Posté le 2 avril 2015
Télécharger | Reposter | Largeur fixe

start
CreateRestorePoint:
CloseProcesses:
HKLM-x32\...\Run: [Boxore Client] => C:\Program Files (x86)\Boxore\Boxore Client\boxore.exe [1551872 2015-03-20] (Boxore OU)
HKLM-x32\...\Run: [mbot_fr_576] => C:\Program Files (x86)\mbot_fr_576\mbot_fr_576.exe [3982992 2015-03-31] ()
HKLM-x32\...\Run: [WinCheck] => C:\Users\Guillaume\AppData\Local\9CCC9001-1427836700-11CB-8E97-AA5DCF7A8966\bnsjDBA.exe [414208 2015-03-31] ()
HKLM-x32\...\Run: [gmsd_fr_373] => C:\Program Files (x86)\gmsd_fr_373\gmsd_fr_373.exe [3983504 2015-04-01] ()
HKLM-x32\...\Run: [SmartWeb] => C:\Users\Guillaume\AppData\Local\SmartWeb\SmartWebHelper.exe [270368 2015-02-17] (SoftBrain Technologies Ltd.)
HKLM-x32\...\RunOnce: [upmbot_fr_576.exe] => C:\Users\Guillaume\AppData\Local\mbot_fr_576\upmbot_fr_576.exe [3309200 2015-03-31] ()
HKU\S-1-5-21-922937381-2996537617-1720076613-1001\...\Run: [Gameo] => C:\Users\Guillaume\AppData\Roaming\Gameo\gameo.exe [42482176 2014-12-24] ()
HKU\S-1-5-21-922937381-2996537617-1720076613-1001\...\Run: [WindApp] => "C:\Users\Guillaume\AppData\Roaming\Store\WindApp\WindApp.exe" /winstartup
HKU\S-1-5-21-922937381-2996537617-1720076613-1001\...\Run: [Selection Tools] => C:\Users\Guillaume\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe [1510160 2015-03-20] (Nosibay)
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\SEARCH~1\bin\VC64LO~1.DLL => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\VC64Loader.dll [263952 2015-03-16] (Client Connect LTD)
AppInit_DLLs-x32: c:\progra~2\searchprotect\searchprotect\bin\vc32loader.dll => c:\Program Files (x86)\searchprotect\searchprotect\bin\vc32loader.dll [223504 2015-03-16] (Client Connect LTD)
Startup: C:\Users\Guillaume\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
Startup: C:\Users\Guillaume\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk
ShortcutTarget: SmartWeb.lnk -> C:\Users\Guillaume\AppData\Local\SmartWeb\SmartWebHelper.exe (SoftBrain Technologies Ltd.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP&q={searchTerms}
HKU\S-1-5-21-922937381-2996537617-1720076613-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/?type=hp&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP
HKU\S-1-5-21-922937381-2996537617-1720076613-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP&q={searchTerms}
SearchScopes: HKLM -> {D8544FF3-47F1-4211-AADB-BBA2A6B3B497} URL = http://Vosteran.com/results.php?f=4&q={searchTerms}&a=vst_ir_14_47_ff&cd=2XzuyEtN2Y1L1Qzu0E0AtB0A0E0A0DyE0BtB0ByE0AtCyD0AtN0D0Tzu0StCtDyDtBtN1L2XzutAtFyCtFtBtFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyD0B0E0E0CyCyD0DtGtBtC0C0DtG0AyDtAzytGtAtByCtDtGyBzzyC0B0CtCtDtAtB0Bzz0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyD0D0FyCtAyD0AtDtG0FyD0F0FtGyEyEzytAtGzz0DyCyBtGtByDtBtCtB0F0C0E0BtAtCyD2Q&cr=551155158&ir=
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP&q={searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP&q={searchTerms}
SearchScopes: HKU\S-1-5-21-922937381-2996537617-1720076613-1001 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP&q={searchTerms}
