Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ Rapport de ZHPDiag v2013.10.15.37 - Nicolas Coolman (15/10/2013)
~ Lanc� par Meunier (16/10/2013 11:02:54)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance � la d�sinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : D�sactiv�e par l'utilisateur
~ El�vation des Privil�ges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16721
MFIE: Mozilla Firefox 21.0 (Defaut)
GCIE: Google Chrome v22.0.1229.95
---\\ Informations sur les produits Windows
~ Langage: Fran�ais
Windows 8 Business Edition, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : JW8XV
Windows License : OK
~ Windows Remaining Initializations Number : 1000
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du syst�me
avast! Free Antivirus v8.0.1497.0
Malwarebytes Anti-Malware version 1.75.0.1300
Windows Defender W8
---\\ Logiciels d'optimisation du syst�me
CCleaner v4.05 =>Piriform Ltd
---\\ Logiciels de partage PeerToPeer
eMule
---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader X
Java 7 Update 21
---\\ Informations sur le syst�me
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4040 MB (44% free)
System Restore: Activ� (Enable)
System drive C: has 389 GB (84%) free of 458 GB
---\\ Mode de connexion au syst�me
~ Computer Name: BUREAU
~ User Name: Meunier
~ All Users Names: Meunier, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Meunier\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Meunier\AppData\Roaming\
~ %Desktop% : C:\Users\Meunier\Desktop\
~ %Favorites% : C:\Users\Meunier\Favorites\
~ %LocalAppData% : C:\Users\Meunier\AppData\Local\
~ %StartMenu% : C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enum�ration des unit�s disques
C: Hard drive, Flash drive, Thumb drive (Free 389 Go of 458 Go)
D: Hard drive, Flash drive, Thumb drive (Free 332 Go of 458 Go)
E: CD-ROM drive (Not Inserted)
F: Floppy drive, Flash card reader, USB Key (Not Inserted)
G: Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Etat du Centre de S�curit� Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 30 Scanned in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.0E8E6463F81C80AFBED533E0F1F8895D] - (.Microsoft Corporation - Explorateur Windows.) (.01/06/2013 - 12:34:21.) -- C:\Windows\Explorer.exe [2391280]
[MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.26/07/2012 - 04:08:50.) -- C:\Windows\System32\Wininit.exe [132608]
[MD5.D28B35DE88D27EFB27DF4B1E8319E3C0] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22/09/2013 - 23:55:10.) -- C:\Windows\System32\wininet.dll [2241024]
[MD5.BCF2036A0DD579E47C008C133550283E] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.11/10/2012 - 06:46:58.) -- C:\Windows\System32\Winlogon.exe [517120]
[MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Biblioth�que de licences.) (.26/07/2012 - 04:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408]
[MD5.36D6A3201721558A8AFBCC09C2DA4C2C] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.06/11/2012 - 04:53:44.) -- C:\Windows\system32\Drivers\AFD.sys [560640]
[MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 06:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840]
[MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 03:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544]
[MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 03:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.09D9EB9E7898F8E6561473A20CC808B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/07/2012 - 03:26:53.) -- C:\Windows\system32\Drivers\DfsC.sys [118784]
[MD5.7D87B5B6C7188D553E11B59DC7F0B111] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/09/2012 - 07:08:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168]
[MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 03:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640]
[MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 03:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920]
[MD5.93179D48066918323628CB016D8C94DC] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.05/02/2013 - 23:29:09.) -- C:\Windows\system32\Drivers\MRxSmb.sys [370688]
[MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 03:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776]
[MD5.76929F4A69E425911A63B407E26C2589] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.02/02/2013 - 11:54:54.) -- C:\Windows\system32\Drivers\ntfs.sys [1933544]
[MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parall�le.) (.26/07/2012 - 03:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984]
[MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 03:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de p�riph�rique de Microsoft RDP.) (.26/07/2012 - 03:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712]
[MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248]
[MD5.78A5BBA3819FFFC62FFEC3E2220D102D] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.01/06/2013 - 12:26:33.) -- C:\Windows\system32\Drivers\volsnap.sys [327936]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 2/44067
~ Mes musiques (My Musics) : 1/3602
~ Mes Videos (My Videos) : 2/258
~ Mes Favoris (My Favorites) : 1/135
~ Mes Documents (My Documents) : 7/7808
~ Mon Bureau (My Desktop) : 2/75
~ Menu demarrer (Programs) : 1/46
~ Hidden Files: Scanned in 00mn 12s
---\\ Processus lanc�s
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.2208]
[MD5.AA8D96427A98CE9FCFFB861F2F77A247] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1239064] [PID.4524]
[MD5.D213F06AE294341F3503FD74E22E7DDA] - (.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257136] [PID.4564]
[MD5.7E4AD8220AF0B281274F9785DD53E25C] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [18642024] [PID.4584]
[MD5.7C886F0E504B5280EEC45777056133EF] - (.Advernet - Notation.) -- C:\Program Files (x86)\Notation\NotationSysTray.exe [269440] [PID.4632] =>Hijacker.Proxy
[MD5.B54921381A950C8215FB363B485C432B] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [270336] [PID.4400]
[MD5.C673F14493A88BE8CE3156B53F37887E] - (.CyberLink Corp. - clear.fi Movie Resident Program.) -- C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [177448] [PID.4140]
[MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424] [PID.4452]
[MD5.E7EA57B35951D093A9647D8D5CE3340D] - (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920] [PID.4940]
[MD5.F400694D7D2785F60133C20F7F2F4F7A] - (.ArcSoft Inc. - ArcSoft Connect Notifier.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac [309824] [PID.2188]
[MD5.2EA4B2BC3260CF3D20F6A164B362F6D4] - (.Pas de propri�taire - Hotkey Utility.) -- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [620136] [PID.4296]
[MD5.4A73AB8412D3AA6CFAD24051FF9DBFA7] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160] [PID.4316]
[MD5.4AFFDCAADCB1DBBFFAF06C7F82E7F6FC] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421776] [PID.4052]
[MD5.75AD45ED633B866D90AEAA296C21F7E8] - (.Egis Technology Inc. - SuiteTray.) -- C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [340336] [PID.4576]
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816] [PID.4224]
[MD5.CBC7D8E5416AD30CF16DC2FD4A6AA399] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4858968] [PID.4600]
[MD5.469396CF3A8090C24408DA00744D5F97] - (.Dropbox, Inc. - Dropbox.) -- C:\Users\Meunier\AppData\Roaming\Dropbox\bin\Dropbox.exe [28057256] [PID.5148]
[MD5.F0EA603E7B91046CA48EA4B3593A007D] - (.Micro Application - Pas de description.) -- C:\Program Files (x86)\Micro Application\LauncherMA.exe [485376] [PID.5276]
[MD5.F16EEA6CCA9D8A7D1193AE80E43FBBC7] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [168960] [PID.5620]
[MD5.8A9FACCB684500829F7D0BCC67B386CC] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [559104] [PID.5780]
[MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [362496] [PID.6112]
[MD5.7DC4759F1D9D590B3D1310F7DB43256C] - (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe [101888] [PID.2612]
[MD5.95110A1C5A1D228AC1DDF6AB67D00BEB] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [920472] [PID.2768]
[MD5.6FC79A950476A5F539EEB65F9097C0A8] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [17304] [PID.5532]
[MD5.EB68851F020D35293EADAADEB18B8220] - (.Adobe Systems, Inc. - Adobe Flash Player 11.9 r900.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe [1862536] [PID.5180]
[MD5.E4F6125ED5185F8FA37CC4F449B85526] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe [770608] [PID.3120]
[MD5.10B01048B1DA075CD1EE27E30B4CF342] - (.Google Inc. - Google Toolbar Broker.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe [308816] [PID.5944] =>Toolbar.Google
[MD5.72BE75AADEB890AE5BD8DEC30508F992] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8091648] [PID.11060]
~ Processes Running: Scanned in 00mn 01s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://search.fbdownloader.com
G0 - GCSP: Preference [User Data\Default] http://search.fbdownloader.com
G1 - GCS: Preference [User Data\Default] http://search.fbdownloader.com
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activ�)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activ�)
G2 - GCE: Preference [User Data\Default] [gbmdkmlcnbapgegninelmjbfibaghdmk] OfferMosquito v.0.8 (Activ�) =>Toolbar.OfferMosquito
G2 - GCE: Preference [User Data\Default] [nikpibnbobmbdbheedjfogjlikpgpnhp] DVDVideoSoft Browser Extension v.1.0.1.2, (Activ�)
G2 - GCE: Preference [User Data\Default] [pbpohikckhbcljgombipcdoinkaedlfa] Smart Display v.1.6 (Activ�) =>Spyware.SmartDisplay
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activ�)
~ Google Browser: 11 Scanned in 00mn 02s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Meunier\AppData\Roaming\Mozilla\Firefox\Profiles\9o98cdyi.default\prefs.js
M3 - MFPP: Plugins - [Meunier] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\babylon.xml =>Toolbar.Babylon
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20913.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
~ Firefox Browser: 3 Scanned in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.fbdownloader.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.helperbar.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.helperbar.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16384 (win8_rtm.120725-1247)) -- C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: (no name) [64Bits] - {462be121-2b54-4218-bf00-b9bf8135b23f} . (.Microsoft Corporation - Navigateur Internet.) (No version) -- (.not file.)
~ IE Browser: 12 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:8877;https=127.0.0.1:8877 =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: btorbit.com [64Bits] - {000123B4-9B42-4900-B3F7-F4B073EFC214} . (.Orbitdownloader.com - Orbitcth.) -- C:\Program Files (x86)\Orbitdownloader\orbitcth.dll
O2 - BHO: &Yahoo! Toolbar Helper [64Bits] - {02478D38-C3F9-4efb-9B51-7695ECA05670} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: HP Print Enhancer [64Bits] - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: DVDVideoSoft.WebPageAdjuster [64Bits] - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} . (.DVDVideoSoft Ltd. - DVDVideoSoft IE Extension.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O2 - BHO: Yontoo Layers [64Bits] - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} Cl� orpheline =>Adware.Yontoo
O2 - BHO: SingleInstance Class [64Bits] - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} . (.Yahoo! Inc - Yahoo! Single Instance for Mail.) -- C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O2 - BHO: HP Smart BHO Class [64Bits] - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
O2 - BHO: (no name) [64Bits] - {31ad400d-1b06-4e33-a59a-90c2c140cba0} Cl� orpheline
O2 - BHO: (no name) [64Bits] - {9D717F81-9148-4f12-8568-69135F087DB0} Cl� orpheline
~ BHO: 18 Scanned in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Linkury Smartbar [64Bits] - [HKLM]{ae07101b-46d4-4a98-af68-0333ea26e113} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>Hijacker.SmartBar
O3 - Toolbar: Google Toolbar [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{462BE121-2B54-4218-BF00-B9BF8135B23F} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{872B5B88-9DB5-4310-BDD0-AC189557E5F5} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{C55BBCD6-41AD-48AD-9953-3609C48EACC7} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{D4027C7F-154A-4066-A1AD-4243D8127440} Cl� orpheline
~ Toolbar: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Adobe Reader X.lnk . (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
O4 - GS\Desktop [Public]: avast! Free Antivirus.lnk . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - GS\Desktop [Public]: Cave � vins.lnk . (.4D - 4D Volume Desktop.) -- C:\Program Files (x86)\Micro Application\Cave � vins\Cave a Vins.exe
O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>Piriform Ltd
O4 - GS\Desktop [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) -- C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe
O4 - GS\Desktop [Public]: Centre de solutions HP.lnk . (.Hewlett-Packard Company - hpqdirec.exe.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\Hpqdirec.exe
O4 - GS\Desktop [Public]: DVDVideoSoft Free Studio.lnk . (.DvdVideoSoft Ltd. - FreeStudioManager.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe
O4 - GS\Desktop [Public]: E.M. PowerPoint Video Converter.lnk . (...) -- C:\Program Files (x86)\E.M. PowerPoint Video Converter\pptvideo.exe
O4 - GS\Desktop [Public]: eMule.lnk . (.http://www.emule-project.net - eMule.) -- C:\Program Files (x86)\eMule\emule.exe
O4 - GS\Desktop [Public]: Etiquettes CD-DVD Edition Classic.lnk . (...) -- C:\Program Files (x86)\Micro Application\Etiquettes CD-DVD Edition Classic\draw7650.exe
O4 - GS\Desktop [Public]: FotoMorph.lnk . (.Digital Photo Software - FotoMorph.) -- C:\Program Files (x86)\Digital Photo Software\FotoMorph\FotoMorph.exe
O4 - GS\Desktop [Public]: Free YouTube Download.lnk . (.DVDVideoSoft Ltd. - FreeYouTubeDownload.) -- C:\Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.exe
O4 - GS\Desktop [Public]: Google�Earth.lnk . (.Google - Google Earth.) -- C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe =>.Google Inc
O4 - GS\Desktop [Public]: G�n�atique 2013.lnk . (.CDIP - Logiciel de g�n�alogie.) -- C:\Program Files (x86)\Geneatique2013\Genea2013.exe
O4 - GS\Desktop [Public]: iTunes.lnk . (.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O4 - GS\Desktop [Public]: LEGO Digital Designer.lnk . (.LEGO Company - LEGO Digital Designer.) -- C:\Program Files (x86)\LEGO Company\LEGO Digital Designer\LDD.exe
O4 - GS\Desktop [Public]: MAGIX Photo Manager MX Deluxe.lnk . (.MAGIX - MAGIX Foto Manager MX deluxe.) -- C:\Program Files (x86)\MAGIX\Photo Manager MX Deluxe\FotoManager_dlx.exe
O4 - GS\Desktop [Public]: MAGIX Vid�o deluxe 2013.lnk . (.MAGIX AG - MAGIX Video deluxe 2013.) -- C:\Program Files (x86)\MAGIX\Video deluxe 2013\Videodeluxe.exe
O4 - GS\Desktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - GS\Desktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Desktop [Public]: Nero Home.lnk . (.Nero AG - Nero Home.) -- C:\Program Files (x86)\Nero\Nero 7\Nero Home\NeroHome.exe
O4 - GS\Desktop [Public]: Nero StartSmart.lnk . (.Nero AG - Nero StartSmart.) -- C:\Program Files (x86)\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe
O4 - GS\Desktop [Public]: Picasa 3.lnk . (.Google Inc. - Picasa.) -- C:\Program Files (x86)\Google\Picasa3\Picasa3.exe
O4 - GS\Desktop [Public]: QuickTime Player.lnk . (.Apple Inc. - QuickTime Player.) -- C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe =>.Apple Inc
O4 - GS\Desktop [Public]: ShowBiz DVD 2.lnk . (...) -- C:\Program Files (x86)\ArcSoft\ShowBiz DVD 2\Wizard.exe
O4 - GS\Desktop [Public]: Skype.lnk . (...) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O4 - GS\Desktop [Public]: Ulead VideoStudio SE DVD v 10 Montage.lnk . (.Ulead Systems, Inc. - Ulead VideoStudio.) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio SE DVD\vstudio.exe
O4 - GS\Desktop [Public]: Ulead VideoStudio SE DVD.lnk . (.Ulead Systems, Inc. - Ulead VideoStudio.) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio SE DVD\vstudio.exe
O4 - GS\Desktop [Public]: VDownloader Telecharger youtube.lnk . (.Vitzo - VDownloader.) -- C:\Program Files (x86)\VDownloader\VDownloader.exe
O4 - GS\Desktop [Public]: Vos Photos � la T�l� sur CD-DVD 2007 Edition Deluxe.lnk . (.Micro Application - Vos Photos � la T�l� sur CD/DVD 2007.) -- C:\Program Files (x86)\Micro Application\Vos Photos � la T�l� sur CD-DVD 2007 Edition Deluxe\PhotoTV4.exe
O4 - GS\Desktop [Public]: Votre PC parle.lnk . (...) -- C:\Windows\Installer\{1335A7E0-6055-47B8-92FC-714D65117CAA}\_66A8B8402B2C6EBC3DA8B1.exe
O4 - GS\Desktop [Public]: Webcam Station Evolution.lnk . (.Guillemot Corporation S.A. - Hercules Webcam Station Evolution.) -- C:\Program Files (x86)\Hercules\Webcam Station Evolution\StationEv.exe
O4 - GS\Desktop [Public]: YoWindow.lnk . (.Repkasoft - YoWindow!.) -- C:\Program Files (x86)\YoWindow\yowindow.exe
O4 - GS\Program [Public]: Adobe Reader X.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe =>.Apple Inc
O4 - GS\Program [Public]: Audacity 1.3 Beta (Unicode).lnk . (.The Audacity Team - Audacity�, the Free, Cross-Platform Sound E.) -- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\audacity.exe =>.The Audacity Team
O4 - GS\Program [Public]: Browser Choice.lnk . (...) -- C:\WINDOWS\BrowserChoice\html\default.html
O4 - GS\Program [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) -- C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe
O4 - GS\Program [Public]: Desktop.lnk - Cl� orpheline
O4 - GS\Program [Public]: Enregistrement OCR I.R.I.S..lnk . (.I.R.I.S. Image Recognition Integarted Syste - Registration Wizard.) -- C:\Program Files (x86)\HP\Digital Imaging\DocProc\regipe.exe
O4 - GS\Program [Public]: GIMP 2.lnk . (.Spencer Kimball, Peter Mattis and the GIMP - GNU Image Manipulation Program.) -- C:\Program Files\GIMP 2\bin\gimp-2.8.exe
O4 - GS\Program [Public]: Microsoft AutoRoute.lnk . (...) -- C:\Windows\Installer\{19EF7619-CAC5-4A49-B44A-D620DB771E01}\_3F94E88E2496_4A2A_9638_FDB1B8B041B0.exe
O4 - GS\Program [Public]: Movie Maker.lnk . (.Microsoft Corporation - Movie Maker.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Photo Gallery.lnk . (.Microsoft Corporation - Photo Gallery.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: PowerpointImageExtractor V1.2.lnk . (.--- - Pas de description.) -- C:\Program Files (x86)\PowerpointImageExtractor_V1_2\PowerpointImageExtractor.exe
O4 - GS\Program [Public]: TKexe.lnk . (.TKexe - TKexe.) -- C:\Program Files (x86)\TKexe\Kalender.exe
O4 - GS\Program [Public]: Windows Live Mail.lnk . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Mobile Device Center.lnk . (.Microsoft Corporation - Windows Mobile Device Center.) -- C:\Windows\Installer\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}\wmdc.exe
O4 - GS\Program [Public]: Windows Store.lnk . (...) -- C:\WINDOWS\WinStore\WinStore.htm
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\WINDOWS\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (...) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe (.not file.)
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilit� Windows.) -- C:\WINDOWS\system32\mblctr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau � distance.) -- C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d��cran.) -- C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magn�tophone Windows.) -- C:\WINDOWS\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d�actions.) -- C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-b�te.) -- C:\WINDOWS\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caract�res.) -- C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\QuickLaunch [Meunier]: Free Video Converter.lnk . (.Koyote Soft - FreeVideoConverter.) -- C:\Program Files (x86)\Free Video Converter\FreeVideoConverter.exe
O4 - GS\QuickLaunch [Meunier]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [Meunier]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [Meunier]: MAGIX Photo Manager MX Deluxe.lnk . (.MAGIX - MAGIX Foto Manager MX deluxe.) -- C:\Program Files (x86)\MAGIX\Photo Manager MX Deluxe\FotoManager_dlx.exe
O4 - GS\QuickLaunch [Meunier]: Nero Home.lnk . (.Nero AG - Nero Home.) -- C:\Program Files (x86)\Nero\Nero 7\Nero Home\NeroHome.exe
O4 - GS\QuickLaunch [Meunier]: Nero StartSmart.lnk . (.Nero AG - Nero StartSmart.) -- C:\Program Files (x86)\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe
O4 - GS\QuickLaunch [Meunier]: Picasa 3.lnk . (.Google Inc. - Picasa.) -- C:\Program Files (x86)\Google\Picasa3\Picasa3.exe
O4 - GS\QuickLaunch [Meunier]: WinX Free FLV to MP4 Converter.lnk . (.Digiarty Software, Inc. - WinX Free FLV to MP4 Converter.) -- C:\Program Files (x86)\Digiarty\WinX_Free_FLV_to_MP4_Converter\WinX_Free_FLV_to_MP4_Converter.exe
O4 - GS\TaskBar [Meunier]: File Explorer.lnk . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Libraries
O4 - GS\TaskBar [Meunier]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Meunier]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [Meunier]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-b�te.) -- C:\WINDOWS\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Meunier]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [Meunier]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [Meunier]: Search.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe http://feed.helperbar.com =>Hijacker.Browsers
O4 - GS\Program [Meunier]: SkyDrive.lnk . (.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation
O4 - GS\Accessories [Meunier]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Meunier]: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\WINDOWS\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\SendTo [Meunier]: Dropbox.lnk . (...) -- C:\Users\Meunier\Dropbox
O4 - GS\SendTo [Meunier]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - GS\Desktop [Meunier]: 13 CS(S�TE) - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\13 CS(S�TE)
O4 - GS\Desktop [Meunier]: 2 CLAUDE - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\2 CLAUDE
O4 - GS\Desktop [Meunier]: 4 JEANNETT - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\4 JEANNETT
O4 - GS\Desktop [Meunier]: 8 MENAGE - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\8 MENAGE
O4 - GS\Desktop [Meunier]: Adobe Photoshop 6.0.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop.) -- C:\Program Files (x86)\Adobe\Photoshop 6.0\Photoshp.exe
O4 - GS\Desktop [Meunier]: adsl TV regarder en direct.lnk . (.adsl TV / FM - adsl TV.) -- C:\Program Files (x86)\adslTV\adsltv.exe
O4 - GS\Desktop [Meunier]: Aide Memoire Informatique - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\9 INFORMATiQUE\1 INFORMAT G�n�ralit�s\Aide Memoire Informatique.XLS
O4 - GS\Desktop [Meunier]: Audacity 1.3 Beta (Unicode).lnk . (.The Audacity Team - Audacity�, the Free, Cross-Platform Sound E.) -- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\audacity.exe =>.The Audacity Team
O4 - GS\Desktop [Meunier]: autostitch - pour panorama.lnk . (.University of British Columbia - AutoStitch.) -- C:\Program Files (x86)\autostitch\autostitch.exe
O4 - GS\Desktop [Meunier]: Captvty - enregistrer.lnk . (...) -- C:\Users\Meunier\Downloads\captvty-1.9.8 (1)\Captvty.exe
O4 - GS\Desktop [Meunier]: CDex.lnk . (.The CDex Project - http://cdexos.sourceforg - CDex - Open Source Digital Audio CD Extract.) -- C:\Program Files (x86)\CDex\CDex.exe
O4 - GS\Desktop [Meunier]: Connexion internet impossible oct 2013 - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\9 INFORMATiQUE\4 INTERNET\Connexion internet impossible oct 2013.docx
O4 - GS\Desktop [Meunier]: CONTACTS.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\9 INFORMATiQUE\5 MESSAGERIE\Gestion des contacts CSV\contacts 26 mars 2013 tri� dans excel enregistr� sous excel pour garder modif.xlsx
O4 - GS\Desktop [Meunier]: Deformation photo.lnk . (...) -- C:\Program Files (x86)\AnmSMP\AnmanieSMP.exe
O4 - GS\Desktop [Meunier]: Dropbox.lnk . (.Dropbox, Inc. - Dropbox.) -- C:\Users\Meunier\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - GS\Desktop [Meunier]: DVD Flick creation DVD gravure.lnk . (.Dennis "Exl" Meuwissen - DVD Flick.) -- C:\Program Files (x86)\DVD Flick\dvdflick.exe
O4 - GS\Desktop [Meunier]: EnveloppesEditor1.11.lnk . (.J.L.F. - Logiciel pour remplir des enveloppes V1.09.) -- C:\Program Files (x86)\EnveloppesEditor1.11\EnveloppesEditor.exe
O4 - GS\Desktop [Meunier]: Free PDF to Word Doc Converter.lnk . (...) -- C:\Program Files (x86)\Free PDF to Word Doc Converter\pdf2word.exe
O4 - GS\Desktop [Meunier]: Free Video Converter.lnk . (.Koyote Soft - FreeVideoConverter.) -- C:\Program Files (x86)\Free Video Converter\FreeVideoConverter.exe
O4 - GS\Desktop [Meunier]: Gif R�cup�rateur.lnk . (.Olivier RAVET - Pas de description.) -- C:\Program Files (x86)\GIF Recuperateur\GIF_Recuperateur.exe
O4 - GS\Desktop [Meunier]: GIMP 2.lnk . (.Spencer Kimball, Peter Mattis and the GIMP - GNU Image Manipulation Program.) -- C:\Program Files\GIMP 2\bin\gimp-2.8.exe
O4 - GS\Desktop [Meunier]: Handbrake.lnk . (.HandBrake - HandBrake.) -- C:\Program Files (x86)\Handbrake\Handbrake.exe
O4 - GS\Desktop [Meunier]: IcoSauve - Raccourci.lnk . (...) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IcoSauve
O4 - GS\Desktop [Meunier]: IDPhotoStudio - photo identite.lnk . (.KC Softwares - Pas de description.) -- C:\Program Files (x86)\KC Softwares\IDPhotoStudio\IDPhotoStudio.exe
O4 - GS\Desktop [Meunier]: Images - Raccourci.lnk . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Libraries\Pictures.library-ms
O4 - GS\Desktop [Meunier]: Merge juxtaposition.lnk . (.Venning - merge.exe.) -- C:\Program Files (x86)\Merge2.3\merge.exe
O4 - GS\Desktop [Meunier]: Merge PDF.lnk . (.Logiciels Laetjr.com - utilitaire PDF.) -- C:\Program Files (x86)\laetjr\pdf\mergepdf.exe
O4 - GS\Desktop [Meunier]: Mes num�risations - Raccourci.lnk . (...) -- D:\1Mes documents travail\Mes num�risations
O4 - GS\Desktop [Meunier]: Microsoft AutoRoute.lnk . (...) -- C:\Windows\Installer\{19EF7619-CAC5-4A49-B44A-D620DB771E01}\_3F94E88E2496_4A2A_9638_FDB1B8B041B0.exe
O4 - GS\Desktop [Meunier]: Microsoft GIF Animator.lnk . (.Microsoft Corporation - Microsoft GIF Animator Application.) -- C:\Program Files (x86)\Microsoft GIF Animator\GIFAnimator.exe
O4 - GS\Desktop [Meunier]: Microsoft Office Excel 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\xlicons.exe
O4 - GS\Desktop [Meunier]: Microsoft Office PowerPoint 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pptico.exe =>.Microsoft Corporation
O4 - GS\Desktop [Meunier]: Microsoft Office Word 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
O4 - GS\Desktop [Meunier]: Musique - Raccourci.lnk . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Libraries\Music.library-ms
O4 - GS\Desktop [Meunier]: MyHeritage Family Tree Builder.lnk . (.MyHeritage - MyHeritage Family Tree Builder Genealogy So.) -- C:\Program Files (x86)\MyHeritage\Bin\MyHeritage.exe
O4 - GS\Desktop [Meunier]: notice galaxie note 7000 - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\8 MENAGE\TELEPHONE\notice galaxie note 7000.pdf
O4 - GS\Desktop [Meunier]: Orbit.lnk . (.Orbitdownloader.com - Orbit Downloader.) -- C:\Program Files (x86)\Orbitdownloader\orbitdm.exe
O4 - GS\Desktop [Meunier]: PhotoFiltre.lnk . (.Antonio Da Cruz - PhotoFiltre.) -- C:\Program Files (x86)\PhotoFiltre\photofiltre.exe
O4 - GS\Desktop [Meunier]: Powerpoint Extracteur.lnk . (.--- - Pas de description.) -- C:\Program Files (x86)\PowerpointImageExtractor_V1_2\PowerpointImageExtractor.exe
O4 - GS\Desktop [Meunier]: Revo Uninstaller.lnk . (.VS Revo Group - Revo Uninstaller.) -- C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe
O4 - GS\Desktop [Meunier]: SmillaEnlarger - Raccourci.lnk . (...) -- C:\Users\Meunier\Downloads\SmillaEnlarger-0.9.0 (2)\SmillaEnlarger-0.9.0\SmillaEnlarger\SmillaEnlarger.exe (.not file.)
