1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193
|
O43 - CFD: 01.11.2012 - 23:31:29 - [0.004] ----D C:\ProgramData\1D1F2
O42 - Logiciel: Dynamo Toolbar - (.Dynamo Media.) [HKLM][64Bits] -- {5EE1885C-8A66-4E59-A7BB-1089C73209A2}
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.searchbrowsing.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.searchbrowsing.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://www.searchbrowsing.com
O69 - SBI: SearchScopes [HKCU] {0DF56869-BA25-4E8E-82F9-AF48EA6BCC7E} [DefaultScope] - (SearchBrowsing) - http://www.searchbrowsing.com
O4 - Global Startup: C:\Users\Neyla\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\iMesh.lnk . (.iMesh, Inc.) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe => Infection PUP (PUP.iMesh)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll => Infection PUP (PUP.iMesh)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AutoKMS.job => Infection Diverse (Trojan.Keygen)
[MD5.00000000000000000000000000000000] [APT] [AutoKMS] (...) -- C:\Windows\AutoKMS\AutoKMS.exe (.not file.) => Infection Diverse (Trojan.Keygen)
O42 - Logiciel: iMesh - (.iMesh Inc..) [HKLM][64Bits] -- iMesh => Infection PUP (PUP.iMesh)
O42 - Logiciel: iMesh - (.iMesh Inc..) [HKLM][64Bits] -- {8FB495A1-4A3F-4C1D-BD27-3F3AB2E66763} => Infection PUP (PUP.iMesh)
[HKCU\Software\Datamngr] => Infection PUP (PUP.BearShare)
[HKCU\Software\PopCap] => Infection BT (Adware.PopCap)
[HKCU\Software\iMesh] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Trymedia Systems] => Infection BT (Adware.Trymedia)
O43 - CFD: 10.06.2012 - 11:33:44 - [40.912] ----D C:\Program Files (x86)\iMesh Applications => Infection PUP (PUP.iMesh)
O43 - CFD: 31.05.2011 - 19:48:42 - [0.087] ----D C:\ProgramData\iMesh => Infection PUP (PUP.iMesh)
O43 - CFD: 17.09.2011 - 15:52:23 - [1.096] ----D C:\ProgramData\Trymedia => Infection BT (Adware.Trymedia)
O43 - CFD: 02.11.2012 - 00:11:30 - [65.486] ----D C:\Users\Neyla\AppData\Local\iMesh => Infection PUP (PUP.iMesh)
O43 - CFD: 31.05.2011 - 19:46:41 - [0] ----D C:\Users\Neyla\AppData\Local\PackageAware => Infection PUP (Adware.Bandoo)
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Search the web (Babylon)) - http://search.babylon.com => Infection PUP (PUP.ClaroSearch)
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2A59} - (Web Search) - http://search.imesh.com => Infection BT (Adware.Bandoo)
O87 - FAEL: "{C4E1A7FC-0794-4135-8687-6D50442AB97D}" | In - Domain - P6 - TRUE | .(.iMesh, Inc - iMesh.) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe => Infection PUP (PUP.iMesh)
O87 - FAEL: "{3A01440F-1A9A-461A-83D3-F872EE5793E2}" | In - Domain - P17 - TRUE | .(.iMesh, Inc - iMesh.) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe => Infection PUP (PUP.iMesh)
O87 - FAEL: "{1B79A134-149F-452C-AF90-620E6A401EF0}" | In - Private - P6 - TRUE | .(.iMesh, Inc - iMesh.) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe => Infection PUP (PUP.iMesh)
O87 - FAEL: "{32FECE9F-0A3D-42F8-93E7-DC7AAA984D9E}" | In - Private - P17 - TRUE | .(.iMesh, Inc - iMesh.) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe => Infection PUP (PUP.iMesh)
O87 - FAEL: "TCP Query User{A753C1DA-1086-4D1B-94A6-9211636B912D}C:\program files (x86)\imesh applications\imesh\imesh.exe" | In - Public - P6 - TRUE | .(.iMesh, Inc - iMesh.) -- C:\program files (x86)\imesh applications\imesh\imesh.exe => Infection PUP (PUP.iMesh)
O87 - FAEL: "UDP Query User{64692D44-8775-4F84-95D8-B6237784289E}C:\program files (x86)\imesh applications\imesh\imesh.exe" | In - Public - P17 - TRUE | .(.iMesh, Inc - iMesh.) -- C:\program files (x86)\imesh applications\imesh\imesh.exe => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\AppID\DiscoveryHelper.DLL]
[HKLM\Software\Classes\AppID\GIFAnimator.DLL]
[HKLM\Software\Classes\AppID\iMesh.exe]
[HKLM\Software\Classes\AppID\IMTrProgress.DLL]