SearchScopes: HKU\S-1-5-21-922937381-2996537617-1720076613-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP&q={searchTerms}
SearchScopes: HKU\S-1-5-21-922937381-2996537617-1720076613-1001 -> {D8544FF3-47F1-4211-AADB-BBA2A6B3B497} URL = http://Vosteran.com/results.php?f=4&q={searchTerms}&a=vst_ir_14_47_ff&cd=2XzuyEtN2Y1L1Qzu0E0AtB0A0E0A0DyE0BtB0ByE0AtCyD0AtN0D0Tzu0StCtDyDtBtN1L2XzutAtFyCtFtBtFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyD0B0E0E0CyCyD0DtGtBtC0C0DtG0AyDtAzytGtAtByCtDtGyBzzyC0B0CtCtDtAtB0Bzz0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyD0D0FyCtAyD0AtDtG0FyD0F0FtGyEyEzytAtGzz0DyCyBtGtByDtBtCtB0F0C0E0BtAtCyD2Q&cr=551155158&ir=
SearchScopes: HKU\S-1-5-21-922937381-2996537617-1720076613-1001 -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL =
BHO: BlockAndSurf -> {A48B4C75-4567-897A-1E31-66933AA4F0B3} -> C:\Program Files (x86)\version92BlockAndSurf\191_x64.dll [2015-04-01] ()
BHO-x32: BlockAndSurf -> {A48B4C75-4567-897A-1E31-66933AA4F0B3} -> C:\Program Files (x86)\version92BlockAndSurf\191.dll [2015-04-01] ()
BHO-x32: Boxore Client -> {EFA7A511-B491-4312-BB35-4586B99E45ED} -> C:\Program Files (x86)\Boxore\Boxore Client\IE\AdRotate32.dll [2015-03-20] (Boxore)
FF NewTab: chrome://quick_start/content/index.html
FF DefaultSearchEngine: istartsurf
FF SelectedSearchEngine: istartsurf
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [2015-04-01] (globalUpdate)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll [2015-04-01] (globalUpdate)
FF Plugin-x32: @tools.Software.com/Software Update;version=3 -> C:\Program Files (x86)\Software\Update\1.3.25.0\npSoftwareUpdate3.dll [2015-03-31] (The Software Group)
FF Plugin-x32: @tools.Software.com/Software Update;version=9 -> C:\Program Files (x86)\Software\Update\1.3.25.0\npSoftwareUpdate3.dll [2015-03-31] (The Software Group)
FF SearchPlugin: C:\Users\Guillaume\AppData\Roaming\Mozilla\Firefox\Profiles\ap7dtz0j.default-1427833760385\searchplugins\istartsurf.xml [2015-04-01]
FF Extension: Cinema PlusV01.04 - C:\Users\Guillaume\AppData\Roaming\Mozilla\Firefox\Profiles\ap7dtz0j.default-1427833760385\Extensions\d4db60df25f14dae9dd18@185c395f9e794c9ab86be3eb.com [2015-04-01]
FF Extension: Fast Start - C:\Users\Guillaume\AppData\Roaming\Mozilla\Firefox\Profiles\ap7dtz0j.default-1427833760385\Extensions\istart_ffnt@gmail.com [2015-04-01]
FF Extension: Search Enginer - C:\Users\Guillaume\AppData\Roaming\Mozilla\Firefox\Profiles\ap7dtz0j.default-1427833760385\Extensions\searchengine@gmail.com [2015-04-01]
FF HKLM-x32\...\Firefox\Extensions: [istart_ffnt@gmail.com] - C:\Users\Guillaume\AppData\Roaming\Mozilla\Firefox\Profiles\ap7dtz0j.default-1427833760385\extensions\istart_ffnt@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [searchengine@gmail.com] - C:\Users\Guillaume\AppData\Roaming\Mozilla\Firefox\Profiles\ap7dtz0j.default-1427833760385\extensions\searchengine@gmail.com
FF HKU\S-1-5-21-922937381-2996537617-1720076613-1001\...\Firefox\Extensions: [{7C10B482-E8C9-2FA4-1C66-6838014B07EC}] - C:\Program Files (x86)\version92BlockAndSurf\191.xpi