O4 - GS\Desktop [Meunier]: TKexe Calendrier.lnk . (.TKexe - TKexe.) -- C:\Program Files (x86)\TKexe\Kalender.exe
O4 - GS\Desktop [Meunier]: Ulead VideoStudio 9.lnk . (.Ulead Systems, Inc. - Ulead VideoStudio.) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe
O4 - GS\Desktop [Meunier]: Vid�os - Raccourci.lnk . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Libraries\Videos.library-ms
O4 - GS\Desktop [Meunier]: Windows Defender - Raccourci (2).lnk - Cl� orpheline
O4 - GS\Desktop [Meunier]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\explorer.exe =>.Microsoft Corporation
O4 - GS\Desktop [Meunier]: Windows Live Mail.lnk . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe =>.Microsoft Corporation
O4 - GS\Desktop [Meunier]: WinX Free FLV to MP4 Converter.lnk . (.Digiarty Software, Inc. - WinX Free FLV to MP4 Converter.) -- C:\Program Files (x86)\Digiarty\WinX_Free_FLV_to_MP4_Converter\WinX_Free_FLV_to_MP4_Converter.exe
O4 - GS\Desktop [Meunier]: XnView pour copie ecran.lnk . (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files (x86)\XnView\xnview.exe
O4 - GS\Desktop [Meunier]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Desktop [Meunier]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman
~ Global Startup: 158 Scanned in 00mn 01s
---\\ Applications lanc�es au d�marrage du syt�me (O4)
O4 - GS\Startup [Public]: Adobe Gamma Loader.exe.lnk . (.Adobe Systems, Inc. - Adobe Gamma Loader.) -- C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - GS\Startup [Public]: HP Digital Imaging Monitor.lnk . (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe =>.Hewlett-Packard Co
O4 - GS\Startup [Meunier]: Dropbox.lnk . (.Dropbox, Inc. - Dropbox.) -- C:\Users\Meunier\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - GS\Startup [Meunier]: Lanceur.lnk . (.Micro Application - Pas de description.) -- C:\Program Files (x86)\Micro Application\LauncherMA.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [CamserviceHDExchange] . (.Guillemot Corporation S.A. - Hercules Xtra Controller Main Application.) -- C:\Program Files (x86)\Hercules\Hercules HD Exchange\XtrCtrlEx.exe
O4 - HKLM\..\Run: [Windows Mobile Device Center] . (.Microsoft Corporation - Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_A7E31F99DE1AB07DA9783C80B4E432EB] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKCU\..\Run: [SkyDrive] . (.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O4 - HKCU\..\Run: [systray] . (.Advernet - Notation.) -- C:\Program Files (x86)\Notation\NotationSysTray.exe =>Hijacker.Proxy
O4 - HKCU\..\Run: [SSync] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Meunier\AppData\Roaming\SSync\SSync.exe
O4 - HKCU\..\Run: [DataMgr] . (.HTTO Group, Ltd. - Updater.) -- C:\Users\Meunier\AppData\Roaming\DataMgr\DataMgr.exe
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-b�te.) -- C:\Windows\System32\StikyNot.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [SCheck] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Meunier\AppData\Roaming\SCheck\SCheck.exe
O4 - HKCU\..\Run: [Snoozer] . (...) -- C:\Users\Meunier\AppData\Roaming\Snz\Snz.exe
O4 - HKCU\..\Run: [Intermediate] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Meunier\AppData\Roaming\Intermediate\Intermediate.exe
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112_4\amd64] . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\WINDOWS\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314_2\amd64] . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\WINDOWS\system32\cmd.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [ArcadeMovieService] . (.CyberLink Corp. - clear.fi Movie Resident Program.) -- C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe
O4 - HKLM\..\Wow6432Node\Run: [ArcSoft Connection Service] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [EgisTecPMMUpdate] . (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
O4 - HKLM\..\Wow6432Node\Run: [Family Tree Builder Update] . (.MyHeritage - MyHeritage Family Tree Builder check for up.) -- C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Wow6432Node\Run: [Hotkey Utility] . (.Pas de propri�taire - Hotkey Utility.) -- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\qttask.exe
O4 - HKLM\..\Wow6432Node\Run: [SuiteTray] . (.Egis Technology Inc. - SuiteTray.) -- C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
O4 - HKLM\..\Wow6432Node\Run: [UVS10 Preload] . (.Ulead Systems, Inc. - Ulead VideoStudio.) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [GoogleChromeAutoLaunch_A7E31F99DE1AB07DA9783C80B4E432EB] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [SkyDrive] . (.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [systray] . (.Advernet - Notation.) -- C:\Program Files (x86)\Notation\NotationSysTray.exe =>Hijacker.Proxy
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [SSync] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Meunier\AppData\Roaming\SSync\SSync.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [DataMgr] . (.HTTO Group, Ltd. - Updater.) -- C:\Users\Meunier\AppData\Roaming\DataMgr\DataMgr.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-b�te.) -- C:\Windows\System32\StikyNot.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [SCheck] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Meunier\AppData\Roaming\SCheck\SCheck.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [Snoozer] . (...) -- C:\Users\Meunier\AppData\Roaming\Snz\Snz.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [Intermediate] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Meunier\AppData\Roaming\Intermediate\Intermediate.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\RunOnce: [Uninstall C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112_4\amd64] . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\WINDOWS\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\RunOnce: [Uninstall C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314_2\amd64] . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\WINDOWS\system32\cmd.exe =>.Microsoft Corporation
~ Application: Scanned in 00mn 00s
---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Skype Click to Call [64Bits] - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- c:\program files (x86)\skype\toolbars\internet explorer x64\icon.ico
O9 - Extra button: Free YouTube Download [64Bits] - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} . (...) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\dvdvideosoft.ico
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 7 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{7C853957-50BD-486F-A4AA-873AFA2A1501}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{9133BFA2-BE42-4AE5-BB70-2D5B45EB8530}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{7C853957-50BD-486F-A4AA-873AFA2A1501}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{9133BFA2-BE42-4AE5-BB70-2D5B45EB8530}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\WIA6EB~1\Datamngr\x64\datamngr.dll (.not file.) =>PUP.Datamngr
~ AppInit DLL: Scanned in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FABS - Helping agent for MAGIX media dat (Fabs) . (.MAGIX AG - Verzeichnis�berwachung und Hilfsaufgaben f�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: GREGService (GREGService) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Live Updater Service (Live Updater Service) . (.Acer Incorporated - Updater Service.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Notation (Notation) . (.Advernet - Notation.) - C:\Program Files (x86)\Notation\Notation.exe =>Hijacker.Proxy
O23 - Service: NotationMonitor (NotationMonitor) . (.Advernet - SavdmMonitor.) - C:\Program Files (x86)\Notation\NotationMonitor.exe =>Hijacker.Proxy
O23 - Service: Skype C2C Service (Skype C2C Service) . (.Skype Technologies S.A. - Skype C2C Service.) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) . (.Ulead Systems, Inc. - ULCDRSvr.) - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: USBS3S4Detection (USBS3S4Detection) . (.Pas de propri�taire - USB S3S4 Detection.) - C:\OEM\USBDECTION\USBS3S4Detection.exe
~ Services: 20 Scanned in 00mn 04s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enum�re les donn�es de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job [916]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job [920]
[MD5.A283108E14F3970432C21AF4C0CB1BCE] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257416]
[MD5.82C362A81EE4E441CD85260C8E9E708A] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [251784]
[MD5.4C0A720AB377391D7D2EDE1ED905A420] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3676952] =>Piriform Ltd
[MD5.C76C72ACB62DA8537B1241C6B7B31F9E] [APT] [clear.fi] (.Acer Incorporated.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe [264760]
[MD5.9DC1C210895A9F15AC8A9E3E40EFD768] [APT] [clear.fiAgent] (.CyberLink Corp..) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe [120104]
[MD5.542D3040C7EF444589153BB625A84978] [APT] [DMREngine] (.CyberLink.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe [169352]
[MD5.00000000000000000000000000000000] [APT] [EPUpdater] (...) -- C:\Users\Meunier\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe (.not file.) [0] =>Hijacker.BabSolution
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.00000000000000000000000000000000] [APT] [SidebarExecute] (...) -- C:\Program Files\Windows Sidebar\sidebar.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [SoftwareUpdateTaskMachineCore] (...) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe (.not file.) [0] =>Adware.Boxore
[MD5.00000000000000000000000000000000] [APT] [SoftwareUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe (.not file.) [0] =>Adware.Boxore
[MD5.00000000000000000000000000000000] [APT] [{06FF7AAF-D3A2-4AC7-B926-313B2D1FD86B}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.8475AAF353C64B190A8C2040DD530237] [APT] [{11B0D155-7395-4300-AA2C-56E4F3E8C78F}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe [1605632]
[MD5.00000000000000000000000000000000] [APT] [{19219DCD-4224-43C4-9C9C-009EE7A84F5F}] (...) -- C:\Program Files (x86)\Micro Application\Vos Photos � la T�l� sur CD-DVD 2007 Edition Deluxe\PhotoTV4.exe (.not file.) [0]
[MD5.8475AAF353C64B190A8C2040DD530237] [APT] [{27C2C6D5-44E5-46B0-A283-BC5E2ECC85C6}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe [1605632]
[MD5.00000000000000000000000000000000] [APT] [{4DB67D40-F0D1-4693-8BB9-D7BCA8AE2397}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.8475AAF353C64B190A8C2040DD530237] [APT] [{598E25FF-F0CB-4F52-88A4-86B7F5AA8681}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe [1605632]
[MD5.00000000000000000000000000000000] [APT] [{5C7D01C5-D924-4E84-8FEB-59CC9E17A6FD}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{701CDFF6-B261-4855-A0E0-F7DEC5CE6035}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{7146D889-2907-4F5F-9403-79EA03E42F8D}] (...) -- C:\Program Files (x86)\Micro Application\Vos Photos � la T�l� sur CD-DVD 2007 Edition Deluxe\PhotoTV4.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{79BACA70-0224-4D79-8D1F-DB88E7934F01}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.DC03CCA65DBCA253EF29C9E13AEDDE0E] [APT] [{7BEDCA6E-9B24-4AF6-8828-F79E47A474FF}] (.J.L.F..) -- C:\Program Files (x86)\EnveloppesEditor1.11\EnveloppesEditor.exe [2418176]
[MD5.F8B91B40D1A3A570E7B8E1552F9E07FF] [APT] [{90302EC7-462E-4D15-A0F0-ED9DF0683016}] (.Koyote Soft.) -- C:\Program Files (x86)\Free Video Converter\FreeVideoConverter.exe [900096]
[MD5.00000000000000000000000000000000] [APT] [{90DBDCE1-011E-4308-9F7D-0DB798B6A27E}] (...) -- C:\PROGRA~3\TARMAI~1\{889DF~1\Setup.exe (.not file.) [0] =>PUP.Tarma
[MD5.75B381B8DE22D389E619CFA4F43E0CBB] [APT] [{913E69F8-A535-4258-9871-FB1115AF4424}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio SE DVD\vstudio.exe [1794048]
[MD5.00000000000000000000000000000000] [APT] [{A519CD00-BEB2-461A-9B28-B8E36D87F089}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{B18C2DC9-6778-4031-A4FA-DE63EFAE027D}] (...) -- E:\setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{BA3A6EC3-C8D3-431F-A462-5E5E57B659CF}] (...) -- C:\Users\Meunier\AppData\Local\Temp\Temp2_crak vidostudio9.zip\crak vidostudio9\Ulead VideoStudio 9 Trial to Full - Parisa\Ulead VideoStudio 9 Trial to Full - Parisa.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{C13CB813-272B-48C2-B1CB-1E277364C2CA}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.8475AAF353C64B190A8C2040DD530237] [APT] [{C53A284C-731C-4A7E-9C6C-FB27C415BAC7}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe [1605632]
[MD5.8475AAF353C64B190A8C2040DD530237] [APT] [{D199A63A-8AC4-4324-997D-EEC8B6D18619}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe [1605632]
[MD5.00000000000000000000000000000000] [APT] [{DBF79E95-8313-43FF-8876-955A96BAAFE5}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.65E3DA498B523915F8F87D1FE74A1F8B] [APT] [{E523AD2B-3126-439D-815D-C813115FF16F}] (...) -- C:\Users\Meunier\AppData\Local\ext_piccshare_uninst.exe [44136]
[MD5.8475AAF353C64B190A8C2040DD530237] [APT] [{F1008345-7A70-4FE1-9073-A965F2F6691F}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe [1605632]
~ Scheduled Task: 47 Scanned in 00mn 05s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s
---\\ Pilotes lanc�s au d�marrage du syst�me (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (mwlPSDFilter) . (.Egis Technology Inc. - PSD Filter Driver.) - C:\Windows\System32\DRIVERS\mwlPSDFilter.sys
O41 - Driver: (mwlPSDNServ) . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - C:\Windows\System32\DRIVERS\mwlPSDNServ.sys
O41 - Driver: (mwlPSDVDisk) . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Drivers: 42 Scanned in 00mn 00s
---\\ Logiciels install�s (O42)
O42 - Logiciel: 1.0.1.16 - (.Laetjr.com.) [HKLM][64Bits] -- {DF547229-1227-461B-B527-6846EFBE0C54}_is1
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {55D55008-E5F6-47D6-B16F-B2A40D4D145F}
O42 - Logiciel: Acer Registration - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Registration
O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Screensaver
O42 - Logiciel: Acer Updater - (.Acer Incorporated.) [HKLM][64Bits] -- {EE171732-BEB4-4576-887D-CB62727F01CA}
O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A0087DDE-69D0-11E2-AD57-43CA6188709B}
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop 6.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Photoshop 6.0
O42 - Logiciel: Adobe Reader X (10.1.8) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Adobe SVG Viewer - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe SVG Viewer
O42 - Logiciel: AnmanieSMP 2.4 i - (.Christoph Walter.) [HKLM][64Bits] -- AnmanieSMP_is1
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {63EC2120-1742-4625-AA47-C6A8AEC9C64C}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: ArcSoft ShowBiz DVD 2 - (.ArcSoft.) [HKLM][64Bits] -- {1ABC5C05-3477-4E73-997F-C38ECF1AC732}
O42 - Logiciel: Audacity 1.3.13 (Unicode) - (.Audacity Team.) [HKLM][64Bits] -- Audacity 1.3 Beta (Unicode)_is1
O42 - Logiciel: BenVista PhotoZoom Pro 4.1.4 - (.BenVista Ltd..) [HKCU][64Bits] -- PhotoZoom Pro 4
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM][64Bits] -- {EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071} =>Adware.Boxore
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>Piriform Ltd
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: CDex - Open Source Digital Audio CD Extractor - (.Georgy Berdyshev.) [HKLM][64Bits] -- CDex
O42 - Logiciel: Chicken Invaders 3 - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112531267}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DVD Flick 1.3.0.7 - (.Dennis Meuwissen.) [HKLM][64Bits] -- DVD Flick_is1
O42 - Logiciel: Delta Chrome Toolbar - (.DeltaInstaller.) [HKLM][64Bits] -- {177586E7-E42E-4F38-83D1-D15B4AF5B714} =>Toolbar.DeltaSearch
O42 - Logiciel: Dream Day First Home - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox
O42 - Logiciel: E.M. PowerPoint Video Converter 3.20 - (.EffectMatrix, Inc..) [HKLM][64Bits] -- E.M. PowerPoint Video Converter_is1
O42 - Logiciel: Enregistrement du produit WebCam Live! Effects - (...) [HKLM][64Bits] -- WebCam Live! Effects Product Registration
O42 - Logiciel: EnveloppesEditor1.11 - (.J.L.F..) [HKLM][64Bits] -- EnveloppesEditor1.11_is1
O42 - Logiciel: Farm Frenzy 3 Ice Age - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-118399487}
O42 - Logiciel: Feedback Tool - (.Microsoft Corporation.) [HKLM][64Bits] -- {13A5E785-5197-4EAD-8EE3-D660271E49BC}
O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {6C5F8503-55D2-4398-858C-362B7A7AF51C}
O42 - Logiciel: Flip Words - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110109903}
O42 - Logiciel: FotoMorph version 13.8 - (.Digital Photo Software.) [HKLM][64Bits] -- {87A9A094-22A8-4F8A-9B7D-03D7CA48CE15}_is1
O42 - Logiciel: Free PDF to Word Doc Converter v1.1 - (.www.hellopdf.com.) [HKLM][64Bits] -- Free PDF to Word Doc Converter_is1
O42 - Logiciel: Free Video Converter V 3.1 - (.Koyote Soft.) [HKLM][64Bits] -- Free Video Converter_is1
O42 - Logiciel: Free YouTube Download version 3.2.0.128 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube Download_is1
O42 - Logiciel: GIMP 2.8.2 - (.The GIMP Team.) [HKLM][64Bits] -- GIMP-2_is1
O42 - Logiciel: Galapago - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {446CC8CE-0E90-44F7-ADD0-774B243EF090}
O42 - Logiciel: Gestionnaire pour appareils Windows Mobile - (.Microsoft Corporation.) [HKLM][64Bits] -- {626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}
O42 - Logiciel: Gif R�cup�rateur 1.1 - (.Olivier RAVET.) [HKLM][64Bits] -- Gif R�cup�rateur_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>Toolbar.Google
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google�Earth - (.Google.) [HKLM][64Bits] -- {5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}
O42 - Logiciel: G�n�atique 2013 - (.CDIP.) [HKLM][64Bits] -- {7FFB1D46-4CFA-4AB2-AF54-F222A9B74327}_is1
O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities
O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions
O42 - Logiciel: HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B - (.HP.) [HKLM][64Bits] -- {B61ED343-0B14-4241-999C-490CB1A20DA4}
O42 - Logiciel: HP Smart Web Printing 4.51 - (.HP.) [HKLM][64Bits] -- HP Smart Web Printing
O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4}
O42 - Logiciel: HandBrake 0.9.8 - (...) [HKLM][64Bits] -- HandBrake
O42 - Logiciel: Hercules HD Exchange - (.Hercules.) [HKLM][64Bits] -- {4622B670-F540-4985-9B43-C52A4FF00E25}
O42 - Logiciel: Hercules Webcam Station Evolution - (.Hercules.) [HKLM][64Bits] -- {B60D61FD-1CB1-4ED5-974E-8C959F14208E}
O42 - Logiciel: Hotkey Utility - (.Acer Incorporated.) [HKLM][64Bits] -- Hotkey Utility
O42 - Logiciel: IMinent Toolbar - (.IMinent.) [HKLM][64Bits] -- {A76AA284-E52D-47E6-9E4F-B85DBF8E35C3} =>Adware.IMBooster
O42 - Logiciel: IcoSauve - (.Pierre TORRIS.) [HKLM][64Bits] -- IcoSauve_is1
O42 - Logiciel: Identity Card - (.Acer Incorporated.) [HKLM][64Bits] -- Identity Card
O42 - Logiciel: Indeo� software - (...) [HKLM][64Bits] -- Indeo� software
O42 - Logiciel: Installer Yahoo! Messenger - (...) [HKLM][64Bits] -- Get Yahoo! Messenger
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Java 2 Runtime Environment, SE v1.4.2_19 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {7148F0A8-6813-11D6-A77B-00B0D0142190}
O42 - Logiciel: Java 7 Update 21 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217017FF}
O42 - Logiciel: Java(TM) 6 Update 39 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216035FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {400C31E4-796F-4E86-8FDC-C3C4FACC6847}
O42 - Logiciel: KC Softwares IDPhotoStudio - (.KC Softwares.) [HKLM][64Bits] -- KC Softwares IDPhotoStudio_is1
O42 - Logiciel: LAME v3.99.3 (for Windows) - (...) [HKLM][64Bits] -- LAME_is1
O42 - Logiciel: LEGO Digital Designer - (.LEGO A/S.) [HKLM][64Bits] -- New LEGO Digital Designer
O42 - Logiciel: LauncherMA - (.Micro Application.) [HKLM][64Bits] -- {C06EFB22-B5DB-46C5-9215-BCB5C19C0858}
O42 - Logiciel: Linkury Smartbar - (.Linkury Inc..) [HKLM][64Bits] -- {F04C4F83-D9C7-408C-9DEB-D5526E72108C} =>Hijacker.SmartBar
O42 - Logiciel: Linkury Smartbar Engine - (.Linkury Inc..) [HKCU][64Bits] -- {75e9a48b-068c-403f-b877-fa5890bde80c} =>Hijacker.SmartBar
O42 - Logiciel: Logiciel de t�l�chargement pour G�n�atique 2013 - (.CDIP.) [HKLM][64Bits] -- {EC09A22A-130C-4F7B-B28A-F239E2EB2B0A}_is1
O42 - Logiciel: MAGIX Photo Manager MX Deluxe - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{72187224-5AFB-426E-9E11-31EC0B46B167}
O42 - Logiciel: MAGIX Photo Manager MX Deluxe - (.MAGIX AG.) [HKLM][64Bits] -- {72187224-5AFB-426E-9E11-31EC0B46B167}
O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{3A0638C8-EDA3-49D0-9A53-E7649D6254E6}
O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- {3A0638C8-EDA3-49D0-9A53-E7649D6254E6}
O42 - Logiciel: MAGIX Vid�o deluxe 2013 - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{8C73E551-5AFA-42EE-B76E-64821590BCD3}
O42 - Logiciel: MAGIX Vid�o deluxe 2013 - (.MAGIX AG.) [HKLM][64Bits] -- {8C73E551-5AFA-42EE-B76E-64821590BCD3}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM][64Bits] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: MaintenanceService-Funmoods - (...) [HKCU][64Bits] -- Funmoods =>PUP.Funmoods
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Manuel d'utilisation de Creative WebCam Live! Effects (Fran�ais) - (...) [HKLM][64Bits] -- Manuel d'utilisation de Creative WebCam Live! Effects French
O42 - Logiciel: Merge Version 2.3 - (...) [HKLM][64Bits] -- merge_is1
O42 - Logiciel: Micro Application - Cave � vins - (.Micro Application.) [HKLM][64Bits] -- {7E8D836B-AB10-4C97-8542-D42C83B6F25A}
O42 - Logiciel: Micro Application - Etiquettes CD-DVD Edition Classic - (...) [HKLM][64Bits] -- {D712874A-B387-4B99-9172-F42E157A82E5}
O42 - Logiciel: Micro Application - Vos Photos � la T�l� sur CD-DVD 2007 Edition Deluxe - (...) [HKLM][64Bits] -- {AC50A61F-327F-4FD4-9CC3-9B491FA7E802}
O42 - Logiciel: Microsoft AutoRoute - (.Microsoft.) [HKLM][64Bits] -- {19EF7619-CAC5-4A49-B44A-D620DB771E01}
O42 - Logiciel: Microsoft GIF Animator - (...) [HKLM][64Bits] -- GIF Animator
O42 - Logiciel: Microsoft Reader Text-to-Speech deutsch - (.Microsoft Corporation.) [HKLM][64Bits] -- {A06F5ACB-AF59-4DC0-B22E-1F6F47FC7004}
O42 - Logiciel: Microsoft Reader Text-to-Speech pour le fran�ais - (.Microsoft Corporation.) [HKLM][64Bits] -- {6F1547AA-8DA7-4FAC-BA11-BE1659E7086E}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft SkyDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- SkyDriveSetup.exe =>.Microsoft Corporation
O42 - Logiciel: Mozilla Firefox 21.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 21.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: MyHeritage Family Tree Builder - (.MyHeritage.com.) [HKLM][64Bits] -- Family Tree Builder
O42 - Logiciel: MyWinLocker - (.Egis Technology Inc..) [HKLM][64Bits] -- {0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}
O42 - Logiciel: MyWinLocker 4 - (.Egis Technology Inc..) [HKLM][64Bits] -- {39F15B50-A977-4CA6-B1C3-6A8724CDA025}
O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}
O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- {17DF9714-60C9-43C9-A9C2-32BCAED44CBE}
O42 - Logiciel: Nero 7 Ultra Edition - (.Nero AG.) [HKLM][64Bits] -- {4908C75E-E5E2-43F7-B1DF-023CBA831036}
O42 - Logiciel: Notation - (.Advernet.) [HKLM][64Bits] -- {29633E53-BF13-41B5-9E10-19D7843BD9C3} =>Hijacker.Proxy
O42 - Logiciel: OCR Software by I.R.I.S. 13.0 - (.HP.) [HKLM][64Bits] -- HPOCR
O42 - Logiciel: Orbit Downloader - (.www.orbitdownloader.com.) [HKLM][64Bits] -- Orbit_is1
O42 - Logiciel: PDF-XChange 2012 - (.Tracker Software Products Ltd.) [HKLM][64Bits] -- {504022CD-6A58-42D5-ACC9-966F695AAD93}_is1
O42 - Logiciel: PhotoFiltre - (...) [HKCU][64Bits] -- PhotoFiltre
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3
O42 - Logiciel: PowerpointImageExtractor - (...) [HKLM][64Bits] -- PowerpointImageExtractor_is1
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {0E64B098-8018-4256-BA23-C316A43AD9B0}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller
O42 - Logiciel: SHARP GSM GPRS USB Driver Ver2.1.0 - (.Nom de votre soci�t�.) [HKLM][64Bits] -- InstallShield_{3D4B89AC-B4B3-47D4-8CEE-85390508F3D6}
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM][64Bits] -- Shop for HP Supplies
O42 - Logiciel: Shredder - (.Egis Technology Inc..) [HKLM][64Bits] -- {C2695E83-CF1D-43D1-84FE-B3BEC561012A}
O42 - Logiciel: Skype Click to Call - (.Skype Technologies S.A..) [HKLM][64Bits] -- {B6CF2967-C81E-40C0-9815-C05774FEF120}
O42 - Logiciel: Skype� 6.3 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: SmartSound Quicktracks Plugin - (.SmartSound Software Inc.) [HKLM][64Bits] -- InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}
O42 - Logiciel: Sprill and Ritchie - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117932650}
O42 - Logiciel: SweetIM Toolbar for Internet Explorer 4.2 - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3} =>PUP.SweetIM
O42 - Logiciel: SweetIM for Messenger 3.6 - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {0D5BBB2B-F044-46C3-877B-6A6BE1E08D19} =>PUP.SweetIM
O42 - Logiciel: TKexe - (...) [HKLM][64Bits] -- Kalender
O42 - Logiciel: USB TV Device Driver - (.Nom de votre soci�t�.) [HKLM][64Bits] -- InstallShield_{BCC5DC79-2275-4171-8CEA-39F0DD9ADF58}
O42 - Logiciel: Ulead VideoStudio 9.0 (all Languages) - (.Ulead Systems.) [HKLM][64Bits] -- Ulead VideoStudio 9.0_is1
O42 - Logiciel: Ulead VideoStudio 9.0 - (.Ulead System.) [HKLM][64Bits] -- {88F92798-59AB-474F-B40D-1EC5F782F7EE}
O42 - Logiciel: Ulead VideoStudio SE DVD - (.Ulead Systems.) [HKLM][64Bits] -- {8F8D9297-FDD2-405A-97E7-E52C7B2F97B3}
O42 - Logiciel: Utilitaire Effets vid�os avanc�s - (...) [HKLM][64Bits] -- Advanced Video FX Utility
O42 - Logiciel: Utilitaire Suivi du visage - (...) [HKLM][64Bits] -- Face Tracking Utility
O42 - Logiciel: VC80_CRT_x86 - (.kolor.) [HKLM][64Bits] -- {AFC02C27-473F-4EC5-9372-30771EFFB35F}
O42 - Logiciel: VDownloader 3.8.983 - (.Vitzo Limited.) [HKLM][64Bits] -- {A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1
O42 - Logiciel: VLC media player 2.0.7 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Votre PC Parle - (.Nom de soci�t� par d�faut.) [HKLM][64Bits] -- {1335A7E0-6055-47B8-92FC-714D65117CAA}
O42 - Logiciel: Votre PC parle dans Word - (.MEDIADICO.) [HKLM][64Bits] -- {487717A4-FD71-46E1-95E4-6B5BF05F3BCB}
O42 - Logiciel: Welcome Center - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Welcome Center
O42 - Logiciel: WinPcap 4.1.1 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst
O42 - Logiciel: WinX Free FLV to MP4 Converter 4.1.11 - (.Digiarty Software,Inc..) [HKLM][64Bits] -- WinX Free FLV to MP4 Converter_is1
O42 - Logiciel: Windows iLivid Toolbar - (.Bandoo Media, Inc.) [HKLM][64Bits] -- Windows Searchqu Toolbar =>Adware.Bandoo
O42 - Logiciel: XnView 1.99.1 - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnView_is1
O42 - Logiciel: Yahoo! Toolbar - (...) [HKLM][64Bits] -- Yahoo! Companion
O42 - Logiciel: YoWindow - (...) [HKLM][64Bits] -- yowindow
O42 - Logiciel: Yontoo 1.10.03 - (.Yontoo LLC.) [HKLM][64Bits] -- {889DF117-14D1-44EE-9F31-C5FB5D47F68B} =>Adware.Yontoo
O42 - Logiciel: YouTube Downloader Suite V3.1.5 - (.Apowersoft.) [HKLM][64Bits] -- {3FF2F54D-FA3A-406F-9F9E-6CDD95B9A1A9}_is1 =>PUP.Dealio
O42 - Logiciel: adsl TV - (.adsl TV / FM.) [HKLM][64Bits] -- {3AFDD2C6-8663-46B5-B195-6CEB00D44768}
O42 - Logiciel: avast! Free Antivirus v8.0.1497.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: clear.fi - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}
O42 - Logiciel: clear.fi - (.CyberLink Corp..) [HKLM][64Bits] -- {14C4C3B6-F1F4-401F-8C86-03E8E19AAC8C}
O42 - Logiciel: clear.fi - (.CyberLink Corp..) [HKLM][64Bits] -- {2637C347-9DAD-11D6-9EA2-00055D0CA761}
O42 - Logiciel: clear.fi - (.CyberLink Corp..) [HKLM][64Bits] -- {B906C11A-D193-4143-9FA7-E2EE8A5A8F21}
O42 - Logiciel: clear.fi Client - (.Acer Incorporated.) [HKLM][64Bits] -- {43AAE145-83CF-4C96-9A5E-756CEFCE879F}
O42 - Logiciel: eDownloader - (.Advernet.) [HKLM][64Bits] -- eDownloader 1.0.1 =>PUP.SoftwareEngine
O42 - Logiciel: eDownloader - (.Advernet.) [HKLM][64Bits] -- {29D4F37D-914A-4B8E-BBCE-C181329959F2} =>PUP.SoftwareEngine
O42 - Logiciel: eMule - (...) [HKLM][64Bits] -- eMule
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}
O42 - Logiciel: newsXpresso - (.esobi Inc..) [HKLM][64Bits] -- InstallShield_{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}
O42 - Logiciel: newsXpresso - (.esobi Inc..) [HKLM][64Bits] -- {613C0AC5-3A67-4B94-8B13-9176AD83F5BF}
~ Logic: 281 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\592d8dbb23cea14]
[HKCU\Software\AKVIS]
[HKCU\Software\APN PIP]
[HKCU\Software\AVAST Software]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\Ahead]
[HKCU\Software\AppDataLow\Software\ConduitSearchScopes]
[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\AppDataLow\Software\WhiteSmoke_US_New] =>PUP.WhiteSmoke
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software\searchqutoolbar] =>PUP.Datamngr
[HKCU\Software\AppDataLow\Toolbar]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\ArcSoft]
[HKCU\Software\Audacity]
[HKCU\Software\BenVista]
[HKCU\Software\BugSplat]
[HKCU\Software\CDIP]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\Class]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Corel]
[HKCU\Software\Creative Tech]
[HKCU\Software\Cyberlink]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\Cygwin]
[HKCU\Software\DVDVideoSoft]
[HKCU\Software\Digital Photo Software]
[HKCU\Software\EgisTec MyWinLocker]
[HKCU\Software\FLEXlm License Manager]
[HKCU\Software\Gladinet]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\HTTOGroup]
[HKCU\Software\Hercules]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\I.R.I.S.]
[HKCU\Software\IM Providers]
[HKCU\Software\IRISDesktopSearch]
[HKCU\Software\Intel]
[HKCU\Software\Intelligent Converters]
[HKCU\Software\Iris]
[HKCU\Software\JavaSoft]
[HKCU\Software\KC Softwares]
[HKCU\Software\Kalender]
[HKCU\Software\LAventure]
[HKCU\Software\Licenses]
[HKCU\Software\Ligos]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\MAGIX AG]
[HKCU\Software\MAVideoScr]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\Magix]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MediaBurner]
[HKCU\Software\Micro Application]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\MyHeritage.com]
[HKCU\Software\NITRO PDF]
[HKCU\Software\Nektra]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Nosibay]
[HKCU\Software\Nuance]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\Oberon Media]
[HKCU\Software\OfferMosquito] =>Toolbar.OfferMosquito
[HKCU\Software\Orbit]
[HKCU\Software\PIP]
[HKCU\Software\PerformerSoft LLC]
[HKCU\Software\PiccShare]
[HKCU\Software\Pierre Torris]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\ProgSense]
[HKCU\Software\Protector]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Skype]
[HKCU\Software\Smart Soft]
[HKCU\Software\SmartbarBackup] =>Hijacker.SmartBar
[HKCU\Software\SmartbarLog] =>Hijacker.SmartBar
[HKCU\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\Snoozer]
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Softwrap]
[HKCU\Software\SubSystems]
[HKCU\Software\TeleCharger]
[HKCU\Software\The Complete Genealogy Reporter]
[HKCU\Software\Tracker Software]
[HKCU\Software\Trolltech]
[HKCU\Software\UPH]
[HKCU\Software\Ulead Systems]
[HKCU\Software\Ulead]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\Venning Graphicutils]
[HKCU\Software\VicMan Software]
[HKCU\Software\WPCubed]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Winamp]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Yahoo]
[HKCU\Software\YouTube Downloader Suite] =>PUP.Dealio
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\eMule]
[HKCU\Software\hugin]
[HKCU\Software\iLivid] =>Adware.Bandoo
[HKCU\Software\pptvideo]
[HKCU\Software\repkasoft]
[HKCU\Software\tvp]
[HKLM\Software\AGERE]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AcerUtil]
[HKLM\Software\Acer]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CBSTEST]
[HKLM\Software\Canneverbe Limited]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Creative Tech]
[HKLM\Software\CyberLink]
[HKLM\Software\DTS]
[HKLM\Software\DVDVideoSoft]
[HKLM\Software\DataMngr] =>PUP.Datamngr
[HKLM\Software\Dolby]
[HKLM\Software\EgisTec IPS]
[HKLM\Software\EgisTec Shredder]
[HKLM\Software\GEAR Software]
[HKLM\Software\Google]
[HKLM\Software\Hercules Technologies]
[HKLM\Software\Hercules]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\LSI]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfee]
[HKLM\Software\McFPDetect]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OOBEOffer]
[HKLM\Software\OemSetup]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Tarma Installer] =>PUP.Tarma
[HKLM\Software\Tracker Software]
[HKLM\Software\Waves Audio]
[HKLM\Software\WebCam]
[HKLM\Software\Wow6432Node\592d8dbb23cea14]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Acer Incorporated]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Advernet] =>Hijacker.Proxy
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\ArcSoft]
[HKLM\Software\Wow6432Node\Babylon] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Canneverbe Limited]
[HKLM\Software\Wow6432Node\Canopus]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Creative Tech]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\DVDVideoSoft]
[HKLM\Software\Wow6432Node\Delta]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\DriverTuner]
[HKLM\Software\Wow6432Node\DriverTuner_Init]
[HKLM\Software\Wow6432Node\EgisTec IPS]
[HKLM\Software\Wow6432Node\EgisTec MyWinLockerSuite]
[HKLM\Software\Wow6432Node\EgisTec MyWinLocker]
[HKLM\Software\Wow6432Node\EgisTec Shredder]
[HKLM\Software\Wow6432Node\FLEXlm License Manager]
[HKLM\Software\Wow6432Node\Funmoods] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hercules]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Kolor]
[HKLM\Software\Wow6432Node\L&H]
[HKLM\Software\Wow6432Node\LAventure]
[HKLM\Software\Wow6432Node\Lame For Audacity]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\MAGIX]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfeeInstaller]
[HKLM\Software\Wow6432Node\McAfee]
[HKLM\Software\Wow6432Node\Micro Application]
[HKLM\Software\Wow6432Node\MimarSinan]
[HKLM\Software\Wow6432Node\Mircrosoft]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MyHeritage.com]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\Oberon Media]
[HKLM\Software\Wow6432Node\Orbit]
[HKLM\Software\Wow6432Node\PIP]
[HKLM\Software\Wow6432Node\PoINT]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SHARP]
[HKLM\Software\Wow6432Node\SearchquMediabarTb] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\SmartSound Software]
[HKLM\Software\Wow6432Node\Software]
[HKLM\Software\Wow6432Node\Sys Modules]
[HKLM\Software\Wow6432Node\TuneUpMedia]
[HKLM\Software\Wow6432Node\Ulead Systems]
[HKLM\Software\Wow6432Node\Uniblue]
[HKLM\Software\Wow6432Node\VDownloader]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\VirtualDubMOD 1.5.10.2 b2540 Fr]
[HKLM\Software\Wow6432Node\VirualDiskRedist]
[HKLM\Software\Wow6432Node\Vittalia]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WhiteSmoke_US_New] =>PUP.WhiteSmoke
[HKLM\Software\Wow6432Node\WinPcap]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\XnView]
[HKLM\Software\Wow6432Node\Yahoo]
[HKLM\Software\Wow6432Node\ahead]
[HKLM\Software\Wow6432Node\iTinySoft]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\repkasoft]
[HKLM\Software\Wow6432Node]
~ Key Software: 378 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 17/08/2011 - 15:57:14 - [323,982] ----D C:\Program Files (x86)\Acer
O43 - CFD: 19/09/2013 - 17:38:49 - [-1738,965] ----D C:\Program Files (x86)\Acer GameZone
O43 - CFD: 25/03/2013 - 18:36:25 - [225,000] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 22/10/2012 - 17:23:52 - [40,526] ----D C:\Program Files (x86)\adslTV
O43 - CFD: 11/12/2011 - 19:14:26 - [1,411] ----D C:\Program Files (x86)\AnmSMP
O43 - CFD: 21/09/2012 - 14:05:21 - [102,326] ----D C:\Program Files (x86)\Apowersoft
O43 - CFD: 09/12/2011 - 17:10:11 - [2,316] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 30/01/2012 - 19:51:00 - [466,047] ----D C:\Program Files (x86)\ArcSoft
O43 - CFD: 08/12/2011 - 22:03:19 - [40,498] ----D C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)
O43 - CFD: 15/09/2012 - 21:42:11 - [1,406] ----D C:\Program Files (x86)\autostitch
O43 - CFD: 24/02/2013 - 23:26:55 - [0] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 17/03/2012 - 19:43:20 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 16/03/2013 - 17:58:53 - [0] ----D C:\Program Files (x86)\Boxore =>Adware.Boxore
O43 - CFD: 16/10/2012 - 22:06:22 - [29,457] ----D C:\Program Files (x86)\captvty-1.8.10
O43 - CFD: 05/02/2013 - 22:27:23 - [16,788] ----D C:\Program Files (x86)\CDBurnerXP
O43 - CFD: 08/12/2011 - 22:06:26 - [10,213] ----D C:\Program Files (x86)\CDex
O43 - CFD: 14/04/2013 - 09:48:19 - [744,956] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 09/12/2011 - 17:43:20 - [0,609] ----D C:\Program Files (x86)\Conduit
O43 - CFD: 17/08/2011 - 15:52:05 - [0,064] ----D C:\Program Files (x86)\Cyberlink
O43 - CFD: 01/02/2013 - 12:50:36 - [0] ----D C:\Program Files (x86)\Delta
O43 - CFD: 24/02/2013 - 22:39:04 - [26,845] ----D C:\Program Files (x86)\Digiarty
O43 - CFD: 31/03/2013 - 19:39:31 - [2,954] ----D C:\Program Files (x86)\Digital Photo Software
O43 - CFD: 02/11/2012 - 23:26:58 - [42,824] ----D C:\Program Files (x86)\DVD Flick
O43 - CFD: 04/02/2013 - 22:01:10 - [5,972] ----D C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 02/11/2012 - 19:46:04 - [26,873] ----D C:\Program Files (x86)\E.M. PowerPoint Video Converter
O43 - CFD: 24/03/2011 - 10:07:27 - [3,457] ----D C:\Program Files (x86)\EgisTec IPS
O43 - CFD: 24/03/2011 - 10:07:34 - [18,307] ----D C:\Program Files (x86)\EgisTec MyWinLocker
O43 - CFD: 24/03/2011 - 10:06:53 - [2,533] ----D C:\Program Files (x86)\EgisTec MyWinLockerSuite
O43 - CFD: 24/03/2011 - 10:07:56 - [5,331] ----D C:\Program Files (x86)\EgisTec Shredder
O43 - CFD: 08/01/2012 - 14:53:50 - [10,401] ----D C:\Program Files (x86)\eMule
O43 - CFD: 18/04/2012 - 18:07:20 - [6,292] ----D C:\Program Files (x86)\EnveloppesEditor1.11
O43 - CFD: 24/01/2013 - 17:41:59 - [2,309] ----D C:\Program Files (x86)\Feedback Tool
O43 - CFD: 01/02/2013 - 12:50:02 - [2,722] ----D C:\Program Files (x86)\Free PDF to Word Doc Converter
O43 - CFD: 09/12/2011 - 17:37:18 - [10,833] ----D C:\Program Files (x86)\Free Video Converter
O43 - CFD: 23/01/2013 - 20:42:48 - [476,039] ----D C:\Program Files (x86)\Geneatique2013
O43 - CFD: 05/06/2013 - 21:03:21 - [1,341] ----D C:\Program Files (x86)\GIF Recuperateur
O43 - CFD: 21/01/2013 - 14:55:26 - [469,563] ----D C:\Program Files (x86)\Google
O43 - CFD: 01/02/2013 - 17:16:43 - [0] ----D C:\Program Files (x86)\GUM2E11.tmp
O43 - CFD: 16/02/2013 - 09:29:09 - [21,721] ----D C:\Program Files (x86)\Handbrake
O43 - CFD: 20/12/2011 - 11:50:59 - [94,158] ----D C:\Program Files (x86)\Hercules
O43 - CFD: 15/12/2011 - 19:31:19 - [311,630] ----D C:\Program Files (x86)\HP
O43 - CFD: 15/10/2012 - 10:48:01 - [0,971] ----D C:\Program Files (x86)\IcoSauve
O43 - CFD: 16/12/2011 - 17:50:55 - [34,213] ----D C:\Program Files (x86)\iLivid =>Adware.Bandoo
O43 - CFD: 07/01/2013 - 21:12:57 - [188,295] ----D C:\Program Files (x86)\Install-geneatique-2013
O43 - CFD: 16/10/2012 - 09:31:15 - [332,404] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 01/02/2013 - 17:01:19 - [63,606] ----D C:\Program Files (x86)\Intel
O43 - CFD: 14/10/2013 - 18:30:22 - [5,878] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 16/10/2012 - 11:11:27 - [143,854] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 21/05/2013 - 09:58:36 - [248,116] ----D C:\Program Files (x86)\Java
O43 - CFD: 22/12/2011 - 13:09:18 - [2,563] ----D C:\Program Files (x86)\KC Softwares
O43 - CFD: 24/06/2012 - 14:50:31 - [1,623] ----D C:\Program Files (x86)\laetjr
O43 - CFD: 06/05/2012 - 11:30:26 - [1,540] ----D C:\Program Files (x86)\Lame For Audacity
O43 - CFD: 26/06/2012 - 22:42:45 - [449,830] ----D C:\Program Files (x86)\LEGO Company
O43 - CFD: 14/11/2012 - 19:42:58 - [1094,909] ----D C:\Program Files (x86)\MAGIX
O43 - CFD: 16/04/2013 - 19:56:20 - [13,514] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 17/09/2012 - 18:06:19 - [6,064] ----D C:\Program Files (x86)\Merge2.3
O43 - CFD: 03/02/2012 - 12:15:59 - [1956,384] ----D C:\Program Files (x86)\Micro Application
O43 - CFD: 30/11/2012 - 12:47:10 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 11/02/2012 - 18:59:13 - [13,309] ----D C:\Program Files (x86)\Microsoft ActiveSync
O43 - CFD: 09/12/2011 - 17:02:18 - [831,484] ----D C:\Program Files (x86)\Microsoft AutoRoute
O43 - CFD: 22/12/2011 - 13:04:49 - [1,466] ----D C:\Program Files (x86)\Microsoft GIF Animator
O43 - CFD: 05/01/2012 - 08:03:42 - [564,611] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 14/10/2013 - 18:31:42 - [40,851] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 18/11/2012 - 12:21:52 - [5,710] ----D C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 22/10/2012 - 18:47:34 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 08/12/2011 - 16:09:22 - [0,014] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 08/12/2011 - 16:07:17 - [1,323] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 08/12/2011 - 19:53:41 - [3,554] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 01/02/2013 - 16:44:41 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 16/10/2013 - 10:57:12 - [104,686] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 16/10/2013 - 10:57:12 - [0,214] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 13/09/2013 - 12:52:58 - [0,002] ----D C:\Program Files (x86)\Mozilla Thunderbird =>.Mozilla Corporation
O43 - CFD: 01/02/2013 - 16:46:20 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 22/10/2012 - 20:38:53 - [26,527] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 10/11/2012 - 12:32:28 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 10/01/2013 - 15:44:00 - [79,639] ----D C:\Program Files (x86)\MyHeritage
O43 - CFD: 08/12/2011 - 16:40:52 - [352,282] ----D C:\Program Files (x86)\Nero
O43 - CFD: 24/03/2011 - 10:13:11 - [6,828] ----D C:\Program Files (x86)\newsXpresso
O43 - CFD: 23/01/2013 - 18:44:19 - [1,715] ----D C:\Program Files (x86)\Notation
O43 - CFD: 18/04/2013 - 15:00:14 - [14,394] ----D C:\Program Files (x86)\Orbitdownloader
O43 - CFD: 05/11/2012 - 21:43:52 - [0,001] ----D C:\Program Files (x86)\Paltalk Messenger
O43 - CFD: 11/12/2011 - 19:38:35 - [3,528] ----D C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 21/02/2012 - 23:17:37 - [1,676] ----D C:\Program Files (x86)\PowerpointImageExtractor_V1_2
O43 - CFD: 16/10/2012 - 11:07:54 - [72,431] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 17/08/2011 - 15:37:15 - [3,205] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 01/02/2013 - 16:33:24 - [36,536] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 08/12/2011 - 17:20:46 - [0,161] ----D C:\Program Files (x86)\SHARP GSM GPRS USB Driver
O43 - CFD: 14/04/2013 - 09:48:19 - [47,249] R---D C:\Program Files (x86)\Skype
O43 - CFD: 08/12/2011 - 17:52:33 - [6,936] ----D C:\Program Files (x86)\SmartSound Software
O43 - CFD: 22/06/2012 - 15:12:09 - [2,443] ----D C:\Program Files (x86)\Software
O43 - CFD: 23/01/2013 - 18:43:34 - [3,221] ----D C:\Program Files (x86)\Software Installer
O43 - CFD: 17/08/2011 - 15:37:29 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 29/05/2012 - 10:05:11 - [47,223] ----D C:\Program Files (x86)\TKexe
O43 - CFD: 14/02/2012 - 12:35:56 - [355,838] ----D C:\Program Files (x86)\Ulead Systems
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 30/01/2012 - 20:00:52 - [15,508] ----D C:\Program Files (x86)\USB_video_device
O43 - CFD: 27/04/2013 - 15:40:33 - [37,025] ----D C:\Program Files (x86)\VDownloader
O43 - CFD: 21/10/2012 - 12:54:22 - [101,905] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 18/09/2013 - 18:44:14 - [6,523] ----D C:\Program Files (x86)\VS Revo Group
O43 - CFD: 06/09/2013 - 21:03:04 - [1,038] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 16/12/2011 - 17:46:03 - [2,904] ----D C:\Program Files (x86)\Windows iLivid Toolbar =>Adware.Bandoo
O43 - CFD: 30/11/2012 - 12:46:40 - [172,670] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 26/07/2012 - 12:08:59 - [5,466] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 08/12/2011 - 17:51:50 - [0,161] ----D C:\Program Files (x86)\Windows Media Components
O43 - CFD: 05/02/2013 - 22:25:40 - [3,494] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 26/07/2012 - 10:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 26/07/2012 - 10:12:59 - [7,243] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 18/06/2013 - 23:00:05 - [5,226] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 26/07/2012 - 10:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 01/02/2013 - 16:44:42 - [1,291] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 15/09/2012 - 14:34:15 - [16,243] ----D C:\Program Files (x86)\XnView
O43 - CFD: 15/12/2011 - 17:35:00 - [6,012] ----D C:\Program Files (x86)\Yahoo!
