API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Apr 22nd, 2015
704
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 31.74 KB | None | 0 0
raw download clone embed print report
  1. ~ Rapport de ZHPDiag v2015.4.20.40 - Nicolas Coolman (20/04/2015)
  2. ~ Lancé par Psyko (22/04/2015 07:22:19)
  3. ~ Facebook : https://www.facebook.com/nicolascoolman1
  4. ~ Adresse du Forum http://forum.nicolascoolman.fr
  5. ~ Traduit par Nicolas Coolman
  6. ~ Etat de la version : Version à jour.
  7. ~ Liste blanche : Activée par le programme
  8. ~ Elévation des Privilèges : OK
  9. ~ User Account Control (UAC): Activate by user
  10.  
  11.  
  12. ---\\ Navigateurs Internet
  13. MSIE: Internet Explorer v11.0.9600.17728
  14. MFIE: Mozilla Firefox 36.0.1
  15. GCIE: Google Chrome v42.0.2311.90 (Defaut)
  16.  
  17. ---\\ Informations sur les produits Windows
  18. ~ Langage: Français
  19. Windows Server License Manager Script : OK
  20. ~ Windows Operating System - Windows(R) 7, OEM_SLP channel
  21. System Locked Preinstallation (OEM_SLP) : OK
  22. Windows ID Activation : OK
  23. ~ Windows Partial Key : HYRR2
  24. Windows License : OK
  25. ~ Windows Remaining Initializations Number : 3
  26. Software Protection Service (Protection logicielle) : OK
  27. Windows Automatic Updates : OK
  28. Windows Activation Technologies : OK
  29. Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601)
  30.  
  31. ---\\ Logiciels de protection du système
  32. Malwarebytes Anti-Malware version 2.1.4.1018
  33. Windows Defender W7 (Activate)
  34.  
  35. ---\\ Logiciels d'optimisation du système
  36. CCleaner v5.04
  37.  
  38. ---\\ Logiciels de partage PeerToPeer
  39. qBittorrent 3.1.12 v3.1.12 =>P2P.BitTorrent
  40. µTorrent v3.3.0.29342 =>P2P.µTorrent
  41.  
  42. ---\\ Surveillance de Logiciels
  43.  
  44. ---\\ Informations sur le système
  45. ~ Processor: AMD64 Family 16 Model 4 Stepping 2, AuthenticAMD
  46. ~ Operating System: 64 Bits
  47. Boot mode: Normal (Normal boot)
  48. Total RAM: 16384 MB (20% free)
  49. System Restore: Activé (Enable)
  50. System drive C: has 67 GB (36%) free of 186 GB
  51.  
  52. ---\\ Mode de connexion au système
  53. ~ Computer Name: PSYKO-PC
  54. ~ User Name: Psyko
  55. ~ All Users Names: Psyko, Administrateur,
  56. ~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
  57. Logged in as Administrator
  58.  
  59. ---\\ Variables d'environnement
  60. ~ System Unit : C:\
  61. ~ %AppZHP% : C:\Users\Psyko\AppData\Roaming\ZHP\
  62. ~ %AppData% : C:\Users\Psyko\AppData\Roaming\
  63. ~ %Desktop% : C:\Users\Psyko\Desktop\
  64. ~ %Favorites% : C:\Users\Psyko\Favorites\
  65. ~ %LocalAppData% : C:\Users\Psyko\AppData\Local\
  66. ~ %StartMenu% : C:\Users\Psyko\AppData\Roaming\Microsoft\Windows\Start Menu\
  67. ~ %Windir% : C:\Windows\
  68. ~ %System% : C:\Windows\System32\
  69.  
  70. ---\\ Enumération des unités disques
  71. A: Floppy drive, Flash card reader, USB Key (Not Inserted)
  72. C: Hard drive, Flash drive, Thumb drive (Free 67 Go of 186 Go)
  73. D: Hard drive, Flash drive, Thumb drive (Free 223 Go of 298 Go)
  74. E: Hard drive, Flash drive, Thumb drive (Free 184 Go of 932 Go)
  75. F: CD-ROM drive (Not Inserted)
  76. J: CD-ROM drive (Not Inserted)
  77. K: CD-ROM drive (Not Inserted)
  78. L: CD-ROM drive (Not Inserted)
  79.  