FF Extension: BlockAndSurf - C:\Program Files (x86)\version92BlockAndSurf\191.xpi [2015-04-01]
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.istartsurf.com/?type=sc&ts=1427921133&from=face&uid=LITEONITXLCS-256M6S_SD0E97902L1TH4510DHP
CHR HKLM\...\Chrome\Extension: [Ìÿ] - No Path Or update_url value
CHR HKU\S-1-5-21-922937381-2996537617-1720076613-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [Ìÿ] - No Path Or update_url value
CHR HKLM-x32\...\Chrome\Extension: [Ìÿ] - No Path Or update_url value
R2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [53320 2014-11-13] (Just Develop It)
R2 CltMngSvc; C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe [3251472 2015-03-16] (Client Connect LTD)
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2015-04-01] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2015-04-01] (globalUpdate) [File not signed]
R2 LolliScan; C:\ProgramData\LolliScan\LolliScan.exe [318464 2015-03-31] () [File not signed]
R2 mitexune; C:\Users\Guillaume\AppData\Roaming\9CCC9001-1427829428-11CB-8E97-AA5DCF7A8966\nsm3673.tmp [134144 2015-04-01] () [File not signed]
R2 nysifosy; C:\Users\Guillaume\AppData\Local\9CCC9001-1427836864-11CB-8E97-AA5DCF7A8966\snst7B1F.tmp [200704 2015-03-31] () [File not signed]
R2 puroquby; C:\Users\Guillaume\AppData\Local\9CCC9001-1427928113-11CB-8E97-AA5DCF7A8966\insd8EB4.tmp [155136 2015-04-01] () [File not signed]
R2 qrsvc_1.10.0.12; C:\Program Files (x86)\QuickRef_1.10.0.12\Service\qrsvc.exe [278592 2015-03-26] (Quick Ref)
S2 Software_update; C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe [119408 2015-03-31] (The Software Group)
S3 Software_update_m; C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe [119408 2015-03-31] (The Software Group)
R2 VCL; C:\Program Files (x86)\IGS\VCL.exe [1757232 2015-03-20] (VC Corporation) [File not signed]
R2 wolenory; C:\Users\Guillaume\AppData\Roaming\9CCC9001-1427829428-11CB-8E97-AA5DCF7A8966\jnsa4749.tmp [231936 2015-03-31] () [File not signed]
R2 xosojeqe; C:\Users\Guillaume\AppData\Local\9CCC9001-1427836839-11CB-8E97-AA5DCF7A8966\cnsc2AA0.tmp [154112 2015-03-31] () [File not signed]
S2 Update Mountain Bike; "C:\Program Files (x86)\Mountain Bike\updateMountainBike.exe" [X]
S2 Util Mountain Bike; "C:\Program Files (x86)\Mountain Bike\bin\utilMountainBike.exe" [X]
R1 qrnfd_1_10_0_12; C:\Windows\System32\drivers\qrnfd_1_10_0_12.sys [58224 2015-03-26] (Quick Ref)
R2 webTinstMKTN; C:\WINDOWS\system32\Drivers\webTinstMKTN.sys [50800 2015-04-01] ()
R1 {0d80c1ea-92ce-4b5b-9a8f-52ba5d0c7c52}Gw64; C:\Windows\System32\drivers\{0d80c1ea-92ce-4b5b-9a8f-52ba5d0c7c52}Gw64.sys [48784 2015-03-31] (StdLib)
2015-04-01 22:46 - 2015-04-01 22:46 - 00000004 _____ () C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-04-01 22:45 - 2015-04-01 22:45 - 00000000 ____D () C:\Users\Guillaume\AppData\Local\Crossbrowse
2015-04-01 22:43 - 2015-04-01 22:46 - 00002757 _____ () C:\WINDOWS\patsearch.bin
2015-04-01 22:43 - 2015-04-01 22:46 - 00000482 _____ () C:\WINDOWS\Tasks\BlockAndSurf Update.job
2015-04-01 22:43 - 2015-04-01 22:43 - 00050800 _____ () C:\WINDOWS\system32\Drivers\webTinstMKTN.sys