O43 - CFD: 11/12/2011 - 20:01:26 - [2,134] ----D C:\Program Files (x86)\YoWindow
O43 - CFD: 16/10/2013 - 11:02:32 - [17,007] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 27/12/2011 - 19:36:27 - [23,534] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 16/04/2013 - 09:19:30 - [45,606] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 08/12/2011 - 16:42:25 - [82,751] ----D C:\Program Files (x86)\Common Files\Ahead
O43 - CFD: 16/10/2012 - 11:11:03 - [105,862] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 30/01/2012 - 19:52:19 - [18,914] ----D C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 24/02/2013 - 23:26:58 - [0] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 08/12/2011 - 16:09:22 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 04/02/2013 - 22:00:27 - [70,183] ----D C:\Program Files (x86)\Common Files\DVDVideoSoft
O43 - CFD: 24/03/2011 - 10:07:26 - [0,165] ----D C:\Program Files (x86)\Common Files\EgisTec
O43 - CFD: 15/12/2011 - 17:32:48 - [0,507] ----D C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 15/12/2011 - 19:30:07 - [3,052] ----D C:\Program Files (x86)\Common Files\HP
O43 - CFD: 08/12/2011 - 17:51:06 - [20,142] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 21/05/2013 - 10:33:16 - [24,304] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 06/01/2012 - 23:37:06 - [4,423] ----D C:\Program Files (x86)\Common Files\L&H
O43 - CFD: 10/11/2012 - 12:32:59 - [23,954] ----D C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 10/11/2012 - 12:34:40 - [0,083] ----D C:\Program Files (x86)\Common Files\MAGIX Shared
O43 - CFD: 08/12/2011 - 11:37:24 - [0,784] ----D C:\Program Files (x86)\Common Files\mcafee
O43 - CFD: 03/02/2013 - 23:25:14 - [252,486] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 24/03/2011 - 09:33:05 - [0,338] ----D C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 17/08/2011 - 15:46:03 - [0,155] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 26/07/2012 - 10:13:01 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/04/2013 - 09:48:19 - [1,904] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 01/02/2013 - 16:44:40 - [0,223] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 01/02/2013 - 16:44:40 - [45,258] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 14/02/2012 - 12:22:16 - [16,218] ----D C:\Program Files (x86)\Common Files\Ulead Systems
O43 - CFD: 24/03/2011 - 09:49:01 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 19/09/2013 - 17:36:45 - [0] ----D C:\ProgramData\2DBoy
O43 - CFD: 16/10/2012 - 11:11:29 - [2,775] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 24/03/2011 - 09:48:13 - [1,690] ----D C:\ProgramData\Acer
O43 - CFD: 23/04/2013 - 09:00:08 - [230,492] ----D C:\ProgramData\Adobe
O43 - CFD: 09/12/2011 - 17:10:04 - [115,133] ----D C:\ProgramData\Apple
O43 - CFD: 16/10/2012 - 11:11:03 - [75,456] ----D C:\ProgramData\Apple Computer
O43 - CFD: 26/07/2012 - 09:22:08 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 04/03/2012 - 18:06:34 - [1,613] --H-D C:\ProgramData\ArcSoft
O43 - CFD: 14/10/2013 - 18:48:41 - [5,702] ----D C:\ProgramData\AVAST Software
O43 - CFD: 24/02/2013 - 21:47:39 - [0] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 01/02/2013 - 12:50:12 - [0] ----D C:\ProgramData\Babylon =>Toolbar.Babylon
O43 - CFD: 19/09/2013 - 17:10:37 - [0] ----D C:\ProgramData\BitGuard =>PUP.BitGuard
O43 - CFD: 07/12/2011 - 17:50:48 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 09/12/2011 - 17:52:28 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 01/02/2013 - 16:08:24 - [0,089] ----D C:\ProgramData\clear.fi
O43 - CFD: 07/12/2011 - 18:24:37 - [0,098] ----D C:\ProgramData\CyberLink
O43 - CFD: 26/07/2012 - 09:22:08 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 26/07/2012 - 09:22:08 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 19/12/2011 - 19:46:27 - [0,001] ----D C:\ProgramData\DriverBoost
O43 - CFD: 19/09/2013 - 13:59:28 - [0] ----D C:\ProgramData\DSearchLink =>Toolbar.DeltaSearch
O43 - CFD: 17/08/2011 - 15:40:11 - [0] ----D C:\ProgramData\EgisTec
O43 - CFD: 17/08/2011 - 15:40:04 - [0,268] ----D C:\ProgramData\EgisTec IPS
O43 - CFD: 08/01/2012 - 14:54:11 - [0] ----D C:\ProgramData\eMule
O43 - CFD: 07/12/2011 - 17:50:48 - [0] -SH-D C:\ProgramData\Favoris
O43 - CFD: 08/12/2011 - 11:55:32 - [0,519] ----D C:\ProgramData\Google
O43 - CFD: 07/01/2013 - 21:19:16 - [80,026] ----D C:\ProgramData\G�n�atique2013
O43 - CFD: 01/02/2013 - 16:44:44 - [23,411] ----D C:\ProgramData\HP
O43 - CFD: 15/12/2011 - 19:30:58 - [0,009] ----D C:\ProgramData\HP Product Assistant
O43 - CFD: 12/02/2012 - 12:48:05 - [0] ----D C:\ProgramData\InstallShield
O43 - CFD: 17/08/2011 - 15:40:03 - [0,001] ----D C:\ProgramData\Intel
O43 - CFD: 14/11/2012 - 19:42:58 - [382,470] ----D C:\ProgramData\MAGIX
O43 - CFD: 16/10/2012 - 17:59:00 - [16,372] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 05/01/2012 - 10:45:59 - [0,014] ----D C:\ProgramData\McAfee
O43 - CFD: 07/12/2011 - 17:50:48 - [0] -SH-D C:\ProgramData\Menu D�marrer
O43 - CFD: 06/01/2012 - 23:52:11 - [0,001] ----D C:\ProgramData\Micro Application
O43 - CFD: 04/04/2013 - 10:50:11 - [1282,960] -S--D C:\ProgramData\Microsoft
O43 - CFD: 14/10/2013 - 15:05:20 - [0,062] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 18/11/2012 - 12:21:38 - [0] ----D C:\ProgramData\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 07/12/2011 - 17:50:48 - [0] -SH-D C:\ProgramData\Mod�les
O43 - CFD: 11/05/2012 - 09:34:00 - [0,035] ----D C:\ProgramData\Mozilla
O43 - CFD: 08/01/2013 - 12:15:58 - [0,316] ----D C:\ProgramData\MyHeritage
O43 - CFD: 08/12/2011 - 16:40:53 - [2,709] ----D C:\ProgramData\Nero
O43 - CFD: 24/03/2011 - 10:13:15 - [0] ----D C:\ProgramData\newsXpresso
O43 - CFD: 05/09/2012 - 20:33:36 - [0] ----D C:\ProgramData\Nitro PDF
O43 - CFD: 05/09/2012 - 21:07:10 - [8,764] ----D C:\ProgramData\Nuance
O43 - CFD: 24/03/2011 - 09:44:32 - [1,164] ----D C:\ProgramData\OberonGameConsole
O43 - CFD: 07/12/2011 - 17:53:37 - [0,001] ----D C:\ProgramData\oem
O43 - CFD: 04/02/2013 - 10:11:17 - [1,518] ----D C:\ProgramData\PRICache
O43 - CFD: 09/01/2012 - 12:32:17 - [0] ----D C:\ProgramData\QuickTime
O43 - CFD: 26/07/2012 - 12:11:33 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 05/09/2012 - 20:54:50 - [0] ----D C:\ProgramData\ScanSoft
O43 - CFD: 10/11/2012 - 19:18:02 - [0] ----D C:\ProgramData\simplitec
O43 - CFD: 14/04/2013 - 09:48:21 - [83,943] ----D C:\ProgramData\Skype
O43 - CFD: 08/12/2011 - 17:52:34 - [6,862] ----D C:\ProgramData\SmartSound Software Inc
O43 - CFD: 26/07/2012 - 09:22:08 - [0] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 15/12/2011 - 18:12:14 - [0] ----D C:\ProgramData\Sun
O43 - CFD: 15/12/2011 - 21:18:56 - [0,425] ----D C:\ProgramData\SweetIM =>PUP.SweetIM
O43 - CFD: 07/01/2013 - 19:49:02 - [0,464] ---AD C:\ProgramData\Temp
O43 - CFD: 26/07/2012 - 09:22:08 - [0] -SH-D C:\ProgramData\Templates
O43 - CFD: 05/12/2012 - 16:40:09 - [0,235] ----D C:\ProgramData\TomTom
O43 - CFD: 11/12/2011 - 20:04:13 - [0,175] ----D C:\ProgramData\TuneUpMedia
O43 - CFD: 19/12/2011 - 19:46:45 - [0] ----D C:\ProgramData\UAB
O43 - CFD: 14/02/2012 - 12:40:24 - [0,312] ----D C:\ProgramData\Ulead Systems
O43 - CFD: 15/12/2011 - 17:36:18 - [0] ----D C:\ProgramData\WEBREG
O43 - CFD: 15/12/2011 - 19:31:57 - [0] ----D C:\ProgramData\Yahoo! Companion
O43 - CFD: 11/12/2011 - 20:01:26 - [5,224] ----D C:\ProgramData\YoWindow
O43 - CFD: 05/09/2012 - 14:11:15 - [0,002] ----D C:\ProgramData\zeon
O43 - CFD: 09/12/2011 - 17:11:12 - [0,002] ----D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 03/02/2012 - 14:59:09 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\4D
O43 - CFD: 25/03/2013 - 18:36:30 - [10,654] ----D C:\Users\Meunier\AppData\Roaming\Adobe
O43 - CFD: 23/01/2013 - 18:45:07 - [0] ----D C:\Users\Meunier\AppData\Roaming\Advernet =>Hijacker.Proxy
O43 - CFD: 14/09/2012 - 17:48:47 - [0,219] ----D C:\Users\Meunier\AppData\Roaming\Ahead
O43 - CFD: 21/09/2012 - 14:05:26 - [0,267] ----D C:\Users\Meunier\AppData\Roaming\Apowersoft
O43 - CFD: 09/12/2011 - 17:11:48 - [0,211] ----D C:\Users\Meunier\AppData\Roaming\Apple Computer
O43 - CFD: 01/02/2012 - 10:13:12 - [0,015] ----D C:\Users\Meunier\AppData\Roaming\ArcSoft
O43 - CFD: 28/06/2013 - 17:51:11 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\Audacity
O43 - CFD: 24/02/2013 - 22:25:25 - [0,172] ----D C:\Users\Meunier\AppData\Roaming\AVS4YOU
O43 - CFD: 09/12/2011 - 17:52:28 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\Canneverbe Limited
O43 - CFD: 04/02/2013 - 22:01:32 - [2,611] ----D C:\Users\Meunier\AppData\Roaming\Common
O43 - CFD: 05/09/2012 - 10:34:35 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\Convertisseur PDF
O43 - CFD: 08/12/2011 - 17:01:43 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\Creative
O43 - CFD: 07/12/2011 - 17:57:32 - [0] ----D C:\Users\Meunier\AppData\Roaming\CyberLink
O43 - CFD: 03/04/2013 - 09:23:37 - [0,161] ----D C:\Users\Meunier\AppData\Roaming\DataMgr
O43 - CFD: 05/09/2012 - 20:32:10 - [193,089] ----D C:\Users\Meunier\AppData\Roaming\Downloaded Installations
O43 - CFD: 16/10/2013 - 09:16:38 - [70,689] ----D C:\Users\Meunier\AppData\Roaming\Dropbox
O43 - CFD: 25/02/2013 - 11:44:19 - [0,004] ----D C:\Users\Meunier\AppData\Roaming\DVD Flick
O43 - CFD: 09/03/2013 - 17:17:18 - [0] ----D C:\Users\Meunier\AppData\Roaming\dvdcss
O43 - CFD: 04/02/2013 - 22:01:31 - [10,498] ----D C:\Users\Meunier\AppData\Roaming\DVDVideoSoft
O43 - CFD: 04/02/2013 - 22:01:12 - [0] ----D C:\Users\Meunier\AppData\Roaming\DVDVideoSoftIEHelpers
O43 - CFD: 24/02/2013 - 21:33:32 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\FreeVideoConverter
O43 - CFD: 15/01/2013 - 20:48:54 - [0] ----D C:\Users\Meunier\AppData\Roaming\Funmoods =>PUP.Funmoods
O43 - CFD: 08/12/2011 - 12:48:30 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\Google
O43 - CFD: 20/10/2012 - 20:52:27 - [0] ----D C:\Users\Meunier\AppData\Roaming\GrabPro
O43 - CFD: 24/11/2012 - 17:35:53 - [0] ----D C:\Users\Meunier\AppData\Roaming\gtk-2.0
O43 - CFD: 07/01/2013 - 21:16:27 - [0,069] ----D C:\Users\Meunier\AppData\Roaming\G�n�atique
O43 - CFD: 28/02/2013 - 22:04:45 - [0,066] ----D C:\Users\Meunier\AppData\Roaming\HandBrake
O43 - CFD: 15/12/2011 - 17:38:13 - [0,194] ----D C:\Users\Meunier\AppData\Roaming\HP
O43 - CFD: 07/12/2011 - 17:53:08 - [0] ----D C:\Users\Meunier\AppData\Roaming\Identities
O43 - CFD: 07/12/2011 - 17:53:30 - [0] ----D C:\Users\Meunier\AppData\Roaming\Intel Corporation
O43 - CFD: 13/10/2013 - 17:33:52 - [0,061] ----D C:\Users\Meunier\AppData\Roaming\Intermediate
O43 - CFD: 22/12/2011 - 13:11:56 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\KC Softwares
O43 - CFD: 08/12/2012 - 11:17:40 - [425,889] ----D C:\Users\Meunier\AppData\Roaming\LEGO Company
O43 - CFD: 07/12/2011 - 17:53:27 - [0,056] ----D C:\Users\Meunier\AppData\Roaming\Macromedia
O43 - CFD: 14/11/2012 - 19:42:20 - [4,503] ----D C:\Users\Meunier\AppData\Roaming\MAGIX
O43 - CFD: 16/10/2012 - 17:59:11 - [142,832] ----D C:\Users\Meunier\AppData\Roaming\Malwarebytes
O43 - CFD: 21/11/2010 - 09:16:41 - [0] ----D C:\Users\Meunier\AppData\Roaming\Media Center Programs
O43 - CFD: 18/12/2011 - 12:59:36 - [41,395] ----D C:\Users\Meunier\AppData\Roaming\Micro Application
O43 - CFD: 01/02/2013 - 16:58:10 - [9,467] -S--D C:\Users\Meunier\AppData\Roaming\Microsoft
O43 - CFD: 11/05/2012 - 09:34:05 - [17,521] ----D C:\Users\Meunier\AppData\Roaming\Mozilla
O43 - CFD: 08/01/2013 - 12:27:52 - [184,049] ----D C:\Users\Meunier\AppData\Roaming\MyHeritage
O43 - CFD: 14/09/2012 - 22:13:03 - [0] ----D C:\Users\Meunier\AppData\Roaming\newsXpresso
O43 - CFD: 05/09/2012 - 20:37:30 - [0,475] ----D C:\Users\Meunier\AppData\Roaming\Nitro PDF
O43 - CFD: 03/05/2012 - 15:03:03 - [0] ----D C:\Users\Meunier\AppData\Roaming\Nosibay
O43 - CFD: 05/09/2012 - 14:09:34 - [0] ----D C:\Users\Meunier\AppData\Roaming\Nuance
O43 - CFD: 07/12/2011 - 17:53:28 - [10,533] ----D C:\Users\Meunier\AppData\Roaming\OEM
O43 - CFD: 19/04/2013 - 15:22:09 - [11,396] ----D C:\Users\Meunier\AppData\Roaming\Orbit
O43 - CFD: 11/12/2011 - 19:41:54 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\PhotoFiltre
O43 - CFD: 04/02/2013 - 22:01:32 - [0] ----D C:\Users\Meunier\AppData\Roaming\PiccShare
O43 - CFD: 07/12/2011 - 18:24:42 - [0,015] ----D C:\Users\Meunier\AppData\Roaming\PowerCinema
O43 - CFD: 20/10/2012 - 20:52:53 - [0] ----D C:\Users\Meunier\AppData\Roaming\ProgSense
O43 - CFD: 05/09/2012 - 14:48:31 - [0,097] ----D C:\Users\Meunier\AppData\Roaming\ScanSoft
O43 - CFD: 13/10/2013 - 17:33:45 - [0,153] ----D C:\Users\Meunier\AppData\Roaming\SCheck
O43 - CFD: 10/11/2012 - 19:18:02 - [0] ----D C:\Users\Meunier\AppData\Roaming\simplitec
O43 - CFD: 16/10/2013 - 10:32:36 - [6,534] ----D C:\Users\Meunier\AppData\Roaming\Skype
O43 - CFD: 13/10/2013 - 17:33:50 - [1,170] ----D C:\Users\Meunier\AppData\Roaming\Snz
O43 - CFD: 04/02/2013 - 22:01:38 - [0,059] ----D C:\Users\Meunier\AppData\Roaming\SSync
O43 - CFD: 08/01/2013 - 12:12:43 - [0] ----D C:\Users\Meunier\AppData\Roaming\The Complete Genealogy Reporter - FTB
O43 - CFD: 08/05/2012 - 16:08:09 - [325,731] ----D C:\Users\Meunier\AppData\Roaming\Thunderbird =>.Mozilla Corporation
O43 - CFD: 05/12/2012 - 16:40:07 - [4,096] ----D C:\Users\Meunier\AppData\Roaming\TomTom
O43 - CFD: 11/12/2011 - 20:04:09 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\TuneUpMedia
O43 - CFD: 25/01/2012 - 23:24:07 - [62,932] ----D C:\Users\Meunier\AppData\Roaming\Ulead Systems
O43 - CFD: 27/04/2013 - 15:39:52 - [0,217] ----D C:\Users\Meunier\AppData\Roaming\VDownloader
O43 - CFD: 13/07/2013 - 15:10:25 - [0,695] ----D C:\Users\Meunier\AppData\Roaming\vlc
O43 - CFD: 08/12/2011 - 17:21:57 - [0] ----D C:\Users\Meunier\AppData\Roaming\Windows Live Writer
O43 - CFD: 24/06/2013 - 08:56:44 - [8,513] ----D C:\Users\Meunier\AppData\Roaming\XnView
O43 - CFD: 15/12/2011 - 17:34:59 - [0] ----D C:\Users\Meunier\AppData\Roaming\Yahoo!
O43 - CFD: 11/12/2011 - 20:01:26 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\YoWindow
O43 - CFD: 05/09/2012 - 21:07:10 - [0] ----D C:\Users\Meunier\AppData\Roaming\Zeon
O43 - CFD: 16/10/2013 - 11:03:28 - [0,020] ----D C:\Users\Meunier\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 08/12/2011 - 18:58:12 - [0,002] ----D C:\Users\Meunier\AppData\Local\2BrightSparks
O43 - CFD: 19/09/2013 - 17:36:45 - [0] ----D C:\Users\Meunier\AppData\Local\2DBoy
O43 - CFD: 07/12/2011 - 17:53:02 - [0,028] ----D C:\Users\Meunier\AppData\Local\Acer
O43 - CFD: 25/03/2013 - 18:31:57 - [16,519] ----D C:\Users\Meunier\AppData\Local\Adobe
O43 - CFD: 29/04/2013 - 08:36:12 - [13,936] ----D C:\Users\Meunier\AppData\Local\adslTV
O43 - CFD: 05/01/2012 - 10:32:47 - [2,791] ----D C:\Users\Meunier\AppData\Local\Ahead
O43 - CFD: 09/12/2011 - 17:10:15 - [0] ----D C:\Users\Meunier\AppData\Local\Apple
O43 - CFD: 16/10/2012 - 11:07:06 - [6,284] ----D C:\Users\Meunier\AppData\Local\Apple Computer
O43 - CFD: 01/02/2013 - 16:41:26 - [0] -SH-D C:\Users\Meunier\AppData\Local\Application Data
O43 - CFD: 07/02/2012 - 19:40:04 - [0] ----D C:\Users\Meunier\AppData\Local\Apps
O43 - CFD: 30/01/2012 - 19:52:34 - [0,001] ----D C:\Users\Meunier\AppData\Local\ArcSoft
O43 - CFD: 17/09/2013 - 08:39:00 - [0,067] ----D C:\Users\Meunier\AppData\Local\avgchrome
O43 - CFD: 20/10/2012 - 21:02:53 - [0,063] ----D C:\Users\Meunier\AppData\Local\Conduit
O43 - CFD: 07/12/2011 - 18:24:40 - [0,113] ----D C:\Users\Meunier\AppData\Local\Cyberlink
O43 - CFD: 15/10/2013 - 15:10:14 - [1,563] ----D C:\Users\Meunier\AppData\Local\Diagnostics
O43 - CFD: 03/01/2013 - 23:41:27 - [47,935] ----D C:\Users\Meunier\AppData\Local\Downloaded Installations
O43 - CFD: 07/12/2011 - 17:53:28 - [0] ----D C:\Users\Meunier\AppData\Local\EgisTec IPS
O43 - CFD: 05/05/2013 - 09:57:30 - [0] ----D C:\Users\Meunier\AppData\Local\ElevatedDiagnostics
O43 - CFD: 08/01/2012 - 14:53:50 - [0,124] ----D C:\Users\Meunier\AppData\Local\eMule
O43 - CFD: 24/11/2012 - 17:53:18 - [5,573] ----D C:\Users\Meunier\AppData\Local\fontconfig
O43 - CFD: 24/11/2012 - 17:53:17 - [0,001] ----D C:\Users\Meunier\AppData\Local\gegl-0.2
O43 - CFD: 15/02/2013 - 19:33:32 - [0] ----D C:\Users\Meunier\AppData\Local\Giant Savings Extension =>Adware.VidSaver
O43 - CFD: 05/09/2012 - 20:48:22 - [4,781] ----D C:\Users\Meunier\AppData\Local\gladinet
O43 - CFD: 28/06/2013 - 09:20:02 - [819,515] ----D C:\Users\Meunier\AppData\Local\Google
O43 - CFD: 01/02/2013 - 16:41:26 - [0] -SH-D C:\Users\Meunier\AppData\Local\Historique
O43 - CFD: 15/12/2011 - 17:35:36 - [0,355] ----D C:\Users\Meunier\AppData\Local\HP
O43 - CFD: 16/12/2011 - 17:46:17 - [0,014] ----D C:\Users\Meunier\AppData\Local\Ilivid Player =>Adware.Bandoo
O43 - CFD: 11/01/2013 - 14:51:07 - [0] ----D C:\Users\Meunier\AppData\Local\Macromedia
O43 - CFD: 10/11/2012 - 20:00:04 - [0,001] ----D C:\Users\Meunier\AppData\Local\MAGIX_AG
O43 - CFD: 04/04/2013 - 10:50:11 - [1305,651] ----D C:\Users\Meunier\AppData\Local\Microsoft
O43 - CFD: 22/10/2012 - 16:54:45 - [0,388] ----D C:\Users\Meunier\AppData\Local\Microsoft Help
O43 - CFD: 11/05/2012 - 09:34:05 - [87,689] ----D C:\Users\Meunier\AppData\Local\Mozilla
O43 - CFD: 23/01/2013 - 18:43:17 - [0,198] ----D C:\Users\Meunier\AppData\Local\Notation
O43 - CFD: 16/12/2011 - 17:45:46 - [0] ----D C:\Users\Meunier\AppData\Local\PackageAware
O43 - CFD: 04/02/2013 - 10:11:22 - [273,925] ----D C:\Users\Meunier\AppData\Local\Packages
O43 - CFD: 19/12/2011 - 19:46:41 - [0,002] ----D C:\Users\Meunier\AppData\Local\PC_Drivers_Headquarters
O43 - CFD: 05/01/2012 - 08:03:44 - [634,326] ----D C:\Users\Meunier\AppData\Local\PowerCinema
O43 - CFD: 07/01/2013 - 21:12:00 - [0] ----D C:\Users\Meunier\AppData\Local\Programs
O43 - CFD: 05/09/2012 - 14:48:31 - [3,494] ----D C:\Users\Meunier\AppData\Local\ScanSoft
O43 - CFD: 22/06/2012 - 15:12:09 - [0] ----D C:\Users\Meunier\AppData\Local\Software
O43 - CFD: 16/10/2013 - 11:02:09 - [28,233] ----D C:\Users\Meunier\AppData\Local\Temp
O43 - CFD: 16/03/2013 - 17:54:04 - [0] ----D C:\Users\Meunier\AppData\Local\TempDIR
O43 - CFD: 01/02/2013 - 16:41:26 - [0] -SH-D C:\Users\Meunier\AppData\Local\Temporary Internet Files
O43 - CFD: 13/09/2013 - 12:52:58 - [6,445] ----D C:\Users\Meunier\AppData\Local\Thunderbird =>.Mozilla Corporation
O43 - CFD: 02/01/2012 - 18:35:19 - [0,004] ----D C:\Users\Meunier\AppData\Local\VDownloader
O43 - CFD: 24/02/2013 - 22:25:18 - [97,430] ----D C:\Users\Meunier\AppData\Local\VirtualStore
O43 - CFD: 06/02/2013 - 17:44:24 - [0,017] ----D C:\Users\Meunier\AppData\Local\webkit
O43 - CFD: 16/10/2013 - 09:16:33 - [0,125] ----D C:\Users\Meunier\AppData\Local\Windows Live
O43 - CFD: 08/12/2011 - 14:40:39 - [0,619] ----D C:\Users\Meunier\AppData\Local\Windows Live Writer
O43 - CFD: 26/07/2012 - 10:13:00 - [0,004] R---D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 01/02/2013 - 16:41:59 - [0,003] R---D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 14/10/2013 - 18:34:23 - [0] R---D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 01/02/2013 - 16:46:20 - [0,012] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adsl TV
O43 - CFD: 15/09/2012 - 22:15:37 - [0] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autopano Pro
O43 - CFD: 16/09/2013 - 16:37:26 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard =>PUP.BitGuard
O43 - CFD: 06/09/2013 - 14:33:44 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 16/02/2013 - 09:29:09 - [0] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
O43 - CFD: 01/02/2013 - 16:51:09 - [0] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 01/02/2013 - 16:41:59 - [0] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft GIF Animator
O43 - CFD: 01/02/2013 - 16:41:59 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyHeritage.com
O43 - CFD: 11/12/2011 - 19:38:35 - [0] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 01/01/2013 - 22:46:38 - [0] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoZoom Pro 4
O43 - CFD: 18/09/2013 - 18:44:15 - [0,005] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 14/10/2013 - 18:34:23 - [0,003] R---D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 26/07/2012 - 10:13:00 - [0,005] R---D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
~ 94 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 438 Scanned in 00mn 26s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.AFB0FFB0E349B72EB335BDE6FDFD164B] - 14/10/2013 - 13:42:46 ---A- . (.Microsoft Corporation - CMI tssdis plug-in.) -- C:\Windows\SysNative\tssdisai.dll [144896]
O44 - LFC:[MD5.AFB0FFB0E349B72EB335BDE6FDFD164B] - 14/10/2013 - 13:42:46 ---A- . (.Microsoft Corporation - CMI tssdis plug-in.) -- C:\Windows\System32\tssdisai.dll [144896]
O44 - LFC:[MD5.061BA3EE0D2BE17944990544008CF190] - 14/10/2013 - 13:46:39 ---A- . (.Microsoft Corporation - USB Controller Extension.) -- C:\Windows\System32\Drivers\UCX01000.SYS [213336]
O44 - LFC:[MD5.8DC398D7B8E02C929A2096E74A170970] - 14/10/2013 - 13:46:39 ---A- . (.Microsoft Corporation - USB XHCI Driver.) -- C:\Windows\System32\Drivers\USBXHCI.SYS [337752]
O44 - LFC:[MD5.B1E910DDC08A8536116214326124903C] - 14/10/2013 - 13:46:39 ---A- . (.Microsoft Corporation - USB3 HUB Driver.) -- C:\Windows\System32\Drivers\USBHUB3.SYS [447320]
O44 - LFC:[MD5.20E0FC5F724B85CA09C82D2776E84C5E] - 14/10/2013 - 13:46:39 ---A- . (.Microsoft Corporation - WinFX OpenType/CFF Rasterizer.) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll [124112]
O44 - LFC:[MD5.20E0FC5F724B85CA09C82D2776E84C5E] - 14/10/2013 - 13:46:39 ---A- . (.Microsoft Corporation - WinFX OpenType/CFF Rasterizer.) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll [124112]
O44 - LFC:[MD5.F8C2A832DF9403F5EA8080CBDBDA95FB] - 14/10/2013 - 13:46:43 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys [623448]
O44 - LFC:[MD5.B24FDEB1B18496F1B463782235AA3AF1] - 14/10/2013 - 13:46:43 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [79192]
O44 - LFC:[MD5.7CB7E04259F323D051A10515B8863564] - 14/10/2013 - 13:46:43 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys [498008]
O44 - LFC:[MD5.1ABF657259DB57F7E5558E4DF1357C0C] - 14/10/2013 - 13:46:43 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [32256]
O44 - LFC:[MD5.C976C4306F9AE133D6BBD47FDFC3BF92] - 14/10/2013 - 13:46:43 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [120832]
O44 - LFC:[MD5.9F83642C3709D1A4DD49EEE9F48F839D] - 14/10/2013 - 13:46:43 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [21848]
O44 - LFC:[MD5.86665E9EBE033CCF6A6041A025F56E6B] - 14/10/2013 - 13:46:45 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\SysNative\win32k.sys [4040192]
O44 - LFC:[MD5.86665E9EBE033CCF6A6041A025F56E6B] - 14/10/2013 - 13:46:45 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [4040192]
O44 - LFC:[MD5.469A5DCF1E51DC9AF03CE1B3B4360DEE] - 14/10/2013 - 13:46:46 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll [46080]
O44 - LFC:[MD5.469A5DCF1E51DC9AF03CE1B3B4360DEE] - 14/10/2013 - 13:46:46 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [46080]
O44 - LFC:[MD5.FD16BDF463EF68ADD48026ACCEA100B8] - 14/10/2013 - 13:46:46 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll [362496]
O44 - LFC:[MD5.FD16BDF463EF68ADD48026ACCEA100B8] - 14/10/2013 - 13:46:46 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [362496]
O44 - LFC:[MD5.2C2A9A4D53DC90A5195BB51F0A4B1E21] - 14/10/2013 - 13:46:49 ---A- . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\Drivers\hidclass.sys [83968]
O44 - LFC:[MD5.346DEF1A9DB0B4133CE0FA38AAF565C0] - 14/10/2013 - 13:46:49 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys [32768]
O44 - LFC:[MD5.9FDBA6982582A6F2354144980F641E7B] - 14/10/2013 - 13:46:49 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys [25600]
O44 - LFC:[MD5.AD91D1BBE5D3CF4501887DC1C09384FD] - 14/10/2013 - 13:46:49 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys [43008]
O44 - LFC:[MD5.11876881E87BACEBBCEE41A037614D48] - 14/10/2013 - 13:46:50 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys [54488]
O44 - LFC:[MD5.E2C933EDBC389386EBE6D2BA953F43D8] - 14/10/2013 - 13:46:50 ---A- . (.Microsoft Corporation - Runtime de l�infrastructure de pilotes en m.) -- C:\Windows\System32\Drivers\Wdf01000.sys [785624]
O44 - LFC:[MD5.9E9F21FF91D7ECC0BCCB94D3FE52A959] - 14/10/2013 - 13:46:50 ---A- . (.Microsoft Corporation - USB Audio Class Driver.) -- C:\Windows\System32\Drivers\USBAUDIO.sys [121984]
O44 - LFC:[MD5.427B6DB8C05A5A977E8C3525370A2595] - 14/10/2013 - 13:46:50 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys [99328]
O44 - LFC:[MD5.D383602755758FA81166B0FD8AFE6D40] - 14/10/2013 - 13:47:11 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript9.dll [3959296]
O44 - LFC:[MD5.D383602755758FA81166B0FD8AFE6D40] - 14/10/2013 - 13:47:11 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [3959296]
O44 - LFC:[MD5.199BD40B1890E1EEFF7438B59787534F] - 14/10/2013 - 13:47:11 ---A- . (.Microsoft Corporation - Utilitaire � l�ex�cution pour Internet Expl.) -- C:\Windows\SysNative\iertutil.dll [2647552]
O44 - LFC:[MD5.199BD40B1890E1EEFF7438B59787534F] - 14/10/2013 - 13:47:11 ---A- . (.Microsoft Corporation - Utilitaire � l�ex�cution pour Internet Expl.) -- C:\Windows\System32\iertutil.dll [2647552]
O44 - LFC:[MD5.F026C6F104758D0EB215B017016FAE27] - 14/10/2013 - 13:47:20 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysNative\mshtml.dll [19252224]
O44 - LFC:[MD5.F026C6F104758D0EB215B017016FAE27] - 14/10/2013 - 13:47:20 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [19252224]
O44 - LFC:[MD5.D28B35DE88D27EFB27DF4B1E8319E3C0] - 14/10/2013 - 13:47:21 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\SysNative\wininet.dll [2241024]
O44 - LFC:[MD5.D28B35DE88D27EFB27DF4B1E8319E3C0] - 14/10/2013 - 13:47:21 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2241024]
O44 - LFC:[MD5.194125E7839D4902F2490A70049E8F78] - 14/10/2013 - 13:47:21 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\SysNative\jsproxy.dll [53248]
O44 - LFC:[MD5.194125E7839D4902F2490A70049E8F78] - 14/10/2013 - 13:47:21 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [53248]
O44 - LFC:[MD5.38BEBBC4CF9FE6566262F0037DF843BF] - 14/10/2013 - 13:47:22 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\SysNative\iesysprep.dll [136704]
O44 - LFC:[MD5.38BEBBC4CF9FE6566262F0037DF843BF] - 14/10/2013 - 13:47:22 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\System32\iesysprep.dll [136704]
O44 - LFC:[MD5.901D4A3CB11BE92DE65FE52C6258B5FA] - 14/10/2013 - 13:47:24 ---A- . (.Microsoft Corporation - Biblioth�que de th�mes Ux Microsoft.) -- C:\Windows\SysNative\uxtheme.dll [915968]
O44 - LFC:[MD5.901D4A3CB11BE92DE65FE52C6258B5FA] - 14/10/2013 - 13:47:24 ---A- . (.Microsoft Corporation - Biblioth�que de th�mes Ux Microsoft.) -- C:\Windows\System32\uxtheme.dll [915968]
O44 - LFC:[MD5.7B4E06047031B2AAA4AE10F00C59BFC7] - 14/10/2013 - 13:47:24 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript.dll [855552]
O44 - LFC:[MD5.7B4E06047031B2AAA4AE10F00C59BFC7] - 14/10/2013 - 13:47:24 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll [855552]
O44 - LFC:[MD5.CCDB8FDC289AA9AFA5F8827A2ADB21AD] - 14/10/2013 - 13:47:24 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\SysNative\ieframe.dll [15404544]
O44 - LFC:[MD5.CCDB8FDC289AA9AFA5F8827A2ADB21AD] - 14/10/2013 - 13:47:24 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [15404544]
O44 - LFC:[MD5.547FFE0E4C267FAB1299F2334C728F59] - 14/10/2013 - 13:47:25 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\SysNative\iernonce.dll [39936]
O44 - LFC:[MD5.547FFE0E4C267FAB1299F2334C728F59] - 14/10/2013 - 13:47:25 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll [39936]
O44 - LFC:[MD5.C4DDAC3F3062739C4C2BB759B36E005D] - 14/10/2013 - 13:47:25 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\SysNative\ie4uinit.exe [51712]
O44 - LFC:[MD5.C4DDAC3F3062739C4C2BB759B36E005D] - 14/10/2013 - 13:47:25 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [51712]
O44 - LFC:[MD5.882AC0DD997CFC90FBB468D698BD55C6] - 14/10/2013 - 13:47:26 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysNative\urlmon.dll [1365504]
O44 - LFC:[MD5.882AC0DD997CFC90FBB468D698BD55C6] - 14/10/2013 - 13:47:26 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1365504]
O44 - LFC:[MD5.E80F66239BCA6CDECC360CA78CECAE61] - 14/10/2013 - 13:47:26 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\SysNative\iesetup.dll [67072]
O44 - LFC:[MD5.E80F66239BCA6CDECC360CA78CECAE61] - 14/10/2013 - 13:47:26 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll [67072]
O44 - LFC:[MD5.214E39F0A8E382F1889B26B46DE0AF81] - 14/10/2013 - 13:47:26 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\SysNative\msfeeds.dll [603136]
O44 - LFC:[MD5.214E39F0A8E382F1889B26B46DE0AF81] - 14/10/2013 - 13:47:26 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [603136]
O44 - LFC:[MD5.AD00E5D3B748150CF1A53A1ABB52E320] - 14/10/2013 - 13:47:27 ---A- . (.Microsoft Corporation - Windows User Experience Session Initializat.) -- C:\Windows\SysNative\UXInit.dll [53760]
O44 - LFC:[MD5.AD00E5D3B748150CF1A53A1ABB52E320] - 14/10/2013 - 13:47:27 ---A- . (.Microsoft Corporation - Windows User Experience Session Initializat.) -- C:\Windows\System32\UXInit.dll [53760]
O44 - LFC:[MD5.F827BD7A09F9FCDF76AB2C3E27650E71] - 14/10/2013 - 13:47:28 ---A- . (.Microsoft Corporation - Microsoft� MSHTML Typelib.) -- C:\Windows\SysNative\mshtml.tlb [2706432]
O44 - LFC:[MD5.F827BD7A09F9FCDF76AB2C3E27650E71] - 14/10/2013 - 13:47:28 ---A- . (.Microsoft Corporation - Microsoft� MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2706432]
O44 - LFC:[MD5.EEB55974CFE4DB0B4FC840E6101090B8] - 14/10/2013 - 13:47:32 ---A- . (.Microsoft Corporation - Contr�le du Moniteur syst�me.) -- C:\Windows\SysNative\sysmon.ocx [462336]
O44 - LFC:[MD5.EEB55974CFE4DB0B4FC840E6101090B8] - 14/10/2013 - 13:47:32 ---A- . (.Microsoft Corporation - Contr�le du Moniteur syst�me.) -- C:\Windows\System32\sysmon.ocx [462336]
O44 - LFC:[MD5.20E76634DE7792397261A8AC442B9ACB] - 14/10/2013 - 13:47:32 ---A- . (.Microsoft Corporation - Windows Visual Components.) -- C:\Windows\SysNative\wvc.dll [566784]
O44 - LFC:[MD5.20E76634DE7792397261A8AC442B9ACB] - 14/10/2013 - 13:47:32 ---A- . (.Microsoft Corporation - Windows Visual Components.) -- C:\Windows\System32\wvc.dll [566784]
O44 - LFC:[MD5.CA45D615BA0102CEDE9C25F4C6EE0983] - 14/10/2013 - 13:47:33 ---A- . (.Microsoft Corporation - Analyseur de performances.) -- C:\Windows\SysNative\wdc.dll [1374208]
O44 - LFC:[MD5.CA45D615BA0102CEDE9C25F4C6EE0983] - 14/10/2013 - 13:47:33 ---A- . (.Microsoft Corporation - Analyseur de performances.) -- C:\Windows\System32\wdc.dll [1374208]
O44 - LFC:[MD5.6A4B9FBC1E88C400AD671A50DADFA84D] - 14/10/2013 - 13:47:36 ---A- . (...) -- C:\Windows\SysNative\ApnDatabase.xml [386923]
O44 - LFC:[MD5.6A4B9FBC1E88C400AD671A50DADFA84D] - 14/10/2013 - 13:47:36 ---A- . (...) -- C:\Windows\System32\ApnDatabase.xml [386923]
O44 - LFC:[MD5.755059FD6A758EA4413B58A1B423E7D1] - 14/10/2013 - 13:47:36 ---A- . (.Microsoft Corporation - Setting Synchronization Information.) -- C:\Windows\SysNative\SettingSyncInfo.dll [128512]
O44 - LFC:[MD5.755059FD6A758EA4413B58A1B423E7D1] - 14/10/2013 - 13:47:36 ---A- . (.Microsoft Corporation - Setting Synchronization Information.) -- C:\Windows\System32\SettingSyncInfo.dll [128512]
O44 - LFC:[MD5.DFB8703836AF863A25FC55BF88176591] - 14/10/2013 - 13:47:38 ---A- . (.Microsoft Corporation - Biblioth�que d�objets et de contr�les de do.) -- C:\Windows\SysNative\shdocvw.dll [222208]
O44 - LFC:[MD5.DFB8703836AF863A25FC55BF88176591] - 14/10/2013 - 13:47:38 ---A- . (.Microsoft Corporation - Biblioth�que d�objets et de contr�les de do.) -- C:\Windows\System32\shdocvw.dll [222208]
O44 - LFC:[MD5.60CF5B27BBEF38F11729B847541E33A3] - 14/10/2013 - 13:47:38 ---A- . (.Microsoft Corporation - Microsoft Windows Mobile Broadband SMS API.) -- C:\Windows\SysNative\mbsmsapi.dll [225280]
O44 - LFC:[MD5.60CF5B27BBEF38F11729B847541E33A3] - 14/10/2013 - 13:47:38 ---A- . (.Microsoft Corporation - Microsoft Windows Mobile Broadband SMS API.) -- C:\Windows\System32\mbsmsapi.dll [225280]
O44 - LFC:[MD5.7D5FEB67505A6D983F5D8AE0B474581D] - 14/10/2013 - 13:47:39 ---A- . (.Microsoft Corporation - Interface utilisateur d�authentification Wi.) -- C:\Windows\SysNative\authui.dll [2304512]
O44 - LFC:[MD5.7D5FEB67505A6D983F5D8AE0B474581D] - 14/10/2013 - 13:47:39 ---A- . (.Microsoft Corporation - Interface utilisateur d�authentification Wi.) -- C:\Windows\System32\authui.dll [2304512]
O44 - LFC:[MD5.5690B3793FD93716EF4C5CE71D9FF156] - 14/10/2013 - 13:47:39 ---A- . (.Microsoft Corporation - Synchronisation des param�tres.) -- C:\Windows\SysNative\SettingSync.dll [448512]
O44 - LFC:[MD5.5690B3793FD93716EF4C5CE71D9FF156] - 14/10/2013 - 13:47:39 ---A- . (.Microsoft Corporation - Synchronisation des param�tres.) -- C:\Windows\System32\SettingSync.dll [448512]
O44 - LFC:[MD5.BD72916CC1E9FE5F29EC1A2682CBB0EB] - 14/10/2013 - 13:47:40 ---A- . (.Microsoft Corporation - Extension du composant logiciel enfichable.) -- C:\Windows\SysNative\appmgr.dll [459776]
O44 - LFC:[MD5.BD72916CC1E9FE5F29EC1A2682CBB0EB] - 14/10/2013 - 13:47:40 ---A- . (.Microsoft Corporation - Extension du composant logiciel enfichable.) -- C:\Windows\System32\appmgr.dll [459776]
O44 - LFC:[MD5.F85D33830D2655FB2916667579D45725] - 14/10/2013 - 13:47:41 ---A- . (.Microsoft Corporation - DLL de MSCTF Server.) -- C:\Windows\SysNative\msctf.dll [1125888]
O44 - LFC:[MD5.F85D33830D2655FB2916667579D45725] - 14/10/2013 - 13:47:41 ---A- . (.Microsoft Corporation - DLL de MSCTF Server.) -- C:\Windows\System32\msctf.dll [1125888]
O44 - LFC:[MD5.37D85E873C9531A2F88DD9C63D3F8A9E] - 14/10/2013 - 13:47:41 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [2233688]
O44 - LFC:[MD5.09B07DFC6792D49516073FEF024315C9] - 14/10/2013 - 13:47:43 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\SysNative\twinui.dll [10116608]
O44 - LFC:[MD5.09B07DFC6792D49516073FEF024315C9] - 14/10/2013 - 13:47:43 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\System32\twinui.dll [10116608]
O44 - LFC:[MD5.4416D7F0F05098711EA45C9D95610A6E] - 14/10/2013 - 13:47:58 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\SysNative\shell32.dll [19758080]
O44 - LFC:[MD5.4416D7F0F05098711EA45C9D95610A6E] - 14/10/2013 - 13:47:58 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll [19758080]
O44 - LFC:[MD5.8A8DB47DDF6B2118DF4D1561CEA586B3] - 14/10/2013 - 13:48:31 ---A- . (.Microsoft Corporation - Biblioth�que de contr�les de l�exp�rience u.) -- C:\Windows\SysNative\comctl32.dll [652288]
O44 - LFC:[MD5.8A8DB47DDF6B2118DF4D1561CEA586B3] - 14/10/2013 - 13:48:31 ---A- . (.Microsoft Corporation - Biblioth�que de contr�les de l�exp�rience u.) -- C:\Windows\System32\comctl32.dll [652288]
O44 - LFC:[MD5.C53BA50404665A17707D9D4FD78699CB] - 14/10/2013 - 14:01:41 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\SysNative\MRT.exe [80541720]
O44 - LFC:[MD5.C53BA50404665A17707D9D4FD78699CB] - 14/10/2013 - 14:01:41 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [80541720]
O44 - LFC:[MD5.5F1BE751FC8515C34BC307DE976F4BF9] - 14/10/2013 - 17:48:52 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [41664]
O44 - LFC:[MD5.286193DC28CFB4CEB8D378E20A0850A9] - 14/10/2013 - 17:49:08 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65336]
O44 - LFC:[MD5.9FE455C916C656144B004E3EB48507CE] - 14/10/2013 - 17:49:08 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [204880]
O44 - LFC:[MD5.5C40B8D77EBEE1DE0E7A8CDD0CD75773] - 14/10/2013 - 17:49:08 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [80816]
O44 - LFC:[MD5.58B93BA20D4693D0800D2B0A62B8059D] - 14/10/2013 - 17:49:08 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys [1030952]
O44 - LFC:[MD5.0E422E9CB7CD9C0AA6D4DFEAFA086EAA] - 14/10/2013 - 17:49:26 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\System32\Drivers\aswTdi.sys [64288]
O44 - LFC:[MD5.997F6977294B9ACB7F400431DF8E3A4A] - 14/10/2013 - 17:49:26 ---A- . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [72016]
O44 - LFC:[MD5.A83C9C15680BB9E270ACF7172068E287] - 14/10/2013 - 17:49:27 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\System32\Drivers\aswFsBlk.sys [33400]
O44 - LFC:[MD5.EC7148DB4D126C81426A67602822E62C] - 14/10/2013 - 17:49:27 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [378944]
O44 - LFC:[MD5.D518E5BA8B3AFF424874EE69D4755A86] - 15/10/2013 - 07:57:20 ---A- . (...) -- C:\Windows\PFRO.log [568]
O44 - LFC:[MD5.80844574A3E9845545DF6CC791B11C0C] - 15/10/2013 - 07:57:43 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [672432]
O44 - LFC:[MD5.80844574A3E9845545DF6CC791B11C0C] - 15/10/2013 - 07:57:43 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [672432]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/10/2013 - 07:58:01 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.AA88B6A19AA95DD598157E7AA6F7B9C2] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [2076734]
O44 - LFC:[MD5.C7D59F931BAA53593704262736C8CE1C] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [165738]
O44 - LFC:[MD5.A99BB7A010C0D3F0A55692D97427BA48] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [198078]
O44 - LFC:[MD5.14A9E7345383D69AF08BFE2E5B968C4F] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [803480]
O44 - LFC:[MD5.281C398E17652B7A7D18180A1514E92F] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [907774]
O44 - LFC:[MD5.AA88B6A19AA95DD598157E7AA6F7B9C2] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [2076734]
O44 - LFC:[MD5.C7D59F931BAA53593704262736C8CE1C] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\System32\perfc009.dat [165738]
O44 - LFC:[MD5.A99BB7A010C0D3F0A55692D97427BA48] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [198078]
O44 - LFC:[MD5.14A9E7345383D69AF08BFE2E5B968C4F] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\System32\perfh009.dat [803480]
O44 - LFC:[MD5.281C398E17652B7A7D18180A1514E92F] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [907774]
O44 - LFC:[MD5.B4C6013CAA051B0EBAAB076DD59E5692] - 16/10/2013 - 08:08:38 ---A- . (...) -- C:\Windows\setupact.log [70232]
O44 - LFC:[MD5.0A78A16D2AF18E7A22B47E483E62DE5C] - 16/10/2013 - 08:10:21 ---A- . (...) -- C:\Windows\wininit.ini [2637]
O44 - LFC:[MD5.6C205C2E5332F7E93CBA0F6F4E58EB48] - 16/10/2013 - 08:10:31 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.0D28A4299E6D686C1A92107BFAEF8F44] - 16/10/2013 - 09:58:48 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1246747]
~ Files: 117 Scanned in 00mn 32s
---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.D5EE1B806B17CFF399467142239D741A] - 16/09/2013 - 08:08:33 ---A- - C:\Windows\Prefetch\AVBUGREPORT.EXE-90230411.pf
O45 - LFCP:[MD5.59CD6ACA4A01673B215098984B9A3CFC] - 16/09/2013 - 08:09:50 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-2C9109F9.pf
O45 - LFCP:[MD5.F2151E8B4F712453618BBFFF61F40408] - 16/09/2013 - 08:09:57 ---A- - C:\Windows\Prefetch\FABS.EXE-55D14A72.pf
O45 - LFCP:[MD5.2470CC61466EAFF69EE64D509D9EE7CB] - 16/09/2013 - 08:09:58 ---A- - C:\Windows\Prefetch\IASTORDATAMGRSVC.EXE-C93872B4.pf
O45 - LFCP:[MD5.E9792F063DDF92EA59B61C6BFC988D4E] - 16/09/2013 - 08:09:59 ---A- - C:\Windows\Prefetch\LMS.EXE-E687E9C2.pf
O45 - LFCP:[MD5.6415C4B7FDFAD29BE5BAD7145F5BAC48] - 16/09/2013 - 08:09:59 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-96070FE0.pf
O45 - LFCP:[MD5.A0092A1F2F1569F6472BA80DBDF55338] - 16/09/2013 - 08:10:00 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-1CF42BC6.pf
O45 - LFCP:[MD5.B47659D7784F0D282A53602526D2A637] - 16/09/2013 - 08:10:03 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf
O45 - LFCP:[MD5.1B52769F818352CC9A4250314282907A] - 16/09/2013 - 08:11:51 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-BB21CD77.pf
O45 - LFCP:[MD5.9D47FB5C99F9851A699794587054F5ED] - 16/09/2013 - 08:18:00 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-0129C0B2.pf
O45 - LFCP:[MD5.6436F4B5471207DD36FDF7F7DD3DC9FC] - 16/09/2013 - 08:18:13 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-2DABBD42.pf
O45 - LFCP:[MD5.FFB11C2AF6A29F6A8370AB7523E1BEAB] - 16/09/2013 - 08:18:14 ---A- - C:\Windows\Prefetch\NGEN.EXE-4A8DA13E.pf
O45 - LFCP:[MD5.4BBEEBFB131AE3A39AE4A55E1AD1EE4D] - 16/09/2013 - 08:18:14 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-849BFD75.pf
O45 - LFCP:[MD5.C0579CCF599907748635A27C86944066] - 16/09/2013 - 08:18:14 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6A4A44E7.pf
O45 - LFCP:[MD5.80BC1DDF7B7F272C6D87CD43C600A603] - 16/09/2013 - 08:18:15 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-8CE1A322.pf
O45 - LFCP:[MD5.C329E93D7A51495B2320AE661B9E7641] - 16/09/2013 - 08:18:15 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-0E6CEC17.pf
O45 - LFCP:[MD5.F9A805DE6008AD322211A5D887E291C1] - 16/09/2013 - 08:18:30 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-8FFB1633.pf
O45 - LFCP:[MD5.DD0EFCA1DFB5F5F7814A092F4F5C65A6] - 16/09/2013 - 08:22:29 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-699F4771.pf
O45 - LFCP:[MD5.86014B4386D2FFB11E5AFB174EC77F09] - 16/09/2013 - 08:29:22 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-4B98D760.pf
O45 - LFCP:[MD5.1AB7F2B6186D6FEF57D03F735826C774] - 16/09/2013 - 08:29:22 ---A- - C:\Windows\Prefetch\VSSVC.EXE-6C8F0C66.pf
O45 - LFCP:[MD5.384BAD1A7C69EFEC998BC2A7151F5132] - 16/09/2013 - 08:29:23 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-FB193036.pf