  80.  
  81.  
  82. ---\\ Etat du Centre de Sécurité Windows
  83. [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
  84. ~ Security Center: 41 Legitimates Filtered in 00mn 00s
  85.  
  86.  
  87.  
  88. ---\\ Recherche particulière de fichiers génériques
  89. [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
  90. [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
  91. [MD5.77B35D0FC22A2D2EAC8D07C3F9784DBF] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.13/03/2015 - 03:45:57.) -- C:\Windows\System32\wininet.dll [2358784]
  92. [MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.17/07/2014 - 03:07:24.) -- C:\Windows\System32\Winlogon.exe [455168]
  93. [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
  94. [MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
  95. [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
  96. [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
  97. [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
  98. [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
  99. [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
  100. [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
  101. [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
  102. [MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
  103. [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
  104. [MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
  105. [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
  106. [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
  107. [MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/11/2010 - 04:25:07.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888]
  108. [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
  109. [MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) (.11/11/2014 - 02:46:26.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
  110. [MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
  111. ~ Generic Processes: Scanned in 00mn 00s
  112.  
  113.  
  114.  
  115. ---\\ Etat des fichiers cachés (Caché/Total)
  116. ~ Mes images (My Pictures) : 1/49
  117. ~ Mes musiques (My Musics) : 1/3
  118. ~ Mes Favoris (My Favorites) : 1/26
  119. ~ Mes Documents (My Documents) : 1/2632
  120. ~ Mon Bureau (My Desktop) : 2/3536
  121. ~ Menu demarrer (Programs) : 1/57
  122. ~ Hidden Files: Scanned in 00mn 11s
  123.  
  124.  
  125.  
  126. ---\\ Processus lancés
  127. [MD5.0E35A55D8BC0359BD0AE16C4A6356240] - (.Pas de propriétaire - MSIAfterburner.) -- C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [565760] [PID.1496]
  128. [MD5.F5143A7CA66EB913B5463BED3D3DD8D2] - (.DT Soft Ltd - DAEMON Tools Shell Extensions Helper.) -- C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe [3120448] [PID.2428]
  129. [MD5.D0A518D233620D59A3D2D79511FBB736] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [6212408] [PID.2452]
  130. [MD5.D1AAF28F39E00E4962EB80CCF32D48DB] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144] [PID.2192]
  131. [MD5.E7309A136B873F51F58EF6030AB1975F] - (.Logitech Inc. - Logitech LCD Movie Viewer.) -- C:\Program Files\Logitech Gaming Software\Applets\LCDMovieViewer.exe [1039640] [PID.3856]
  132. [MD5.F64BA2422D5AC4357261C3B1F539ED4B] - (.Logitech Inc. - Logitech LCD Video Player for YouTube™.) -- C:\Program Files\Logitech Gaming Software\Applets\LCDYT.exe [1246488] [PID.4072]
  133. [MD5.8EAADE6187C83AD70D99EDD9BF0CFAEA] - (.Logitech Inc. - Logitech G-series Media Display.) -- C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe [664344] [PID.3668]
  134. [MD5.872180A6ED5AC4A8D2D6F5B382622DC1] - (.Logitech Inc. - Logitech LCD Webcam Viewer.) -- C:\Program Files\Logitech Gaming Software\Applets\LCDWebCam.exe [703256] [PID.3992]
  135. [MD5.73162936309F3D1ADBE47602EFF47F17] - (.Pas de propriétaire - RTSS.) -- C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe [197632] [PID.4980]
  136. [MD5.3A66FFD5CB7842772EF1B822A1A1F01F] - (.Pas de propriétaire - EncoderServer.) -- C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe [26112] [PID.3688]
  137. [MD5.CE9806603D3C635EA6E0BB79FE916D2E] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [812872] [PID.4284]
  138. [MD5.2C009C50C0EE073EC0F993698CDB6C92] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8198656] [PID.7044]
  139. [MD5.E536856E96A7605EBF580D62A868E5FE] - (...) -- C:\Windows\SysWOW64\ASGT.exe [55296] [PID.1580]
  140. [MD5.58FBDA10FC403CF9F82ABD0A68129BA3] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1349576] [PID.1976]
  141. [MD5.86701B8E4C53280AA8642AC85F8500F4] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160] [PID.1764]
  142. [MD5.E27891A49DF92004041FEC5C3A2D4230] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120] [PID.2364]
  143. [MD5.CD421DDB5C6E5458CE52EDC36DE7DC5B] - (...) -- C:\Windows\system32\PnkBstrA.exe [76152] [PID.2760]
  144. ~ Processes Running: Scanned in 00mn 00s
  145.  
