\Wow6432Node\Run: [Wondershare Helper Compact.exe] . (.Wondershare - Wondershare Studio.) -- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [Avira Systray] . (.Avira Operations GmbH & Co. KG - Avira.) -- C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3716463161-1971451847-3735898430-1001\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\USER\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
O4 - HKUS\S-1-5-21-3716463161-1971451847-3735898430-1001\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe =>.Microsoft Corporation
~ Application: Scanned in 00mn 00s

---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 [64Bits] - {25510184-5A38-4A99-B273-DCA8EEF6CD08} . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\Resources\Icons\HP.ico
O9 - Extra button: @btrez.dll,-12650 [64Bits] - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico
~ IE Extra Buttons: Scanned in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
O10 - WLSP:\000000000010\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 10 Scanned in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{680AEB7B-1DAD-4ACE-B978-A14E6AF2ABD7}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{AEAFCE28-0807-425E-8144-507CF26DE693}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{F1A86019-DCA7-4F1A-81A2-6060F68B56D3}: DhcpNameServer = 172.20.10.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{680AEB7B-1DAD-4ACE-B978-A14E6AF2ABD7}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{AEAFCE28-0807-425E-8144-507CF26DE693}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{F1A86019-DCA7-4F1A-81A2-6060F68B56D3}: DhcpNameServer = 172.20.10.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{680AEB7B-1DAD-4ACE-B978-A14E6AF2ABD7}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{AEAFCE28-0807-425E-8144-507CF26DE693}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{F1A86019-DCA7-4F1A-81A2-6060F68B56D3}: DhcpNameServer = 172.20.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
~ Domain: Scanned in 00mn 00s

---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Servi (AMPPALR3) . (.Intel Corporation - Intel® Centrino® Wireless Bluetooth® 3.0 +.) - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner WFP Service.) - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - AntiVir WebGuard WFP Service.) - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Bluetooth Device Monitor (Bluetooth Device Monitor) . (.Intel Corporation - Bluetooth Device Monitor.) - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service (Bluetooth OBEX Service) . (.Intel Corporation - Bluetooth OBEX Service.) - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed (BTHSSecurityMgr) . (.Intel(R) Corporation - Intel(R) BlueTooth(R) HS Security Manager S.) - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Co
O23 - Service: HP Client Services (HPClientSvc) . (.Hewlett-Packard Company - HP Client Services.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) . (.Hewlett-Packard Company - HP Quick Synchronization Service.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\System32\Hpservice.exe
O23 - Service: HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: HTCMonitorService (HTCMonitorService) . (.Nero AG - NService Application.) - C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: NIHardwareService (NIHardwareService) . (.Native Instruments GmbH - NIHardwareService.) - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) . (.Pas de propriétaire - PassThruSvr Application.) - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PDF Architect 2 Creator (PDF Architect 2 Creator) . (.pdfforge GmbH - PDF Architect 2.) - C:\Program Files (x86)\PDF Architect 2\creator-ws.exe
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) . (.Pas de propriétaire - GameScannerService.) - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: RzKLService (RzKLService) . (.Razer Inc. - RzKLService.) - C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
O23 - Service: Razer Overlay Subsystem Emergency Service (RzOvlMon) . (.Razer, Inc. - Monitor Razer Overlay Driver Service.) - C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: C:\Windows\System32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: (Update service) . (.Company - Updater.) - C:\Program Files (x86)\Popcorn Time\Updater.exe
~ Services: 38 Scanned in 00mn 09s