[HKLM\Software\Classes\AppID\IMWeb.DLL]
[HKLM\Software\Classes\AppID\WMHelper.DLL]
[HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery]
[HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery.1]
[HKLM\Software\Classes\iMesh.AudioCD]
[HKLM\Software\Classes\iMesh.Device]
[HKLM\Software\Classes\iMesh.file]
[HKLM\Software\Classes\iMesh.LauncherEventHandler]
[HKLM\Software\Classes\iMesh.LauncherEventHandler.1]
[HKLM\Software\Classes\imweb.imwebcontrol]
[HKLM\Software\Classes\nctaudiocdwriter2.audiocdwriter2]
[HKLM\Software\Classes\nctaudiocdwriter2.audiocdwriter2.1]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{00A6FAF1-072E-44CF-8957-5838F569A31D}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{07b18ea1-a523-4961-b6bb-170de4475cca}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA9-A523-4961-B6BB-170DE4475CCA}] => Infection BT (Adware.MyWebSearch)
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] => Infection BT (Adware.IncrediBar)
[HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] => Infection BT (Adware.IncrediBar)
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4e42-A125-57C0A11DBCDE}]
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] => Infection BT (PUP.ClaroSearch)
[HKLM\Software\Classes\AppID\{1fc41815-fa4c-4f8b-b143-2c045c8ea2fc}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\AppID\{1fc41815-fa4c-4f8b-b143-2c045c8ea2fc}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\TypeLib\{252c2315-cce0-4446-8da7-c00292a690ba}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\CLSID\{2656B92B-0207-4afb-BEBF-F5FD231ECD39}] => Infection PUP (BearShare)
[HKLM\Software\Wow6432Node\Classes\CLSID\{27BF8F8D-58B8-D41C-F913-B7EEB57EF6F6}] => Infection PUP (BearShare)
[HKLM\Software\Classes\TypeLib\{2D77AC8A-0A4C-40D0-9557-51907A575E45}]
[HKLM\Software\Wow6432Node\Classes\CLSID\{34CB0620-E343-4772-BBA8-D3074BC47516}] => Infection PUP (BearShare)
[HKLM\Software\Wow6432Node\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}] => Infection PUP (BearShare)
[HKLM\Software\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\TypeLib\{403A885F-CB00-40C1-BDC1-EB09053194F7}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\CLSID\{412CD209-DDA4-4275-8C79-55F1C93FBD47}] => Infection PUP (BearShare)
[HKLM\Software\Classes\TypeLib\{43B4B831-F41F-4F73-8F14-4FFF0BA75B1B}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\TypeLib\{55C1727F-5535-4C2A-9601-8C2458608B48}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\CLSID\{59570C1F-B692-48c9-91B4-7809E6945287}] => Infection PUP (BearShare)
[HKLM\Software\Classes\AppID\{5e50ae1d-bc76-418b-94c4-efeac0cef80c}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\AppID\{5e50ae1d-bc76-418b-94c4-efeac0cef80c}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\CLSID\{63A0F7FA-2C95-4d7e-AF25-EFCC303D20A1}] => Infection PUP (BearShare)
[HKLM\Software\Wow6432Node\Classes\CLSID\{6559E502-6EE1-46b8-A83C-F3A45BDA23EE}] => Infection PUP (BearShare)
[HKLM\Software\Classes\Interface\{69d3f709-9de2-479f-980f-532d46895703}] => Infection BT (Adware.BHO)
[HKLM\Software\Wow6432Node\Classes\CLSID\{69d3f709-9de2-479f-980f-532d46895703}] => Infection BT (Adware.BHO)
[HKLM\Software\Wow6432Node\Classes\Interface\{69d3f709-9de2-479f-980f-532d46895703}] => Infection BT (Adware.BHO)
[HKLM\Software\Classes\AppID\{69E54DE2-C4ED-4BEC-8046-E3F9AC74B4B0}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\AppID\{69E54DE2-C4ED-4BEC-8046-E3F9AC74B4B0}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}] => Infection PUP (BearShare)
[HKLM\Software\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}] => Infection BT (Adware.BHO)
[HKLM\Software\Wow6432Node\Classes\CLSID\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}] => Infection PUP (BearShare)
[HKLM\Software\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\TypeLib\{85672EDB-2CC8-40B9-A9E8-77D3478F2EFB}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{872F3C0B-4462-424c-BB9F-74C6899B9F92}] => Infection PUP (BearShare)