  146.  
  147.  
  148. ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
  149. C:\Users\Psyko\AppData\Local\Google\Chrome\User Data\Default\Preferences
  150.  
  151. ---\\ Liste des dossiers d'extension Google Chrome
  152. ~ Google Lines Browser: 15 Legitimates Filtered in 00mn 18s
  153.  
  154.  
  155.  
  156. ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
  157. C:\Users\Psyko\AppData\Roaming\Mozilla\Firefox\Profiles\7ywcki6d.default\prefs.js
  158. C:\Users\Psyko\AppData\Roaming\Mozilla\Firefox\Profiles\7ywcki6d.default\user.js
  159. ~ Firefox Browser: 5 Legitimates Filtered in 00mn 00s
  160.  
  161.  
  162.  
  163. ---\\ Internet Explorer, Proxy Management (R5)
  164. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
  165. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
  166. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
  167. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
  168. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
  169. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
  170. ~ Proxy management: Scanned in 00mn 00s
  171.  
  172.  
  173.  
  174. ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
  175. F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
  176. F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
  177. F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
  178. ~ Keys: Scanned in 00mn 00s
  179.  
  180.  
  181.  
  182. ---\\ Hosts file redirection (O1)
  183. ~ Le fichier hôte est sain (The hosts file is clean) (22)
  184. ~ Hosts File: Scanned in 00mn 00s
  185.  
  186.  
  187.  
  188. ---\\ Autres liens utilisateurs (O4)
  189. O4 - GS\TaskBar [Psyko]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Psyko\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
  190. ~ Global Startup: 1 Legitimates Filtered in 00mn 04s
  191.  
  192.  
  193.  
  194. ---\\ Applications lancées au démarrage du système (O4)
  195. O4 - HKLM\..\Run: [egui] . (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
  196. O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
  197. O4 - HKLM\..\Run: [Launch LCore] . (.Logitech Inc. - Logitech Gaming Framework.) -- C:\Program Files\Logitech Gaming Software\LCore.exe =>.Logitech Inc
  198. O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
  199. O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe =>.Advanced Micro Devices, Inc
  200. O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
  201. O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
  202. O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
  203. O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
  204. O4 - HKUS\S-1-5-21-3690895531-1721482217-730911594-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
  205. ~ Application: Scanned in 00mn 00s
  206.  
  207.  
  208.  
  209. ---\\ Modification Domaine/Adresses DNS (O17)
  210. O17 - HKLM\System\CCS\Services\Tcpip\..\{35594E7C-954B-48A2-A3E3-A3BD81167946}: DhcpNameServer = 192.168.1.1
  211. O17 - HKLM\System\CS1\Services\Tcpip\..\{35594E7C-954B-48A2-A3E3-A3BD81167946}: DhcpNameServer = 192.168.1.1
  212. O17 - HKLM\System\CS2\Services\Tcpip\..\{35594E7C-954B-48A2-A3E3-A3BD81167946}: DhcpNameServer = 192.168.1.1
  213. O17 - HKLM\System\CS3\Services\Tcpip\..\{35594E7C-954B-48A2-A3E3-A3BD81167946}: DhcpNameServer = 192.168.1.1
  214. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
  215. ~ Domain: Scanned in 00mn 00s
  216.  
  217.  
  218.  
  219. ---\\ Protocole additionnel (O18)
  220. O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
  221. O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
  222. ~ Protocole Additionnel: Scanned in 00mn 00s
  223.  
  224.  
  225.  