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s

---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s

---\\ Tâches planifiées en automatique (O39)
[MD5.3E04F1E482357B1FC8B088197C3D9FF8] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152]
[MD5.00CC35F515079F5F94FABC3AC5C7D363] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268464]
[MD5.5F1C4E820C5C7F935932EBA65ECE226A] [APT] [Avira Browser Safety Updater Task] (.Avira Operations GmbH & Co. KG.) -- C:\Program Files (x86)\Avira\Browser Safety\AviraBrowserSafetyUpdater.exe [20776]
[MD5.1F014EA12ECB13C909DA9395E9CD3D18] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6278424]
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848]
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848]
[MD5.AF51D4FE088A3EFA5303B36FFFD0581B] [APT] [HPCeeScheduleForUSER] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [91704]
[MD5.B7F55E2AE978D3D34F7876EE5D689AAE] [APT] [MirageAgent] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488]
[MD5.24A63F38DF514E6774A850A0710760A4] [APT] [Registration] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [38456]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
[MD5.3E53CC4591B043C8D42FB3D771D55FCE] [APT] [HP Support Assistant Quick Start] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008]
[MD5.D60C285E0DEBE886AEA974DF440E10E9] [APT] [HP Total Care Tune-Up] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe [19256]
[MD5.3E53CC4591B043C8D42FB3D771D55FCE] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008]
[MD5.16F1F09240540D9409DA192839C9D786] [APT] [Update Check] (.Hewlett-Packard Company.) -- C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [630584]
[MD5.41C3F23085908917127EC948D8B55D07] [APT] [WarrantyChecker] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [926520]
[MD5.41C3F23085908917127EC948D8B55D07] [APT] [WarrantyChecker_CN32L163RM] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [926520]
[MD5.41C3F23085908917127EC948D8B55D07] [APT] [WarrantyChecker_CN35914574] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [926520]
[MD5.41C3F23085908917127EC948D8B55D07] [APT] [WarrantyChecker_CN37P2S5CX] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [926520]
[MD5.41C3F23085908917127EC948D8B55D07] [APT] [WarrantyChecker_CN38K2N2V6] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [926520]
[MD5.41C3F23085908917127EC948D8B55D07] [APT] [WarrantyChecker_CN38R167CQ] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [926520]
[MD5.41C3F23085908917127EC948D8B55D07] [APT] [WarrantyChecker_CN3BE340X1] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [926520]
[MD5.41C3F23085908917127EC948D8B55D07] [APT] [WarrantyChecker_CN3BJ2DQPF] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [926520]
[MD5.41C3F23085908917127EC948D8B55D07] [APT] [WarrantyChecker_DeviceScan] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [926520]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070]
O39 - APT: HPCeeScheduleForUSER - (.Hewlett-Packard.) -- C:\Windows\Tasks\HPCeeScheduleForUSER.job [328]
O39 - APT: HPCeeScheduleForUSER - (.Hewlett-Packard.) -- C:\Windows\System32\Tasks\HPCeeScheduleForUSER [328]
~ Scheduled Task: 28 Scanned in 00mn 04s

---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer [64Bits] - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Disable SSL3 [64Bits] - {7D715857-A67C-4C2F-A929-038448584D63} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 11 Scanned in 00mn 00s

---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (avipbb) . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) - C:\Windows\System32\DRIVERS\avipbb.sys
O41 - Driver: (avkmgr) . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) - C:\Windows\System32\DRIVERS\avkmgr.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\drivers\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (RzFilter) . (.Razer, Inc. - Kernel-mode user input redirection driver.) - C:\Windows\system32\drivers\RzFilter.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 69 Scanned in 00mn 00s