O45 - LFCP:[MD5.29795A2245F60BCE64FB44257A414BF1] - 16/09/2013 - 08:30:24 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-E8B8DD29.pf
O45 - LFCP:[MD5.B234CABCEE70EAA6D9435713D26EF59A] - 16/09/2013 - 08:38:07 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.7289CFD29933A1C88CAC0107EA0BFA03] - 16/09/2013 - 08:38:57 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-95797F8F.pf
O45 - LFCP:[MD5.7969BB1913C928A3F6689E4FEF48D753] - 16/09/2013 - 08:38:59 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-5CD29207.pf
O45 - LFCP:[MD5.C0368F4D3704517A6D351BF73D68F233] - 16/09/2013 - 08:39:01 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-0E1E7B82.pf
O45 - LFCP:[MD5.F1D4897DE37FDEB1D334B2545F0F3CFF] - 16/09/2013 - 08:39:02 ---A- - C:\Windows\Prefetch\TASKHOSTEX.EXE-4DB1A79B.pf
O45 - LFCP:[MD5.905E21C6EC971B517D6C845954CA0F68] - 16/09/2013 - 08:39:03 ---A- - C:\Windows\Prefetch\MBAMGUI.EXE-DE4DD695.pf
O45 - LFCP:[MD5.2938AD7D2D2A110AD6635D3F3161667F] - 16/09/2013 - 08:39:09 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-D5E97654.pf
O45 - LFCP:[MD5.71AB4C411178E32CA95D0FF82E1706B7] - 16/09/2013 - 08:39:09 ---A- - C:\Windows\Prefetch\USERINIT.EXE-5114915C.pf
O45 - LFCP:[MD5.24A5C3F3DBD1B148C528C67B0275E02F] - 16/09/2013 - 08:39:11 ---A- - C:\Windows\Prefetch\TASKENG.EXE-35FA9C06.pf
O45 - LFCP:[MD5.E6D55978DBF2438341C2F0D5AA6A396C] - 16/09/2013 - 08:39:16 ---A- - C:\Windows\Prefetch\RUNTIMEBROKER.EXE-4551A062.pf
O45 - LFCP:[MD5.EC42A11D9B380B287F40EEBDF90F7BEC] - 16/09/2013 - 08:39:33 ---A- - C:\Windows\Prefetch\THUMBNAILEXTRACTIONHOST.EXE-4EF83964.pf
O45 - LFCP:[MD5.6CA184C2742AC9D1BCA8C22C1D63759B] - 16/09/2013 - 08:39:37 ---A- - C:\Windows\Prefetch\MOBSYNC.EXE-B307E1CC.pf
O45 - LFCP:[MD5.01C774558D01CDF15C0DE7E09F983CCE] - 16/09/2013 - 08:39:41 ---A- - C:\Windows\Prefetch\WMDC.EXE-1FD0C961.pf
O45 - LFCP:[MD5.862C27E772CB387F479B59285CD4084D] - 16/09/2013 - 08:39:46 ---A- - C:\Windows\Prefetch\RAVCPL64.EXE-4BB80510.pf
O45 - LFCP:[MD5.2535F2D6FD4B39747895142E879529F9] - 16/09/2013 - 08:39:47 ---A- - C:\Windows\Prefetch\XTRCTRLEX.EXE-5B77575B.pf
O45 - LFCP:[MD5.D82C42A20ACEA19A2E64110E11838828] - 16/09/2013 - 08:39:49 ---A- - C:\Windows\Prefetch\CHROME.EXE-5349D2D7.pf
O45 - LFCP:[MD5.6F37560CFAE5FC1D65367FD41500CA42] - 16/09/2013 - 08:39:52 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-C5618119.pf
O45 - LFCP:[MD5.8600D1EE428989D5471855540BCBB2E8] - 16/09/2013 - 08:39:54 ---A- - C:\Windows\Prefetch\HKCMD.EXE-61FD4888.pf
O45 - LFCP:[MD5.87F1750C39486FB9D24B9CFF340F6118] - 16/09/2013 - 08:39:54 ---A- - C:\Windows\Prefetch\IGFXTRAY.EXE-F30110F3.pf
O45 - LFCP:[MD5.74CCCE302937903C64CDBF1F457B2E0E] - 16/09/2013 - 08:39:55 ---A- - C:\Windows\Prefetch\CSC.EXE-F8803EEA.pf
O45 - LFCP:[MD5.8C8D9601761E3AECB3B65EE770E7030A] - 16/09/2013 - 08:39:55 ---A- - C:\Windows\Prefetch\CVTRES.EXE-CB8485B0.pf
O45 - LFCP:[MD5.D8FA0FBF7F3181BC46AF69E41192C408] - 16/09/2013 - 08:39:55 ---A- - C:\Windows\Prefetch\IGFXPERS.EXE-540AA77D.pf
O45 - LFCP:[MD5.C9A6B86595E3727EAF105CDC733DE8F9] - 16/09/2013 - 08:39:57 ---A- - C:\Windows\Prefetch\SKYDRIVE.EXE-2250496D.pf
O45 - LFCP:[MD5.55A13CB411F8889573DA6C2B3A3E30F3] - 16/09/2013 - 08:39:58 ---A- - C:\Windows\Prefetch\GOOGLETOOLBARNOTIFIER.EXE-969E73DB.pf =>Toolbar.Google
O45 - LFCP:[MD5.13B218A1898081EAAB1F2BED144662A4] - 16/09/2013 - 08:39:58 ---A- - C:\Windows\Prefetch\SKYPE.EXE-A716A034.pf
O45 - LFCP:[MD5.8EE054C18149AA30BF3900E7A48FE193] - 16/09/2013 - 08:39:59 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-AF704A88.pf
O45 - LFCP:[MD5.BF4428D1D08224F89E98F43DF1963979] - 16/09/2013 - 08:39:59 ---A- - C:\Windows\Prefetch\UPDATER.EXE-A8C477C0.pf
O45 - LFCP:[MD5.9DBB60B864418495141806A6F2A2BA33] - 16/09/2013 - 08:40:03 ---A- - C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-A6285BB5.pf
O45 - LFCP:[MD5.EF8FBA33CB4B4050F19D7A655127242D] - 16/09/2013 - 08:40:05 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-69C456C3.pf
O45 - LFCP:[MD5.1CAED78FF61D35C70F28F43819822D9D] - 16/09/2013 - 08:40:06 ---A- - C:\Windows\Prefetch\STIKYNOT.EXE-DBD503C6.pf
O45 - LFCP:[MD5.54D3262622379C378BA46479618C4F44] - 16/09/2013 - 08:40:11 ---A- - C:\Windows\Prefetch\HPQTRA08.EXE-CEA16CB5.pf
O45 - LFCP:[MD5.500499C87BFE10C92EB453A9EAFD39DD] - 16/09/2013 - 08:40:11 ---A- - C:\Windows\Prefetch\READER_SL.EXE-736A84E3.pf
O45 - LFCP:[MD5.F315165F1F105A8B137111F3A8A0D4E8] - 16/09/2013 - 08:40:16 ---A- - C:\Windows\Prefetch\UPDATER.EXE-6E77EC38.pf
O45 - LFCP:[MD5.8B62D16647EF44F8294B4DAE27CDE05E] - 16/09/2013 - 08:40:18 ---A- - C:\Windows\Prefetch\APSDAEMON.EXE-688589D3.pf
O45 - LFCP:[MD5.9D87C58B9BF925B9E91A849D8876B241] - 16/09/2013 - 08:40:18 ---A- - C:\Windows\Prefetch\CONHOST.EXE-0C6456FB.pf
O45 - LFCP:[MD5.1D840D7F66487FB96EB4754D030F1BFD] - 16/09/2013 - 08:40:18 ---A- - C:\Windows\Prefetch\DWM.EXE-314E93C5.pf
O45 - LFCP:[MD5.09FA6F5D809183A5E960705EFF31CE03] - 16/09/2013 - 08:40:25 ---A- - C:\Windows\Prefetch\CLEAR.FIMOVIESERVICE.EXE-80711C0A.pf
O45 - LFCP:[MD5.57319B998356811127135F8129C27FBD] - 16/09/2013 - 08:40:25 ---A- - C:\Windows\Prefetch\QTTASK.EXE-64CB3CDA.pf
O45 - LFCP:[MD5.7A813D09CC9ABC5D64474FCB64586E42] - 16/09/2013 - 08:40:31 ---A- - C:\Windows\Prefetch\HPQSTE08.EXE-A880057E.pf
O45 - LFCP:[MD5.7073C499E8B620DEAACC298CFA22C99D] - 16/09/2013 - 08:40:31 ---A- - C:\Windows\Prefetch\PMMUPDATE.EXE-7508F507.pf
O45 - LFCP:[MD5.8B32D5F6332E3F3A089308FE5D416259] - 16/09/2013 - 08:40:32 ---A- - C:\Windows\Prefetch\AVASTUI.EXE-19622E35.pf
O45 - LFCP:[MD5.396A4C0FACBCDA8B5FA8601886CFD639] - 16/09/2013 - 08:40:36 ---A- - C:\Windows\Prefetch\SUITETRAY.EXE-42757614.pf
O45 - LFCP:[MD5.741B9F3A6889EDE5C3A2710823EDF290] - 16/09/2013 - 08:40:36 ---A- - C:\Windows\Prefetch\SWEETIM.EXE-2C25226B.pf =>PUP.SweetIM
O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 30/04/2146 - 23:35:01 ----D - C:\Windows\Prefetch\ReadyBoot
~ Prefetcher: 66 Scanned in 00mn 03s
---\\ Export de cl� d'application autoris�e (O47)
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orbitdownloader\orbitdm.exe" [Enabled] .(.Orbitdownloader.com.) -- C:\Program Files (x86)\Orbitdownloader\orbitdm.exe
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orbitdownloader\orbitnet.exe" [Enabled] .(.Orbitdownloader.com.) -- C:\Program Files (x86)\Orbitdownloader\orbitnet.exe
~ Keys Export: 2 Scanned in 00mn 00s
---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de s�curit� TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 17 Scanned in 00mn 00s
---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\AdobeUpdater6 [Key] . (...) -- C:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\DATAMNGR [Key] . (...) -- C:\Program Files (x86)\WIA6EB~1\Datamngr\DATAMN~1.exe (.not file.) =>PUP.Datamngr
O53 - SMSR:HKLM\...\startupreg\EgisUpdate [Key] . (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
O53 - SMSR:HKLM\...\startupreg\GoogleChromeAutoLaunch_A7E31F99DE1AB07DA9783C80B4E432EB [Key] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O53 - SMSR:HKLM\...\startupreg\HP Software Update [Key] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co
O53 - SMSR:HKLM\...\startupreg\hpqSRMon [Key] . (...) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Iminent [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.exe (.not file.) =>Adware.IMBooster
O53 - SMSR:HKLM\...\startupreg\IminentMessenger [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.) =>Adware.IMBooster
O53 - SMSR:HKLM\...\startupreg\LMDVoxPro [Key] . (.L'Aventure Multimedia - Pas de description.) -- C:\Program Files (x86)\Micro Application\Votre PC parle\LMDVoxLight.exe
O53 - SMSR:HKLM\...\startupreg\swg [Key] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
~ SMSR Keys: 10 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 17 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
~ MWPE Keys: 3 Scanned in 00mn 00s
---\\ Liste des pilotes du syst�me (SDL) (O58)
O58 - SDL:[MD5.4F18D4C7EA14F11A7211F60D553C03DB] - 26/07/2012 - 06:00:49 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [106736]
O58 - SDL:[MD5.6CCD1135320109D6B219F1A6E04AD9F6] - 14/11/2006 - 11:31:00 ---A- . (.Arcsoft, Inc. - Arcsoft(R) ASPI Shell.) -- C:\Windows\SysWOW64\drivers\afc.sys [22784]
~ Drivers: 17 Scanned in 00mn 00s
---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 13/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\ArcSoft\Connection Service\InfoCenterFile.txt [191]
O61 - LFC: 13/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\ArcSoft\Connection Service\index.txt [73]
O61 - LFC: 13/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\ArcSoft\Connection Service\timecfg.txt [53]
O61 - LFC: 13/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.8_0\dependencies.js [96806]
O61 - LFC: 13/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.8_0\events.js [799]
O61 - LFC: 13/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.8_0\icon.png [21554]
O61 - LFC: 13/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.8_0\manifest.json [507]
O61 - LFC: 13/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.8_0\offermosquito.js [16123] =>Toolbar.OfferMosquito
O61 - LFC: 13/10/2013 - 11:04:38 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Toolbar Cache\7.5.4209.2358\fr\translate_element.js.content [2381]
O61 - LFC: 13/10/2013 - 11:04:38 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Toolbar Cache\7.5.4209.2358\fr\translate_languages.json.content [1497]
O61 - LFC: 13/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\INetCookies\Q5BQ7YCD.txt [193]
O61 - LFC: 13/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\1DAF2884EC4DFA96BA4A58D4DBC9C406 [1393]
O61 - LFC: 13/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\AC9005F5466BD463DF06D711B370595F [29026]
O61 - LFC: 13/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\1DAF2884EC4DFA96BA4A58D4DBC9C406 [268]
O61 - LFC: 13/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506 [290]
O61 - LFC: 13/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\Security\services_rdr.dat [10240]
O61 - LFC: 13/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\Security\services_rdri.dat [24152]
O61 - LFC: 13/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\ServicesRdr\com_2E_adobe_2E_acrobat_2E_services_2E_DEXShare_5F_10_2E_1_2E_8_2E_1.spi [1356250]
O61 - LFC: 13/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\ServicesRdr\com_2E_adobe_2E_acrobat_2E_services_2E_cfg_5F_10_2E_1_2E_8_2E_1.cfg [586356]
O61 - LFC: 13/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\aggregation.dbx [4096]
O61 - LFC: 13/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\l\525abd4a [145456]
O61 - LFC: 13/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\l\525abd64 [82128]
O61 - LFC: 13/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\l\525abda1 [81392]
O61 - LFC: 13/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525abd1f [124]
O61 - LFC: 13/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525afd0d [156]
O61 - LFC: 13/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\sigstore.dbx [3743744]
O61 - LFC: 13/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\MyHeritage\Cfg\ChartNew.cfg [3855]
O61 - LFC: 13/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\MyHeritage\Cfg\Main.cfg [6313]
O61 - LFC: 13/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\MyHeritage\Cfg\Report.cfg [658]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Cookies [26624]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\128.png [3524]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ar\messages.json [401]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\bg\messages.json [427]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ca\messages.json [250]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\cs\messages.json [255]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\da\messages.json [242]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\de\messages.json [226]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\el\messages.json [475]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\en\messages.json [227]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\es\messages.json [240]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\fi\messages.json [222]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\fil\messages.json [236]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\fr\messages.json [249]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\he\messages.json [419]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\hi\messages.json [408]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\hr\messages.json [220]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\hu\messages.json [253]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\id\messages.json [231]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\it\messages.json [224]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ja\messages.json [349]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ko\messages.json [323]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\lt\messages.json [266]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\lv\messages.json [245]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\nl\messages.json [225]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\no\messages.json [216]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\pl\messages.json [274]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\pt_BR\messages.json [237]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\pt_PT\messages.json [236]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ro\messages.json [248]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ru\messages.json [394]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\sk\messages.json [241]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\sl\messages.json [245]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\sr\messages.json [437]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\sv\messages.json [238]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\th\messages.json [365]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\tr\messages.json [255]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\uk\messages.json [442]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\vi\messages.json [310]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\zh_CN\messages.json [257]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\zh_TW\messages.json [269]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\manifest.json [785]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\128.png [5367]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\16.png [499]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\32.png [1154]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\48.png [1872]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ar\messages.json [423]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\bg\messages.json [515]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ca\messages.json [330]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\cs\messages.json [355]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\da\messages.json [328]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\de\messages.json [307]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\el\messages.json [569]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\en\messages.json [314]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\en_GB\messages.json [314]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\en_US\messages.json [314]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\es\messages.json [340]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\es_419\messages.json [341]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\et\messages.json [314]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\fi\messages.json [305]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\fil\messages.json [337]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\fr\messages.json [329]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\he\messages.json [471]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\hi\messages.json [326]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\hr\messages.json [340]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\hu\messages.json [336]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\id\messages.json [319]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\it\messages.json [324]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ja\messages.json [388]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ko\messages.json [380]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\lt\messages.json [359]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\lv\messages.json [360]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\nl\messages.json [323]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\no\messages.json [300]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\manifest.json [817]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\pl\messages.json [336]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\pt_BR\messages.json [332]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\pt_PT\messages.json [331]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ro\messages.json [332]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ru\messages.json [471]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\sk\messages.json [338]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\sl\messages.json [329]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\sr\messages.json [483]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\sv\messages.json [333]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\th\messages.json [472]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\tr\messages.json [330]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\uk\messages.json [501]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\vi\messages.json [363]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\zh_CN\messages.json [346]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\zh_TW\messages.json [346]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\de\messages.json [1326]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\en\messages.json [1291]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\es\messages.json [1331]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\fr\messages.json [1403]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\it\messages.json [1303]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\ja\messages.json [1633]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\nl\messages.json [1302]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\pl\messages.json [1320]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\pt\messages.json [1341]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\ru\messages.json [1754]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\tr\messages.json [1368]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\zh_CN\messages.json [1405]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\zh_TW\messages.json [1370]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\background.html [409]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\background.js [9460]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\dvs_freeyoutubedownload.css [4313]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\dvs_freeyoutubedownload.js [10845]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\dvs_logo.ico [452]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\dvs_logo_128.png [11082]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\dvs_logo_32.png [1083]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\dvs_logo_48.png [2410]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\errorRunProgramm.html [461]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\YoutubeDownloader.png [2641] =>PUP.SoftwareEngine
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\YoutubeToMp3.png [2796]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\backbar.png [219]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\download.png [1003]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\fs.png [3046]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\headphone.png [1083]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\logo.png [1755]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\manager.png [341142]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\manifest.json [1407]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\options.html [1630]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\options.js [1334]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\page_action.html [341]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa\1.6_0\background.js [1007]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa\1.6_0\manifest.json [992]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa\1.6_0\smartdisplay.js [936]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa\1.6_0\smartdisplay.png [3232]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa\1.6_0\utils.html [823]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Favicons [30720]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\History [90112]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\QuotaManager [13312]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Shortcuts [12288]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\fr-FR-2-0.bdic [924593]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (.DVDVideoSoft Ltd..) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\np_dvs_plugin.dll [109704]
O61 - LFC: 14/10/2013 - 11:04:39 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\BrowserChoice_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingMaps_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\LocalState\InstrumentationData.xml [2161]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\LocalState\_sessionState.json [33]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\LocalState\navigationHistory\PlatformJS.Navigation.standard.state1381774373417 [4024]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingTravel_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.Bing_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.Camera_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.Media.PlayReadyClient_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.Reader_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.VCLibs.110.00_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.WinJS.1.0_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.microsoftskydrive_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC: 14/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\4309200C3DBAD0F6F0DFACE9165FD092 [727]
O61 - LFC: 14/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\7D1F03728133589A90656A87E482B21F [45123]
O61 - LFC: 14/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\4309200C3DBAD0F6F0DFACE9165FD092 [262]
O61 - LFC: 14/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\7D1F03728133589A90656A87E482B21F [256]
O61 - LFC: 14/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\AC9005F5466BD463DF06D711B370595F [316]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\05e252d2-c28e-4fa2-93a7-9e62fa371327[1].png [11906]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\2cf4a179-292f-4e3a-8bc8-efb66259b267[1].png [224128]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\3efea92b-2c60-4704-9292-154699ea030c[1].png [23221]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\5251273c-4d42-4ff1-84b2-fdbe481fc855[1].png [27901]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\5cba6702-bace-41f9-8feb-e27676ff729e[1].png [13662]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\64fd1083-1206-4be0-8926-a99fbd897e13[1].png [22539]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\66b8017b-0b14-4a80-85c5-b7eedf0dcd87[1].png [31513]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\Icon.120052[1].png [7432]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\Icon.19243[1].png [3164]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\Icon.26180[1].png [7120]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\Icon.55347[1].png [3464]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\Icon.56095[1].png [3511]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\WinStore[1].css [76821]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\base[1].js [109096]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\cc5a0f63-587d-4d76-9091-9fb5722dcb66[1].png [24794]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\d0ba5be2-5513-4cbc-a973-7ec6c5e64c33[1].png [32418]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\d3f56b33-91f5-4278-9cc0-83fb93b03480[1].png [117667]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\dc0533b6-72c2-47a7-9c49-286a747ba000[1].png [30366]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\f59ed0a6-042f-49d3-9a65-90aefbb0c7d8[1].png [33472]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\f5d8ada0-0f1b-4ce7-b2bf-e8108f14a198[1].png [41395]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\f8973086-ba83-4816-b721-d4d1034c7c4d[1].png [17616]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\ui-light[1].css [94629]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\wol.contentinstrumentation.logging[1].js [29883]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\2f2505e4-30b8-4ae5-a410-c39ce4b577e9[1].png [38704]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\51c8b3dd-61f3-4575-b1a4-9136b0bc5c6d[1].png [59926]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\57ee42ef-be2c-4ae2-a396-24d5f033538c[1].png [292316]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\913f142e-8814-4d3e-8afd-b5795e1a3b3d[1].png [22641]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\97a1136e-087a-47b1-a4b7-9425cc815ac7[1].png [64132]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\ClientBISettings[1].js [525]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.101067[1].png [2204]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.161053[1].png [2114]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.164704[1].png [5935]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.17101[1].png [2923]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.26167[1].png [7120]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.31126[1].png [2382]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.31617[1].png [3544]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.63285[1].png [7551]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.64546[1].png [7551]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.82170[1].png [1662]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\d03d2db7-f07d-4da2-b33f-30a9bea9974b[1].png [31240]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\f2ad7329-f81f-4a36-ac8a-38faf9bdd13c[1].png [254324]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\f5150e40-6d8b-44e9-b60d-92ab418305ae[1].png [14572]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\f6b8161b-28f8-40ea-a580-3584031b806d[1].png [39196]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\frame[1].htm [2940]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.96193[1].png [1819]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\03266722-51d4-468c-b0f8-2d7b3cc334c4[1].png [100584]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\2931c1f9-24a2-4a0c-8fef-872cad0eaa35[1].png [89461]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\3d937097-e629-489a-bda7-ba6f6b9167f4[1].png [13065]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\5e26cb6d-1905-4abd-91f2-7aa6018b0e62[1].png [283350]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\8e5f26e7-0c78-4ded-b6ba-c4aa7688cc7d[1].png [78718]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\8fbae820-df23-4b26-a427-629b4fd0e520[1].png [491673]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\91c6a1f5-1689-46be-a8d3-a9c86a453149[1].png [120019]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\Icon.12659[1].png [3920]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\Icon.151243[1].png [5935]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\Icon.160819[1].png [5935]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\b452c089-90a2-4dea-a015-cd2f9b05744f[1].png [22686]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\b5af8cdb-f496-4ad2-9591-2489756af3d5[1].png [644561]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\eb941e31-89d9-40c0-8fdc-bd242c88b5ca[1].png [6995]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\f0b45dcd-0408-401c-8f21-a1f58fd5c906[1].png [28718]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\f3c122ba-33c8-4d79-8be7-e48250ad4fbe[1].png [44408]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\Icon.26177[1].png [7120]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\Icon.32565[1].png [3464]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\Icon.63715[1].png [7551]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\WinStore[1].js [342808]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\jquery-1.5.min[1].js [84378]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\ui[1].js [471937]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\00740925-a783-4c7e-867d-1492a7ee722d[1].png [10605]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\1f29bdb6-c133-4f85-a96e-48049875314d[1].png [151971]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\34abc9ba-1672-46c8-b225-f3620a8ccb1c[1].png [202645]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\42df5781-57dd-43ab-bde9-f2044f49d45c[1].png [14510]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\441a930f-b3bc-4c0c-9c3a-7f6374339c6c[1].png [66817]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\5cc54218-4588-4b32-bb7b-c86881e30817[1].png [254767]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\70183b86-12e6-45e5-91e1-ee429deb3798[1].png [77897]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\7bac312e-d897-4ec4-8eee-6c21cd81064b[1].png [39914]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\7c24c176-3708-47af-b74c-b25b1aa1295f[1].png [6868]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\9457fc3e-8a51-41bf-a91d-546885b91b88[1].png [8066]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\9b49e9f5-e19c-4c4e-b140-1566426516a5[1].png [35958]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\Icon.101061[1].png [2204]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\Icon.40975[1].png [3657]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\Icon.41717[1].png [4721]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\Icon.78053[1].png [6832]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\Icon.82289[1].png [3168]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\Icon.84594[1].png [6627]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\ae11161b-5816-4e57-bb1e-a32c3399c81b[1].png [13397]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\d90cb32e-bb3d-424f-9740-11a57019c0d9[1].png [205026]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\d9199798-f5e8-411f-b382-c5310f726931[1].png [9851]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\features399c9f06-14e9-4823-9eba-3ae514af61d4[1].json [13033]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\features[2].json [2251]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCookies\41X39ADQ.txt [370]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-Channel-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?Channel.dat [24]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-DiscoveryService-https???go.microsoft.com?fwlink??LinkID=195324&clcid=0x409.dat [10483]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-Featured-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?c?FR?Featured?10852150.dat [7834]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\1\1-GetOSEditionInfo.dat [648]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\2\2-GetUpdateList.dat [360]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\3\3-DigitalMarker.dat [5218]
O61 - LFC: 14/10/2013 - 11:04:48 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\Content\AC9005F5466BD463DF06D711B370595F [29026]
O61 - LFC: 14/10/2013 - 11:04:48 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157 [302]
O61 - LFC: 14/10/2013 - 11:04:48 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506 [290]
O61 - LFC: 14/10/2013 - 11:04:48 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\AC9005F5466BD463DF06D711B370595F [316]
O61 - LFC: 14/10/2013 - 11:04:49 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\5\5-https???wscont.apps.microsoft.com?winstore?6.2?670?WW?fr-fr?0?17?Home.htm.dat [1538]
O61 - LFC: 14/10/2013 - 11:04:49 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\5\5-https???wscont.apps.microsoft.com?winstore?6.2?670?WW?fr-fr?0?17?Results.htm.dat [837]
O61 - LFC: 14/10/2013 - 11:04:49 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\5\5-https???wscont.apps.microsoft.com?winstore?6.2?670?WW?fr-fr?0?17?Settings.htm.dat [5322]
O61 - LFC: 14/10/2013 - 11:04:49 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\cachemetadata.dat [6029360]
O61 - LFC: 14/10/2013 - 11:04:49 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\10140856-000012c4-232kochfg2\Logs.CAB [9117]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\10142056-000015a0-gejhkv73a3\Logs.CAB [9226]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\MSIf8775.LOG [612144]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\Pin.xml [99]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\Trans.xml [95]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\dd_vcredistMSI6334.txt [390104]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\dd_vcredistUI6334.txt [11482]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\Cookies [6144]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\Cookies-journal [1544]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\data_0 [45056]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\data_1 [270336]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\data_2 [1056768]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\data_3 [8192]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\index [524656]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\Cookies [6144]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\Cookies-journal [1544]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\data_0 [45056]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\data_1 [270336]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\data_2 [1056768]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\data_3 [8192]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\index [524656]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\Cookies [6144]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\Cookies-journal [1544]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\data_0 [45056]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\data_1 [270336]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\data_2 [1056768]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\data_3 [8192]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\index [524656]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\tmp-fs6.xpi [60290]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\42E3E97F8301\Writer_Config.cab [26214]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\682BB42AA896\index.htm [2376]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (.Ask.) -- C:\Users\Meunier\AppData\Local\Temp\setup.exe [4001416]
O61 - LFC: 14/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles85F611\SpellingContext\context.tlx [2]
O61 - LFC: 14/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Windows Live Writer\ResourceCache\live\Writer_Config.cab [26214]
O61 - LFC: 14/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Windows Live\uxcore_WLXPhotoGallery_00.etl [8192]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525b953a [124]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525b97cd [124]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525baeec [164]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525bb363 [156]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525bb659 [164]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525bbd6c [164]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525bfdb2 [144]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525c16ee [164]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525c1d24 [124]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525c21f1 [152]
O61 - LFC: 14/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-10-14 (20-18-49).txt [4154]
O61 - LFC: 14/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Excel12.pip [1556]
O61 - LFC: 14/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\6 AIDE Logiciels.LNK [1081]
O61 - LFC: 14/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Word12.pip [1684]
O61 - LFC: 14/10/2013 - 11:05:12 ---A- . (...) -- C:\Users\Meunier\Downloads\avast_free_antivirus_setup(1).exe [131918888]
O61 - LFC: 14/10/2013 - 11:05:12 ---A- . (...) -- C:\Users\Meunier\Downloads\avast_free_antivirus_setup(2).exe [117478104]
O61 - LFC: 14/10/2013 - 11:05:12 ---A- . (...) -- C:\Users\Meunier\Downloads\avast_free_antivirus_setup(3).exe [117478104]
O61 - LFC: 14/10/2013 - 11:05:12 ---A- . (...) -- C:\Users\Meunier\Downloads\avast_free_antivirus_setup.exe [131918888]
O61 - LFC: 14/10/2013 - 11:05:17 ---A- . (...) -- C:\Users\Meunier\Links\Desktop.lnk [487]
O61 - LFC: 14/10/2013 - 11:05:17 ---A- . (...) -- C:\Users\Meunier\Links\Downloads.lnk [946]
O61 - LFC: 14/10/2013 - 11:05:17 ---A- . (...) -- C:\Users\Meunier\Links\RecentPlaces.lnk [383]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101513.000\3891E230-EF04-4E49-BF2C-A1DD2FB6437B.Diagnose.0.etl [327680]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101513.000\NetworkConfiguration.cab [1565]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101513.000\NetworkDiagnostics.debugreport.xml [153944]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101513.000\ResultReport.xml [41720]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101513.000\results.xml [237]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101513.000\results.xsl [49097]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Archived History [57344]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Archived History-journal [512]
O61 - LFC: 15/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache [614]
O61 - LFC: 15/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\History-journal [8720]
O61 - LFC: 15/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Visited Links [131072]
O61 - LFC: 15/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Web Data [75776]
O61 - LFC: 15/10/2013 - 11:04:38 --HA- . (...) -- C:\Users\Meunier\AppData\Local\IconCache.db [164614]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\AppEx.Sport10fd5d4e#\74d55c344b2f58433a9b21a6bbd47913\AppEx.Sports.Services.ni.dll.aux [6492]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\AppEx.Sport3e03b917#\4fd8e6cb470aa2cea156863058a147e9\AppEx.Sports.AzureServices.ni.dll.aux [2924]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Microsoft.A46d31238#\f4b62859a632385758850824b688ad15\Microsoft.AppEx.Sports.Schemas.ni.dll [2000384]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Microsoft.A46d31238#\f4b62859a632385758850824b688ad15\Microsoft.AppEx.Sports.Schemas.ni.dll.aux [2592]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Microsoft.S282a141d#\d756b693886ac4e81e56f8360e7f5e9d\Microsoft.SpeechService.Client.ni.dll.aux [4528]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Platform\f8fd27e3e4e647f2d66d35467e85ac09\Platform.ni.dll.aux [6900]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (.Microsoft.) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\AppEx.Sport10fd5d4e#\74d55c344b2f58433a9b21a6bbd47913\AppEx.Sports.Services.ni.dll [8220160]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (.Microsoft.) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\AppEx.Sport3e03b917#\4fd8e6cb470aa2cea156863058a147e9\AppEx.Sports.AzureServices.ni.dll [505856]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (.Microsoft.) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Microsoft.S282a141d#\d756b693886ac4e81e56f8360e7f5e9d\Microsoft.SpeechService.Client.ni.dll [953856]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (.Microsoft.) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Platform\f8fd27e3e4e647f2d66d35467e85ac09\Platform.ni.dll [3164672]
O61 - LFC: 15/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveCommLast.etl [917504]
O61 - LFC: 15/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\944E5B697BC46FE14AB888AE8A1EBB99_2269679B991E7B74D029ADC1DCE94782 [1480]
O61 - LFC: 15/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157 [302]