  226. ---\\ Liste des services NT non Microsoft et non désactivés (O23)
  227. O23 - Service: ASGT (ASGT) . (...) - C:\Windows\SysWOW64\ASGT.exe
  228. ~ Services: 14 Legitimates Filtered in 00mn 15s
  229.  
  230.  
  231.  
  232. ---\\ Tâches planifiées en automatique (O39)
  233. [MD5.0E35A55D8BC0359BD0AE16C4A6356240] [APT] [MSIAfterburner] (...) -- C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [565760]
  234. [MD5.00000000000000000000000000000000] [APT] [ProPCCleaner_Popup] (...) -- C:\Program Files (x86)\Pro PC Cleaner\Splash.exe (.not file.) [0] =>PUP.DoctorPC
  235. [MD5.00000000000000000000000000000000] [APT] [ProPCCleaner_Start] (...) -- C:\Program Files (x86)\Pro PC Cleaner\ProPCCleaner.exe (.not file.) [0] =>PUP.DoctorPC
  236. O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066]
  237. O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070]
  238. ~ Scheduled Task: 9 Legitimates Filtered in 00mn 02s
  239.  
  240.  
  241.  
  242. ---\\ Logiciels installés (O42)
  243. O42 - Logiciel: FalNET G19 Display Manager - (.FalNET.) [HKLM][64Bits] -- FalNET G19 Display Manager_is1
  244. O42 - Logiciel: Flawless Widescreen version 1.0.15 - (.Flawless Widescreen.) [HKLM][64Bits] -- {7348D82E-8C68-48FF-BA2D-8C97B5B4B3D8}_is1
  245. O42 - Logiciel: G19_BF3 0.3.0 by Timisoft - (.Timisoft.) [HKLM][64Bits] -- {126AFEB1-A5D6-4C22-98BE-F55DC27ECB47}
  246. O42 - Logiciel: G19_BF4 0.1.4 by Timisoft - (.Timisoft.) [HKLM][64Bits] -- {59C24EB1-15A4-41DB-82B1-ADE7A8A761E8}
  247. O42 - Logiciel: Internet Calculator v3.0.1 - (.Timisoft.) [HKLM][64Bits] -- {EBDC4E1E-BC18-4EFD-AE87-6D51AA06B1A4}
  248. O42 - Logiciel: LCDHost - a compositing plugin manager for LCD's - (.Link Data Stockholm.) [HKCU][64Bits] -- LCDHost
  249. O42 - Logiciel: RadeonPro 1.0 (Build 1.1.1.0) - (...) [HKLM][64Bits] -- RadeonPro_is1
  250. O42 - Logiciel: Robocraft - (.Freejam.) [HKLM][64Bits] -- Steam App 301520
  251. O42 - Logiciel: Vanity Pack version 2.0.0b10 - (...) [HKLM][64Bits] -- VanityPack_is1
  252. ~ Logic: 30 Legitimates Filtered in 00mn 00s
  253.  
  254.  
  255.  
  256. ---\\ HKCU & HKLM Software Keys
  257. [HKCU\Software\CodeLeap]
  258. [HKCU\Software\Drivers]
  259. [HKCU\Software\Freejam]
  260. [HKCU\Software\Link Data]
  261. [HKCU\Software\MediaProgramasGen] =>Adware.InstallCore
  262. [HKCU\Software\Mojang]
  263. [HKCU\Software\OB]
  264. [HKCU\Software\ProductSetup] =>Adware.InstallCore
  265. [HKCU\Software\RadeonPro]
  266. [HKCU\Software\SKS]
  267. [HKCU\Software\System32]
  268. [HKCU\Software\Win]
  269. [HKLM\Software\Onihr]
  270. [HKLM\Software\Wow6432Node\685D6D1C-D73A-4F37-B7E5E53660311DDB]
  271. [HKLM\Software\Wow6432Node\Mojang]
  272. [HKLM\Software\Wow6432Node\Onihr]
  273. [HKLM\Software\Wow6432Node\RadeonPro]
  274. ~ Key Software: 503 Legitimates Filtered in 00mn 00s
  275.  
  276.  
  277.  