---\\ Logiciels installés (O42)
O42 - Logiciel: 7-Zip 9.20 - (...) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: ASIO4ALL - (.Michael Tippach.) [HKLM][64Bits] -- ASIO4ALL
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM][64Bits] -- {DA0D8FDA-D538-1145-8BA2-6F22C4EB4F75}
O42 - Logiciel: Ableton Live 9 Suite - (.Ableton.) [HKLM][64Bits] -- {48EC4E57-1D04-4831-90A7-151DA2269495}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0A3925EA-5B0E-401B-A189-7419149747B2}
O42 - Logiciel: Adobe Flash Player 17 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 17 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Reader X (10.1.14) MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-AA0000000001}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001802114130}
O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Agatha Christie - Peril at End House - (.WildTangent.) [HKLM][64Bits] -- WT089362 =>.WildTangent
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {AFA1153A-F547-409B-B837-3A0D6C5A3FEC}
O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {D7B824DE-DA32-4772-9E5E-39C5158136A7}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {C4123106-B685-48E6-B9BD-E4F911841EB4}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: Avira Antivirus v15.0.10.434 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- Avira Antivirus
O42 - Logiciel: Avira Browser Safety v1.4.5.509 - (.Avira Operations GmbH & Co KG.) [HKLM][64Bits] -- {9E10EA90-5E97-43B7-A246-FC7B4F5E9493}
O42 - Logiciel: Avira v1.1.39.17987 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {0696cc37-db90-4000-be99-4a173ca7c8af}
O42 - Logiciel: Avira v1.1.39.17987 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {65EBED55-4B58-4583-88EC-8190D776BFBB}
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT089453 =>.WildTangent
O42 - Logiciel: Big Rig Europe - (.WildTangent.) [HKLM][64Bits] -- WT089497 =>.WildTangent
O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM][64Bits] -- WT089308 =>.WildTangent
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Bounce Symphony - (.WildTangent.) [HKLM][64Bits] -- WT087330 =>.WildTangent
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Cake Mania - (.WildTangent.) [HKLM][64Bits] -- WT089359 =>.WildTangent
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {1AA895E9-B751-408B-BB9C-527C04E52C91}
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT089454 =>.WildTangent
O42 - Logiciel: Crazy Chicken Kart 2 - (.WildTangent.) [HKLM][64Bits] -- WT089492 =>.WildTangent
O42 - Logiciel: Curse - (.Curse.) [HKLM][64Bits] -- {F36ED29E-33E1-48AB-95DA-2498AD41A9A0}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Diablo III - (.Blizzard Entertainment.) [HKLM][64Bits] -- Diablo III
O42 - Logiciel: Diner Dash 2 Restaurant Rescue - (.WildTangent.) [HKLM][64Bits] -- WT087536 =>.WildTangent
O42 - Logiciel: Dota 2 - (.Valve.) [HKLM][64Bits] -- Steam App 570
O42 - Logiciel: ESU for Microsoft Windows 7 - (.Hewlett-Packard.) [HKLM][64Bits] -- {3877C901-7B90-4727-A639-B6ED2DD59D43}
O42 - Logiciel: FATE - (.WildTangent.) [HKLM][64Bits] -- WT087361 =>.WildTangent
O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM][64Bits] -- WT089328 =>.WildTangent
O42 - Logiciel: Fishdom - (.WildTangent.) [HKLM][64Bits] -- WT089493 =>.WildTangent
O42 - Logiciel: Free CBR Reader - (.Free Picture Solutions.) [HKLM][64Bits] -- {B9240DAE-EFA1-4A0E-824F-17B3F99194F8}
O42 - Logiciel: Free Mp3 M4a Wma Converter V 1.6 - (.KastorSoft.) [HKLM][64Bits] -- Free Mp3 M4a Wma Converter_is1
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {F4D99A13-F63A-4FC1-8799-CFFDB78DDFB3}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {B4EFABD5-5744-4ED8-BA47-C1704BB684D2}
O42 - Logiciel: HP Auto - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}
O42 - Logiciel: HP Client Services - (.Hewlett-Packard.) [HKLM][64Bits] -- {2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Documentation - (.Hewlett-Packard.) [HKLM][64Bits] -- {3C5AB11A-2DDB-49E6-9FC0-CFD88A7DDFE4}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall =>.WildTangent
O42 - Logiciel: HP On Screen Display - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {ED1BD69A-07E3-418C-91F1-D856582581BF}
O42 - Logiciel: HP Power Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E44578C7-4667-4124-8BC2-1161BCA54978}
O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {285F722C-0E45-47DE-B38E-5B3B10FA4A7C}
O42 - Logiciel: HP Setup - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {210A03F5-B2ED-4947-B27E-516F50CBB292}
O42 - Logiciel: HP Setup Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {AE856388-AFAD-4753-81DF-D96B19D0A17C}
O42 - Logiciel: HP Software Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {C3036565-A89C-41BB-BB5F-95ECE549D7FF}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E35A3B13-78CD-4967-8AC8-AA9FDA693EDE} =>.Hewlett-Packard Co
O42 - Logiciel: HTC Driver Installer - (.HTC Corporation.) [HKLM][64Bits] -- {4CEEE5D0-F905-4688-B9F9-ECC710507796}
O42 - Logiciel: HTC Sync Manager - (.HTC.) [HKLM][64Bits] -- {231D0C79-98A6-4693-A366-36DE7D7346EC}
O42 - Logiciel: Hearthstone - (.Blizzard Entertainment.) [HKLM][64Bits] -- Hearthstone
O42 - Logiciel: Heroes of the Storm - (.Blizzard Entertainment.) [HKLM][64Bits] -- Heroes of the Storm
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.2.2.3 - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: IPTInstaller - (.HTC.) [HKLM][64Bits] -- {08208143-777D-4A06-BB54-71BF0AD1BB70}