O61 - LFC: 15/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\944E5B697BC46FE14AB888AE8A1EBB99_2269679B991E7B74D029ADC1DCE94782 [482]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\18823484.od [134]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\3891E230-EF04-4E49-BF2C-A1DD2FB6437B.Diagnose.0.etl [327680]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\708000.od [134]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\CVR393C.tmp.cvr [0]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\CVRCDA0.tmp.cvr [0]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\au-descriptor-1.7.0_40-b43.xml [8891]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\msohtmlclip1\01\clip_colorschememapping.xml [314]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\msohtmlclip1\01\clip_themedata.thmx [3086]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\ojYGQ7eB.exe.part [73888]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\Cookies [6144]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\Cookies-journal [1544]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\data_0 [45056]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\data_1 [270336]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\data_2 [1056768]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\data_3 [8192]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\index [524656]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\Cookies [6144]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\Cookies-journal [1544]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\data_0 [45056]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\data_1 [270336]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\data_2 [1056768]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\data_3 [8192]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\index [524656]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\Cookies [6144]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\Cookies-journal [1544]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\data_0 [45056]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\data_1 [270336]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\data_2 [1056768]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\data_3 [8192]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\index [524656]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\233DAB88C022\index.htm [2376]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\3BC7ED2B4670\index.htm [2384]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\5008AC221B2F\index.htm [2376]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\6CB81DE32A43\index.htm [2443]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\B385024F885B\index.htm [2376]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\B767C7058097\index.htm [4013]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\F76EA6706D9E\index.htm [2384]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\FB451E6633E1\index.htm [4013]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles115EC60\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles11AC5A6\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles1856424\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles4A8DD0\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles4A9300\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles72D76\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles7FF6D9\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfilesD51C36\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\Security\CRLCache\0FDED5CEB68C302B1CDB2BDDD9D0000E76539CB0.crl [637]
O61 - LFC: 15/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\Security\CRLCache\CE338828149963DCEA4CD26BB86F0363B4CA0BA5.crl [425]
O61 - LFC: 15/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\TMDocs.sav [36]
O61 - LFC: 15/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\TMGrpPrm.sav [54]
O61 - LFC: 15/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525ce83a [124]
O61 - LFC: 15/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525cf06e [124]
O61 - LFC: 15/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525d3bc1 [164]
O61 - LFC: 15/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525d3ce1 [124]
O61 - LFC: 15/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525d5d99 [164]
O61 - LFC: 15/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525d9f54 [164]
O61 - LFC: 15/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525d9ffa [156]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\PowerP12.pip [1468]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\4 INTERNET.LNK [1063]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\Connexion internet impossible oct 2013.LNK [1267]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\MUTIEG.LNK [1115]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\Normal.LNK [1267]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\Templates.LNK [1135]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\lt MUTIEG 18 octobre 2012.LNK [1280]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\lt MUTIEG 18 octobre 2013.LNK [1280]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Spelling\fr-FR\default.acl [2]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Spelling\fr-FR\default.dic [2]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Spelling\fr-FR\default.exc [2]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Templates\Normal.dotm [22464]
O61 - LFC: 15/10/2013 - 11:04:58 --H-- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\index.dat [218]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\73C1407F-67E9-4B34-B66A-574FD3A1F060.Diagnose.3.etl [196608]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\FBDE97AB-20C0-4576-9DE4-D8911EFA5656.Diagnose.0.etl [262144]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\FBDE97AB-20C0-4576-9DE4-D8911EFA5656.Repair.1.etl [196608]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\FBDE97AB-20C0-4576-9DE4-D8911EFA5656.Verify.2.etl [131072]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\NetworkConfiguration.cab [954]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\NetworkDiagnostics.debugreport.xml [149715]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\ResultReport.xml [42827]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\results.xml [263]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\results.xsl [49097]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\latest.cab [35112]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [263033]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT [16]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-000449 [521]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gbmdkmlcnbapgegninelmjbfibaghdmk_0.localstorage [451584]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gbmdkmlcnbapgegninelmjbfibaghdmk_0.localstorage-journal [16384]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Managed Mode Settings [8]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Preferences [77441]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Local State [38462]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom [10582860]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Filter 2 [2413468]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies [6144]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal [2576]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist [135236]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Download [807808]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist [19592]
O61 - LFC: 16/10/2013 - 11:04:39 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Notation\config.dat [834]
O61 - LFC: 16/10/2013 - 11:04:41 ----- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm.etl [262144]
O61 - LFC: 16/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\3a8057358d1fee7b\120712-0049\DBStore\edb.chk [8192]
O61 - LFC: 16/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\windows_ie_ac_001\AC\INetCache\AntiPhishing\7A7E08C8-3FF5-45F2-873D-A84D669DC82F.dat [151000]
O61 - LFC: 16/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\windows_ie_ac_001\AC\INetCache\AntiPhishing\D7DB4501-61B9-4432-99BB-1413522F74DC.dat [151000]
O61 - LFC: 16/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\windows_ie_ac_001\AC\INetCache\MSIMGSIZ.DAT [49120]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\73C1407F-67E9-4B34-B66A-574FD3A1F060.Diagnose.3.etl [196608]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\CRX_75DAF8CB7768\crl-set [1399]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\CRX_75DAF8CB7768\manifest.json [34]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\FBDE97AB-20C0-4576-9DE4-D8911EFA5656.Diagnose.0.etl [262144]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\FBDE97AB-20C0-4576-9DE4-D8911EFA5656.Repair.1.etl [196608]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\FBDE97AB-20C0-4576-9DE4-D8911EFA5656.Verify.2.etl [131072]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\RedboxLog.txt [12210]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5148_17617\Cookies [6144]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5148_17617\Cookies-journal [1544]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\3DE7D411DE5F\index.htm [6253]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (.Nicolas Coolman.) -- C:\Users\Meunier\AppData\Local\Temp\70VgvSzZ.exe.part [6835755]
O61 - LFC: 16/10/2013 - 11:04:54 ----- . (...) -- C:\Users\Meunier\AppData\Local\Windows Live\uxcore_wlmail_00.etl [4096]
O61 - LFC: 16/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfilesB0C4E\SpellingContext\context.tlx [2]
O61 - LFC: 16/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Windows Live\uxcore_WLXPGSS_00.etl [8192]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\ArcSoft\Global Deploy\ArcUpdateService.inf [524]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\PENDING_jl5omk [6144]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\config.dbx [5120]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\deleted.dbx [22528]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\filecache.dbx [479232]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\host.db [73]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\host.dbx [205]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\notifications.dbx [2048]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\photo.dbx [19456]
O61 - LFC: 16/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\TO_HASH_nx15qp [0]
O61 - LFC: 16/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\UPDATED_xjlq5j [6144]
O61 - LFC: 16/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525e3ba6 [124]
O61 - LFC: 16/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\unlink.db [216]
O61 - LFC: 16/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Google\Local Search History\google%2Eweb.w [2302]
O61 - LFC: 16/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Sticky Notes\StickyNotes.snt [5120]
O61 - LFC: 16/10/2013 - 11:05:05 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\DbTemp\temp-dp9XdbS639cGOqthEhFUyX05 [8720]
O61 - LFC: 16/10/2013 - 11:05:05 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\DbTemp\temp-eSK4NcibE0bqCNkQSrHt0kmm [20480]
O61 - LFC: 16/10/2013 - 11:05:05 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\bistats.db [131072]
O61 - LFC: 16/10/2013 - 11:05:05 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\bistats.db-journal [45656]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\config.xml [14850]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\dc.db [118784]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\eas.db [65536]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\eas.db-journal [41552]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\main.db [1794048]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\main.db-journal [185192]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\shared.xml [87898]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\shared_dynco\dc.db [1961984]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\shared_dynco\dc.db-journal [1166048]
O61 - LFC: 16/10/2013 - 11:05:09 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\ProxyFile.dat [4]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\AnimEff.dat [920]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\DiGen.dat [401]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Curve.dat [281600]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Drop.dat [177152]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Fade.dat [249344]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Fly.dat [260608]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Moving Path.dat [1133056]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Popup.dat [322048]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Turn.dat [231936]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Zoom.dat [295936]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\pfm.dat [6656]
O61 - LFC: 16/10/2013 - 11:05:12 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\ZHP\Log.txt [20947] =>.Nicolas Coolman
O61 - LFC: 16/10/2013 - 11:05:12 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\ZHP\TestsZHPDiag.txt [2860] =>.Nicolas Coolman
~ 91 Fichiers temporaires (Temporary files)
~ Files: 535 Scanned in 00mn 55s
---\\ Liste des outils de d�sinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s
---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s
---\\ Menu de d�marrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {006ee092-9658-4fd6-bd8e-a21a348e59f5} - (Web Search) - http://feed.helperbar.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Search the web (Babylon)) - http://isearch.babylon.com =>Adware.IMBooster
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {95B7759C-8C7F-4BF1-B163-73684A933233} [DefaultScope] - (Search) - http://search.fbdownloader.com
~ Keys: Scanned in 00mn 00s
---\\ Enum�re les service demarr�s par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [190976]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [309248]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [1366016]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1156096]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99840]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d�acc�s � distance.) -- C:\Windows\System32\rasmans.dll [358400]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [107520]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [62976]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [438784]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [305664]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3275776]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [826368]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [565760]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [894464]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151552]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [105472]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1285632]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [219648]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [80896]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [134144]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [291328]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [97792]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [190976]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft�.) -- C:\Windows\System32\wlidsvc.dll [1964544]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [47104]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d�installation de p�riph�rique.) -- C:\Windows\System32\DeviceSetupManager.dll [207872]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivit� r�seau Microsoft.) -- C:\Windows\System32\ncasvc.dll [161792]
O83 - Search Svchost Services: SystemEventsBroker (SystemEventsBroker) . (.Microsoft Corporation - Service Broker pour les �v�nements syst�me.) -- C:\Windows\System32\SystemEventsBrokerServer.dll [180224]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [187392]
~ Services: 35 Scanned in 00mn 00s
---\\ Recherche particuli�re � la racine du syst�me (SPRF) (O84)
[MD5.0D3B680986310AE5540578C0E481C6A0] [SPRF][02/03/2010] (...) -- C:\ProgramData\FullRemove.exe [131984]
[MD5.65E3DA498B523915F8F87D1FE74A1F8B] [SPRF][21/01/2013] (...) -- C:\Users\Meunier\AppData\Local\ext_piccshare_uninst.exe [44136]
[MD5.88AD25D0E014FFAB9E9CAD34ECB6D247] [SPRF][14/10/2013] (.Ask - Wrapper Application.) -- C:\Users\Meunier\AppData\Local\Temp\setup.exe [4001416]
[MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll [24576]
[MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe [196608]
[MD5.0C78701C6F42345DFF2B2B6C3C3D01EF] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll [172032]
~ Files: 6 Scanned in 00mn 00s
---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "vm-monitoring-rpc" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "vm-monitoring-dcom" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-In-UDP" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-TCP" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de d�marrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC-EPMapper" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de d�marrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Netlogon-TCP-RPC-In" | In - None - P6 - FALSE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "ProximityUxHost-Sharing-In-TCP-NoScope" | In - None - P6 - TRUE | .(.Microsoft Corporation - H�te UX de proximit�.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "ProximityUxHost-Sharing-Out-TCP-NoScope" | Out - None - P6 - TRUE | .(.Microsoft Corporation - H�te UX de proximit�.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-DAS-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-DAS-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-In-UDP-NoScope" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-LocalSubnetScope" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-NoScope" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-LocalSubnetScope" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-NoScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-LocalSubnetScope" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-SSDP-Discovery-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-In-TCP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-Out-TCP-PlayToScope" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TPMVSCMGR-Server-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TPMVSCMGR-Server-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteDesktop-UserMode-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "SPPSVC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - KMS Connection Broker.) -- C:\Windows\system32\sppextcomobj.exe
O87 - FAEL: "SPPSVC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - KMS Connection Broker.) -- C:\Windows\system32\sppextcomobj.exe
O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-In" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-Out" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-TERMSRV-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSMQ-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Message Queuing Service.) -- C:\Windows\system32\mqsvc.exe
O87 - FAEL: "MSMQ-Out-TCP" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Message Queuing Service.) -- C:\Windows\system32\mqsvc.exe
O87 - FAEL: "MSMQ-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Message Queuing Service.) -- C:\Windows\system32\mqsvc.exe
O87 - FAEL: "MSMQ-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Message Queuing Service.) -- C:\Windows\system32\mqsvc.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-Out-TCP_1" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-DAS-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP_1" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{31D1834E-DD1A-4813-AE0E-685DF9AADCCA}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
O87 - FAEL: "UDP Query User{9DA114FC-D877-4203-AFEF-1512766AB287}C:\program files (x86)\orbitdownloader\orbitdm.exe" | In - Private - P17 - TRUE | .(.Orbitdownloader.com - Orbit Downloader.) -- C:\program files (x86)\orbitdownloader\orbitdm.exe
O87 - FAEL: "TCP Query User{05CD5569-8FD0-486A-9C96-139942E39E86}C:\program files (x86)\orbitdownloader\orbitdm.exe" | In - Private - P6 - TRUE | .(.Orbitdownloader.com - Orbit Downloader.) -- C:\program files (x86)\orbitdownloader\orbitdm.exe
O87 - FAEL: "{AECB243E-3B87-4043-BBA2-6410123BAFC5}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation
O87 - FAEL: "UDP Query User{AAA519D9-E57D-4585-8659-A69CC9019937}C:\program files (x86)\orbitdownloader\orbitnet.exe" | In - Private - P17 - TRUE | .(.Orbitdownloader.com.) -- C:\program files (x86)\orbitdownloader\orbitnet.exe
O87 - FAEL: "TCP Query User{4141D672-71DA-4462-9028-57D26E2852B4}C:\program files (x86)\orbitdownloader\orbitnet.exe" | In - Private - P6 - TRUE | .(.Orbitdownloader.com.) -- C:\program files (x86)\orbitdownloader\orbitnet.exe
O87 - FAEL: "{BC56B8F5-70E5-4365-AC27-CC97EFA52E64}" | In - None - P6 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O87 - FAEL: "{896A28E0-FEC5-459E-A3C2-0A3B99B0370A}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Apowersoft\YouTube Downloader Suite\ApowersoftDump.dll =>PUP.Dealio
O87 - FAEL: "{4C27C0CE-2F55-424C-9C5E-A5989135DBBB}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Apowersoft\YouTube Downloader Suite\ApowersoftSrv.dll =>PUP.Dealio
O87 - FAEL: "{36D2DC19-F17F-4386-8670-A75931AE6859}" | In - None - P6 - TRUE | .(.dotnetVM - ??dotnet???.) -- C:\Program Files (x86)\Apowersoft\YouTube Downloader Suite\YouTubeDownloaderSuite.exe =>PUP.Dealio
O87 - FAEL: "{D3E28ECE-A34A-431E-8BD9-03B8469207DF}" | In - None - P6 - TRUE | .(.Apowersoft - YouTube Downloader Suite.) -- C:\Program Files (x86)\Apowersoft\YouTube Downloader Suite\YouTube-Downloader-Suite.exe =>PUP.Dealio
O87 - FAEL: "{3E408BAD-360A-440D-AD5A-394B7434CD0C}" | In - None - P6 - FALSE | .(.Microsoft Corporation - SMSvcHost.exe.) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
O87 - FAEL: "{A6B4321A-131D-467E-AC0E-541D181B5620}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{F8D616D3-8811-48C9-ADD4-866CE41D3FEC}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{ADFBBDC8-D6BD-4E4F-9866-039860FC56E8}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{3250845B-F97F-4962-AE5A-A80F4C20C18A}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{25BB3131-2722-49BE-8C9C-46831ECF9B6D}" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{922011B6-D48F-4098-8F35-032D4551A5BF}" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{0B8C678E-58DB-4272-BAFF-386EF020E4D6}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{8D407C5F-C736-42F5-9028-0B7BBE0D0F9D}" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{191C2A66-C99F-4A1E-8E3D-FD28A83D52A9}" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{A467F1A3-C8D2-4D91-9868-6096EA5754AF}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - ActiveSync Application.) -- C:\Program Files (x86)\Microsoft ActiveSync\WCESMgr.exe
O87 - FAEL: "{4381E601-7682-4C71-9C72-84EA29DFE243}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - ActiveSync Application.) -- C:\Program Files (x86)\Microsoft ActiveSync\WCESMgr.exe
O87 - FAEL: "{FB6CB309-99D4-4C64-B766-33704A33A25E}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - ActiveSync Connection Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\wcescomm.exe
O87 - FAEL: "{422D4437-DB8E-4574-9838-F81D1010B789}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - ActiveSync Connection Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\wcescomm.exe
O87 - FAEL: "{B1165D56-1159-43BE-9F0A-6A22F0F27937}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - ActiveSync RAPI Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\rapimgr.exe
O87 - FAEL: "{115619B2-6334-4FF4-AAE5-28E081E35DFE}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - ActiveSync RAPI Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\rapimgr.exe
O87 - FAEL: "{9CD6D7C5-CAD1-49D8-804A-707D433378C9}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - ActiveSync Application.) -- C:\Program Files (x86)\Microsoft ActiveSync\WCESMgr.exe
O87 - FAEL: "{8A89B49A-6B25-4F0A-843F-8B589D4D2CB2}" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - ActiveSync Application.) -- C:\Program Files (x86)\Microsoft ActiveSync\WCESMgr.exe
O87 - FAEL: "{BB44812F-C235-4613-ADDC-B3E9AAB34A57}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - ActiveSync Connection Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\wcescomm.exe
O87 - FAEL: "{A0D94162-0408-415E-B542-873636C7CACC}" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - ActiveSync Connection Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\wcescomm.exe
O87 - FAEL: "{1E864E7A-2566-45C6-AB57-FBFAD30F763A}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - ActiveSync RAPI Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\rapimgr.exe
O87 - FAEL: "{64C857BF-CA67-4042-A052-1F49404D0437}" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - ActiveSync RAPI Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\rapimgr.exe
O87 - FAEL: "UDP Query User{097C8450-AF1F-47FC-9F3A-164CC0FE5BCA}C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe" | In - Public - P17 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe
O87 - FAEL: "TCP Query User{9FF9362F-20BA-473A-BD22-31ED267EAD91}C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe" | In - Public - P6 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe
O87 - FAEL: "UDP Query User{752C29DE-AA77-45C6-BEAA-5F450445D63F}C:\program files (x86)\emule\emule.exe" | In - Private - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe
O87 - FAEL: "TCP Query User{61987DE8-7387-4F4F-8A51-51D8AA439850}C:\program files (x86)\emule\emule.exe" | In - Private - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe
O87 - FAEL: "UDP Query User{3861F0E2-D91D-4F98-A055-79A8024A37C6}C:\program files (x86)\hercules\webcam station evolution\stationev.exe" | In - Private - P17 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\webcam station evolution\stationev.exe
O87 - FAEL: "TCP Query User{FF9BE42F-B623-4884-BE41-C7C90CB708B0}C:\program files (x86)\hercules\webcam station evolution\stationev.exe" | In - Private - P6 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\webcam station evolution\stationev.exe
O87 - FAEL: "UDP Query User{D451FBC7-0C2E-4648-9114-69CD03C6366A}C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe" | In - Private - P17 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe
O87 - FAEL: "TCP Query User{D6B98E98-2CE2-46CF-9D2B-3B318396BCA3}C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe" | In - Private - P6 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe
O87 - FAEL: "UDP Query User{77AAB9B3-9AE2-4EE6-8009-5A6DB7EBC9CA}E:\fscommand\updater.exe" |In - Private - P17 - TRUE | .(...) -- E:\fscommand\updater.exe (.not file.)
O87 - FAEL: "TCP Query User{0F7B9843-4EC2-45CD-8CA1-D7F9E5F6451D}E:\fscommand\updater.exe" |In - Private - P6 - TRUE | .(...) -- E:\fscommand\updater.exe (.not file.)
O87 - FAEL: "{8347A5D8-D9BF-41DF-B467-33F824C99440}" | In - Private - P17 - TRUE | .(.Visicom Media Inc. - DTX broker.) -- C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe =>Adware.Bandoo
O87 - FAEL: "{BBAE78D6-91CF-4DC5-BBF0-73D69E6FF173}" | In - Private - P6 - TRUE | .(.Visicom Media Inc. - DTX broker.) -- C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe =>Adware.Bandoo
O87 - FAEL: "{5E8A0504-0E44-4AD0-9C0A-DF280B61826B}" | In - None - P6 - TRUE | .(.Hewlett-Packard - HP Software Update Client.) -- C:\Program Files (x86)\HP\hp software update\hpwucli.exe =>.Hewlett-Packard Co
O87 - FAEL: "{F28463FF-CD95-42F3-9716-4291EC7B422F}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe
O87 - FAEL: "{2D2B6937-8C7A-41F9-96D4-CA358620E6E9}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe
O87 - FAEL: "{DE74AF1E-F53A-4368-B1C8-54726F9BC540}" | In - Private - P17 - TRUE | .(.adsl TV / FM - adsl TV.) -- C:\Program Files (x86)\adslTV\adsltv.exe
O87 - FAEL: "{F3CAF25F-646F-4AD6-BA6D-C4CB2DE49AA7}" | In - Private - P6 - TRUE | .(.adsl TV / FM - adsl TV.) -- C:\Program Files (x86)\adslTV\adsltv.exe
O87 - FAEL: "UDP Query User{F55934A3-88A7-40DD-8C82-39C992B30DF9}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe
O87 - FAEL: "TCP Query User{A7FEF475-9E3F-413A-A1D4-9BC71920EE98}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe
O87 - FAEL: "{CB3F9EBA-A750-4B4E-9FD4-0408C762B0A8}" | In - None - P6 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{053FAA63-CA37-4C39-8ED6-5CAC889EC96D}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
O87 - FAEL: "{B23BC726-A94C-4FC8-88A0-1544E7D90F6C}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files (x86)\Microsoft Office\Office12\outlook.exe =>.Microsoft Corporation
O87 - FAEL: "{01F0D38A-0CA5-4415-9461-6C2B5E110A58}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "{4CE4402B-A8E3-4165-B18A-1D356A618F5D}" | In - Public - P17 - TRUE | .(.CyberLink - DMREngine.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
O87 - FAEL: "{07941D9E-E55C-4F81-936A-6487CC9A2812}" | In - Private - P17 - TRUE | .(.CyberLink - DMREngine.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
O87 - FAEL: "{B2BAA2D1-16E2-4218-B82F-E794A47A2228}" | In - Domain - P17 - TRUE | .(.CyberLink - DMREngine.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
O87 - FAEL: "{82367CE1-AA26-4A8E-AE28-24BEF1F1A0B5}" | In - None - P17 - TRUE | .(.CyberLink Corp. - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\CLML\CLMLSvc.exe
O87 - FAEL: "{1FDD08F9-E4A2-49C1-9B0A-C52223232933}" | In - None - P17 - TRUE | .(.CyberLink Corp. - clear.fi Resident Program.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
O87 - FAEL: "{0A83C674-0E7E-4682-9B6F-396D3F50C24E}" | In - None - P17 - TRUE | .(.Acer Incorporated - clear.fi.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe
O87 - FAEL: "{886579F5-08D3-4E80-A191-467836AB5C66}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{8DC631E2-E81E-4F01-B720-CC218FE21DB3}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "{69FEEA12-4959-4966-A421-5D41A1BB0E12}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "{4D5A2B81-57FC-42F2-836E-53DF272D39E8}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "{3FBC5928-2283-4233-B40C-97749DD673B7}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "{3C4F0372-378E-4B30-A2A8-0A6742712151}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{35E99F10-5A02-499C-BB01-7C8FB622BCD7}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{466ACDD5-0A52-4FA9-BFC8-7913698F3B2A}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{08CFD0CE-B270-4B86-8317-E6405A199E58}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{04AEA558-AF56-4CD8-B9EC-4F6740C3B78B}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{0616E738-1345-4EBD-8024-EE1D560A726F}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{867C2137-6B10-42E8-9D9C-4A1DA62ED809}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{1FEC1B4E-A728-47BC-B1D3-D84C2056DC57}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{67ADF32F-94E0-4497-B4F4-E82EC08C4ADA}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TCP Query User{E30FF55E-B117-4F59-BB50-DBDEF442120C}C:\program files (x86)\nero\nero 7\nero home\nerohome.exe" | In - Public - P6 - TRUE | .(.Nero AG - Nero Home.) -- C:\program files (x86)\nero\nero 7\nero home\nerohome.exe
O87 - FAEL: "UDP Query User{1029597C-4B97-46CA-A7C2-8B951E6982F3}C:\program files (x86)\nero\nero 7\nero home\nerohome.exe" | In - Public - P17 - TRUE | .(.Nero AG - Nero Home.) -- C:\program files (x86)\nero\nero 7\nero home\nerohome.exe
O87 - FAEL: "{AF41AF9D-02B6-4A07-95EA-E3E1C274D049}" | In - Public - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Meunier\AppData\Roaming\Dropbox\bin\Dropbox.exe
O87 - FAEL: "{EE18457A-1EB1-440E-B4B6-D6777BB15EDC}" | In - Public - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Meunier\AppData\Roaming\Dropbox\bin\Dropbox.exe
~ Firewall: 293 Scanned in 00mn 01s
---\\ Enum�re les codes produits des logiciels (PUC) (O90)
O90 - PUC: "00004159A700C0400000000000F01FEC" . (.Microsoft Office Outlook Connector.) -- C:\Windows\Installer\{95140000-007A-040C-0000-0000000FF1CE}\OLCIcon.exe =>.Microsoft Corporation
O90 - PUC: "0212CE3624715264AA746C8AEA9C6CC4" . (.Apple Application Support.) -- C:\Windows\Installer\{63EC2120-1742-4625-AA47-C6A8AEC9C64C}\WinInstall.ico
O90 - PUC: "05B51F93779A6AC41B3CA67842DC0A52" . (.MyWinLocker 4.) -- C:\Windows\Installer\{39F15B50-A977-4CA6-B1C3-6A8724CDA025}\ARPPRODUCTICON.exe
O90 - PUC: "0BCE87B0B6A1D6E4987DE0C77EF74072" . (.MyWinLocker.) -- C:\Windows\Installer\{0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}\ARPPRODUCTICON.exe
O90 - PUC: "1271C3A5DE8F0E11A8BF8BCAF6798BE8" . (.Google�Earth.) -- C:\Windows\Installer\{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}\ARPPRODUCTICON.exe
O90 - PUC: "1B641C2DD849FE743878D5C1B689F0C7" . (.Windows Live Writer.) -- C:\Windows\Installer\{D2C146B1-948D-47EF-8387-5D1C6B980F7C}\ApplicationIcon.ico
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "1EAD96AE2CB1DE84BAA9425A8CCA0817" . (.Boxore Client.) -- C:\WINDOWS\Installer\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}\boxore.ico =>Adware.Boxore
O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico
O90 - PUC: "3058F5C62D55893458C863B2A7A75FC1" . (.Firebird SQL Server - MAGIX Edition.) -- C:\Windows\Installer\{6C5F8503-55D2-4398-858C-362B7A7AF51C}\ProgramIcon.exe
O90 - PUC: "38E5962CD1FC1D3448EF3BEB5C1610A2" . (.Shredder.) -- C:\Windows\Installer\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}\ARPPRODUCTICON.exe
O90 - PUC: "4179FD719C069C349A2C23CBEA4DC4EB" . (.MyWinLocker Suite.) -- C:\Windows\Installer\{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}\ARPPRODUCTICON.exe
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico =>.Apple Inc
O90 - PUC: "482AA67AD25E6E74E9F48BD5FBE8533C" . (.IMinent Toolbar.) -- C:\Documents and Settings\CATA\My Documents\My Received Files\icon.ico =>Adware.IMBooster
O90 - PUC: "4A71778417DF1E64594EB6B50FF5B3BC" . (.Votre PC parle dans Word.) -- C:\Windows\Installer\{487717A4-FD71-46E1-95E4-6B5BF05F3BCB}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "5CA0C31676A349B4B8311967DA385FFB" . (.newsXpresso.) -- C:\Windows\Installer\{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}\ARPPRODUCTICON.exe
O90 - PUC: "613755F10CFCDB14FA7FB84CC94E447D" . (.Shredder.) -- C:\Windows\Installer\{1F557316-CFC0-41BD-AFF7-8BC49CE444D7}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.8) - Fran�ais.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "6B3C4C414F1FF104C868308E1EA9CAC8" . (.MediaEspresso.) -- C:\Windows\Installer\{14C4C3B6-F1F4-401F-8C86-03E8E19AAC8C}\ARPPRODUCTICON.exe
O90 - PUC: "743C7362DAD96D11E92A0050D5C07A16" . (.PowerCinema.) -- C:\Windows\Installer\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\ARPPRODUCTICON.exe
O90 - PUC: "7692FC6BE18C0C0489510C7547EF1F02" . (.Skype Click to Call.) -- C:\Windows\Installer\{B6CF2967-C81E-40C0-9815-C05774FEF120}\IconUninstallIco
O90 - PUC: "7E685771E24E83F4381D1DB5A45F7B41" . (.Delta Chrome Toolbar.) -- C:\Windows\Installer\{177586E7-E42E-4F38-83D1-D15B4AF5B714}\Delta.ico =>Toolbar.DeltaSearch
O90 - PUC: "890B46E081086524AB323C614AA39D0B" . (.QuickTime.) -- C:\Windows\Installer\{0E64B098-8018-4256-BA23-C316A43AD9B0}\Installer.ico
O90 - PUC: "907018673D7AD86419761A87C0E167C6" . (.Windows Live FolderShare.) -- C:\Windows\Installer\{76810709-A7D3-468D-9167-A1780C1E766C}\FolderShare48x48.ico
O90 - PUC: "97CD5CCB57221714C8AE930FDDA9FD85" . (.USB TV Device Driver.) -- C:\Windows\Installer\{BCC5DC79-2275-4171-8CEA-39F0DD9ADF58}\ARPPRODUCTICON.exe
O90 - PUC: "A11C609B391D3414F97A2EEEA8A5F812" . (.ArcadeMovie.) -- C:\Windows\Installer\{B906C11A-D193-4143-9FA7-E2EE8A5A8F21}\ARPPRODUCTICON.exe
O90 - PUC: "B2BBB5D0440F3C6478B7A6B61E0ED891" . (.SweetIM for Messenger 3.6.) -- C:\Windows\Installer\{0D5BBB2B-F044-46C3-877B-6A6BE1E08D19}\ARPPRODUCTICON.exe =>PUP.SweetIM
O90 - PUC: "CA98B4D33B4B4D74C8EE589350803F6D" . (.SHARP GSM GPRS USB Driver Ver2.1.0.) -- C:\Windows\Installer\{3D4B89AC-B4B3-47D4-8CEE-85390508F3D6}\ARPPRODUCTICON.exe
O90 - PUC: "D4ADF7A47D4F94A439A460D6954AC3E7" . (.SmartSound Quicktracks Plugin.) -- C:\Windows\Installer\{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "D73F4D92A419E8B4BBEC1C182399952F" . (.eDownloader.) -- C:\Windows\Installer\{29D4F37D-914A-4B8E-BBCE-C181329959F2}\softwareinstaller.exe =>PUP.SoftwareEngine
O90 - PUC: "D8EF64479F1C24D4AAEAD5CB5E68506A" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}\Installer.ico
O90 - PUC: "DC276626FCFB9A94EAEFBAF0DEB3CFB5" . (.Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\Installer\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}\wmdc.exe
O90 - PUC: "E57C80942E5E7F341BFD20C3AB380163" . (.Nero 7 Ultra Edition.) -- C:\Windows\Installer\{4908C75E-E5E2-43F7-B1DF-023CBA831036}\ARPPRODUCTICON.exe
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype� 6.3.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O90 - PUC: "EA2B394116202D741BAA4FAD0D6F4CB8" . (.iTunes.) -- C:\Windows\Installer\{1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}\Installer.ico
O90 - PUC: "FA20CB7A821113A4CB8FA1E38E303D3B" . (.SweetIM Toolbar for Internet Explorer 4.2.) -- C:\Windows\Installer\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}\ARPPRODUCTICON.exe =>PUP.SweetIM
~ Update Products: 147 Scanned in 00mn 00s
---\\ Export de cl�s de registre al�atoires (O91)
[HKCU\Software\592d8dbb23cea14]:GUID="{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:INSTALL_FOLDER_NAME="BitGuard" =>PUP.BitGuard
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:NTCHREGEXP0="FO81jovjQUF+5S6+haV7vGe3TMfw8oqWAhSaKzFS9OtdgZ1j5X+B4jW/459R"
[HKCU\Software\592d8dbb23cea14]:NTCHREGEXP1="FO81jovjQUF+5S6+hbF0tnG4Tc/u94SDBhydJTxS8+ldnZRi5niE4Dm49Yxb"
[HKCU\Software\592d8dbb23cea14]:NTCHREGEXP2="FO81jovjQUF+5S6+hbF/tG24SsHn9oyWDBuXLj1U8e1fjIJv8XSE4Dy75IlV"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:PROTECTOR_DLL_NAME="BitGuard.dll" =>PUP.BitGuard
[HKCU\Software\592d8dbb23cea14]:PROTECT_EXE_NAME="BitGuard.exe" =>PUP.BitGuard
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:SERVICE_NAME="BitGuard" =>PUP.BitGuard
[HKCU\Software\592d8dbb23cea14]:usrcheckbox="1"
[HKCU\Software\592d8dbb23cea14]:version="2.6.1673.238"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:GUID="{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:INSTALL_FOLDER_NAME="BitGuard" =>PUP.BitGuard
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTCHREGEXP0="FO81jovjQUF+5S6+haV7vGe3TMfw8oqWAhSaKzFS9OtdgZ1j5X+B4jW/459R"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTCHREGEXP1="FO81jovjQUF+5S6+hbF0tnG4Tc/u94SDBhydJTxS8+ldnZRi5niE4Dm49Yxb"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTCHREGEXP2="FO81jovjQUF+5S6+hbF/tG24SsHn9oyWDBuXLj1U8e1fjIJv8XSE4Dy75IlV"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:PROTECTOR_DLL_NAME="BitGuard.dll" =>PUP.BitGuard
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:PROTECT_EXE_NAME="BitGuard.exe" =>PUP.BitGuard
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SERVICE_NAME="BitGuard" =>PUP.BitGuard
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:usrcheckbox="1"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:version="2.6.1673.238"
~ Export Key Software: Scanned in 00mn 00s
---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.7AE5FF598B22E4F65558BAF73107FA7E] [WIS][14/05/2009] (.Builds the Destinations MSI - Builds the Destinations MSI.) -- C:\Windows\Installer\113344.msi [459264]
[MD5.8A1EAA47F0DDD9BFCA3D70BBB774B4D6] [WIS][08/06/2013] (.Linkury Inc. - Linkury Smartbar (Powered by Linkury Inc.).) -- C:\Windows\Installer\156d223.msi [8888320] =>Hijacker.SmartBar
[MD5.33B7498D562214AF350351413ECFB9F4] [WIS][14/01/2013] (.Advernet - eDownloader.) -- C:\Windows\Installer\170c1.msi [894976] =>PUP.SoftwareEngine
[MD5.B67811645C5A3B8E4E4B1A1DB1EE271C] [WIS][19/09/2012] (.Boxore OU. - Software Update Helper.) -- C:\Windows\Installer\1a632f1.msi [45056] =>Adware.Boxore
[MD5.3E765C9DA387C8C8C067266C3AE3FB9B] [WIS][24/10/2012] (.Skype Technologies S.A. - Skype Click to Call.) -- C:\Windows\Installer\1b458.msi [10137600]
[MD5.35C918348CBB0877BCD5A3CF24C13761] [WIS][25/11/2012] (.DeltaInstaller - Delta Chrome Toolbar.) -- C:\Windows\Installer\1d419.msi [573440] =>Toolbar.DeltaSearch
[MD5.4F85EDB09C3A683405B28267915885F3] [WIS][30/01/2012] (.EETI - Blank Project Template.) -- C:\Windows\Installer\202dfa9.msi [20961280]
[MD5.B06712BF5643BB55600A040F210DC218] [WIS][14/04/2013] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\38334.msi [20586496]
[MD5.066CE7A861C7B83197D92E07FA1EE16C] [WIS][08/12/2011] (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Windows\Installer\5fbfd.msi [28160] =>Toolbar.Google
[MD5.CB08263B7B5C9BB753901E81A5748990] [WIS][05/08/2004] (.SHARP - SHARP GSM GPRS USB Driver Ver2.1.0.) -- C:\Windows\Installer\7957c.msi [5619656]
[MD5.C6AE71164A8A5138045327623BBCF12B] [WIS][03/02/2012] (.Micro Application - LauncherMA.) -- C:\Windows\Installer\901acc.msi [623616]