  278. ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
  279. O43 - CFD: 10/04/2015 - 20:00:03 - [] ----D C:\Program Files (x86)\FalNET G19 Display Manager
  280. O43 - CFD: 11/03/2015 - 19:34:39 - [] ----D C:\Program Files (x86)\Flawless Widescreen
  281. O43 - CFD: 20/04/2015 - 17:35:58 - [] ----D C:\Program Files (x86)\RadeonPro
  282. O43 - CFD: 21/04/2015 - 18:05:26 - [] ----D C:\Program Files (x86)\Teleport Pro
  283. O43 - CFD: 27/03/2015 - 19:03:06 - [] ----D C:\Program Files (x86)\Timisoft
  284. O43 - CFD: 16/04/2015 - 15:09:38 - [] ----D C:\Program Files (x86)\Vanity Pack
  285. O43 - CFD: 18/03/2015 - 12:32:04 - [] ----D C:\Program Files (x86)\Windows Loader
  286. O43 - CFD: 08/04/2015 - 04:02:35 - [] ----D C:\ProgramData\RhinoSoft
  287. O43 - CFD: 06/04/2015 - 00:42:43 - [] ----D C:\ProgramData\RzSurroundVAD_1.1.60.0
  288. O43 - CFD: 27/03/2015 - 19:03:06 - [] ----D C:\ProgramData\Timisoft
  289. O43 - CFD: 10/04/2015 - 19:49:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FalNET G19 Display Manager
  290. O43 - CFD: 11/03/2015 - 19:33:09 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flawless Widescreen
  291. O43 - CFD: 16/03/2015 - 22:08:54 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Wipe Tool
  292. O43 - CFD: 27/03/2015 - 12:23:07 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
  293. O43 - CFD: 20/04/2015 - 08:53:12 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mephisto
  294. O43 - CFD: 15/04/2015 - 05:58:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mythix Repacks
  295. O43 - CFD: 20/04/2015 - 17:32:03 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RadeonPro
  296. O43 - CFD: 08/04/2015 - 04:01:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serv-U
  297. O43 - CFD: 21/04/2015 - 18:05:24 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Teleport Pro
  298. O43 - CFD: 27/03/2015 - 19:03:08 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Timisoft
  299. O43 - CFD: 16/04/2015 - 15:04:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vanity Pack
  300. O43 - CFD: 28/02/2015 - 23:37:23 - [] ----D C:\Users\Psyko\AppData\Roaming\library_dir
  301. O43 - CFD: 20/04/2015 - 17:38:11 - [] ----D C:\Users\Psyko\AppData\Roaming\RadeonPro
  302. O43 - CFD: 18/03/2015 - 13:07:44 - [0] ----D C:\Users\Psyko\AppData\Roaming\Store =>PUP.Nosibay
  303. O43 - CFD: 18/03/2015 - 13:07:45 - [0] ----D C:\Users\Psyko\AppData\Roaming\WTools =>PUP.Nosibay
  304. O43 - CFD: 18/03/2015 - 10:32:40 - [] -SH-D C:\Users\Psyko\AppData\Local\EmieBrowserModeList
  305. O43 - CFD: 10/04/2015 - 19:52:09 - [] ----D C:\Users\Psyko\AppData\Local\FalNET
  306. O43 - CFD: 19/04/2015 - 20:45:44 - [] ----D C:\Users\Psyko\AppData\Local\G19SkyNET
  307. O43 - CFD: 12/04/2015 - 06:36:44 - [] ----D C:\Users\Psyko\AppData\Local\openvr
  308. O43 - CFD: 06/04/2015 - 09:41:52 - [] ----D C:\Users\Psyko\AppData\Local\RzStats
  309. O43 - CFD: 11/03/2015 - 09:10:51 - [] ----D C:\Users\Psyko\AppData\Local\sgate_Media
  310. O43 - CFD: 19/04/2015 - 20:34:15 - [] ----D C:\Users\Psyko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LCDHost
  311. O43 - CFD: 21/04/2015 - 18:05:24 - [0] ----D C:\Users\Psyko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Teleport Pro
  312. ~ Program Folder: 359 Legitimates Filtered in 00mn 02s
  313.  