[HKLM\Software\Classes\AppID\{969D2C61-9B16-407c-86B7-397BF4579BE6}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\TypeLib\{969D2C61-9B16-407c-86B7-397BF4579BE6}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\AppID\{969D2C61-9B16-407c-86B7-397BF4579BE6}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\TypeLib\{96F7FABC-5789-EFA4-B6ED-1272F4C1D27B}] => Infection PUP (PUP.BearShare)
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] => Infection BT (Adware.Bandoo)
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9bb47c17-9c68-4bb3-b188-dd9af0fd2a59}]
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9bb47c17-9c68-4bb3-b188-dd9af0fd2a59}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}] => Infection PUP (Adware.Bandoo)
[HKLM\Software\Wow6432Node\Classes\CLSID\{A2858A72-758F-4486-B6A1-7F1DCC0924FA}] => Infection PUP (PUP.BearShare)
[HKLM\Software\Classes\AppID\{A7DDCBDE-5C86-415c-8A37-763AE183E7E4}] => Infection PUP (PUP.BearShare)
[HKLM\Software\Wow6432Node\Classes\AppID\{A7DDCBDE-5C86-415c-8A37-763AE183E7E4}] => Infection PUP (PUP.BearShare)
[HKLM\Software\Wow6432Node\Classes\CLSID\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}] => Infection PUP (PUP.BearShare)
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}] => Infection PUP (PUP.BearShare)
[HKLM\Software\Wow6432Node\Classes\CLSID\{C63CA8A4-AB4E-49e5-A6C0-33FC86D80205}] => Infection PUP (BearShare)
[HKLM\Software\Wow6432Node\Classes\CLSID\{C6A7847E-8931-4a9a-B4EF-72A91E3CCF4D}] => Infection PUP (PUP.BearShare)
[HKLM\Software\Wow6432Node\Classes\CLSID\{DD0F1D24-E250-4e93-966C-65615720AEFB}] => Infection PUP (PUP.BearShare)
[HKLM\Software\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] => Infection PUP (Toolbar.Babylon)
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] => Infection PUP (Toolbar.Babylon)
[HKLM\Software\Wow6432Node\Classes\CLSID\{EC1277BB-1C71-4c0d-BA6D-BFEA16E773A6}] => Infection PUP (PUP.BearShare)
[HKLM\Software\Classes\TypeLib\{ec96f516-51b2-4b46-8451-8665f5a6ba2b}] => Infection BT (Adware.BHO)
[HKLM\Software\Classes\TypeLib\{f07fbd3e-2048-44a4-9065-71bf551e2672}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\CLSID\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\Classes\CLSID\{F8AB43ED-EC88-4de7-B213-F89157D29C62}] => Infection PUP (PUP.iMesh)
[HKCU\Software\DataMngr] => Infection PUP (PUP.BearShare)
[HKCU\Software\iMesh] => Infection PUP (PUP.iMesh)
[HKLM\Software\Wow6432Node\iMesh] => Infection PUP (PUP.iMesh)
[HKCU\Software\PopCap] => Infection BT (Adware.PopCap)
[HKLM\Software\Wow6432Node\Trymedia Systems] => Infection BT (Adware.Trymedia)
C:\Program Files (x86)\iMesh Applications => Infection PUP (PUP.iMesh)
C:\ProgramData\iMesh => Infection PUP (PUP.iMesh)
C:\ProgramData\Trymedia => Infection BT (Adware.Trymedia)
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMesh => Infection PUP (PUP.iMesh)
C:\Users\Neyla\AppData\Local\iMesh => Infection PUP (PUP.iMesh)
C:\Users\Neyla\AppData\LocalLow\imeshbandmltbpi => Infection PUP (PUP.iMesh)
O2 - BHO: (no name) [64Bits] - {ACC01A56-70E3-472E-9C4F-83B1DA817DD8} Clé orpheline
O2 - BHO: (no name) [64Bits] - {95B7759C-8C7F-4BF1-B163-73684A933233} Clé orpheline => Toolbar.AVGSearch
O42 - Logiciel: AVG Security Toolbar - (.Pas de propriétaire.) [HKLM][64Bits] -- AVG Secure Search => Toolbar.AVGSearch
[HKCU\Software\AVG Secure Search] => Toolbar.AVGSearch
[HKCU\Software\AppDataLow\Software\Smartbar] => Toolbar.SmartBar
[HKCU\Software\Conduit] => Toolbar.Conduit
O43 - CFD: 09.11.2012 - 18:47:31 - [21.211] ----D C:\Program Files (x86)\AVG Secure Search => Toolbar.AVGSearch
O43 - CFD: 09.11.2012 - 18:47:40 - [2.658] ----D C:\ProgramData\AVG Secure Search => Toolbar.AVGSearch
O43 - CFD: 04.09.2012 - 12:35:03 - [2.427] ----D C:\Users\Neyla\AppData\Local\AVG Secure Search => Toolbar.AVGSearch