2015-04-01 22:43 - 2015-04-01 22:43 - 00003130 _____ () C:\WINDOWS\System32\Tasks\BlockAndSurf Update
2015-04-01 22:43 - 2015-04-01 22:43 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_webTinstMKTN_01009.Wdf
2015-04-01 22:43 - 2015-04-01 22:43 - 00000000 ____D () C:\Program Files (x86)\version92BlockAndSurf
2015-04-01 22:42 - 2015-04-01 22:46 - 00008584 _____ () C:\WINDOWS\SysWOW64\VCLOff.ini
2015-04-01 22:42 - 2015-04-01 22:46 - 00008584 _____ () C:\WINDOWS\system32\VCLOff.ini
2015-04-01 22:42 - 2015-04-01 22:46 - 00003504 _____ () C:\WINDOWS\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-1-7.job
2015-04-01 22:42 - 2015-04-01 22:46 - 00003168 _____ () C:\WINDOWS\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-1-6.job
2015-04-01 22:42 - 2015-04-01 22:46 - 00002476 _____ () C:\WINDOWS\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-5_user.job
2015-04-01 22:42 - 2015-04-01 22:46 - 00002476 _____ () C:\WINDOWS\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-5.job
2015-04-01 22:42 - 2015-04-01 22:46 - 00001378 _____ () C:\WINDOWS\Tasks\HBQ.job
2015-04-01 22:42 - 2015-04-01 22:42 - 01522176 _____ (Cinema PlusV01.04) C:\Users\Guillaume\AppData\Roaming\HBQ.exe
2015-04-01 22:42 - 2015-04-01 22:42 - 00006508 _____ () C:\WINDOWS\System32\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-1-7
2015-04-01 22:42 - 2015-04-01 22:42 - 00006172 _____ () C:\WINDOWS\System32\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-1-6
2015-04-01 22:42 - 2015-04-01 22:42 - 00005480 _____ () C:\WINDOWS\System32\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-5
2015-04-01 22:42 - 2015-04-01 22:42 - 00004404 _____ () C:\WINDOWS\System32\Tasks\HBQ
2015-04-01 22:42 - 2015-04-01 22:42 - 00000000 ____D () C:\Program Files (x86)\IGS
2015-04-01 22:42 - 2015-03-20 15:54 - 00335064 _____ (VC Corporation) C:\WINDOWS\SysWOW64\VCL.dll
2015-04-01 22:41 - 2015-04-01 22:46 - 00004524 _____ () C:\WINDOWS\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-4.job
2015-04-01 22:41 - 2015-04-01 22:46 - 00002142 _____ () C:\WINDOWS\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-10_user.job
2015-04-01 22:41 - 2015-04-01 22:46 - 00001382 _____ () C:\WINDOWS\Tasks\WLBQT.job
2015-04-01 22:41 - 2015-04-01 22:46 - 00001012 _____ () C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job
2015-04-01 22:41 - 2015-04-01 22:46 - 00001008 _____ () C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job
2015-04-01 22:41 - 2015-04-01 22:42 - 00000000 ____D () C:\Users\Guillaume\AppData\Local\9CCC9001-1427928113-11CB-8E97-AA5DCF7A8966
2015-04-01 22:41 - 2015-04-01 22:42 - 00000000 ____D () C:\Program Files (x86)\Cinema PlusV01.04
2015-04-01 22:41 - 2015-04-01 22:41 - 01924096 _____ (Cinema PlusV01.04) C:\Users\Guillaume\AppData\Roaming\WLBQT.exe
2015-04-01 22:41 - 2015-04-01 22:41 - 00007528 _____ () C:\WINDOWS\System32\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-4
2015-04-01 22:41 - 2015-04-01 22:41 - 00004408 _____ () C:\WINDOWS\System32\Tasks\WLBQT
2015-04-01 22:41 - 2015-04-01 22:41 - 00003984 _____ () C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineUA
2015-04-01 22:41 - 2015-04-01 22:41 - 00003748 _____ () C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineCore
2015-04-01 22:41 - 2015-04-01 22:41 - 00000000 ____D () C:\Users\Guillaume\AppData\Local\globalUpdate
2015-04-01 22:41 - 2015-04-01 22:41 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2015-04-01 22:40 - 2015-04-01 22:41 - 00000000 ____D () C:\Program Files (x86)\QuickRef_1.10.0.12
2015-04-01 22:40 - 2015-04-01 22:40 - 00004062 _____ () C:\WINDOWS\System32\Tasks\SmartWeb Upgrade Trigger Task
2015-04-01 22:40 - 2015-04-01 22:40 - 00000000 ____D () C:\Users\Guillaume\AppData\Local\SmartWeb
2015-04-01 22:39 - 2015-04-01 22:39 - 00000000 ____D () C:\Users\Guillaume\AppData\Local\gmsd_fr_373
2015-04-01 22:39 - 2015-04-01 22:39 - 00000000 ____D () C:\Program Files (x86)\gmsd_fr_373
2015-03-31 21:45 - 2015-03-31 21:45 - 00000000 ____D () C:\ProgramData\a99b82c500004ddc
2015-03-31 21:38 - 2015-03-31 21:38 - 00000000 ____D () C:\Users\Guillaume\AppData\Roaming\istartsurf
2015-03-31 21:38 - 2015-03-31 21:38 - 00000000 ____D () C:\Users\Guillaume\AppData\Local\Software
2015-03-31 21:36 - 2015-03-31 21:36 - 00007232 _____ () C:\claraInstaller.txt
2015-03-31 21:36 - 2015-03-31 21:36 - 00003192 _____ () C:\WINDOWS\System32\Tasks\Run_Browser
2015-03-31 21:36 - 2015-03-31 21:36 - 00001647 _____ () C:\WINDOWS\SysWOW64\${LOGFILE}
2015-03-31 21:29 - 2015-03-31 21:29 - 00000000 ____D () C:\Users\Guillaume\Documents\Optimizer Pro
2015-03-31 21:23 - 2015-03-31 08:41 - 00048784 _____ (StdLib) C:\WINDOWS\system32\Drivers\{0d80c1ea-92ce-4b5b-9a8f-52ba5d0c7c52}Gw64.sys
2015-03-31 21:21 - 2015-04-01 22:51 - 00000000 ____D () C:\Users\Guillaume\AppData\Local\9CCC9001-1427836864-11CB-8E97-AA5DCF7A8966
2015-03-31 21:21 - 2015-03-31 22:07 - 00000000 ____D () C:\Program Files (x86)\Mountain Bike
2015-03-31 21:20 - 2015-03-31 21:20 - 00000000 ____D () C:\Users\Guillaume\AppData\Local\9CCC9001-1427836839-11CB-8E97-AA5DCF7A8966
2015-03-31 21:18 - 2015-03-31 22:06 - 00000000 ____D () C:\Users\Guillaume\AppData\Roaming\Opera Software
2015-03-31 21:18 - 2015-03-31 22:06 - 00000000 ____D () C:\Users\Guillaume\AppData\Local\Opera Software
2015-03-31 21:18 - 2015-03-31 21:18 - 00000000 ____D () C:\Users\Guillaume\AppData\Local\9CCC9001-1427836700-11CB-8E97-AA5DCF7A8966
2015-03-31 21:17 - 2015-04-01 00:08 - 00000000 ____D () C:\Users\Guillaume\AppData\Roaming\9CCC9001-1427829428-11CB-8E97-AA5DCF7A8966
2015-03-31 21:17 - 2015-03-31 22:06 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-03-31 21:17 - 2015-03-31 21:17 - 00004344 _____ () C:\WINDOWS\System32\Tasks\RocketTab Update Task
2015-03-31 21:17 - 2015-03-31 21:17 - 00003558 _____ () C:\WINDOWS\System32\Tasks\RocketTab
2015-03-31 21:17 - 2015-03-31 21:17 - 00000000 ____D () C:\Users\Guillaume\AppData\Roaming\VOPackage
2015-03-31 21:17 - 2015-03-31 21:17 - 00000000 ____D () C:\Users\Guillaume\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2015-03-31 21:17 - 2015-03-31 21:17 - 00000000 ____D () C:\Program Files (x86)\Search Extensions
2015-03-31 21:15 - 2015-04-01 22:49 - 00000000 ____D () C:\Users\Guillaume\AppData\Local\mbot_fr_576