  314.  
  315.  
  316. ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
  317. O44 - LFC:[MD5.8126331FBD4ED29EB3B356F9C905064D] - 14/04/2015 - 10:15:10 ---A- . (...) -- C:\Windows\GVTDrv64.sys [30528]
  318. O44 - LFC:[MD5.2CBD6D22499EB13A2666F62EF33D00E2] - 15/04/2015 - 00:15:53 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [16303]
  319. O44 - LFC:[MD5.D1E75542EC8D1B4851765A57AC63618E] - 17/04/2015 - 08:04:08 ---A- . (...) -- C:\Windows\diagerr.xml [1908]
  320. O44 - LFC:[MD5.D1E75542EC8D1B4851765A57AC63618E] - 17/04/2015 - 08:04:08 ---A- . (...) -- C:\Windows\diagwrn.xml [1908]
  321. O44 - LFC:[MD5.E37A061764C721276691FDE3F3DD1616] - 19/04/2015 - 08:55:05 ---A- . (...) -- C:\Windows\capsys184523.log [20]
  322. O44 - LFC:[MD5.9F3AEEFF883D73156BBCA1E0091C991C] - 19/04/2015 - 08:55:05 ---A- . (...) -- C:\Windows\windefendam.log [4448]
  323. O44 - LFC:[MD5.B017973F186A0B3B4AA40774FEB3335B] - 19/04/2015 - 16:48:57 ---A- . (...) -- C:\Windows\ntbtlog.txt [73648]
  324. O44 - LFC:[MD5.7315B716F9CBAF7C0016C49D72ADE8A0] - 20/04/2015 - 07:55:23 ---A- . (...) -- C:\Windows\DirectX.log [92745]
  325. ~ Files: 143 Legitimates Filtered in 01mn 07s
  326.  
  327.  
  328.  
  329. ---\\ Clé de registre Shell MountPoints2 (MPSK) (O51)
  330. O51 - MPSK:{148b585f-c740-11e4-9675-00241d732d2b}\AutoRun\command. (...) -- K:\Setup.exe (.not file.)
  331. O51 - MPSK:{3d7368f9-c216-11e4-91aa-00241d732d2b}\AutoRun\command. (...) -- J:\Setup.exe (.not file.)
  332. ~ Keys: Scanned in 00mn 00s
  333.  
  334.  
  335.  
  336. ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
  337. O52 - TDSD: \Drivers32\"VIDC.FICV"="ficvdec_x64.dll" . (...) -- C:\Windows\System32\ficvdec_x64.dll
  338. O52 - TDSD: \Drivers32\"VIDC.TMB1"="tmb1-v64.dll" . (...) -- C:\Windows\System32\tmb1-v64.dll
  339. O52 - TDSD: \drivers.desc\"tmb1-v64.dll"="PlayClaw 3 video decoder 64" . (...) -- C:\Windows\System32\tmb1-v64.dll
  340. ~ TDSD: 9 Legitimates Filtered in 00mn 00s
  341.  
  342.  
  343.  
  344. ---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
  345. O53 - SMSR:HKLM\...\startupreg\KrakenLauncher [Key] . (...) -- C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenHelper.exe (.not file.)
  346. ~ SMSR Keys: 9 Legitimates Filtered in 00mn 00s
  347.  
  348.  
  349.  
  350. ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
  351. O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
  352. O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
  353. ~ MWPS: 16 Legitimates Filtered in 00mn 00s
  354.  
  355.  
  356.  
  357. ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
  358. O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
  359. ~ MWPE Keys: 3 Legitimates Filtered in 00mn 00s
  360.  
  361.  
  362.  