O69 - SBI: SearchScopes [HKCU] {95B7759C-8C7F-4BF1-B163-73684A933233} - (AVG Secure Search) - http://isearch.avg.com => Toolbar.AVGSearch
[HKLM\Software\Classes\AppID\Launcher.EXE]
[HKLM\Software\Classes\AppID\NCTAudioCDGrabber2.DLL]
[HKLM\Software\Classes\AppID\NCTAudioCompress3.DLL]
[HKLM\Software\Classes\AppID\NCTAudioFile3.DLL]
[HKLM\Software\Classes\AppID\NCTAudioFileWMA3.DLL]
[HKLM\Software\Classes\AppID\NCTAudioFormatSettings3.DLL]
[HKLM\Software\Classes\AppID\ScriptHelper.EXE]
[HKLM\Software\Classes\AVG Secure Search.BrowserWndAPI]
[HKLM\Software\Classes\AVG Secure Search.PugiObj]
[HKLM\Software\Classes\AVG Secure Search.PugiObj.1]
[HKLM\Software\Classes\ScriptHelper.ScriptHelperApi]
[HKLM\Software\Classes\ScriptHelper.ScriptHelperApi.1]
[HKLM\Software\Classes\ViProtocol.ViProtocolOLE]
[HKLM\Software\Classes\ViProtocol.ViProtocolOLE.1]
[HKLM\Software\Wow6432Node\Classes\CLSID\{01AD9322-02FF-4f4f-AC52-92FDA5AE65F0}] => PUP.BearShare
[HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}] => Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}] => Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\CLSID\{03F14321-8FED-4CBC-B01A-4B57FC199062}] => Toolbar.BearShare
[HKLM\Software\Wow6432Node\Classes\CLSID\{148132E6-626D-4A5E-8063-A761EB29A50B}] => Toolbar.BearShare
[HKLM\Software\Wow6432Node\Classes\CLSID\{23BDC78C-B7BB-42E5-B970-54B292592D72}] => Toolbar.BearShare
[HKLM\Software\Classes\CLSID\{2C353E32-B8AC-4B82-B988-4C2D3394388A}] => Toolbar.BearShare
[HKLM\Software\Wow6432Node\Classes\CLSID\{2C6F7E96-73BC-47A5-9F51-B67F0BAFE24D}] => Toolbar.BearShare
[HKLM\Software\Wow6432Node\Classes\CLSID\{4C58EB04-7B72-4D3D-A36E-66167A99BC31}] => Toolbar.BearShare
[HKLM\Software\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] => Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] => Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] => Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\CLSID\{4EE0B011-604C-47F3-8F2B-39F79640B85E}] => Toolbar.BearShare
[HKLM\Software\Wow6432Node\Classes\CLSID\{5D9E7BE9-95E5-4392-8CD2-D82DE89589ED}] => PUP.BearShare
[HKLM\Software\Wow6432Node\Classes\CLSID\{6BC38BF4-E84D-46E1-920B-42D31AEA617E}] => Toolbar.Agent
[HKLM\Software\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}] => Toolbar.ViProtocol
[HKLM\Software\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}] => Toolbar.Agent
[HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}] => AVG Security Toolbar
[HKLM\Software\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}] => AVG Security Toolbar
[HKLM\Software\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}] => Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}] => Toolbar.Conduit
[HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}] => Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}] => Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}] => Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}] => Toolbar.BarsShare
[HKLM\Software\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}] => Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\CLSID\{CD5175E2-7CC1-418C-B66C-0AB95DAD4103}] => Toolbar.BearShare
[HKLM\Software\Wow6432Node\Classes\CLSID\{D8BFC514-1135-4393-B09A-193D2AAC5037}] => Toolbar.BearShare
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}] => Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}] => Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}] => Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}] => Toolbar.Agent
C:\Program Files (x86)\AVG Secure Search => Toolbar.AVGSearch
C:\Program Files (x86)\Common Files\AVG Secure Search => Toolbar.AVGSearch
C:\ProgramData\AVG Secure Search => Toolbar.AVGSearch
C:\Users\Neyla\AppData\Local\AVG Secure Search => Toolbar.AVGSearch
C:\Users\Neyla\AppData\LocalLow\AVG Secure Search => Toolbar.AVGSearch |
Partager