[MD5.384D0D94B59B93157E0A2C5A32DB4754] [WIS][24/03/2011] (.esobi Inc. - newsXpresso.) -- C:\Windows\Installer\bd617.msi [5219328]
[MD5.A672E4C77ED7CCC851575B10B46CC8AD] [WIS][08/12/2011] (.IMinent - IMinent Toolbar.) -- C:\Windows\Installer\c1514.msi [1019392] =>Adware.IMBooster
~ WIS: 153 Scanned in 00mn 17s
---\\ Etat g�n�ral des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/03/2010 113152 | (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
SR - | Auto 10/05/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 13/10/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 11/08/2012 55184 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 30/08/2013 46808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Demand 14/12/2012 277616 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Demand 28/09/2010 172912 | (EgisTec Ticket Service) . (.Egis Technology Inc..) - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
SR - | Auto 24/05/2011 1840128 | (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
SS - | Demand 26/04/2011 2702848 | (FirebirdServerMAGIXInstance) . (.MAGIX�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
SR - | Auto 08/01/2010 23584 | (GREGService) . (.Acer Incorporated.) - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
SS - | Auto 08/12/2011 136176 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 08/12/2011 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 24/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Demand 20/09/2012 29696 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\system32\svchost.exe
SR - | Auto 20/09/2012 29696 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\system32\svchost.exe
SR - | Auto 20/09/2012 29696 | C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.dll (HPSLPSVC) . (.Hewlett-Packard Co..) - C:\Windows\system32\svchost.exe
SR - | Auto 05/11/2010 13336 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SS - | Demand 14/11/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
SR - | Demand 09/09/2012 936848 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 31/01/2011 244624 | (Live Updater Service) . (.Acer Incorporated.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
SR - | Auto 20/12/2010 325656 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 04/04/2013 418376 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 04/04/2013 701512 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 11/05/2013 117144 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 10/11/2006 774144 | (NBService) . (.Nero AG.) - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
SR - | Auto 20/09/2012 29696 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 28/12/2012 54912 | (Notation) . (.Advernet.) - C:\Program Files (x86)\Notation\Notation.exe =>Hijacker.Proxy
SR - | Auto 28/12/2012 33920 | (NotationMonitor) . (.Advernet.) - C:\Program Files (x86)\Notation\NotationMonitor.exe =>Hijacker.Proxy
SR - | Auto 20/09/2012 29696 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 02/10/2012 3064000 | (Skype C2C Service) . (.Skype Technologies S.A..) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
SS - | Auto 28/02/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 28/09/2006 49152 | (UleadBurningHelper) . (.Ulead Systems, Inc..) - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
SR - | Auto 20/12/2010 2656280 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 09/12/2009 76320 | (USBS3S4Detection) . (...) - C:\OEM\USBDECTION\USBS3S4Detection.exe
SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Demand 20/09/2012 29696 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 21s
---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by Meunier at 16/10/2013 11:06:28
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s
---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Meunier at 16/10/2013 11:06:30
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s
---\\ Scan Additionnel (O88)
Database Version : 12948 - (15/10/2013)
Cl�s trouv�es (Keys found) : 416
Valeurs trouv�es (Values found) : 4
Dossiers trouv�s (Folders found) : 25
Fichiers trouv�s (Files found) : 22
[HKLM\Software\Google\Chrome\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk] =>Toolbar.OfferMosquito^
[HKLM\Software\Google\Chrome\Extensions\pbpohikckhbcljgombipcdoinkaedlfa] =>Spyware.SmartDisplay^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4D91-8333-CF10577473F7}] =>Toolbar.Google^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo^
[HKLM\SYSTEM\CurrentControlSet\Services\Notation] =>Hijacker.Proxy^
[HKLM\SYSTEM\CurrentControlSet\Services\NotationMonitor] =>Hijacker.Proxy^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{177586E7-E42E-4F38-83D1-D15B4AF5B714}] =>Toolbar.DeltaSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}] =>Toolbar.Google^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] =>Toolbar.Google^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}] =>Adware.IMBooster^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F04C4F83-D9C7-408C-9DEB-D5526E72108C}] =>Hijacker.SmartBar^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{75e9a48b-068c-403f-b877-fa5890bde80c}] =>Hijacker.SmartBar^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Funmoods] =>PUP.Funmoods^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{29633E53-BF13-41B5-9E10-19D7843BD9C3}] =>Hijacker.Proxy^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0D5BBB2B-F044-46C3-877B-6A6BE1E08D19}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Windows Searchqu Toolbar] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}] =>Adware.Yontoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3FF2F54D-FA3A-406F-9F9E-6CDD95B9A1A9}_is1] =>PUP.Dealio^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\eDownloader 1.0.1] =>PUP.SoftwareEngine^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{29D4F37D-914A-4B8E-BBCE-C181329959F2}] =>PUP.SoftwareEngine^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\DATAMNGR] =>PUP.Datamngr^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Iminent] =>Adware.IMBooster^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\IminentMessenger] =>Adware.IMBooster^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\swg] =>Toolbar.Google^
[HKLM\Software\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{006E6A46-8D55-4F10-BBA8-2C9653B4278B}] =>Adware.Boxore
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>Hijacker.SmartBar
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>Hijacker.SmartBar
[HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}] =>Adware.IMBooster
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{177586E7-E42E-4F38-83D1-D15B4AF5B714}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}] =>Adware.Agent
[HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{32451DFC-C23B-4E12-866C-FC7982238504}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{32451DFC-C23B-4E12-866C-FC7982238504}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{44B619BC-3D2B-4990-AA4F-9AA366921792}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\Interface\{44B619BC-3D2B-4990-AA4F-9AA366921792}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}] =>PUP.RewardsArcade
[HKLM\Software\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}] =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{5B4144E1-B61D-495A-9A50-CD1A95D86D15}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}] =>Hijacker.SmartBar
[HKLM\Software\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}] =>Hijacker.SmartBar
[HKLM\Software\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}] =>Hijacker.SmartBar
[HKLM\Software\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}] =>Hijacker.SmartBar
[HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{736EF78E-5A04-46F9-893E-EDEC6EA5DF45}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{7A1BCE27-099C-4628-B63A-AEC00C6376B3}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{841D5A49-E48D-413C-9C28-EB3D9081D705}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}] =>PUP.Funmoods
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}] =>PUP.RewardsArcade
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}] =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKLM\Software\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Classes\Interface\{AF3AFF7C-B9E9-48DD-9002-212B6DEAAC02}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}] =>PUP.RewardsArcade
[HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}] =>Hijacker.Seeearch
[HKLM\Software\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}] =>Hijacker.SmartBar
[HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}] =>Hijacker.Seeearch
[HKLM\Software\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}] =>Adware.Yontoo
[HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{DBE82879-914A-422F-BAE9-2ECC80BE536F}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{E12D7149-73EF-45E4-A1E9-99FD7DAE62D3}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}] =>Adware.BullseyeToolbar
[HKLM\Software\Wow6432Node\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}] =>Adware.BullseyeToolbar
[HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}] =>PUP.RewardsArcade
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635] =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{F2B184F1-547C-4EE9-BFC4-AC489C7077D9}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo
[HKLM\Software\Classes\AppID\BrowserConnection.dll] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\DNSBHO.dll] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\escort.dll] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\escortapp.dll] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\escorteng.dll] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\esrv.EXE] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\TbCommonUtils.DLL] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\TbHelper.EXE] =>Toolbar.Agent
[HKLM\Software\Classes\sim-packages] =>Toolbar.Agent
[HKLM\Software\Classes\Software.OneClickCtrl.8] =>Adware.Agent
[HKLM\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh] =>PUP.Funmoods
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852] =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster
[HKLM\Software\Classes\Installer\Products\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Installer\Features\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Installer\Products\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\BA086F2D38A8E1A47912955A68B3AD24] =>Adware.PredictAd
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E] =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\B2BBB5D0440F3C6478B7A6B61E0ED891] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\B2BBB5D0440F3C6478B7A6B61E0ED891] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2BBB5D0440F3C6478B7A6B61E0ED891] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\B2BBB5D0440F3C6478B7A6B61E0ED891] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\B2BBB5D0440F3C6478B7A6B61E0ED891] =>PUP.SweetIM
[HKCU\Software\APN PIP] =>Toolbar.Ask
[HKCU\Software\AppDataLow\Software\ConduitSearchScopes] =>Toolbar.Conduit
[HKLM\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\funmoods] =>PUP.Funmoods
[HKCU\Software\ilivid] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKCU\Software\PIP] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\PIP] =>Toolbar.Ask
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKLM\Software\Wow6432Node\SearchquMediabarTb] =>Adware.Bandoo
[HKCU\Software\AppDataLow\Software\searchqutoolbar] =>Adware.Bandoo
[HKCU\Software\SmartbarBackup] =>Hijacker.SmartBar
[HKCU\Software\SmartbarLog] =>Hijacker.SmartBar
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\Tarma Installer] =>PUP.Tarma
[HKCU\Software\AppDataLow\Toolbar] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0D5BBB2B-F044-46C3-877B-6A6BE1E08D19}] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110211181110}] =>Adware.VidSaver
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Windows Searchqu Toolbar] =>Adware.Bandoo
[HKLM\Software\Classes\Installer\Features\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Installer\Products\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Features\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Products\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{29633E53-BF13-41B5-9E10-19D7843BD9C3}] =>Hijacker.Proxy
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKLM\Software\Classes\Installer\Features\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Classes\Installer\Features\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Classes\Installer\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0] =>PUP.SweetIM
[HKLM\Software\Classes\MediaPlayer.GraphicsUtils] =>PUP.SweetIM
[HKLM\Software\Classes\MediaPlayer.GraphicsUtils.1] =>PUP.SweetIM
[HKLM\Software\Classes\MgMediaPlayer.GifAnimator] =>PUP.SweetIM
[HKLM\Software\Classes\MgMediaPlayer.GifAnimator.1] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420] =>PUP.SweetIM
[HKCU\Software\Protector] =>PUP.AdvancedSystemProtector
[HKLM\Software\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Installer\Features\FA20CB7A821113A4CB8FA1E38E303D3B] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\FA20CB7A821113A4CB8FA1E38E303D3B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\FA20CB7A821113A4CB8FA1E38E303D3B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\FA20CB7A821113A4CB8FA1E38E303D3B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\FA20CB7A821113A4CB8FA1E38E303D3B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E5C8B5FB7CB5DD447A0BAAAF637FBD77] =>PUP.ClaroSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF96568971BEAC14B8815883832BD484] =>PUP.ClaroSearch
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Features\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Classes\Installer\Features\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Classes\Installer\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Companion] =>Toolbar.Yahoo
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\OfferMosquito] =>Toolbar.OfferMosquito
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}] =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}] =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}] =>Toolbar.Yahoo
[HKLM\Software\Classes\YontooIEClient.Api] =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Api.1] =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Layers] =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Layers.1] =>Adware.Yontoo
[HKLM\Software\Classes\AppID\escorTlbr.DLL] =>PUP.Funmoods
[HKLM\Software\Classes\AppID\YontooIEClient.DLL] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Api] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Api.1] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Layers] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Layers.1] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110211181110}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\AppID\escort.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escortApp.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escortEng.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escorTlbr.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\TbHelper.EXE] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\AppID\YontooIEClient.DLL] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110211181110}] =>PUP.CrossRider
[HKLM\Software\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156] =>PUP.SweetIM^
[HKLM\Software\Wow6432Node\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{ae07101b-46d4-4a98-af68-0333ea26e113} =>Hijacker.SmartBar^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:swg =>Toolbar.Google^
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Toolbar.Avira
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{EF99BD32-C1FB-11D2-892F-0090271D4F88} =>Toolbar.Yahoo
C:\Program Files (x86)\Boxore =>Adware.Boxore^
C:\Program Files (x86)\iLivid =>Adware.Bandoo^
C:\Program Files (x86)\Windows iLivid Toolbar =>Adware.Bandoo^
C:\ProgramData\Babylon =>Toolbar.Babylon^
C:\ProgramData\BitGuard =>PUP.BitGuard^
C:\ProgramData\DSearchLink =>Toolbar.DeltaSearch^
C:\ProgramData\SweetIM =>PUP.SweetIM^
C:\Users\Meunier\AppData\Roaming\Advernet =>Hijacker.Proxy^
C:\Users\Meunier\AppData\Roaming\Funmoods =>PUP.Funmoods^
C:\Users\Meunier\AppData\Local\Giant Savings Extension =>Adware.VidSaver^
C:\Users\Meunier\AppData\Local\Ilivid Player =>Adware.Bandoo^
C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard =>PUP.BitGuard^
C:\Program Files (x86)\Conduit =>Toolbar.Conduit
C:\Program Files (x86)\Software =>Adware.Boxore
C:\Users\Meunier\AppData\Roaming\DataMgr =>PUP.Datamngr
C:\Users\Meunier\AppData\Local\Conduit =>Toolbar.Conduit
C:\Users\Meunier\AppData\Local\Software =>Adware.Boxore
C:\Users\Meunier\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\Meunier\AppData\LocalLow\PriceGong =>Adware.PriceGong
C:\Users\Meunier\AppData\LocalLow\searchquband =>Adware.Bandoo
C:\Users\Meunier\AppData\LocalLow\searchqutoolbar =>Adware.Bandoo
C:\Users\Meunier\AppData\LocalLow\Smartbar =>Hijacker.SmartBar
C:\Users\Meunier\AppData\LocalLow\Toolbar4 =>Toolbar.Conduit
C:\Users\Meunier\AppData\LocalLow\WhiteSmoke_US_New =>PUP.Whitesmoke
C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa =>Spyware.SmartDisplay
C:\Program Files (x86)\Notation\NotationSysTray.exe =>Hijacker.Proxy^
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe =>Toolbar.Google^
C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk =>Toolbar.OfferMosquito^
[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit^
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar^
[HKCU\Software\AppDataLow\Software\WhiteSmoke_US_New] =>PUP.WhiteSmoke^
[HKCU\Software\Smartbar] =>Hijacker.SmartBar^
[HKCU\Software\YouTube Downloader Suite] =>PUP.Dealio^
[HKCU\Software\iLivid] =>Adware.Bandoo^
[HKLM\Software\Wow6432Node\Advernet] =>Hijacker.Proxy^
[HKLM\Software\Wow6432Node\Babylon] =>Toolbar.Babylon^
[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit^
[HKLM\Software\Wow6432Node\Funmoods] =>PUP.Funmoods^
[HKLM\Software\Wow6432Node\WhiteSmoke_US_New] =>PUP.WhiteSmoke^
[HKCU\Software\592d8dbb23cea14]:GUID="{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel^
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:GUID="{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel^
C:\Windows\Installer\156d223.msi =>Hijacker.SmartBar^
C:\Windows\Installer\170c1.msi =>PUP.SoftwareEngine^
C:\Windows\Installer\1a632f1.msi =>Adware.Boxore^
C:\Windows\Installer\1d419.msi =>Toolbar.DeltaSearch^
C:\Windows\Installer\5fbfd.msi =>Toolbar.Google^
C:\Windows\Installer\c1514.msi =>Adware.IMBooster^
~ Additionnel Scan: 445673 Items scanned in 00mn 22s
---\\ R�capitulatif des d�tections trouv�es sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/27232411-hijacker-proxy =>Hijacker.Proxy
~ http://nicolascoolman.webs.com/apps/blog/show/32384220-toolbar-google =>Toolbar.Google
~ http://nicolascoolman.webs.com/apps/blog/show/32662245-spyware-smartdisplay =>Spyware.SmartDisplay
~ http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon =>Toolbar.Babylon
~ http://nicolascoolman.webs.com/apps/blog/show/26811836-adware-yontoo =>Adware.Yontoo
~ http://nicolascoolman.webs.com/apps/blog/show/26990375-hijacker-smartbar =>Hijacker.SmartBar
~ http://nicolascoolman.webs.com/apps/blog/show/33263878-hijacker-browser =>Hijacker.Browsers
~ http://nicolascoolman.webs.com/apps/blog/show/27583992-pup-datamngr =>PUP.Datamngr
~ http://nicolascoolman.webs.com/apps/blog/show/26678994-hijacker-babsolution =>Hijacker.BabSolution
~ http://nicolascoolman.webs.com/apps/blog/show/26626977-adware-boxore =>Adware.Boxore
~ http://nicolascoolman.webs.com/apps/blog/show/29637859-toolbar-tarma =>PUP.Tarma
~ http://nicolascoolman.webs.com/apps/blog/show/27875657-toolbar-deltasearch =>Toolbar.DeltaSearch
~ http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster =>Adware.IMBooster
~ http://nicolascoolman.webs.com/apps/blog/show/27630986-pup-funmoods =>PUP.Funmoods
~ http://nicolascoolman.webs.com/apps/blog/show/29216159-pup-sweetim =>PUP.SweetIM
~ http://nicolascoolman.webs.com/apps/blog/show/26611092-adware-bandoo =>Adware.Bandoo
~ http://nicolascoolman.webs.com/apps/blog/show/27443462-pup-dealio =>PUP.Dealio
~ http://nicolascoolman.webs.com/apps/blog/show/29758660-pup-softwareengine =>PUP.SoftwareEngine
~ http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit =>Toolbar.Conduit
~ http://nicolascoolman.webs.com/apps/blog/show/27583526-pup-crossrider =>PUP.CrossRider
~ http://nicolascoolman.webs.com/apps/blog/show/26666995-adware-pricegong =>Adware.PriceGong
~ http://nicolascoolman.webs.com/apps/blog/show/27636417-pup-whitesmoke =>PUP.WhiteSmoke
~ http://nicolascoolman.webs.com/apps/blog/show/32979753-pup-bitguard =>PUP.BitGuard
~ http://nicolascoolman.webs.com/apps/blog/show/27557062-adware-vidsaver =>Adware.VidSaver
~ http://nicolascoolman.webs.com/apps/blog/show/27161672-hijacker-eazel =>Hijacker.Eazel
~ http://nicolascoolman.webs.com/apps/blog/show/27480243-adware-socialskinz =>Adware.SocialSkinz
~ http://nicolascoolman.webs.com/apps/blog/show/28000037-pup-rewardsarcade =>PUP.RewardsArcade
~ http://nicolascoolman.webs.com/apps/blog/show/30898245-toolbar-skype =>Toolbar.Skype
~ http://nicolascoolman.webs.com/apps/blog/show/27674245-adware-bullseyetoolbar =>Adware.BullseyeToolbar
~ http://nicolascoolman.webs.com/apps/blog/show/28927746-toolbar-ask =>Toolbar.Ask
~ http://nicolascoolman.webs.com/apps/blog/show/27229962-adware-predictad =>Adware.PredictAd
~ http://nicolascoolman.webs.com/apps/blog/show/30268689-toolbar-yahoo =>Toolbar.Yahoo
~ http://nicolascoolman.webs.com/apps/blog/show/26630283-pup-advancedsystemprotector =>PUP.AdvancedSystemProtector
~ http://nicolascoolman.webs.com/apps/blog/show/27563212-pup-clarosearch =>PUP.ClaroSearch
~ http://nicolascoolman.webs.com/apps/blog/show/28419247-toolbar-avira =>Toolbar.Avira
~ MSI: 35 link(s) detected in 00mn 22s
End of the scan (3645 lines in 04mn 02s)(0)
~ Lanc� par Meunier (16/10/2013 11:02:54)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance � la d�sinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : D�sactiv�e par l'utilisateur
~ El�vation des Privil�ges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16721
MFIE: Mozilla Firefox 21.0 (Defaut)
GCIE: Google Chrome v22.0.1229.95
---\\ Informations sur les produits Windows
~ Langage: Fran�ais
Windows 8 Business Edition, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : JW8XV
Windows License : OK
~ Windows Remaining Initializations Number : 1000
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du syst�me
avast! Free Antivirus v8.0.1497.0
Malwarebytes Anti-Malware version 1.75.0.1300
Windows Defender W8
---\\ Logiciels d'optimisation du syst�me
CCleaner v4.05 =>Piriform Ltd
---\\ Logiciels de partage PeerToPeer
eMule
---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader X
Java 7 Update 21
---\\ Informations sur le syst�me
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4040 MB (44% free)
System Restore: Activ� (Enable)
System drive C: has 389 GB (84%) free of 458 GB
---\\ Mode de connexion au syst�me
~ Computer Name: BUREAU
~ User Name: Meunier
~ All Users Names: Meunier, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Meunier\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Meunier\AppData\Roaming\
~ %Desktop% : C:\Users\Meunier\Desktop\
~ %Favorites% : C:\Users\Meunier\Favorites\
~ %LocalAppData% : C:\Users\Meunier\AppData\Local\
~ %StartMenu% : C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enum�ration des unit�s disques
C: Hard drive, Flash drive, Thumb drive (Free 389 Go of 458 Go)
D: Hard drive, Flash drive, Thumb drive (Free 332 Go of 458 Go)
E: CD-ROM drive (Not Inserted)
F: Floppy drive, Flash card reader, USB Key (Not Inserted)
G: Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Etat du Centre de S�curit� Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 30 Scanned in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.0E8E6463F81C80AFBED533E0F1F8895D] - (.Microsoft Corporation - Explorateur Windows.) (.01/06/2013 - 12:34:21.) -- C:\Windows\Explorer.exe [2391280]
[MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.26/07/2012 - 04:08:50.) -- C:\Windows\System32\Wininit.exe [132608]
[MD5.D28B35DE88D27EFB27DF4B1E8319E3C0] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22/09/2013 - 23:55:10.) -- C:\Windows\System32\wininet.dll [2241024]
[MD5.BCF2036A0DD579E47C008C133550283E] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.11/10/2012 - 06:46:58.) -- C:\Windows\System32\Winlogon.exe [517120]
[MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Biblioth�que de licences.) (.26/07/2012 - 04:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408]
[MD5.36D6A3201721558A8AFBCC09C2DA4C2C] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.06/11/2012 - 04:53:44.) -- C:\Windows\system32\Drivers\AFD.sys [560640]
[MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 06:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840]
[MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 03:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544]
[MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 03:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.09D9EB9E7898F8E6561473A20CC808B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/07/2012 - 03:26:53.) -- C:\Windows\system32\Drivers\DfsC.sys [118784]
[MD5.7D87B5B6C7188D553E11B59DC7F0B111] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/09/2012 - 07:08:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168]
[MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 03:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640]
[MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 03:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920]
[MD5.93179D48066918323628CB016D8C94DC] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.05/02/2013 - 23:29:09.) -- C:\Windows\system32\Drivers\MRxSmb.sys [370688]
[MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 03:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776]
[MD5.76929F4A69E425911A63B407E26C2589] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.02/02/2013 - 11:54:54.) -- C:\Windows\system32\Drivers\ntfs.sys [1933544]
[MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parall�le.) (.26/07/2012 - 03:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984]
[MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 03:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de p�riph�rique de Microsoft RDP.) (.26/07/2012 - 03:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712]
[MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248]
[MD5.78A5BBA3819FFFC62FFEC3E2220D102D] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.01/06/2013 - 12:26:33.) -- C:\Windows\system32\Drivers\volsnap.sys [327936]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 2/44067
~ Mes musiques (My Musics) : 1/3602
~ Mes Videos (My Videos) : 2/258
~ Mes Favoris (My Favorites) : 1/135
~ Mes Documents (My Documents) : 7/7808
~ Mon Bureau (My Desktop) : 2/75
~ Menu demarrer (Programs) : 1/46
~ Hidden Files: Scanned in 00mn 12s
---\\ Processus lanc�s
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.2208]
[MD5.AA8D96427A98CE9FCFFB861F2F77A247] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1239064] [PID.4524]
[MD5.D213F06AE294341F3503FD74E22E7DDA] - (.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257136] [PID.4564]
[MD5.7E4AD8220AF0B281274F9785DD53E25C] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [18642024] [PID.4584]
[MD5.7C886F0E504B5280EEC45777056133EF] - (.Advernet - Notation.) -- C:\Program Files (x86)\Notation\NotationSysTray.exe [269440] [PID.4632] =>Hijacker.Proxy
[MD5.B54921381A950C8215FB363B485C432B] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [270336] [PID.4400]
[MD5.C673F14493A88BE8CE3156B53F37887E] - (.CyberLink Corp. - clear.fi Movie Resident Program.) -- C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [177448] [PID.4140]
[MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424] [PID.4452]
[MD5.E7EA57B35951D093A9647D8D5CE3340D] - (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920] [PID.4940]
[MD5.F400694D7D2785F60133C20F7F2F4F7A] - (.ArcSoft Inc. - ArcSoft Connect Notifier.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac [309824] [PID.2188]
[MD5.2EA4B2BC3260CF3D20F6A164B362F6D4] - (.Pas de propri�taire - Hotkey Utility.) -- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [620136] [PID.4296]
[MD5.4A73AB8412D3AA6CFAD24051FF9DBFA7] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160] [PID.4316]
[MD5.4AFFDCAADCB1DBBFFAF06C7F82E7F6FC] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421776] [PID.4052]
[MD5.75AD45ED633B866D90AEAA296C21F7E8] - (.Egis Technology Inc. - SuiteTray.) -- C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [340336] [PID.4576]
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816] [PID.4224]
[MD5.CBC7D8E5416AD30CF16DC2FD4A6AA399] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4858968] [PID.4600]
[MD5.469396CF3A8090C24408DA00744D5F97] - (.Dropbox, Inc. - Dropbox.) -- C:\Users\Meunier\AppData\Roaming\Dropbox\bin\Dropbox.exe [28057256] [PID.5148]
[MD5.F0EA603E7B91046CA48EA4B3593A007D] - (.Micro Application - Pas de description.) -- C:\Program Files (x86)\Micro Application\LauncherMA.exe [485376] [PID.5276]
[MD5.F16EEA6CCA9D8A7D1193AE80E43FBBC7] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [168960] [PID.5620]
[MD5.8A9FACCB684500829F7D0BCC67B386CC] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [559104] [PID.5780]
[MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [362496] [PID.6112]
[MD5.7DC4759F1D9D590B3D1310F7DB43256C] - (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe [101888] [PID.2612]
[MD5.95110A1C5A1D228AC1DDF6AB67D00BEB] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [920472] [PID.2768]
[MD5.6FC79A950476A5F539EEB65F9097C0A8] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [17304] [PID.5532]
[MD5.EB68851F020D35293EADAADEB18B8220] - (.Adobe Systems, Inc. - Adobe Flash Player 11.9 r900.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe [1862536] [PID.5180]
[MD5.E4F6125ED5185F8FA37CC4F449B85526] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe [770608] [PID.3120]
[MD5.10B01048B1DA075CD1EE27E30B4CF342] - (.Google Inc. - Google Toolbar Broker.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe [308816] [PID.5944] =>Toolbar.Google
[MD5.72BE75AADEB890AE5BD8DEC30508F992] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8091648] [PID.11060]
~ Processes Running: Scanned in 00mn 01s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://search.fbdownloader.com
G0 - GCSP: Preference [User Data\Default] http://search.fbdownloader.com
G1 - GCS: Preference [User Data\Default] http://search.fbdownloader.com
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activ�)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activ�)
G2 - GCE: Preference [User Data\Default] [gbmdkmlcnbapgegninelmjbfibaghdmk] OfferMosquito v.0.8 (Activ�) =>Toolbar.OfferMosquito
G2 - GCE: Preference [User Data\Default] [nikpibnbobmbdbheedjfogjlikpgpnhp] DVDVideoSoft Browser Extension v.1.0.1.2, (Activ�)
G2 - GCE: Preference [User Data\Default] [pbpohikckhbcljgombipcdoinkaedlfa] Smart Display v.1.6 (Activ�) =>Spyware.SmartDisplay
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activ�)
~ Google Browser: 11 Scanned in 00mn 02s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Meunier\AppData\Roaming\Mozilla\Firefox\Profiles\9o98cdyi.default\prefs.js
M3 - MFPP: Plugins - [Meunier] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\babylon.xml =>Toolbar.Babylon
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20913.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
~ Firefox Browser: 3 Scanned in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.fbdownloader.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.helperbar.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.helperbar.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16384 (win8_rtm.120725-1247)) -- C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: (no name) [64Bits] - {462be121-2b54-4218-bf00-b9bf8135b23f} . (.Microsoft Corporation - Navigateur Internet.) (No version) -- (.not file.)
~ IE Browser: 12 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:8877;https=127.0.0.1:8877 =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: btorbit.com [64Bits] - {000123B4-9B42-4900-B3F7-F4B073EFC214} . (.Orbitdownloader.com - Orbitcth.) -- C:\Program Files (x86)\Orbitdownloader\orbitcth.dll
O2 - BHO: &Yahoo! Toolbar Helper [64Bits] - {02478D38-C3F9-4efb-9B51-7695ECA05670} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: HP Print Enhancer [64Bits] - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: DVDVideoSoft.WebPageAdjuster [64Bits] - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} . (.DVDVideoSoft Ltd. - DVDVideoSoft IE Extension.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O2 - BHO: Yontoo Layers [64Bits] - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} Cl� orpheline =>Adware.Yontoo
O2 - BHO: SingleInstance Class [64Bits] - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} . (.Yahoo! Inc - Yahoo! Single Instance for Mail.) -- C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O2 - BHO: HP Smart BHO Class [64Bits] - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
O2 - BHO: (no name) [64Bits] - {31ad400d-1b06-4e33-a59a-90c2c140cba0} Cl� orpheline
O2 - BHO: (no name) [64Bits] - {9D717F81-9148-4f12-8568-69135F087DB0} Cl� orpheline
~ BHO: 18 Scanned in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Linkury Smartbar [64Bits] - [HKLM]{ae07101b-46d4-4a98-af68-0333ea26e113} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>Hijacker.SmartBar
O3 - Toolbar: Google Toolbar [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{462BE121-2B54-4218-BF00-B9BF8135B23F} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{872B5B88-9DB5-4310-BDD0-AC189557E5F5} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{C55BBCD6-41AD-48AD-9953-3609C48EACC7} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{D4027C7F-154A-4066-A1AD-4243D8127440} Cl� orpheline
~ Toolbar: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Adobe Reader X.lnk . (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
O4 - GS\Desktop [Public]: avast! Free Antivirus.lnk . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - GS\Desktop [Public]: Cave � vins.lnk . (.4D - 4D Volume Desktop.) -- C:\Program Files (x86)\Micro Application\Cave � vins\Cave a Vins.exe
O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>Piriform Ltd
O4 - GS\Desktop [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) -- C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe
O4 - GS\Desktop [Public]: Centre de solutions HP.lnk . (.Hewlett-Packard Company - hpqdirec.exe.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\Hpqdirec.exe
O4 - GS\Desktop [Public]: DVDVideoSoft Free Studio.lnk . (.DvdVideoSoft Ltd. - FreeStudioManager.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe
O4 - GS\Desktop [Public]: E.M. PowerPoint Video Converter.lnk . (...) -- C:\Program Files (x86)\E.M. PowerPoint Video Converter\pptvideo.exe
O4 - GS\Desktop [Public]: eMule.lnk . (.http://www.emule-project.net - eMule.) -- C:\Program Files (x86)\eMule\emule.exe
O4 - GS\Desktop [Public]: Etiquettes CD-DVD Edition Classic.lnk . (...) -- C:\Program Files (x86)\Micro Application\Etiquettes CD-DVD Edition Classic\draw7650.exe
O4 - GS\Desktop [Public]: FotoMorph.lnk . (.Digital Photo Software - FotoMorph.) -- C:\Program Files (x86)\Digital Photo Software\FotoMorph\FotoMorph.exe
O4 - GS\Desktop [Public]: Free YouTube Download.lnk . (.DVDVideoSoft Ltd. - FreeYouTubeDownload.) -- C:\Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.exe
O4 - GS\Desktop [Public]: Google�Earth.lnk . (.Google - Google Earth.) -- C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe =>.Google Inc
O4 - GS\Desktop [Public]: G�n�atique 2013.lnk . (.CDIP - Logiciel de g�n�alogie.) -- C:\Program Files (x86)\Geneatique2013\Genea2013.exe
O4 - GS\Desktop [Public]: iTunes.lnk . (.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O4 - GS\Desktop [Public]: LEGO Digital Designer.lnk . (.LEGO Company - LEGO Digital Designer.) -- C:\Program Files (x86)\LEGO Company\LEGO Digital Designer\LDD.exe
O4 - GS\Desktop [Public]: MAGIX Photo Manager MX Deluxe.lnk . (.MAGIX - MAGIX Foto Manager MX deluxe.) -- C:\Program Files (x86)\MAGIX\Photo Manager MX Deluxe\FotoManager_dlx.exe
O4 - GS\Desktop [Public]: MAGIX Vid�o deluxe 2013.lnk . (.MAGIX AG - MAGIX Video deluxe 2013.) -- C:\Program Files (x86)\MAGIX\Video deluxe 2013\Videodeluxe.exe
O4 - GS\Desktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - GS\Desktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Desktop [Public]: Nero Home.lnk . (.Nero AG - Nero Home.) -- C:\Program Files (x86)\Nero\Nero 7\Nero Home\NeroHome.exe
O4 - GS\Desktop [Public]: Nero StartSmart.lnk . (.Nero AG - Nero StartSmart.) -- C:\Program Files (x86)\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe
O4 - GS\Desktop [Public]: Picasa 3.lnk . (.Google Inc. - Picasa.) -- C:\Program Files (x86)\Google\Picasa3\Picasa3.exe
O4 - GS\Desktop [Public]: QuickTime Player.lnk . (.Apple Inc. - QuickTime Player.) -- C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe =>.Apple Inc
O4 - GS\Desktop [Public]: ShowBiz DVD 2.lnk . (...) -- C:\Program Files (x86)\ArcSoft\ShowBiz DVD 2\Wizard.exe
O4 - GS\Desktop [Public]: Skype.lnk . (...) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O4 - GS\Desktop [Public]: Ulead VideoStudio SE DVD v 10 Montage.lnk . (.Ulead Systems, Inc. - Ulead VideoStudio.) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio SE DVD\vstudio.exe
O4 - GS\Desktop [Public]: Ulead VideoStudio SE DVD.lnk . (.Ulead Systems, Inc. - Ulead VideoStudio.) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio SE DVD\vstudio.exe
O4 - GS\Desktop [Public]: VDownloader Telecharger youtube.lnk . (.Vitzo - VDownloader.) -- C:\Program Files (x86)\VDownloader\VDownloader.exe
O4 - GS\Desktop [Public]: Vos Photos � la T�l� sur CD-DVD 2007 Edition Deluxe.lnk . (.Micro Application - Vos Photos � la T�l� sur CD/DVD 2007.) -- C:\Program Files (x86)\Micro Application\Vos Photos � la T�l� sur CD-DVD 2007 Edition Deluxe\PhotoTV4.exe
O4 - GS\Desktop [Public]: Votre PC parle.lnk . (...) -- C:\Windows\Installer\{1335A7E0-6055-47B8-92FC-714D65117CAA}\_66A8B8402B2C6EBC3DA8B1.exe
O4 - GS\Desktop [Public]: Webcam Station Evolution.lnk . (.Guillemot Corporation S.A. - Hercules Webcam Station Evolution.) -- C:\Program Files (x86)\Hercules\Webcam Station Evolution\StationEv.exe
O4 - GS\Desktop [Public]: YoWindow.lnk . (.Repkasoft - YoWindow!.) -- C:\Program Files (x86)\YoWindow\yowindow.exe
O4 - GS\Program [Public]: Adobe Reader X.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe =>.Apple Inc
O4 - GS\Program [Public]: Audacity 1.3 Beta (Unicode).lnk . (.The Audacity Team - Audacity�, the Free, Cross-Platform Sound E.) -- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\audacity.exe =>.The Audacity Team
O4 - GS\Program [Public]: Browser Choice.lnk . (...) -- C:\WINDOWS\BrowserChoice\html\default.html
O4 - GS\Program [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) -- C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe
O4 - GS\Program [Public]: Desktop.lnk - Cl� orpheline
O4 - GS\Program [Public]: Enregistrement OCR I.R.I.S..lnk . (.I.R.I.S. Image Recognition Integarted Syste - Registration Wizard.) -- C:\Program Files (x86)\HP\Digital Imaging\DocProc\regipe.exe
O4 - GS\Program [Public]: GIMP 2.lnk . (.Spencer Kimball, Peter Mattis and the GIMP - GNU Image Manipulation Program.) -- C:\Program Files\GIMP 2\bin\gimp-2.8.exe
O4 - GS\Program [Public]: Microsoft AutoRoute.lnk . (...) -- C:\Windows\Installer\{19EF7619-CAC5-4A49-B44A-D620DB771E01}\_3F94E88E2496_4A2A_9638_FDB1B8B041B0.exe
O4 - GS\Program [Public]: Movie Maker.lnk . (.Microsoft Corporation - Movie Maker.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Photo Gallery.lnk . (.Microsoft Corporation - Photo Gallery.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: PowerpointImageExtractor V1.2.lnk . (.--- - Pas de description.) -- C:\Program Files (x86)\PowerpointImageExtractor_V1_2\PowerpointImageExtractor.exe
O4 - GS\Program [Public]: TKexe.lnk . (.TKexe - TKexe.) -- C:\Program Files (x86)\TKexe\Kalender.exe
O4 - GS\Program [Public]: Windows Live Mail.lnk . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Mobile Device Center.lnk . (.Microsoft Corporation - Windows Mobile Device Center.) -- C:\Windows\Installer\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}\wmdc.exe
O4 - GS\Program [Public]: Windows Store.lnk . (...) -- C:\WINDOWS\WinStore\WinStore.htm
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\WINDOWS\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (...) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe (.not file.)