  363. ---\\ Liste des pilotes du système (SDL) (O58)
  364. O58 - SDL:04/03/2015 - 13:13:08 ---A- . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\Drivers\dtsoftbus01.sys [271424]
  365. O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
  366. O58 - SDL:10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
  367. O58 - SDL:01/03/2013 - 02:49:12 ---A- . (.Riverbed Technology, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\Windows\System32\Drivers\npf.sys [36600]
  368. O58 - SDL:14/06/2007 - 15:28:52 ---A- . (.PixArt Imaging Inc. - PAC7302.) -- C:\Windows\System32\Drivers\PAC7302.SYS [526848]
  369. O58 - SDL:09/02/2015 - 08:17:56 ---A- . (.Windows (R) Win 7 DDK provider - RazerSurround VAD Audio driver.) -- C:\Windows\System32\Drivers\RzSurroundVAD.sys [40640]
  370. O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
  371. ~ Drivers: 73 Legitimates Filtered in 00mn 02s
  372.  
  373.  
  374.  
  375. ---\\ Liste des outils de désinfection (LATC) (O63)
  376. O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
  377. ~ ADS: Scanned in 00mn 00s
  378.  
  379.  
  380.  
  381. ---\\ Liste les services legacy du registre (LALS) (O64)
  382. O64 - Services: CurCS - 11/02/2014 - C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys (AODDriver4.3) .(.Advanced Micro Devices - AMD OverDrive Service Driver.) - LEGACY_AODDRIVER4.3
  383. O64 - Services: CurCS - 11/03/2013 - C:\Program Files (x86)\MSI Afterburner\RTCore64.sys (RTCore64) .(...) - LEGACY_RTCORE64
  384. O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
  385. ~ Legacy: 92 Legitimates Filtered in 00mn 00s
  386.  
  387.  
  388.  
  389. ---\\ Associations Shell Spawning (O67)
  390. O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
  391. ~ FASS Keys: 11 Legitimates Filtered in 00mn 00s
  392.  
  393.  
  394.  
  395. ---\\ Menu de démarrage Internet (SMI) (O68)
  396. O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (...) -- firefox.exe (.not file.)
  397. O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  398. O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
  399. ~ Keys: Scanned in 00mn 00s
  400.  
  401.  
  402.  
  403. ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
  404. O69 - SBI: SearchScopes [HKCU] {c9ab6446-7efc-47fe-966c-dc54324eff9f} [DefaultScope] - (Bing) - http://www.bing.com
  405. ~ Keys: Scanned in 00mn 00s
  406.  
  407.  
  408.  
  409. ---\\ Recherche particulière à la racine du système (SPRF) (O84)
  410. [MD5.3E588EBFD36C38ADA0FC9092D6A33FAB] [SPRF][31/03/2015] (.Pas de propriétaire - Crash Handling Module.) -- C:\Users\Psyko\AppData\Roaming\CrashRpt1402.dll [159200]
  411. [MD5.AB3BB70A429AEB4CAA3A2C9B4AFA87ED] [SPRF][31/03/2015] (...) -- C:\Users\Psyko\AppData\Roaming\Sys11965 DataCollection.dat [20]
  412. [MD5.67A861A518F9ACB6958127C93F1BF6AF] [SPRF][15/04/2015] (.Pas de propriétaire - FTB_Launcher.) -- C:\Users\Psyko\Desktop\FTB_Launcher.exe [6628649]
  413. [MD5.8692DEA1C02BDD131D1D3DA0B6505B6C] [SPRF][19/04/2010] (.Nikolay.IT - RatioMaster.NET.) -- C:\Users\Psyko\Desktop\RatioMaster.NET.exe [260608]
  414. [MD5.41B4F93CF1331ED0053E86E6E6DB06CB] [SPRF][01/04/2015] (...) -- C:\Users\Psyko\Desktop\zozts.bat [1064]
  415. ~ Files: 8 Legitimates Filtered in 00mn 01s
  416.  
  417.  
  418.  
  419. ---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
  420. O87 - FAEL: "{5B362EAB-7937-43D8-BDD6-EAAE21FD104B}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Psyko\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
  421. O87 - FAEL: "{0F7D3146-C9D9-47F5-B744-A6C1A5B1AD23}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Psyko\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
  422. ~ Firewall: 2 Legitimates Filtered in 00mn 08s
  423.  
  424.  
  425.  