2015-03-31 21:15 - 2015-03-31 21:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MYBESTOFFERSTODAY
2015-03-31 21:15 - 2015-03-31 21:15 - 00000000 ____D () C:\ProgramData\LolyKey
2015-03-31 21:15 - 2015-03-31 21:15 - 00000000 ____D () C:\Program Files (x86)\mbot_fr_576
2015-03-31 21:14 - 2015-03-31 21:14 - 00003586 _____ () C:\WINDOWS\System32\Tasks\OKDONVNKE
2015-03-31 21:14 - 2015-03-31 21:14 - 00000000 ____D () C:\Users\Guillaume\AppData\Local\Boxore
2015-03-31 21:14 - 2015-03-31 21:14 - 00000000 ____D () C:\ProgramData\LolliScan
2015-03-31 21:14 - 2015-03-31 21:14 - 00000000 ____D () C:\ProgramData\81b076d61f624ea3947224c2b2838793
2015-03-31 21:14 - 2015-03-31 21:14 - 00000000 ____D () C:\ProgramData\52505ff40a3645f49b1b6d12002b83cd
2015-03-31 21:14 - 2015-03-31 21:14 - 00000000 ____D () C:\Program Files (x86)\Boxore
2015-03-31 21:12 - 2015-04-01 22:46 - 00000950 _____ () C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineCore.job
2015-03-31 21:12 - 2015-04-01 22:43 - 00000954 _____ () C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineUA.job
2015-03-31 21:12 - 2015-03-31 21:38 - 00003926 _____ () C:\WINDOWS\System32\Tasks\SoftwareUpdateTaskMachineUA
2015-03-31 21:12 - 2015-03-31 21:38 - 00003690 _____ () C:\WINDOWS\System32\Tasks\SoftwareUpdateTaskMachineCore
2015-03-31 21:12 - 2015-03-31 21:36 - 00000000 ____D () C:\Users\Guillaume\AppData\Roaming\Nosibay
2015-03-31 21:12 - 2015-03-31 21:12 - 00003780 _____ () C:\WINDOWS\System32\Tasks\Selection Tools Update
2015-03-31 21:12 - 2015-03-31 21:12 - 00003746 _____ () C:\WINDOWS\System32\Tasks\WindApp Update
2015-03-31 21:12 - 2015-03-31 21:12 - 00000078 _____ () C:\Users\Guillaume\AppData\Roaming\WindApp.installation.log
2015-03-31 21:12 - 2015-03-31 21:12 - 00000078 _____ () C:\Users\Guillaume\AppData\Roaming\Selection Tools.installation.log
2015-03-31 21:12 - 2015-03-31 21:12 - 00000000 ____D () C:\Users\Guillaume\AppData\Roaming\WTools
2015-03-31 21:12 - 2015-03-31 21:12 - 00000000 ____D () C:\Users\Guillaume\AppData\Roaming\Store
2015-03-31 21:12 - 2015-03-31 21:12 - 00000000 ____D () C:\Program Files (x86)\Software
2015-03-31 21:11 - 2015-03-31 21:12 - 00005737 _____ () C:\Users\Guillaume\AppData\Roaming\Bubble Dock.installation.log
2015-03-31 21:11 - 2015-03-31 21:12 - 00001281 _____ () C:\Users\Guillaume\AppData\Roaming\Bubble Dock.boostrap.log
2015-03-31 21:11 - 2015-03-31 21:11 - 00000097 _____ () C:\Users\Guillaume\AppData\Roaming\WindApp.boostrap.log
2015-03-26 21:14 - 2015-03-26 21:14 - 00005542 _____ () C:\Users\Guillaume\AppData\Roaming\WLBQT
2015-03-26 21:14 - 2015-03-26 21:14 - 00004185 _____ () C:\Users\Guillaume\AppData\Roaming\HBQ
2015-03-26 20:44 - 2015-03-26 20:44 - 00058224 _____ (Quick Ref) C:\WINDOWS\system32\Drivers\qrnfd_1_10_0_12.sys
2015-03-25 13:21 - 2015-03-26 00:53 - 00000000 ____D () C:\Users\Guillaume\AppData\Local\avaavxvyex
2015-03-25 13:21 - 2015-03-25 13:21 - 00003514 _____ () C:\WINDOWS\System32\Tasks\avaavxvyex
C:\Program Files (x86)\globalUpdate
c:\Program Files (x86)\searchprotect
C:\Program Files (x86)\MyPC Backup