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilit� Windows.) -- C:\WINDOWS\system32\mblctr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau � distance.) -- C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d��cran.) -- C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magn�tophone Windows.) -- C:\WINDOWS\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d�actions.) -- C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-b�te.) -- C:\WINDOWS\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caract�res.) -- C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\QuickLaunch [Meunier]: Free Video Converter.lnk . (.Koyote Soft - FreeVideoConverter.) -- C:\Program Files (x86)\Free Video Converter\FreeVideoConverter.exe
O4 - GS\QuickLaunch [Meunier]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [Meunier]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [Meunier]: MAGIX Photo Manager MX Deluxe.lnk . (.MAGIX - MAGIX Foto Manager MX deluxe.) -- C:\Program Files (x86)\MAGIX\Photo Manager MX Deluxe\FotoManager_dlx.exe
O4 - GS\QuickLaunch [Meunier]: Nero Home.lnk . (.Nero AG - Nero Home.) -- C:\Program Files (x86)\Nero\Nero 7\Nero Home\NeroHome.exe
O4 - GS\QuickLaunch [Meunier]: Nero StartSmart.lnk . (.Nero AG - Nero StartSmart.) -- C:\Program Files (x86)\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe
O4 - GS\QuickLaunch [Meunier]: Picasa 3.lnk . (.Google Inc. - Picasa.) -- C:\Program Files (x86)\Google\Picasa3\Picasa3.exe
O4 - GS\QuickLaunch [Meunier]: WinX Free FLV to MP4 Converter.lnk . (.Digiarty Software, Inc. - WinX Free FLV to MP4 Converter.) -- C:\Program Files (x86)\Digiarty\WinX_Free_FLV_to_MP4_Converter\WinX_Free_FLV_to_MP4_Converter.exe
O4 - GS\TaskBar [Meunier]: File Explorer.lnk . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Libraries
O4 - GS\TaskBar [Meunier]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Meunier]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [Meunier]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-b�te.) -- C:\WINDOWS\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Meunier]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [Meunier]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [Meunier]: Search.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe http://feed.helperbar.com =>Hijacker.Browsers
O4 - GS\Program [Meunier]: SkyDrive.lnk . (.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation
O4 - GS\Accessories [Meunier]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Meunier]: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\WINDOWS\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\SendTo [Meunier]: Dropbox.lnk . (...) -- C:\Users\Meunier\Dropbox
O4 - GS\SendTo [Meunier]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - GS\Desktop [Meunier]: 13 CS(S�TE) - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\13 CS(S�TE)
O4 - GS\Desktop [Meunier]: 2 CLAUDE - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\2 CLAUDE
O4 - GS\Desktop [Meunier]: 4 JEANNETT - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\4 JEANNETT
O4 - GS\Desktop [Meunier]: 8 MENAGE - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\8 MENAGE
O4 - GS\Desktop [Meunier]: Adobe Photoshop 6.0.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop.) -- C:\Program Files (x86)\Adobe\Photoshop 6.0\Photoshp.exe
O4 - GS\Desktop [Meunier]: adsl TV regarder en direct.lnk . (.adsl TV / FM - adsl TV.) -- C:\Program Files (x86)\adslTV\adsltv.exe
O4 - GS\Desktop [Meunier]: Aide Memoire Informatique - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\9 INFORMATiQUE\1 INFORMAT G�n�ralit�s\Aide Memoire Informatique.XLS
O4 - GS\Desktop [Meunier]: Audacity 1.3 Beta (Unicode).lnk . (.The Audacity Team - Audacity�, the Free, Cross-Platform Sound E.) -- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\audacity.exe =>.The Audacity Team
O4 - GS\Desktop [Meunier]: autostitch - pour panorama.lnk . (.University of British Columbia - AutoStitch.) -- C:\Program Files (x86)\autostitch\autostitch.exe
O4 - GS\Desktop [Meunier]: Captvty - enregistrer.lnk . (...) -- C:\Users\Meunier\Downloads\captvty-1.9.8 (1)\Captvty.exe
O4 - GS\Desktop [Meunier]: CDex.lnk . (.The CDex Project - http://cdexos.sourceforg - CDex - Open Source Digital Audio CD Extract.) -- C:\Program Files (x86)\CDex\CDex.exe
O4 - GS\Desktop [Meunier]: Connexion internet impossible oct 2013 - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\9 INFORMATiQUE\4 INTERNET\Connexion internet impossible oct 2013.docx
O4 - GS\Desktop [Meunier]: CONTACTS.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\9 INFORMATiQUE\5 MESSAGERIE\Gestion des contacts CSV\contacts 26 mars 2013 tri� dans excel enregistr� sous excel pour garder modif.xlsx
O4 - GS\Desktop [Meunier]: Deformation photo.lnk . (...) -- C:\Program Files (x86)\AnmSMP\AnmanieSMP.exe
O4 - GS\Desktop [Meunier]: Dropbox.lnk . (.Dropbox, Inc. - Dropbox.) -- C:\Users\Meunier\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - GS\Desktop [Meunier]: DVD Flick creation DVD gravure.lnk . (.Dennis "Exl" Meuwissen - DVD Flick.) -- C:\Program Files (x86)\DVD Flick\dvdflick.exe
O4 - GS\Desktop [Meunier]: EnveloppesEditor1.11.lnk . (.J.L.F. - Logiciel pour remplir des enveloppes V1.09.) -- C:\Program Files (x86)\EnveloppesEditor1.11\EnveloppesEditor.exe
O4 - GS\Desktop [Meunier]: Free PDF to Word Doc Converter.lnk . (...) -- C:\Program Files (x86)\Free PDF to Word Doc Converter\pdf2word.exe
O4 - GS\Desktop [Meunier]: Free Video Converter.lnk . (.Koyote Soft - FreeVideoConverter.) -- C:\Program Files (x86)\Free Video Converter\FreeVideoConverter.exe
O4 - GS\Desktop [Meunier]: Gif R�cup�rateur.lnk . (.Olivier RAVET - Pas de description.) -- C:\Program Files (x86)\GIF Recuperateur\GIF_Recuperateur.exe
O4 - GS\Desktop [Meunier]: GIMP 2.lnk . (.Spencer Kimball, Peter Mattis and the GIMP - GNU Image Manipulation Program.) -- C:\Program Files\GIMP 2\bin\gimp-2.8.exe
O4 - GS\Desktop [Meunier]: Handbrake.lnk . (.HandBrake - HandBrake.) -- C:\Program Files (x86)\Handbrake\Handbrake.exe
O4 - GS\Desktop [Meunier]: IcoSauve - Raccourci.lnk . (...) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IcoSauve
O4 - GS\Desktop [Meunier]: IDPhotoStudio - photo identite.lnk . (.KC Softwares - Pas de description.) -- C:\Program Files (x86)\KC Softwares\IDPhotoStudio\IDPhotoStudio.exe
O4 - GS\Desktop [Meunier]: Images - Raccourci.lnk . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Libraries\Pictures.library-ms
O4 - GS\Desktop [Meunier]: Merge juxtaposition.lnk . (.Venning - merge.exe.) -- C:\Program Files (x86)\Merge2.3\merge.exe
O4 - GS\Desktop [Meunier]: Merge PDF.lnk . (.Logiciels Laetjr.com - utilitaire PDF.) -- C:\Program Files (x86)\laetjr\pdf\mergepdf.exe
O4 - GS\Desktop [Meunier]: Mes num�risations - Raccourci.lnk . (...) -- D:\1Mes documents travail\Mes num�risations
O4 - GS\Desktop [Meunier]: Microsoft AutoRoute.lnk . (...) -- C:\Windows\Installer\{19EF7619-CAC5-4A49-B44A-D620DB771E01}\_3F94E88E2496_4A2A_9638_FDB1B8B041B0.exe
O4 - GS\Desktop [Meunier]: Microsoft GIF Animator.lnk . (.Microsoft Corporation - Microsoft GIF Animator Application.) -- C:\Program Files (x86)\Microsoft GIF Animator\GIFAnimator.exe
O4 - GS\Desktop [Meunier]: Microsoft Office Excel 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\xlicons.exe
O4 - GS\Desktop [Meunier]: Microsoft Office PowerPoint 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pptico.exe =>.Microsoft Corporation
O4 - GS\Desktop [Meunier]: Microsoft Office Word 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
O4 - GS\Desktop [Meunier]: Musique - Raccourci.lnk . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Libraries\Music.library-ms
O4 - GS\Desktop [Meunier]: MyHeritage Family Tree Builder.lnk . (.MyHeritage - MyHeritage Family Tree Builder Genealogy So.) -- C:\Program Files (x86)\MyHeritage\Bin\MyHeritage.exe
O4 - GS\Desktop [Meunier]: notice galaxie note 7000 - Raccourci.lnk . (...) -- D:\1Mes documents travail\1 Mes documents travail\8 MENAGE\TELEPHONE\notice galaxie note 7000.pdf
O4 - GS\Desktop [Meunier]: Orbit.lnk . (.Orbitdownloader.com - Orbit Downloader.) -- C:\Program Files (x86)\Orbitdownloader\orbitdm.exe
O4 - GS\Desktop [Meunier]: PhotoFiltre.lnk . (.Antonio Da Cruz - PhotoFiltre.) -- C:\Program Files (x86)\PhotoFiltre\photofiltre.exe
O4 - GS\Desktop [Meunier]: Powerpoint Extracteur.lnk . (.--- - Pas de description.) -- C:\Program Files (x86)\PowerpointImageExtractor_V1_2\PowerpointImageExtractor.exe
O4 - GS\Desktop [Meunier]: Revo Uninstaller.lnk . (.VS Revo Group - Revo Uninstaller.) -- C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe
O4 - GS\Desktop [Meunier]: SmillaEnlarger - Raccourci.lnk . (...) -- C:\Users\Meunier\Downloads\SmillaEnlarger-0.9.0 (2)\SmillaEnlarger-0.9.0\SmillaEnlarger\SmillaEnlarger.exe (.not file.)
O4 - GS\Desktop [Meunier]: TKexe Calendrier.lnk . (.TKexe - TKexe.) -- C:\Program Files (x86)\TKexe\Kalender.exe
O4 - GS\Desktop [Meunier]: Ulead VideoStudio 9.lnk . (.Ulead Systems, Inc. - Ulead VideoStudio.) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe
O4 - GS\Desktop [Meunier]: Vid�os - Raccourci.lnk . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Libraries\Videos.library-ms
O4 - GS\Desktop [Meunier]: Windows Defender - Raccourci (2).lnk - Cl� orpheline
O4 - GS\Desktop [Meunier]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\explorer.exe =>.Microsoft Corporation
O4 - GS\Desktop [Meunier]: Windows Live Mail.lnk . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe =>.Microsoft Corporation
O4 - GS\Desktop [Meunier]: WinX Free FLV to MP4 Converter.lnk . (.Digiarty Software, Inc. - WinX Free FLV to MP4 Converter.) -- C:\Program Files (x86)\Digiarty\WinX_Free_FLV_to_MP4_Converter\WinX_Free_FLV_to_MP4_Converter.exe
O4 - GS\Desktop [Meunier]: XnView pour copie ecran.lnk . (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files (x86)\XnView\xnview.exe
O4 - GS\Desktop [Meunier]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Desktop [Meunier]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman
~ Global Startup: 158 Scanned in 00mn 01s
---\\ Applications lanc�es au d�marrage du syt�me (O4)
O4 - GS\Startup [Public]: Adobe Gamma Loader.exe.lnk . (.Adobe Systems, Inc. - Adobe Gamma Loader.) -- C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - GS\Startup [Public]: HP Digital Imaging Monitor.lnk . (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe =>.Hewlett-Packard Co
O4 - GS\Startup [Meunier]: Dropbox.lnk . (.Dropbox, Inc. - Dropbox.) -- C:\Users\Meunier\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - GS\Startup [Meunier]: Lanceur.lnk . (.Micro Application - Pas de description.) -- C:\Program Files (x86)\Micro Application\LauncherMA.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [CamserviceHDExchange] . (.Guillemot Corporation S.A. - Hercules Xtra Controller Main Application.) -- C:\Program Files (x86)\Hercules\Hercules HD Exchange\XtrCtrlEx.exe
O4 - HKLM\..\Run: [Windows Mobile Device Center] . (.Microsoft Corporation - Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_A7E31F99DE1AB07DA9783C80B4E432EB] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKCU\..\Run: [SkyDrive] . (.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O4 - HKCU\..\Run: [systray] . (.Advernet - Notation.) -- C:\Program Files (x86)\Notation\NotationSysTray.exe =>Hijacker.Proxy
O4 - HKCU\..\Run: [SSync] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Meunier\AppData\Roaming\SSync\SSync.exe
O4 - HKCU\..\Run: [DataMgr] . (.HTTO Group, Ltd. - Updater.) -- C:\Users\Meunier\AppData\Roaming\DataMgr\DataMgr.exe
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-b�te.) -- C:\Windows\System32\StikyNot.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [SCheck] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Meunier\AppData\Roaming\SCheck\SCheck.exe
O4 - HKCU\..\Run: [Snoozer] . (...) -- C:\Users\Meunier\AppData\Roaming\Snz\Snz.exe
O4 - HKCU\..\Run: [Intermediate] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Meunier\AppData\Roaming\Intermediate\Intermediate.exe
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112_4\amd64] . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\WINDOWS\system32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314_2\amd64] . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\WINDOWS\system32\cmd.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [ArcadeMovieService] . (.CyberLink Corp. - clear.fi Movie Resident Program.) -- C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe
O4 - HKLM\..\Wow6432Node\Run: [ArcSoft Connection Service] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [EgisTecPMMUpdate] . (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
O4 - HKLM\..\Wow6432Node\Run: [Family Tree Builder Update] . (.MyHeritage - MyHeritage Family Tree Builder check for up.) -- C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Wow6432Node\Run: [Hotkey Utility] . (.Pas de propri�taire - Hotkey Utility.) -- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\qttask.exe
O4 - HKLM\..\Wow6432Node\Run: [SuiteTray] . (.Egis Technology Inc. - SuiteTray.) -- C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
O4 - HKLM\..\Wow6432Node\Run: [UVS10 Preload] . (.Ulead Systems, Inc. - Ulead VideoStudio.) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio SE DVD\uvPL.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [GoogleChromeAutoLaunch_A7E31F99DE1AB07DA9783C80B4E432EB] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [SkyDrive] . (.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [systray] . (.Advernet - Notation.) -- C:\Program Files (x86)\Notation\NotationSysTray.exe =>Hijacker.Proxy
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [SSync] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Meunier\AppData\Roaming\SSync\SSync.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [DataMgr] . (.HTTO Group, Ltd. - Updater.) -- C:\Users\Meunier\AppData\Roaming\DataMgr\DataMgr.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-b�te.) -- C:\Windows\System32\StikyNot.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [SCheck] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Meunier\AppData\Roaming\SCheck\SCheck.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [Snoozer] . (...) -- C:\Users\Meunier\AppData\Roaming\Snz\Snz.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\Run: [Intermediate] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\Meunier\AppData\Roaming\Intermediate\Intermediate.exe
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\RunOnce: [Uninstall C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112_4\amd64] . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\WINDOWS\system32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2053191492-3036096354-1831522419-1001\..\RunOnce: [Uninstall C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314_2\amd64] . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\WINDOWS\system32\cmd.exe =>.Microsoft Corporation
~ Application: Scanned in 00mn 00s
---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Skype Click to Call [64Bits] - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- c:\program files (x86)\skype\toolbars\internet explorer x64\icon.ico
O9 - Extra button: Free YouTube Download [64Bits] - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} . (...) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\dvdvideosoft.ico
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 7 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{7C853957-50BD-486F-A4AA-873AFA2A1501}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{9133BFA2-BE42-4AE5-BB70-2D5B45EB8530}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{7C853957-50BD-486F-A4AA-873AFA2A1501}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{9133BFA2-BE42-4AE5-BB70-2D5B45EB8530}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\WIA6EB~1\Datamngr\x64\datamngr.dll (.not file.) =>PUP.Datamngr
~ AppInit DLL: Scanned in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FABS - Helping agent for MAGIX media dat (Fabs) . (.MAGIX AG - Verzeichnis�berwachung und Hilfsaufgaben f�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: GREGService (GREGService) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Live Updater Service (Live Updater Service) . (.Acer Incorporated - Updater Service.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Notation (Notation) . (.Advernet - Notation.) - C:\Program Files (x86)\Notation\Notation.exe =>Hijacker.Proxy
O23 - Service: NotationMonitor (NotationMonitor) . (.Advernet - SavdmMonitor.) - C:\Program Files (x86)\Notation\NotationMonitor.exe =>Hijacker.Proxy
O23 - Service: Skype C2C Service (Skype C2C Service) . (.Skype Technologies S.A. - Skype C2C Service.) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) . (.Ulead Systems, Inc. - ULCDRSvr.) - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: USBS3S4Detection (USBS3S4Detection) . (.Pas de propri�taire - USB S3S4 Detection.) - C:\OEM\USBDECTION\USBS3S4Detection.exe
~ Services: 20 Scanned in 00mn 04s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enum�re les donn�es de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job [916]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job [920]
[MD5.A283108E14F3970432C21AF4C0CB1BCE] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257416]
[MD5.82C362A81EE4E441CD85260C8E9E708A] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [251784]
[MD5.4C0A720AB377391D7D2EDE1ED905A420] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3676952] =>Piriform Ltd
[MD5.C76C72ACB62DA8537B1241C6B7B31F9E] [APT] [clear.fi] (.Acer Incorporated.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe [264760]
[MD5.9DC1C210895A9F15AC8A9E3E40EFD768] [APT] [clear.fiAgent] (.CyberLink Corp..) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe [120104]
[MD5.542D3040C7EF444589153BB625A84978] [APT] [DMREngine] (.CyberLink.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe [169352]
[MD5.00000000000000000000000000000000] [APT] [EPUpdater] (...) -- C:\Users\Meunier\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe (.not file.) [0] =>Hijacker.BabSolution
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.00000000000000000000000000000000] [APT] [SidebarExecute] (...) -- C:\Program Files\Windows Sidebar\sidebar.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [SoftwareUpdateTaskMachineCore] (...) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe (.not file.) [0] =>Adware.Boxore
[MD5.00000000000000000000000000000000] [APT] [SoftwareUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe (.not file.) [0] =>Adware.Boxore
[MD5.00000000000000000000000000000000] [APT] [{06FF7AAF-D3A2-4AC7-B926-313B2D1FD86B}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.8475AAF353C64B190A8C2040DD530237] [APT] [{11B0D155-7395-4300-AA2C-56E4F3E8C78F}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe [1605632]
[MD5.00000000000000000000000000000000] [APT] [{19219DCD-4224-43C4-9C9C-009EE7A84F5F}] (...) -- C:\Program Files (x86)\Micro Application\Vos Photos � la T�l� sur CD-DVD 2007 Edition Deluxe\PhotoTV4.exe (.not file.) [0]
[MD5.8475AAF353C64B190A8C2040DD530237] [APT] [{27C2C6D5-44E5-46B0-A283-BC5E2ECC85C6}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe [1605632]
[MD5.00000000000000000000000000000000] [APT] [{4DB67D40-F0D1-4693-8BB9-D7BCA8AE2397}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.8475AAF353C64B190A8C2040DD530237] [APT] [{598E25FF-F0CB-4F52-88A4-86B7F5AA8681}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe [1605632]
[MD5.00000000000000000000000000000000] [APT] [{5C7D01C5-D924-4E84-8FEB-59CC9E17A6FD}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{701CDFF6-B261-4855-A0E0-F7DEC5CE6035}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{7146D889-2907-4F5F-9403-79EA03E42F8D}] (...) -- C:\Program Files (x86)\Micro Application\Vos Photos � la T�l� sur CD-DVD 2007 Edition Deluxe\PhotoTV4.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{79BACA70-0224-4D79-8D1F-DB88E7934F01}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.DC03CCA65DBCA253EF29C9E13AEDDE0E] [APT] [{7BEDCA6E-9B24-4AF6-8828-F79E47A474FF}] (.J.L.F..) -- C:\Program Files (x86)\EnveloppesEditor1.11\EnveloppesEditor.exe [2418176]
[MD5.F8B91B40D1A3A570E7B8E1552F9E07FF] [APT] [{90302EC7-462E-4D15-A0F0-ED9DF0683016}] (.Koyote Soft.) -- C:\Program Files (x86)\Free Video Converter\FreeVideoConverter.exe [900096]
[MD5.00000000000000000000000000000000] [APT] [{90DBDCE1-011E-4308-9F7D-0DB798B6A27E}] (...) -- C:\PROGRA~3\TARMAI~1\{889DF~1\Setup.exe (.not file.) [0] =>PUP.Tarma
[MD5.75B381B8DE22D389E619CFA4F43E0CBB] [APT] [{913E69F8-A535-4258-9871-FB1115AF4424}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio SE DVD\vstudio.exe [1794048]
[MD5.00000000000000000000000000000000] [APT] [{A519CD00-BEB2-461A-9B28-B8E36D87F089}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{B18C2DC9-6778-4031-A4FA-DE63EFAE027D}] (...) -- E:\setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{BA3A6EC3-C8D3-431F-A462-5E5E57B659CF}] (...) -- C:\Users\Meunier\AppData\Local\Temp\Temp2_crak vidostudio9.zip\crak vidostudio9\Ulead VideoStudio 9 Trial to Full - Parisa\Ulead VideoStudio 9 Trial to Full - Parisa.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{C13CB813-272B-48C2-B1CB-1E277364C2CA}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.8475AAF353C64B190A8C2040DD530237] [APT] [{C53A284C-731C-4A7E-9C6C-FB27C415BAC7}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe [1605632]
[MD5.8475AAF353C64B190A8C2040DD530237] [APT] [{D199A63A-8AC4-4324-997D-EEC8B6D18619}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe [1605632]
[MD5.00000000000000000000000000000000] [APT] [{DBF79E95-8313-43FF-8876-955A96BAAFE5}] (...) -- E:\INSTALL.exe (.not file.) [0]
[MD5.65E3DA498B523915F8F87D1FE74A1F8B] [APT] [{E523AD2B-3126-439D-815D-C813115FF16F}] (...) -- C:\Users\Meunier\AppData\Local\ext_piccshare_uninst.exe [44136]
[MD5.8475AAF353C64B190A8C2040DD530237] [APT] [{F1008345-7A70-4FE1-9073-A965F2F6691F}] (.Ulead Systems, Inc..) -- C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 9.0\vstudio.exe [1605632]
~ Scheduled Task: 47 Scanned in 00mn 05s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s
---\\ Pilotes lanc�s au d�marrage du syst�me (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (mwlPSDFilter) . (.Egis Technology Inc. - PSD Filter Driver.) - C:\Windows\System32\DRIVERS\mwlPSDFilter.sys
O41 - Driver: (mwlPSDNServ) . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - C:\Windows\System32\DRIVERS\mwlPSDNServ.sys
O41 - Driver: (mwlPSDVDisk) . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Drivers: 42 Scanned in 00mn 00s
---\\ Logiciels install�s (O42)
O42 - Logiciel: 1.0.1.16 - (.Laetjr.com.) [HKLM][64Bits] -- {DF547229-1227-461B-B527-6846EFBE0C54}_is1
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {55D55008-E5F6-47D6-B16F-B2A40D4D145F}
O42 - Logiciel: Acer Registration - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Registration
O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Screensaver
O42 - Logiciel: Acer Updater - (.Acer Incorporated.) [HKLM][64Bits] -- {EE171732-BEB4-4576-887D-CB62727F01CA}
O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A0087DDE-69D0-11E2-AD57-43CA6188709B}
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop 6.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Photoshop 6.0
O42 - Logiciel: Adobe Reader X (10.1.8) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Adobe SVG Viewer - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe SVG Viewer
O42 - Logiciel: AnmanieSMP 2.4 i - (.Christoph Walter.) [HKLM][64Bits] -- AnmanieSMP_is1
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {63EC2120-1742-4625-AA47-C6A8AEC9C64C}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: ArcSoft ShowBiz DVD 2 - (.ArcSoft.) [HKLM][64Bits] -- {1ABC5C05-3477-4E73-997F-C38ECF1AC732}
O42 - Logiciel: Audacity 1.3.13 (Unicode) - (.Audacity Team.) [HKLM][64Bits] -- Audacity 1.3 Beta (Unicode)_is1
O42 - Logiciel: BenVista PhotoZoom Pro 4.1.4 - (.BenVista Ltd..) [HKCU][64Bits] -- PhotoZoom Pro 4
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM][64Bits] -- {EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071} =>Adware.Boxore
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>Piriform Ltd
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: CDex - Open Source Digital Audio CD Extractor - (.Georgy Berdyshev.) [HKLM][64Bits] -- CDex
O42 - Logiciel: Chicken Invaders 3 - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112531267}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DVD Flick 1.3.0.7 - (.Dennis Meuwissen.) [HKLM][64Bits] -- DVD Flick_is1
O42 - Logiciel: Delta Chrome Toolbar - (.DeltaInstaller.) [HKLM][64Bits] -- {177586E7-E42E-4F38-83D1-D15B4AF5B714} =>Toolbar.DeltaSearch
O42 - Logiciel: Dream Day First Home - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox
O42 - Logiciel: E.M. PowerPoint Video Converter 3.20 - (.EffectMatrix, Inc..) [HKLM][64Bits] -- E.M. PowerPoint Video Converter_is1
O42 - Logiciel: Enregistrement du produit WebCam Live! Effects - (...) [HKLM][64Bits] -- WebCam Live! Effects Product Registration
O42 - Logiciel: EnveloppesEditor1.11 - (.J.L.F..) [HKLM][64Bits] -- EnveloppesEditor1.11_is1
O42 - Logiciel: Farm Frenzy 3 Ice Age - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-118399487}
O42 - Logiciel: Feedback Tool - (.Microsoft Corporation.) [HKLM][64Bits] -- {13A5E785-5197-4EAD-8EE3-D660271E49BC}
O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {6C5F8503-55D2-4398-858C-362B7A7AF51C}
O42 - Logiciel: Flip Words - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110109903}
O42 - Logiciel: FotoMorph version 13.8 - (.Digital Photo Software.) [HKLM][64Bits] -- {87A9A094-22A8-4F8A-9B7D-03D7CA48CE15}_is1
O42 - Logiciel: Free PDF to Word Doc Converter v1.1 - (.www.hellopdf.com.) [HKLM][64Bits] -- Free PDF to Word Doc Converter_is1
O42 - Logiciel: Free Video Converter V 3.1 - (.Koyote Soft.) [HKLM][64Bits] -- Free Video Converter_is1
O42 - Logiciel: Free YouTube Download version 3.2.0.128 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube Download_is1
O42 - Logiciel: GIMP 2.8.2 - (.The GIMP Team.) [HKLM][64Bits] -- GIMP-2_is1
O42 - Logiciel: Galapago - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {446CC8CE-0E90-44F7-ADD0-774B243EF090}
O42 - Logiciel: Gestionnaire pour appareils Windows Mobile - (.Microsoft Corporation.) [HKLM][64Bits] -- {626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}
O42 - Logiciel: Gif R�cup�rateur 1.1 - (.Olivier RAVET.) [HKLM][64Bits] -- Gif R�cup�rateur_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>Toolbar.Google
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google�Earth - (.Google.) [HKLM][64Bits] -- {5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}
O42 - Logiciel: G�n�atique 2013 - (.CDIP.) [HKLM][64Bits] -- {7FFB1D46-4CFA-4AB2-AF54-F222A9B74327}_is1
O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities
O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions
O42 - Logiciel: HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B - (.HP.) [HKLM][64Bits] -- {B61ED343-0B14-4241-999C-490CB1A20DA4}
O42 - Logiciel: HP Smart Web Printing 4.51 - (.HP.) [HKLM][64Bits] -- HP Smart Web Printing
O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4}
O42 - Logiciel: HandBrake 0.9.8 - (...) [HKLM][64Bits] -- HandBrake
O42 - Logiciel: Hercules HD Exchange - (.Hercules.) [HKLM][64Bits] -- {4622B670-F540-4985-9B43-C52A4FF00E25}
O42 - Logiciel: Hercules Webcam Station Evolution - (.Hercules.) [HKLM][64Bits] -- {B60D61FD-1CB1-4ED5-974E-8C959F14208E}
O42 - Logiciel: Hotkey Utility - (.Acer Incorporated.) [HKLM][64Bits] -- Hotkey Utility
O42 - Logiciel: IMinent Toolbar - (.IMinent.) [HKLM][64Bits] -- {A76AA284-E52D-47E6-9E4F-B85DBF8E35C3} =>Adware.IMBooster
O42 - Logiciel: IcoSauve - (.Pierre TORRIS.) [HKLM][64Bits] -- IcoSauve_is1
O42 - Logiciel: Identity Card - (.Acer Incorporated.) [HKLM][64Bits] -- Identity Card
O42 - Logiciel: Indeo� software - (...) [HKLM][64Bits] -- Indeo� software
O42 - Logiciel: Installer Yahoo! Messenger - (...) [HKLM][64Bits] -- Get Yahoo! Messenger
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Java 2 Runtime Environment, SE v1.4.2_19 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {7148F0A8-6813-11D6-A77B-00B0D0142190}
O42 - Logiciel: Java 7 Update 21 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217017FF}
O42 - Logiciel: Java(TM) 6 Update 39 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216035FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {400C31E4-796F-4E86-8FDC-C3C4FACC6847}
O42 - Logiciel: KC Softwares IDPhotoStudio - (.KC Softwares.) [HKLM][64Bits] -- KC Softwares IDPhotoStudio_is1
O42 - Logiciel: LAME v3.99.3 (for Windows) - (...) [HKLM][64Bits] -- LAME_is1
O42 - Logiciel: LEGO Digital Designer - (.LEGO A/S.) [HKLM][64Bits] -- New LEGO Digital Designer
O42 - Logiciel: LauncherMA - (.Micro Application.) [HKLM][64Bits] -- {C06EFB22-B5DB-46C5-9215-BCB5C19C0858}
O42 - Logiciel: Linkury Smartbar - (.Linkury Inc..) [HKLM][64Bits] -- {F04C4F83-D9C7-408C-9DEB-D5526E72108C} =>Hijacker.SmartBar
O42 - Logiciel: Linkury Smartbar Engine - (.Linkury Inc..) [HKCU][64Bits] -- {75e9a48b-068c-403f-b877-fa5890bde80c} =>Hijacker.SmartBar
O42 - Logiciel: Logiciel de t�l�chargement pour G�n�atique 2013 - (.CDIP.) [HKLM][64Bits] -- {EC09A22A-130C-4F7B-B28A-F239E2EB2B0A}_is1
O42 - Logiciel: MAGIX Photo Manager MX Deluxe - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{72187224-5AFB-426E-9E11-31EC0B46B167}
O42 - Logiciel: MAGIX Photo Manager MX Deluxe - (.MAGIX AG.) [HKLM][64Bits] -- {72187224-5AFB-426E-9E11-31EC0B46B167}
O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{3A0638C8-EDA3-49D0-9A53-E7649D6254E6}
O42 - Logiciel: MAGIX Speed burnR (MSI) - (.MAGIX AG.) [HKLM][64Bits] -- {3A0638C8-EDA3-49D0-9A53-E7649D6254E6}
O42 - Logiciel: MAGIX Vid�o deluxe 2013 - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_{8C73E551-5AFA-42EE-B76E-64821590BCD3}
O42 - Logiciel: MAGIX Vid�o deluxe 2013 - (.MAGIX AG.) [HKLM][64Bits] -- {8C73E551-5AFA-42EE-B76E-64821590BCD3}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM][64Bits] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: MaintenanceService-Funmoods - (...) [HKCU][64Bits] -- Funmoods =>PUP.Funmoods
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Manuel d'utilisation de Creative WebCam Live! Effects (Fran�ais) - (...) [HKLM][64Bits] -- Manuel d'utilisation de Creative WebCam Live! Effects French
O42 - Logiciel: Merge Version 2.3 - (...) [HKLM][64Bits] -- merge_is1
O42 - Logiciel: Micro Application - Cave � vins - (.Micro Application.) [HKLM][64Bits] -- {7E8D836B-AB10-4C97-8542-D42C83B6F25A}
O42 - Logiciel: Micro Application - Etiquettes CD-DVD Edition Classic - (...) [HKLM][64Bits] -- {D712874A-B387-4B99-9172-F42E157A82E5}
O42 - Logiciel: Micro Application - Vos Photos � la T�l� sur CD-DVD 2007 Edition Deluxe - (...) [HKLM][64Bits] -- {AC50A61F-327F-4FD4-9CC3-9B491FA7E802}
O42 - Logiciel: Microsoft AutoRoute - (.Microsoft.) [HKLM][64Bits] -- {19EF7619-CAC5-4A49-B44A-D620DB771E01}
O42 - Logiciel: Microsoft GIF Animator - (...) [HKLM][64Bits] -- GIF Animator
O42 - Logiciel: Microsoft Reader Text-to-Speech deutsch - (.Microsoft Corporation.) [HKLM][64Bits] -- {A06F5ACB-AF59-4DC0-B22E-1F6F47FC7004}
O42 - Logiciel: Microsoft Reader Text-to-Speech pour le fran�ais - (.Microsoft Corporation.) [HKLM][64Bits] -- {6F1547AA-8DA7-4FAC-BA11-BE1659E7086E}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft SkyDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- SkyDriveSetup.exe =>.Microsoft Corporation
O42 - Logiciel: Mozilla Firefox 21.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 21.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: MyHeritage Family Tree Builder - (.MyHeritage.com.) [HKLM][64Bits] -- Family Tree Builder
O42 - Logiciel: MyWinLocker - (.Egis Technology Inc..) [HKLM][64Bits] -- {0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}
O42 - Logiciel: MyWinLocker 4 - (.Egis Technology Inc..) [HKLM][64Bits] -- {39F15B50-A977-4CA6-B1C3-6A8724CDA025}
O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}
O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- {17DF9714-60C9-43C9-A9C2-32BCAED44CBE}
O42 - Logiciel: Nero 7 Ultra Edition - (.Nero AG.) [HKLM][64Bits] -- {4908C75E-E5E2-43F7-B1DF-023CBA831036}
O42 - Logiciel: Notation - (.Advernet.) [HKLM][64Bits] -- {29633E53-BF13-41B5-9E10-19D7843BD9C3} =>Hijacker.Proxy
O42 - Logiciel: OCR Software by I.R.I.S. 13.0 - (.HP.) [HKLM][64Bits] -- HPOCR
O42 - Logiciel: Orbit Downloader - (.www.orbitdownloader.com.) [HKLM][64Bits] -- Orbit_is1
O42 - Logiciel: PDF-XChange 2012 - (.Tracker Software Products Ltd.) [HKLM][64Bits] -- {504022CD-6A58-42D5-ACC9-966F695AAD93}_is1
O42 - Logiciel: PhotoFiltre - (...) [HKCU][64Bits] -- PhotoFiltre
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3
O42 - Logiciel: PowerpointImageExtractor - (...) [HKLM][64Bits] -- PowerpointImageExtractor_is1
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {0E64B098-8018-4256-BA23-C316A43AD9B0}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller
O42 - Logiciel: SHARP GSM GPRS USB Driver Ver2.1.0 - (.Nom de votre soci�t�.) [HKLM][64Bits] -- InstallShield_{3D4B89AC-B4B3-47D4-8CEE-85390508F3D6}
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM][64Bits] -- Shop for HP Supplies
O42 - Logiciel: Shredder - (.Egis Technology Inc..) [HKLM][64Bits] -- {C2695E83-CF1D-43D1-84FE-B3BEC561012A}
O42 - Logiciel: Skype Click to Call - (.Skype Technologies S.A..) [HKLM][64Bits] -- {B6CF2967-C81E-40C0-9815-C05774FEF120}
O42 - Logiciel: Skype� 6.3 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: SmartSound Quicktracks Plugin - (.SmartSound Software Inc.) [HKLM][64Bits] -- InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}
O42 - Logiciel: Sprill and Ritchie - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117932650}
O42 - Logiciel: SweetIM Toolbar for Internet Explorer 4.2 - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3} =>PUP.SweetIM
O42 - Logiciel: SweetIM for Messenger 3.6 - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {0D5BBB2B-F044-46C3-877B-6A6BE1E08D19} =>PUP.SweetIM
O42 - Logiciel: TKexe - (...) [HKLM][64Bits] -- Kalender
O42 - Logiciel: USB TV Device Driver - (.Nom de votre soci�t�.) [HKLM][64Bits] -- InstallShield_{BCC5DC79-2275-4171-8CEA-39F0DD9ADF58}
O42 - Logiciel: Ulead VideoStudio 9.0 (all Languages) - (.Ulead Systems.) [HKLM][64Bits] -- Ulead VideoStudio 9.0_is1
O42 - Logiciel: Ulead VideoStudio 9.0 - (.Ulead System.) [HKLM][64Bits] -- {88F92798-59AB-474F-B40D-1EC5F782F7EE}
O42 - Logiciel: Ulead VideoStudio SE DVD - (.Ulead Systems.) [HKLM][64Bits] -- {8F8D9297-FDD2-405A-97E7-E52C7B2F97B3}
O42 - Logiciel: Utilitaire Effets vid�os avanc�s - (...) [HKLM][64Bits] -- Advanced Video FX Utility
O42 - Logiciel: Utilitaire Suivi du visage - (...) [HKLM][64Bits] -- Face Tracking Utility
O42 - Logiciel: VC80_CRT_x86 - (.kolor.) [HKLM][64Bits] -- {AFC02C27-473F-4EC5-9372-30771EFFB35F}
O42 - Logiciel: VDownloader 3.8.983 - (.Vitzo Limited.) [HKLM][64Bits] -- {A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1
O42 - Logiciel: VLC media player 2.0.7 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Votre PC Parle - (.Nom de soci�t� par d�faut.) [HKLM][64Bits] -- {1335A7E0-6055-47B8-92FC-714D65117CAA}
O42 - Logiciel: Votre PC parle dans Word - (.MEDIADICO.) [HKLM][64Bits] -- {487717A4-FD71-46E1-95E4-6B5BF05F3BCB}
O42 - Logiciel: Welcome Center - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Welcome Center
O42 - Logiciel: WinPcap 4.1.1 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst
O42 - Logiciel: WinX Free FLV to MP4 Converter 4.1.11 - (.Digiarty Software,Inc..) [HKLM][64Bits] -- WinX Free FLV to MP4 Converter_is1
O42 - Logiciel: Windows iLivid Toolbar - (.Bandoo Media, Inc.) [HKLM][64Bits] -- Windows Searchqu Toolbar =>Adware.Bandoo
O42 - Logiciel: XnView 1.99.1 - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnView_is1
O42 - Logiciel: Yahoo! Toolbar - (...) [HKLM][64Bits] -- Yahoo! Companion
O42 - Logiciel: YoWindow - (...) [HKLM][64Bits] -- yowindow
O42 - Logiciel: Yontoo 1.10.03 - (.Yontoo LLC.) [HKLM][64Bits] -- {889DF117-14D1-44EE-9F31-C5FB5D47F68B} =>Adware.Yontoo
O42 - Logiciel: YouTube Downloader Suite V3.1.5 - (.Apowersoft.) [HKLM][64Bits] -- {3FF2F54D-FA3A-406F-9F9E-6CDD95B9A1A9}_is1 =>PUP.Dealio
O42 - Logiciel: adsl TV - (.adsl TV / FM.) [HKLM][64Bits] -- {3AFDD2C6-8663-46B5-B195-6CEB00D44768}
O42 - Logiciel: avast! Free Antivirus v8.0.1497.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: clear.fi - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}
O42 - Logiciel: clear.fi - (.CyberLink Corp..) [HKLM][64Bits] -- {14C4C3B6-F1F4-401F-8C86-03E8E19AAC8C}
O42 - Logiciel: clear.fi - (.CyberLink Corp..) [HKLM][64Bits] -- {2637C347-9DAD-11D6-9EA2-00055D0CA761}
O42 - Logiciel: clear.fi - (.CyberLink Corp..) [HKLM][64Bits] -- {B906C11A-D193-4143-9FA7-E2EE8A5A8F21}
O42 - Logiciel: clear.fi Client - (.Acer Incorporated.) [HKLM][64Bits] -- {43AAE145-83CF-4C96-9A5E-756CEFCE879F}
O42 - Logiciel: eDownloader - (.Advernet.) [HKLM][64Bits] -- eDownloader 1.0.1 =>PUP.SoftwareEngine
O42 - Logiciel: eDownloader - (.Advernet.) [HKLM][64Bits] -- {29D4F37D-914A-4B8E-BBCE-C181329959F2} =>PUP.SoftwareEngine
O42 - Logiciel: eMule - (...) [HKLM][64Bits] -- eMule
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}
O42 - Logiciel: newsXpresso - (.esobi Inc..) [HKLM][64Bits] -- InstallShield_{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}
O42 - Logiciel: newsXpresso - (.esobi Inc..) [HKLM][64Bits] -- {613C0AC5-3A67-4B94-8B13-9176AD83F5BF}
~ Logic: 281 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\592d8dbb23cea14]
[HKCU\Software\AKVIS]
[HKCU\Software\APN PIP]
[HKCU\Software\AVAST Software]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\Ahead]
[HKCU\Software\AppDataLow\Software\ConduitSearchScopes]
[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\AppDataLow\Software\WhiteSmoke_US_New] =>PUP.WhiteSmoke
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software\searchqutoolbar] =>PUP.Datamngr
[HKCU\Software\AppDataLow\Toolbar]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\ArcSoft]
[HKCU\Software\Audacity]
[HKCU\Software\BenVista]
[HKCU\Software\BugSplat]
[HKCU\Software\CDIP]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\Class]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Corel]
[HKCU\Software\Creative Tech]
[HKCU\Software\Cyberlink]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\Cygwin]
[HKCU\Software\DVDVideoSoft]
[HKCU\Software\Digital Photo Software]
[HKCU\Software\EgisTec MyWinLocker]
[HKCU\Software\FLEXlm License Manager]
[HKCU\Software\Gladinet]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\HTTOGroup]
[HKCU\Software\Hercules]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\I.R.I.S.]