  426. ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
  427. SS - | Demand 22/07/1658 0 | (c2wts) . (...) - C:\Program Files (x86)\Windows Identity Foundation\v3.5\c2wtshost.exe
  428. SS - | Demand 22/07/1658 0 | (EasyAntiCheat) . (.EasyAntiCheat Ltd.) - C:\Windows\system32\EasyAntiCheat.exe
  429. SS - | Disabled 17/12/2012 137488 | (Futuremark SystemInfo Service) . (.Futuremark Corporation.) - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
  430. SS - | Auto 28/02/2015 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  431. SS - | Demand 28/02/2015 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  432. SS - | Disabled 05/03/2015 148080 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
  433. SS - | Demand 10/04/2015 1931632 | (Origin Client Service) . (.Electronic Arts.) - C:\Program Files (x86)\Origin\OriginClientService.exe
  434. SS - | Auto 04/11/2013 20608 | (RadeonPro Support Service) . (.Mr. John aka japamd.) - C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
  435. SS - | Demand 01/03/2013 118520 | (rpcapd) . (.Riverbed Technology, Inc..) - C:\Program Files (x86)\WinPcap\rpcapd.exe
  436. SS - | Auto 05/08/2013 1126240 | (Serv-U-Gateway) . (.SolarWinds Worldwide, LLC. +1(866) 530-810.) - C:\Program Files\RhinoSoft\Serv-U Gateway\Serv-U-Gateway.exe
  437. SS - | Auto 18/02/2015 315488 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
  438. SS - | Demand 14/04/2015 836288 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
  439. SS - | Disabled 19/02/2010 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
  440. SR - | Auto 31/03/2015 246272 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
  441. SR - | Auto 31/03/2015 344064 | (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
  442. SR - | Auto 17/01/2012 55296 | (ASGT) . (...) - C:\Windows\SysWOW64\ASGT.exe
  443. SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
  444. SR - | Auto 01/10/2014 1349576 | (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
  445. SR - | Auto 10/04/2015 2823496 | (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
  446. SR - | Auto 17/03/2015 1871160 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
  447. SR - | Auto 17/03/2015 1080120 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
  448. SR - | Auto 27/03/2015 76152 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
  449. SR - | Auto 05/08/2013 614248 | (Serv-U) . (.SolarWinds Worldwide, LLC. +1(866) 530-810.) - C:\Program Files\RhinoSoft\Serv-U\Serv-U.exe
  450. SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
  451. SR - | Demand 22/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
  452. SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
  453. ~ Services: Scanned in 00mn 12s
  454.  
  455.  
  456.  
  457. ---\\ Scan Additionnel (O88)
  458. Database Version : 13008 - (20/04/2015)
  459. Clés trouvées (Keys found) : 0
  460. Valeurs trouvées (Values found) : 1
  461. Dossiers trouvés (Folders found) : 2
  462. Fichiers trouvés (Files found) : 2
  463.  
  464. C:\Users\Psyko\AppData\Roaming\Store =>PUP.Nosibay^
  465. C:\Users\Psyko\AppData\Roaming\WTools =>PUP.Nosibay^
  466. [HKCU\Software\MediaProgramasGen] =>Adware.InstallCore^
  467. [HKCU\Software\ProductSetup] =>Adware.InstallCore^
  468. ~ Additionnel Scan: 767627 Items scanned in 02mn 42s
  469.  
  470.  
  471.  
  472. ---\\ Informations complémentaires sur les modules
  473. ~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5)
  474. ~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4)
  475. ~ http://nicolascoolman.fr/o51-mountpoints2-shell-key-mpsk/ =>.Clé de registre Shell MountPoints2 (MPSK) (O51)
  476. ~ AMI: 3 Legitimates Filtered in 00mn 00s
  477.  
  478.  
  479.  
  480. ---\\ Récapitulatif des détections trouvées sur votre station
  481. http://www.nicolascoolman.fr/blog/ =>PUP.DoctorPC
  482. http://nicolascoolman.fr/adware-installcore =>Adware.InstallCore
  483. http://www.nicolascoolman.fr/blog/ =>PUP.Nosibay
  484. ~ MSI: 3 link(s) detected in 00mn 00s
  485.  
  486.  
  487.  
  488. ~ 1216 Legitimates filtered by white list
  489. End of the scan (488 lines in 05mn 46s)(0.11)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!