C:\Users\Guillaume\AppData\Roaming\Store\WindApp
C:\Users\Guillaume\AppData\Roaming\WTools
C:\Users\Guillaume\AppData\Local\UnicoBrowser
C:\Users\Guillaume\AppData\Roaming\Gameo
C:\windows\AutoKMS
Task: {0221E948-CE16-4BC3-86E0-854C5BEFCE36} - System32\Tasks\avaavxvyex => C:\Users\Guillaume\AppData\Local\avaavxvyex\avaavxvyex.exe [2015-03-16] ()
Task: {02747DAF-C06A-42EA-ACB4-322590A36644} - System32\Tasks\WindApp Update => C:\Users\Guillaume\AppData\Roaming\Store\WindApp\WindApp Update.exe [2015-03-20] (Nosibay)
Task: {094B5A3B-945B-4946-A409-479B9EDF010C} - System32\Tasks\SoftwareUpdateTaskMachineCore => C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe [2015-03-31] (The Software Group)
Task: {0A416E5B-00AB-411C-B28A-8654CCA61009} - System32\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-4 => C:\Program Files (x86)\Cinema PlusV01.04\77a99c05-8942-4947-833b-3d95be3a8324-4.exe [2015-04-01] (Cinema PlusV01.04)
Task: {165F7E40-20A4-4DAD-8BD7-5685667D02DE} - System32\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-5_user => C:\Program Files (x86)\Cinema PlusV01.04\77a99c05-8942-4947-833b-3d95be3a8324-5.exe [2015-04-01] (Cinema PlusV01.04)
Task: {1D9D58DC-D36B-49D2-B943-D4D96877792C} - System32\Tasks\HBQ => C:\Users\Guillaume\AppData\Roaming\HBQ.exe [2015-04-01] (Cinema PlusV01.04)
Task: {29535BE2-6450-466F-B8B5-A3193DD4C50C} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2015-04-01] (globalUpdate)
Task: {338A8D0F-44A2-4AF4-A068-4CB495253AA7} - System32\Tasks\SoftwareUpdateTaskMachineUA => C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe [2015-03-31] (The Software Group)
Task: {3B3830AD-C913-4ACD-BEB4-C10B2CE85E88} - System32\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-10_user => C:\Program Files (x86)\Cinema PlusV01.04\77a99c05-8942-4947-833b-3d95be3a8324-10.exe [2015-04-01] (Cinema PlusV01.04)
Task: {43EDA9EE-0A17-43EC-9015-2102C66C80D6} - System32\Tasks\RocketTab => cmd.exe /C start "" "C:\Program Files (x86)\Search Extensions\Client.exe" /Preferred=true
Task: {44F68818-1F81-49BF-AF09-2178BAD60CDD} - System32\Tasks\Selection Tools Update => C:\Users\Guillaume\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe [2015-03-20] (Nosibay)
Task: {47205A5B-83D3-41FF-A72F-3DCD7A9E10FC} - System32\Tasks\RocketTab Update Task => C:\Program Files (x86)\Search Extensions\uninstall.exe [2015-03-31] ()
Task: {4B6C6CF4-5170-4751-8E5B-66C72C9CBFC8} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2015-04-01] (globalUpdate)
Task: {4B794741-684B-44E0-9E00-6E865E91B2C5} - System32\Tasks\WLBQT => C:\Users\Guillaume\AppData\Roaming\WLBQT.exe [2015-04-01] (Cinema PlusV01.04)
Task: {4C6F8ACB-822C-4952-AFDD-23F0C2F61B82} - System32\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-1-7 => C:\Program Files (x86)\Cinema PlusV01.04\77a99c05-8942-4947-833b-3d95be3a8324-1-7.exe [2015-04-01] (Cinema PlusV01.04) <==== ATTENTION
Task: {4D029635-9418-4920-BA1D-FA333FF30D70} - System32\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-1-6 => C:\Program Files (x86)\Cinema PlusV01.04\77a99c05-8942-4947-833b-3d95be3a8324-1-6.exe [2015-04-01] (Cinema PlusV01.04) <==== ATTENTION