O42 - Logiciel: Intel PROSet Wireless - (...) [HKLM][64Bits] -- ProInst
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Display Audio Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) PROSet/Wireless for Bluetooth(R) 3.0 + High Speed - (.Intel Corporation.) [HKLM][64Bits] -- {FE3DEA5D-60D7-4C92-A71F-1E1F2F4615FC}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) Wireless Display - (.Intel Corporation.) [HKLM][64Bits] -- {5B46CEC7-DAD0-46A2-BCD6-B46A3CFD9B61}
O42 - Logiciel: Java 8 Update 31 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418031F0}
O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0}
O42 - Logiciel: Jewel Quest Solitaire - (.WildTangent.) [HKLM][64Bits] -- WT087490 =>.WildTangent
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {F6F30C28-38AA-4DBA-AE0B-7E30238E61BB}
O42 - Logiciel: LOLReplay - (.www.leaguereplays.com.) [HKLM][64Bits] -- LOLReplay
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- League of Legends 3.0.1
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- {3E75652D-99B1-417E-B163-BEF33CAD3F16}
O42 - Logiciel: Logiciel Intel(R) PROSet/Wireless WiFi - (.Intel Corporation.) [HKLM][64Bits] -- {794E5C90-96E5-4413-B3F5-C803205AE30C}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Mah Jong Medley - (.WildTangent.) [HKLM][64Bits] -- WT087393 =>.WildTangent
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.6.1022 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 35.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 35.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mumble 1.2.7 - (.Thorvald Natvig.) [HKLM][64Bits] -- {1FC198EF-5C3F-4C2A-99AC-22DE9B3FBFDE}
O42 - Logiciel: Mystery P.I. - The London Caper - (.WildTangent.) [HKLM][64Bits] -- WT089460 =>.WildTangent
O42 - Logiciel: Namco All-Stars PAC-MAN - (.WildTangent.) [HKLM][64Bits] -- WT089484 =>.WildTangent
O42 - Logiciel: Native Instruments Controller Editor - (.Native Instruments.) [HKLM][64Bits] -- Native Instruments Controller Editor
O42 - Logiciel: Native Instruments Service Center - (.Native Instruments.) [HKLM][64Bits] -- Native Instruments Service Center
O42 - Logiciel: Native Instruments Traktor 2 - (.Native Instruments.) [HKLM][64Bits] -- Native Instruments Traktor 2
O42 - Logiciel: PDF Architect 2 - (.pdfforge GmbH.) [HKLM][64Bits] -- PDF Architect 2
O42 - Logiciel: PDF Architect 2 Convert Module - (.pdfforge GmbH.) [HKLM][64Bits] -- {74A43682-C44A-42F2-B161-2C7C359745A0}
O42 - Logiciel: PDF Architect 2 Create Module - (.pdfforge GmbH.) [HKLM][64Bits] -- {03EC56DE-6424-43D7-A020-1EEE3E8159DE}
O42 - Logiciel: PDF Architect 2 View Module - (.pdfforge GmbH.) [HKLM][64Bits] -- {C960FF38-431D-429D-AD1F-FBD12A45B7C5}
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT087394 =>.WildTangent
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WT089458 =>.WildTangent
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT087396 =>.WildTangent
O42 - Logiciel: Popcorn Time - (.Popcorn Time.) [HKLM][64Bits] -- Popcorn Time_is1
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}
O42 - Logiciel: Razer Core - (.Razer Inc.) [HKLM][64Bits] -- Razer Core
O42 - Logiciel: Razer Game Booster - (.Razer Inc..) [HKLM][64Bits] -- Razer Game Booster_is1
O42 - Logiciel: Razer Synapse - (.Razer Inc..) [HKLM][64Bits] -- {0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: Recovery Manager - (.Hewlett-Packard.) [HKLM][64Bits] -- {DBCD5E64-7379-4648-9444-8A6558DCB614}
O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM][64Bits] -- InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}
O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM][64Bits] -- {5442DAB8-7177-49E1-8B22-09A049EA5996}
O42 - Logiciel: Skype(TM) 7.4 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Slingo Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT087510 =>.WildTangent
O42 - Logiciel: Sounddrain Downloader - (.Hotger.) [HKLM][64Bits] -- Sounddrain Downloader
O42 - Logiciel: Spotify - (.Spotify AB.) [HKCU][64Bits] -- Spotify
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam
O42 - Logiciel: Synaptics TouchPad Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM][64Bits] -- TeamSpeak 3 Client
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App =>.WildTangent
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Validity WBF DDK - (.Validity Sensors, Inc..) [HKLM][64Bits] -- {79174AF2-6CB1-42F5-981E-66DCA49391D0}
O42 - Logiciel: Virtual Villagers - The Secret City - (.WildTangent.) [HKLM][64Bits] -- WT087513 =>.WildTangent
O42 - Logiciel: WIDCOMM Bluetooth Software 6.2.0.5800 - (.Broadcom Corporation.) [HKLM][64Bits] -- {E464702F-5433-46EC-8F65-159276C0A54F}
O42 - Logiciel: Warcraft III Reign of Chaos & The Frozen Throne - (...) [HKLM][64Bits] -- Warcraft III Reign of Chaos & The Frozen Throne
O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM][64Bits] -- WT087519 =>.WildTangent
O42 - Logiciel: WildTangent Games App pour HP - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp =>.WildTangent
O42 - Logiciel: WinRAR 5.01 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT089455 =>.WildTangent
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {93F2A022-6C37-48B8-B241-FFABD9F60C30}
O42 - Logiciel: qBittorrent 3.2.0 - (.The qBittorrent project.) [HKLM][64Bits] -- qBittorrent =>P2P.BitTorrent
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
~ Logic: 99 Scanned in 00mn 00s