Task: {528E918D-0B4A-4063-B716-436A3D4C5C86} - System32\Tasks\AutoKMS => C:\windows\AutoKMS\AutoKMS.exe
Task: {8F23C3B3-DDA6-453C-8EDF-2E9250B92840} - System32\Tasks\Run_Browser => C:\Users\Guillaume\AppData\Local\UnicoBrowser\Application\unicobrowser.exe
Task: {A4B34E38-1B22-4F53-BE71-FABBD6ED7E7D} - System32\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-5 => C:\Program Files (x86)\Cinema PlusV01.04\77a99c05-8942-4947-833b-3d95be3a8324-5.exe [2015-04-01] (Cinema PlusV01.04)
Task: {B2F400C1-D742-4DC0-89DA-E1294E444632} - System32\Tasks\SmartWeb Upgrade Trigger Task => C:\Users\Guillaume\AppData\Local\SmartWeb\SmartWebHelper.exe [2015-02-17] (SoftBrain Technologies Ltd.)
Task: {C65C72BF-DAAD-48AB-92C8-FEF0681F30FC} - System32\Tasks\gameo_update => C:\Users\Guillaume\AppData\Roaming\Gameo\gameo.exe [2014-12-24] ()
Task: {CCF737DD-80C3-44C6-BD65-9B24E25008D6} - System32\Tasks\OKDONVNKE => C:\ProgramData\52505ff40a3645f49b1b6d12002b83cd\52505ff40a3645f49b1b6d12002b83cd.exe [2015-03-31] ()
Task: {E1C61059-FD27-4524-92CF-AA9A93CC5599} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe [2014-11-13] (MyPC Backup)
Task: {EB18142B-A0B8-4E3A-9231-030EAAF2CB89} - System32\Tasks\BlockAndSurf Update => C:\Program Files (x86)\version92BlockAndSurf\J4BlockAndSurfJ52.exe [2015-04-01] ()
Task: C:\WINDOWS\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-1-6.job => C:\Program Files (x86)\Cinema PlusV01.04\77a99c05-8942-4947-833b-3d95be3a8324-1-6.exe
Task: C:\WINDOWS\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-1-7.job => C:\Program Files (x86)\Cinema PlusV01.04\77a99c05-8942-4947-833b-3d95be3a8324-1-7.exe
Task: C:\WINDOWS\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-10_user.job => C:\Program Files (x86)\Cinema PlusV01.04\77a99c05-8942-4947-833b-3d95be3a8324-10.exe
Task: C:\WINDOWS\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-4.job => C:\Program Files (x86)\Cinema PlusV01.04\77a99c05-8942-4947-833b-3d95be3a8324-4.exe
Task: C:\WINDOWS\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-5.job => C:\Program Files (x86)\Cinema PlusV01.04\77a99c05-8942-4947-833b-3d95be3a8324-5.exe
Task: C:\WINDOWS\Tasks\77a99c05-8942-4947-833b-3d95be3a8324-5_user.job => C:\Program Files (x86)\Cinema PlusV01.04\77a99c05-8942-4947-833b-3d95be3a8324-5.exe
Task: C:\WINDOWS\Tasks\BlockAndSurf Update.job => C:\Program Files (x86)\version92BlockAndSurf\J4BlockAndSurfJ52.exe
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HBQ.job => C:\Users\Guillaume\AppData\Roaming\HBQ.exe
Task: C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineCore.job => C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineUA.job => C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\WLBQT.job => C:\Users\Guillaume\AppData\Roaming\WLBQT.exe
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\VCL => ""="service"
RemoveProxy:
cmd: netsh winsock reset
EmptyTemp:
end

x
Éditer le texte

Merci d'entrer le mot de passe que vous avez indiqué à la création du texte.

x
Télécharger le texte

Merci de choisir le format du fichier à télécharger.