---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\ASIO4ALL v2 by Wuschel]
[HKCU\Software\ATI]
[HKCU\Software\Ableton]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Avira]
[HKCU\Software\Blizzard Entertainment]
[HKCU\Software\Bugsplat]
[HKCU\Software\Caphyon]
[HKCU\Softwa

Réponse 2 / 2

Utilisateur anonyme
14 juin 2015 à 16:13

Salut !

Voici le rapport ZHPCleaner --> http://www.cjoint.com/c/EFolFHkmKZt
Et le rapport d'analyse ZHPDiag --> http://www.cjoint.com/c/EFoonMoPySt

ArnaudLy6 Messages postés 4412 Date d'inscription samedi 22 mai 2010 Statut Membre Dernière intervention 13 février 2016 189
14 juin 2015 à 16:57

Parfait !
Relance ZHPCleaner et clique sur Nettoyage .
Un fois que c'est fait, dis moi comment va ton Pc ...

Utilisateur anonyme
15 juin 2015 à 04:01

Salut !

Retour rapide sur la situation, les perf du pc sont clairement meilleures et mes ventilos souffrent un peu moins j'ai l'impression, donc j'en suis bien content et merci beaucoup ! Petit bémol par contre, suite à cette affaire, j'ai installé l'anti-virus avira, qui lors de son premier scan, a détecté 3 virus différents. La ou ca devient "intéressant", c'est que l'un d'entre eux m'est venu...de ZHPdiag :/

Je link un screenshot du coup, histoire de suivre tes conseils sur comment dégager ces trucs la, si tu as encore le temps et la motiv de t'occuper de mon cas désespéré^^

http://www.cjoint.com/c/EFpcbyQicot

ArnaudLy6 Messages postés 4412 Date d'inscription samedi 22 mai 2010 Statut Membre Dernière intervention 13 février 2016 189
15 juin 2015 à 20:25

Re,

C'est "normal", en effet ZHPDiag est souvent détecté comme malveillant par certains antivirus dont Avira ...
Donc ne t'inquiète pas pour ça, il s'agit d'un faux-positif ...

Utilisateur anonyme
16 juin 2015 à 10:50

Ok ! Eh bien dans ce cas je te remercie infiniment, ca me semble plutôt bon ! Les perfs sont meilleures, pas de pubs malwares, un scan complet avira n'a rien montré... :)

ArnaudLy6 Messages postés 4412 Date d'inscription samedi 22 mai 2010 Statut Membre Dernière intervention 13 février 2016 189
16 juin 2015 à 20:20

Je t'en prie :)

On supprime juste les logiciels utilisés et on a terminé :

Télécharge DelFix
Lance-le
Coche Réactiver l'UAC et Supprimer les outils de désinfection
Enfin clique sur Exécuter

Je te conseille de lire ce petit dossier pour éviter une nouvelle infection : https://www.malekal.com/adwares-pup-protection/

Si tu as d'autres problèmes ou questions, n'hésite pas.

A+

Discussions similaires

Comment supprimer tor.jack sur Android

Web-DL, Webrip : ça veut dire quoi ?

blocage dl-protect.link

Win64:Malware-gen

win32:malware-gen bloqué par avast

Discussions similaires

Newsletters