[HKCU\Software\IM Providers]
[HKCU\Software\IRISDesktopSearch]
[HKCU\Software\Intel]
[HKCU\Software\Intelligent Converters]
[HKCU\Software\Iris]
[HKCU\Software\JavaSoft]
[HKCU\Software\KC Softwares]
[HKCU\Software\Kalender]
[HKCU\Software\LAventure]
[HKCU\Software\Licenses]
[HKCU\Software\Ligos]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\MAGIX AG]
[HKCU\Software\MAVideoScr]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\Magix]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MediaBurner]
[HKCU\Software\Micro Application]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\MyHeritage.com]
[HKCU\Software\NITRO PDF]
[HKCU\Software\Nektra]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Nosibay]
[HKCU\Software\Nuance]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\Oberon Media]
[HKCU\Software\OfferMosquito] =>Toolbar.OfferMosquito
[HKCU\Software\Orbit]
[HKCU\Software\PIP]
[HKCU\Software\PerformerSoft LLC]
[HKCU\Software\PiccShare]
[HKCU\Software\Pierre Torris]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\ProgSense]
[HKCU\Software\Protector]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Skype]
[HKCU\Software\Smart Soft]
[HKCU\Software\SmartbarBackup] =>Hijacker.SmartBar
[HKCU\Software\SmartbarLog] =>Hijacker.SmartBar
[HKCU\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\Snoozer]
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Softwrap]
[HKCU\Software\SubSystems]
[HKCU\Software\TeleCharger]
[HKCU\Software\The Complete Genealogy Reporter]
[HKCU\Software\Tracker Software]
[HKCU\Software\Trolltech]
[HKCU\Software\UPH]
[HKCU\Software\Ulead Systems]
[HKCU\Software\Ulead]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\Venning Graphicutils]
[HKCU\Software\VicMan Software]
[HKCU\Software\WPCubed]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Winamp]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Yahoo]
[HKCU\Software\YouTube Downloader Suite] =>PUP.Dealio
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\eMule]
[HKCU\Software\hugin]
[HKCU\Software\iLivid] =>Adware.Bandoo
[HKCU\Software\pptvideo]
[HKCU\Software\repkasoft]
[HKCU\Software\tvp]
[HKLM\Software\AGERE]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AcerUtil]
[HKLM\Software\Acer]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CBSTEST]
[HKLM\Software\Canneverbe Limited]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Creative Tech]
[HKLM\Software\CyberLink]
[HKLM\Software\DTS]
[HKLM\Software\DVDVideoSoft]
[HKLM\Software\DataMngr] =>PUP.Datamngr
[HKLM\Software\Dolby]
[HKLM\Software\EgisTec IPS]
[HKLM\Software\EgisTec Shredder]
[HKLM\Software\GEAR Software]
[HKLM\Software\Google]
[HKLM\Software\Hercules Technologies]
[HKLM\Software\Hercules]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\LSI]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfee]
[HKLM\Software\McFPDetect]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OOBEOffer]
[HKLM\Software\OemSetup]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Tarma Installer] =>PUP.Tarma
[HKLM\Software\Tracker Software]
[HKLM\Software\Waves Audio]
[HKLM\Software\WebCam]
[HKLM\Software\Wow6432Node\592d8dbb23cea14]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Acer Incorporated]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Advernet] =>Hijacker.Proxy
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\ArcSoft]
[HKLM\Software\Wow6432Node\Babylon] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Canneverbe Limited]
[HKLM\Software\Wow6432Node\Canopus]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Creative Tech]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\DVDVideoSoft]
[HKLM\Software\Wow6432Node\Delta]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\DriverTuner]
[HKLM\Software\Wow6432Node\DriverTuner_Init]
[HKLM\Software\Wow6432Node\EgisTec IPS]
[HKLM\Software\Wow6432Node\EgisTec MyWinLockerSuite]
[HKLM\Software\Wow6432Node\EgisTec MyWinLocker]
[HKLM\Software\Wow6432Node\EgisTec Shredder]
[HKLM\Software\Wow6432Node\FLEXlm License Manager]
[HKLM\Software\Wow6432Node\Funmoods] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hercules]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Kolor]
[HKLM\Software\Wow6432Node\L&H]
[HKLM\Software\Wow6432Node\LAventure]
[HKLM\Software\Wow6432Node\Lame For Audacity]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\MAGIX]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfeeInstaller]
[HKLM\Software\Wow6432Node\McAfee]
[HKLM\Software\Wow6432Node\Micro Application]
[HKLM\Software\Wow6432Node\MimarSinan]
[HKLM\Software\Wow6432Node\Mircrosoft]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MyHeritage.com]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\Oberon Media]
[HKLM\Software\Wow6432Node\Orbit]
[HKLM\Software\Wow6432Node\PIP]
[HKLM\Software\Wow6432Node\PoINT]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SHARP]
[HKLM\Software\Wow6432Node\SearchquMediabarTb] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\SmartSound Software]
[HKLM\Software\Wow6432Node\Software]
[HKLM\Software\Wow6432Node\Sys Modules]
[HKLM\Software\Wow6432Node\TuneUpMedia]
[HKLM\Software\Wow6432Node\Ulead Systems]
[HKLM\Software\Wow6432Node\Uniblue]
[HKLM\Software\Wow6432Node\VDownloader]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\VirtualDubMOD 1.5.10.2 b2540 Fr]
[HKLM\Software\Wow6432Node\VirualDiskRedist]
[HKLM\Software\Wow6432Node\Vittalia]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WhiteSmoke_US_New] =>PUP.WhiteSmoke
[HKLM\Software\Wow6432Node\WinPcap]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\XnView]
[HKLM\Software\Wow6432Node\Yahoo]
[HKLM\Software\Wow6432Node\ahead]
[HKLM\Software\Wow6432Node\iTinySoft]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\repkasoft]
[HKLM\Software\Wow6432Node]
~ Key Software: 378 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 17/08/2011 - 15:57:14 - [323,982] ----D C:\Program Files (x86)\Acer
O43 - CFD: 19/09/2013 - 17:38:49 - [-1738,965] ----D C:\Program Files (x86)\Acer GameZone
O43 - CFD: 25/03/2013 - 18:36:25 - [225,000] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 22/10/2012 - 17:23:52 - [40,526] ----D C:\Program Files (x86)\adslTV
O43 - CFD: 11/12/2011 - 19:14:26 - [1,411] ----D C:\Program Files (x86)\AnmSMP
O43 - CFD: 21/09/2012 - 14:05:21 - [102,326] ----D C:\Program Files (x86)\Apowersoft
O43 - CFD: 09/12/2011 - 17:10:11 - [2,316] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 30/01/2012 - 19:51:00 - [466,047] ----D C:\Program Files (x86)\ArcSoft
O43 - CFD: 08/12/2011 - 22:03:19 - [40,498] ----D C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)
O43 - CFD: 15/09/2012 - 21:42:11 - [1,406] ----D C:\Program Files (x86)\autostitch
O43 - CFD: 24/02/2013 - 23:26:55 - [0] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 17/03/2012 - 19:43:20 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 16/03/2013 - 17:58:53 - [0] ----D C:\Program Files (x86)\Boxore =>Adware.Boxore
O43 - CFD: 16/10/2012 - 22:06:22 - [29,457] ----D C:\Program Files (x86)\captvty-1.8.10
O43 - CFD: 05/02/2013 - 22:27:23 - [16,788] ----D C:\Program Files (x86)\CDBurnerXP
O43 - CFD: 08/12/2011 - 22:06:26 - [10,213] ----D C:\Program Files (x86)\CDex
O43 - CFD: 14/04/2013 - 09:48:19 - [744,956] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 09/12/2011 - 17:43:20 - [0,609] ----D C:\Program Files (x86)\Conduit
O43 - CFD: 17/08/2011 - 15:52:05 - [0,064] ----D C:\Program Files (x86)\Cyberlink
O43 - CFD: 01/02/2013 - 12:50:36 - [0] ----D C:\Program Files (x86)\Delta
O43 - CFD: 24/02/2013 - 22:39:04 - [26,845] ----D C:\Program Files (x86)\Digiarty
O43 - CFD: 31/03/2013 - 19:39:31 - [2,954] ----D C:\Program Files (x86)\Digital Photo Software
O43 - CFD: 02/11/2012 - 23:26:58 - [42,824] ----D C:\Program Files (x86)\DVD Flick
O43 - CFD: 04/02/2013 - 22:01:10 - [5,972] ----D C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 02/11/2012 - 19:46:04 - [26,873] ----D C:\Program Files (x86)\E.M. PowerPoint Video Converter
O43 - CFD: 24/03/2011 - 10:07:27 - [3,457] ----D C:\Program Files (x86)\EgisTec IPS
O43 - CFD: 24/03/2011 - 10:07:34 - [18,307] ----D C:\Program Files (x86)\EgisTec MyWinLocker
O43 - CFD: 24/03/2011 - 10:06:53 - [2,533] ----D C:\Program Files (x86)\EgisTec MyWinLockerSuite
O43 - CFD: 24/03/2011 - 10:07:56 - [5,331] ----D C:\Program Files (x86)\EgisTec Shredder
O43 - CFD: 08/01/2012 - 14:53:50 - [10,401] ----D C:\Program Files (x86)\eMule
O43 - CFD: 18/04/2012 - 18:07:20 - [6,292] ----D C:\Program Files (x86)\EnveloppesEditor1.11
O43 - CFD: 24/01/2013 - 17:41:59 - [2,309] ----D C:\Program Files (x86)\Feedback Tool
O43 - CFD: 01/02/2013 - 12:50:02 - [2,722] ----D C:\Program Files (x86)\Free PDF to Word Doc Converter
O43 - CFD: 09/12/2011 - 17:37:18 - [10,833] ----D C:\Program Files (x86)\Free Video Converter
O43 - CFD: 23/01/2013 - 20:42:48 - [476,039] ----D C:\Program Files (x86)\Geneatique2013
O43 - CFD: 05/06/2013 - 21:03:21 - [1,341] ----D C:\Program Files (x86)\GIF Recuperateur
O43 - CFD: 21/01/2013 - 14:55:26 - [469,563] ----D C:\Program Files (x86)\Google
O43 - CFD: 01/02/2013 - 17:16:43 - [0] ----D C:\Program Files (x86)\GUM2E11.tmp
O43 - CFD: 16/02/2013 - 09:29:09 - [21,721] ----D C:\Program Files (x86)\Handbrake
O43 - CFD: 20/12/2011 - 11:50:59 - [94,158] ----D C:\Program Files (x86)\Hercules
O43 - CFD: 15/12/2011 - 19:31:19 - [311,630] ----D C:\Program Files (x86)\HP
O43 - CFD: 15/10/2012 - 10:48:01 - [0,971] ----D C:\Program Files (x86)\IcoSauve
O43 - CFD: 16/12/2011 - 17:50:55 - [34,213] ----D C:\Program Files (x86)\iLivid =>Adware.Bandoo
O43 - CFD: 07/01/2013 - 21:12:57 - [188,295] ----D C:\Program Files (x86)\Install-geneatique-2013
O43 - CFD: 16/10/2012 - 09:31:15 - [332,404] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 01/02/2013 - 17:01:19 - [63,606] ----D C:\Program Files (x86)\Intel
O43 - CFD: 14/10/2013 - 18:30:22 - [5,878] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 16/10/2012 - 11:11:27 - [143,854] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 21/05/2013 - 09:58:36 - [248,116] ----D C:\Program Files (x86)\Java
O43 - CFD: 22/12/2011 - 13:09:18 - [2,563] ----D C:\Program Files (x86)\KC Softwares
O43 - CFD: 24/06/2012 - 14:50:31 - [1,623] ----D C:\Program Files (x86)\laetjr
O43 - CFD: 06/05/2012 - 11:30:26 - [1,540] ----D C:\Program Files (x86)\Lame For Audacity
O43 - CFD: 26/06/2012 - 22:42:45 - [449,830] ----D C:\Program Files (x86)\LEGO Company
O43 - CFD: 14/11/2012 - 19:42:58 - [1094,909] ----D C:\Program Files (x86)\MAGIX
O43 - CFD: 16/04/2013 - 19:56:20 - [13,514] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 17/09/2012 - 18:06:19 - [6,064] ----D C:\Program Files (x86)\Merge2.3
O43 - CFD: 03/02/2012 - 12:15:59 - [1956,384] ----D C:\Program Files (x86)\Micro Application
O43 - CFD: 30/11/2012 - 12:47:10 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 11/02/2012 - 18:59:13 - [13,309] ----D C:\Program Files (x86)\Microsoft ActiveSync
O43 - CFD: 09/12/2011 - 17:02:18 - [831,484] ----D C:\Program Files (x86)\Microsoft AutoRoute
O43 - CFD: 22/12/2011 - 13:04:49 - [1,466] ----D C:\Program Files (x86)\Microsoft GIF Animator
O43 - CFD: 05/01/2012 - 08:03:42 - [564,611] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 14/10/2013 - 18:31:42 - [40,851] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 18/11/2012 - 12:21:52 - [5,710] ----D C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 22/10/2012 - 18:47:34 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 08/12/2011 - 16:09:22 - [0,014] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 08/12/2011 - 16:07:17 - [1,323] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 08/12/2011 - 19:53:41 - [3,554] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 01/02/2013 - 16:44:41 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 16/10/2013 - 10:57:12 - [104,686] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 16/10/2013 - 10:57:12 - [0,214] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 13/09/2013 - 12:52:58 - [0,002] ----D C:\Program Files (x86)\Mozilla Thunderbird =>.Mozilla Corporation
O43 - CFD: 01/02/2013 - 16:46:20 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 22/10/2012 - 20:38:53 - [26,527] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 10/11/2012 - 12:32:28 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 10/01/2013 - 15:44:00 - [79,639] ----D C:\Program Files (x86)\MyHeritage
O43 - CFD: 08/12/2011 - 16:40:52 - [352,282] ----D C:\Program Files (x86)\Nero
O43 - CFD: 24/03/2011 - 10:13:11 - [6,828] ----D C:\Program Files (x86)\newsXpresso
O43 - CFD: 23/01/2013 - 18:44:19 - [1,715] ----D C:\Program Files (x86)\Notation
O43 - CFD: 18/04/2013 - 15:00:14 - [14,394] ----D C:\Program Files (x86)\Orbitdownloader
O43 - CFD: 05/11/2012 - 21:43:52 - [0,001] ----D C:\Program Files (x86)\Paltalk Messenger
O43 - CFD: 11/12/2011 - 19:38:35 - [3,528] ----D C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 21/02/2012 - 23:17:37 - [1,676] ----D C:\Program Files (x86)\PowerpointImageExtractor_V1_2
O43 - CFD: 16/10/2012 - 11:07:54 - [72,431] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 17/08/2011 - 15:37:15 - [3,205] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 01/02/2013 - 16:33:24 - [36,536] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 08/12/2011 - 17:20:46 - [0,161] ----D C:\Program Files (x86)\SHARP GSM GPRS USB Driver
O43 - CFD: 14/04/2013 - 09:48:19 - [47,249] R---D C:\Program Files (x86)\Skype
O43 - CFD: 08/12/2011 - 17:52:33 - [6,936] ----D C:\Program Files (x86)\SmartSound Software
O43 - CFD: 22/06/2012 - 15:12:09 - [2,443] ----D C:\Program Files (x86)\Software
O43 - CFD: 23/01/2013 - 18:43:34 - [3,221] ----D C:\Program Files (x86)\Software Installer
O43 - CFD: 17/08/2011 - 15:37:29 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 29/05/2012 - 10:05:11 - [47,223] ----D C:\Program Files (x86)\TKexe
O43 - CFD: 14/02/2012 - 12:35:56 - [355,838] ----D C:\Program Files (x86)\Ulead Systems
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 30/01/2012 - 20:00:52 - [15,508] ----D C:\Program Files (x86)\USB_video_device
O43 - CFD: 27/04/2013 - 15:40:33 - [37,025] ----D C:\Program Files (x86)\VDownloader
O43 - CFD: 21/10/2012 - 12:54:22 - [101,905] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 18/09/2013 - 18:44:14 - [6,523] ----D C:\Program Files (x86)\VS Revo Group
O43 - CFD: 06/09/2013 - 21:03:04 - [1,038] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 16/12/2011 - 17:46:03 - [2,904] ----D C:\Program Files (x86)\Windows iLivid Toolbar =>Adware.Bandoo
O43 - CFD: 30/11/2012 - 12:46:40 - [172,670] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 26/07/2012 - 12:08:59 - [5,466] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 08/12/2011 - 17:51:50 - [0,161] ----D C:\Program Files (x86)\Windows Media Components
O43 - CFD: 05/02/2013 - 22:25:40 - [3,494] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 26/07/2012 - 10:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 26/07/2012 - 10:12:59 - [7,243] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 18/06/2013 - 23:00:05 - [5,226] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 26/07/2012 - 10:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 01/02/2013 - 16:44:42 - [1,291] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 15/09/2012 - 14:34:15 - [16,243] ----D C:\Program Files (x86)\XnView
O43 - CFD: 15/12/2011 - 17:35:00 - [6,012] ----D C:\Program Files (x86)\Yahoo!
O43 - CFD: 11/12/2011 - 20:01:26 - [2,134] ----D C:\Program Files (x86)\YoWindow
O43 - CFD: 16/10/2013 - 11:02:32 - [17,007] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 27/12/2011 - 19:36:27 - [23,534] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 16/04/2013 - 09:19:30 - [45,606] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 08/12/2011 - 16:42:25 - [82,751] ----D C:\Program Files (x86)\Common Files\Ahead
O43 - CFD: 16/10/2012 - 11:11:03 - [105,862] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 30/01/2012 - 19:52:19 - [18,914] ----D C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 24/02/2013 - 23:26:58 - [0] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 08/12/2011 - 16:09:22 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 04/02/2013 - 22:00:27 - [70,183] ----D C:\Program Files (x86)\Common Files\DVDVideoSoft
O43 - CFD: 24/03/2011 - 10:07:26 - [0,165] ----D C:\Program Files (x86)\Common Files\EgisTec
O43 - CFD: 15/12/2011 - 17:32:48 - [0,507] ----D C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 15/12/2011 - 19:30:07 - [3,052] ----D C:\Program Files (x86)\Common Files\HP
O43 - CFD: 08/12/2011 - 17:51:06 - [20,142] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 21/05/2013 - 10:33:16 - [24,304] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 06/01/2012 - 23:37:06 - [4,423] ----D C:\Program Files (x86)\Common Files\L&H
O43 - CFD: 10/11/2012 - 12:32:59 - [23,954] ----D C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 10/11/2012 - 12:34:40 - [0,083] ----D C:\Program Files (x86)\Common Files\MAGIX Shared
O43 - CFD: 08/12/2011 - 11:37:24 - [0,784] ----D C:\Program Files (x86)\Common Files\mcafee
O43 - CFD: 03/02/2013 - 23:25:14 - [252,486] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 24/03/2011 - 09:33:05 - [0,338] ----D C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 17/08/2011 - 15:46:03 - [0,155] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 26/07/2012 - 10:13:01 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/04/2013 - 09:48:19 - [1,904] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 01/02/2013 - 16:44:40 - [0,223] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 01/02/2013 - 16:44:40 - [45,258] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 14/02/2012 - 12:22:16 - [16,218] ----D C:\Program Files (x86)\Common Files\Ulead Systems
O43 - CFD: 24/03/2011 - 09:49:01 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 19/09/2013 - 17:36:45 - [0] ----D C:\ProgramData\2DBoy
O43 - CFD: 16/10/2012 - 11:11:29 - [2,775] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 24/03/2011 - 09:48:13 - [1,690] ----D C:\ProgramData\Acer
O43 - CFD: 23/04/2013 - 09:00:08 - [230,492] ----D C:\ProgramData\Adobe
O43 - CFD: 09/12/2011 - 17:10:04 - [115,133] ----D C:\ProgramData\Apple
O43 - CFD: 16/10/2012 - 11:11:03 - [75,456] ----D C:\ProgramData\Apple Computer
O43 - CFD: 26/07/2012 - 09:22:08 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 04/03/2012 - 18:06:34 - [1,613] --H-D C:\ProgramData\ArcSoft
O43 - CFD: 14/10/2013 - 18:48:41 - [5,702] ----D C:\ProgramData\AVAST Software
O43 - CFD: 24/02/2013 - 21:47:39 - [0] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 01/02/2013 - 12:50:12 - [0] ----D C:\ProgramData\Babylon =>Toolbar.Babylon
O43 - CFD: 19/09/2013 - 17:10:37 - [0] ----D C:\ProgramData\BitGuard =>PUP.BitGuard
O43 - CFD: 07/12/2011 - 17:50:48 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 09/12/2011 - 17:52:28 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 01/02/2013 - 16:08:24 - [0,089] ----D C:\ProgramData\clear.fi
O43 - CFD: 07/12/2011 - 18:24:37 - [0,098] ----D C:\ProgramData\CyberLink
O43 - CFD: 26/07/2012 - 09:22:08 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 26/07/2012 - 09:22:08 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 19/12/2011 - 19:46:27 - [0,001] ----D C:\ProgramData\DriverBoost
O43 - CFD: 19/09/2013 - 13:59:28 - [0] ----D C:\ProgramData\DSearchLink =>Toolbar.DeltaSearch
O43 - CFD: 17/08/2011 - 15:40:11 - [0] ----D C:\ProgramData\EgisTec
O43 - CFD: 17/08/2011 - 15:40:04 - [0,268] ----D C:\ProgramData\EgisTec IPS
O43 - CFD: 08/01/2012 - 14:54:11 - [0] ----D C:\ProgramData\eMule
O43 - CFD: 07/12/2011 - 17:50:48 - [0] -SH-D C:\ProgramData\Favoris
O43 - CFD: 08/12/2011 - 11:55:32 - [0,519] ----D C:\ProgramData\Google
O43 - CFD: 07/01/2013 - 21:19:16 - [80,026] ----D C:\ProgramData\G�n�atique2013
O43 - CFD: 01/02/2013 - 16:44:44 - [23,411] ----D C:\ProgramData\HP
O43 - CFD: 15/12/2011 - 19:30:58 - [0,009] ----D C:\ProgramData\HP Product Assistant
O43 - CFD: 12/02/2012 - 12:48:05 - [0] ----D C:\ProgramData\InstallShield
O43 - CFD: 17/08/2011 - 15:40:03 - [0,001] ----D C:\ProgramData\Intel
O43 - CFD: 14/11/2012 - 19:42:58 - [382,470] ----D C:\ProgramData\MAGIX
O43 - CFD: 16/10/2012 - 17:59:00 - [16,372] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 05/01/2012 - 10:45:59 - [0,014] ----D C:\ProgramData\McAfee
O43 - CFD: 07/12/2011 - 17:50:48 - [0] -SH-D C:\ProgramData\Menu D�marrer
O43 - CFD: 06/01/2012 - 23:52:11 - [0,001] ----D C:\ProgramData\Micro Application
O43 - CFD: 04/04/2013 - 10:50:11 - [1282,960] -S--D C:\ProgramData\Microsoft
O43 - CFD: 14/10/2013 - 15:05:20 - [0,062] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 18/11/2012 - 12:21:38 - [0] ----D C:\ProgramData\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 07/12/2011 - 17:50:48 - [0] -SH-D C:\ProgramData\Mod�les
O43 - CFD: 11/05/2012 - 09:34:00 - [0,035] ----D C:\ProgramData\Mozilla
O43 - CFD: 08/01/2013 - 12:15:58 - [0,316] ----D C:\ProgramData\MyHeritage
O43 - CFD: 08/12/2011 - 16:40:53 - [2,709] ----D C:\ProgramData\Nero
O43 - CFD: 24/03/2011 - 10:13:15 - [0] ----D C:\ProgramData\newsXpresso
O43 - CFD: 05/09/2012 - 20:33:36 - [0] ----D C:\ProgramData\Nitro PDF
O43 - CFD: 05/09/2012 - 21:07:10 - [8,764] ----D C:\ProgramData\Nuance
O43 - CFD: 24/03/2011 - 09:44:32 - [1,164] ----D C:\ProgramData\OberonGameConsole
O43 - CFD: 07/12/2011 - 17:53:37 - [0,001] ----D C:\ProgramData\oem
O43 - CFD: 04/02/2013 - 10:11:17 - [1,518] ----D C:\ProgramData\PRICache
O43 - CFD: 09/01/2012 - 12:32:17 - [0] ----D C:\ProgramData\QuickTime
O43 - CFD: 26/07/2012 - 12:11:33 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 05/09/2012 - 20:54:50 - [0] ----D C:\ProgramData\ScanSoft
O43 - CFD: 10/11/2012 - 19:18:02 - [0] ----D C:\ProgramData\simplitec
O43 - CFD: 14/04/2013 - 09:48:21 - [83,943] ----D C:\ProgramData\Skype
O43 - CFD: 08/12/2011 - 17:52:34 - [6,862] ----D C:\ProgramData\SmartSound Software Inc
O43 - CFD: 26/07/2012 - 09:22:08 - [0] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 15/12/2011 - 18:12:14 - [0] ----D C:\ProgramData\Sun
O43 - CFD: 15/12/2011 - 21:18:56 - [0,425] ----D C:\ProgramData\SweetIM =>PUP.SweetIM
O43 - CFD: 07/01/2013 - 19:49:02 - [0,464] ---AD C:\ProgramData\Temp
O43 - CFD: 26/07/2012 - 09:22:08 - [0] -SH-D C:\ProgramData\Templates
O43 - CFD: 05/12/2012 - 16:40:09 - [0,235] ----D C:\ProgramData\TomTom
O43 - CFD: 11/12/2011 - 20:04:13 - [0,175] ----D C:\ProgramData\TuneUpMedia
O43 - CFD: 19/12/2011 - 19:46:45 - [0] ----D C:\ProgramData\UAB
O43 - CFD: 14/02/2012 - 12:40:24 - [0,312] ----D C:\ProgramData\Ulead Systems
O43 - CFD: 15/12/2011 - 17:36:18 - [0] ----D C:\ProgramData\WEBREG
O43 - CFD: 15/12/2011 - 19:31:57 - [0] ----D C:\ProgramData\Yahoo! Companion
O43 - CFD: 11/12/2011 - 20:01:26 - [5,224] ----D C:\ProgramData\YoWindow
O43 - CFD: 05/09/2012 - 14:11:15 - [0,002] ----D C:\ProgramData\zeon
O43 - CFD: 09/12/2011 - 17:11:12 - [0,002] ----D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 03/02/2012 - 14:59:09 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\4D
O43 - CFD: 25/03/2013 - 18:36:30 - [10,654] ----D C:\Users\Meunier\AppData\Roaming\Adobe
O43 - CFD: 23/01/2013 - 18:45:07 - [0] ----D C:\Users\Meunier\AppData\Roaming\Advernet =>Hijacker.Proxy
O43 - CFD: 14/09/2012 - 17:48:47 - [0,219] ----D C:\Users\Meunier\AppData\Roaming\Ahead
O43 - CFD: 21/09/2012 - 14:05:26 - [0,267] ----D C:\Users\Meunier\AppData\Roaming\Apowersoft
O43 - CFD: 09/12/2011 - 17:11:48 - [0,211] ----D C:\Users\Meunier\AppData\Roaming\Apple Computer
O43 - CFD: 01/02/2012 - 10:13:12 - [0,015] ----D C:\Users\Meunier\AppData\Roaming\ArcSoft
O43 - CFD: 28/06/2013 - 17:51:11 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\Audacity
O43 - CFD: 24/02/2013 - 22:25:25 - [0,172] ----D C:\Users\Meunier\AppData\Roaming\AVS4YOU
O43 - CFD: 09/12/2011 - 17:52:28 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\Canneverbe Limited
O43 - CFD: 04/02/2013 - 22:01:32 - [2,611] ----D C:\Users\Meunier\AppData\Roaming\Common
O43 - CFD: 05/09/2012 - 10:34:35 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\Convertisseur PDF
O43 - CFD: 08/12/2011 - 17:01:43 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\Creative
O43 - CFD: 07/12/2011 - 17:57:32 - [0] ----D C:\Users\Meunier\AppData\Roaming\CyberLink
O43 - CFD: 03/04/2013 - 09:23:37 - [0,161] ----D C:\Users\Meunier\AppData\Roaming\DataMgr
O43 - CFD: 05/09/2012 - 20:32:10 - [193,089] ----D C:\Users\Meunier\AppData\Roaming\Downloaded Installations
O43 - CFD: 16/10/2013 - 09:16:38 - [70,689] ----D C:\Users\Meunier\AppData\Roaming\Dropbox
O43 - CFD: 25/02/2013 - 11:44:19 - [0,004] ----D C:\Users\Meunier\AppData\Roaming\DVD Flick
O43 - CFD: 09/03/2013 - 17:17:18 - [0] ----D C:\Users\Meunier\AppData\Roaming\dvdcss
O43 - CFD: 04/02/2013 - 22:01:31 - [10,498] ----D C:\Users\Meunier\AppData\Roaming\DVDVideoSoft
O43 - CFD: 04/02/2013 - 22:01:12 - [0] ----D C:\Users\Meunier\AppData\Roaming\DVDVideoSoftIEHelpers
O43 - CFD: 24/02/2013 - 21:33:32 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\FreeVideoConverter
O43 - CFD: 15/01/2013 - 20:48:54 - [0] ----D C:\Users\Meunier\AppData\Roaming\Funmoods =>PUP.Funmoods
O43 - CFD: 08/12/2011 - 12:48:30 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\Google
O43 - CFD: 20/10/2012 - 20:52:27 - [0] ----D C:\Users\Meunier\AppData\Roaming\GrabPro
O43 - CFD: 24/11/2012 - 17:35:53 - [0] ----D C:\Users\Meunier\AppData\Roaming\gtk-2.0
O43 - CFD: 07/01/2013 - 21:16:27 - [0,069] ----D C:\Users\Meunier\AppData\Roaming\G�n�atique
O43 - CFD: 28/02/2013 - 22:04:45 - [0,066] ----D C:\Users\Meunier\AppData\Roaming\HandBrake
O43 - CFD: 15/12/2011 - 17:38:13 - [0,194] ----D C:\Users\Meunier\AppData\Roaming\HP
O43 - CFD: 07/12/2011 - 17:53:08 - [0] ----D C:\Users\Meunier\AppData\Roaming\Identities
O43 - CFD: 07/12/2011 - 17:53:30 - [0] ----D C:\Users\Meunier\AppData\Roaming\Intel Corporation
O43 - CFD: 13/10/2013 - 17:33:52 - [0,061] ----D C:\Users\Meunier\AppData\Roaming\Intermediate
O43 - CFD: 22/12/2011 - 13:11:56 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\KC Softwares
O43 - CFD: 08/12/2012 - 11:17:40 - [425,889] ----D C:\Users\Meunier\AppData\Roaming\LEGO Company
O43 - CFD: 07/12/2011 - 17:53:27 - [0,056] ----D C:\Users\Meunier\AppData\Roaming\Macromedia
O43 - CFD: 14/11/2012 - 19:42:20 - [4,503] ----D C:\Users\Meunier\AppData\Roaming\MAGIX
O43 - CFD: 16/10/2012 - 17:59:11 - [142,832] ----D C:\Users\Meunier\AppData\Roaming\Malwarebytes
O43 - CFD: 21/11/2010 - 09:16:41 - [0] ----D C:\Users\Meunier\AppData\Roaming\Media Center Programs
O43 - CFD: 18/12/2011 - 12:59:36 - [41,395] ----D C:\Users\Meunier\AppData\Roaming\Micro Application
O43 - CFD: 01/02/2013 - 16:58:10 - [9,467] -S--D C:\Users\Meunier\AppData\Roaming\Microsoft
O43 - CFD: 11/05/2012 - 09:34:05 - [17,521] ----D C:\Users\Meunier\AppData\Roaming\Mozilla
O43 - CFD: 08/01/2013 - 12:27:52 - [184,049] ----D C:\Users\Meunier\AppData\Roaming\MyHeritage
O43 - CFD: 14/09/2012 - 22:13:03 - [0] ----D C:\Users\Meunier\AppData\Roaming\newsXpresso
O43 - CFD: 05/09/2012 - 20:37:30 - [0,475] ----D C:\Users\Meunier\AppData\Roaming\Nitro PDF
O43 - CFD: 03/05/2012 - 15:03:03 - [0] ----D C:\Users\Meunier\AppData\Roaming\Nosibay
O43 - CFD: 05/09/2012 - 14:09:34 - [0] ----D C:\Users\Meunier\AppData\Roaming\Nuance
O43 - CFD: 07/12/2011 - 17:53:28 - [10,533] ----D C:\Users\Meunier\AppData\Roaming\OEM
O43 - CFD: 19/04/2013 - 15:22:09 - [11,396] ----D C:\Users\Meunier\AppData\Roaming\Orbit
O43 - CFD: 11/12/2011 - 19:41:54 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\PhotoFiltre
O43 - CFD: 04/02/2013 - 22:01:32 - [0] ----D C:\Users\Meunier\AppData\Roaming\PiccShare
O43 - CFD: 07/12/2011 - 18:24:42 - [0,015] ----D C:\Users\Meunier\AppData\Roaming\PowerCinema
O43 - CFD: 20/10/2012 - 20:52:53 - [0] ----D C:\Users\Meunier\AppData\Roaming\ProgSense
O43 - CFD: 05/09/2012 - 14:48:31 - [0,097] ----D C:\Users\Meunier\AppData\Roaming\ScanSoft
O43 - CFD: 13/10/2013 - 17:33:45 - [0,153] ----D C:\Users\Meunier\AppData\Roaming\SCheck
O43 - CFD: 10/11/2012 - 19:18:02 - [0] ----D C:\Users\Meunier\AppData\Roaming\simplitec
O43 - CFD: 16/10/2013 - 10:32:36 - [6,534] ----D C:\Users\Meunier\AppData\Roaming\Skype
O43 - CFD: 13/10/2013 - 17:33:50 - [1,170] ----D C:\Users\Meunier\AppData\Roaming\Snz
O43 - CFD: 04/02/2013 - 22:01:38 - [0,059] ----D C:\Users\Meunier\AppData\Roaming\SSync
O43 - CFD: 08/01/2013 - 12:12:43 - [0] ----D C:\Users\Meunier\AppData\Roaming\The Complete Genealogy Reporter - FTB
O43 - CFD: 08/05/2012 - 16:08:09 - [325,731] ----D C:\Users\Meunier\AppData\Roaming\Thunderbird =>.Mozilla Corporation
O43 - CFD: 05/12/2012 - 16:40:07 - [4,096] ----D C:\Users\Meunier\AppData\Roaming\TomTom
O43 - CFD: 11/12/2011 - 20:04:09 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\TuneUpMedia
O43 - CFD: 25/01/2012 - 23:24:07 - [62,932] ----D C:\Users\Meunier\AppData\Roaming\Ulead Systems
O43 - CFD: 27/04/2013 - 15:39:52 - [0,217] ----D C:\Users\Meunier\AppData\Roaming\VDownloader
O43 - CFD: 13/07/2013 - 15:10:25 - [0,695] ----D C:\Users\Meunier\AppData\Roaming\vlc
O43 - CFD: 08/12/2011 - 17:21:57 - [0] ----D C:\Users\Meunier\AppData\Roaming\Windows Live Writer
O43 - CFD: 24/06/2013 - 08:56:44 - [8,513] ----D C:\Users\Meunier\AppData\Roaming\XnView
O43 - CFD: 15/12/2011 - 17:34:59 - [0] ----D C:\Users\Meunier\AppData\Roaming\Yahoo!
O43 - CFD: 11/12/2011 - 20:01:26 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\YoWindow
O43 - CFD: 05/09/2012 - 21:07:10 - [0] ----D C:\Users\Meunier\AppData\Roaming\Zeon
O43 - CFD: 16/10/2013 - 11:03:28 - [0,020] ----D C:\Users\Meunier\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 08/12/2011 - 18:58:12 - [0,002] ----D C:\Users\Meunier\AppData\Local\2BrightSparks
O43 - CFD: 19/09/2013 - 17:36:45 - [0] ----D C:\Users\Meunier\AppData\Local\2DBoy
O43 - CFD: 07/12/2011 - 17:53:02 - [0,028] ----D C:\Users\Meunier\AppData\Local\Acer
O43 - CFD: 25/03/2013 - 18:31:57 - [16,519] ----D C:\Users\Meunier\AppData\Local\Adobe
O43 - CFD: 29/04/2013 - 08:36:12 - [13,936] ----D C:\Users\Meunier\AppData\Local\adslTV
O43 - CFD: 05/01/2012 - 10:32:47 - [2,791] ----D C:\Users\Meunier\AppData\Local\Ahead
O43 - CFD: 09/12/2011 - 17:10:15 - [0] ----D C:\Users\Meunier\AppData\Local\Apple
O43 - CFD: 16/10/2012 - 11:07:06 - [6,284] ----D C:\Users\Meunier\AppData\Local\Apple Computer
O43 - CFD: 01/02/2013 - 16:41:26 - [0] -SH-D C:\Users\Meunier\AppData\Local\Application Data
O43 - CFD: 07/02/2012 - 19:40:04 - [0] ----D C:\Users\Meunier\AppData\Local\Apps
O43 - CFD: 30/01/2012 - 19:52:34 - [0,001] ----D C:\Users\Meunier\AppData\Local\ArcSoft
O43 - CFD: 17/09/2013 - 08:39:00 - [0,067] ----D C:\Users\Meunier\AppData\Local\avgchrome
O43 - CFD: 20/10/2012 - 21:02:53 - [0,063] ----D C:\Users\Meunier\AppData\Local\Conduit
O43 - CFD: 07/12/2011 - 18:24:40 - [0,113] ----D C:\Users\Meunier\AppData\Local\Cyberlink
O43 - CFD: 15/10/2013 - 15:10:14 - [1,563] ----D C:\Users\Meunier\AppData\Local\Diagnostics
O43 - CFD: 03/01/2013 - 23:41:27 - [47,935] ----D C:\Users\Meunier\AppData\Local\Downloaded Installations
O43 - CFD: 07/12/2011 - 17:53:28 - [0] ----D C:\Users\Meunier\AppData\Local\EgisTec IPS
O43 - CFD: 05/05/2013 - 09:57:30 - [0] ----D C:\Users\Meunier\AppData\Local\ElevatedDiagnostics
O43 - CFD: 08/01/2012 - 14:53:50 - [0,124] ----D C:\Users\Meunier\AppData\Local\eMule
O43 - CFD: 24/11/2012 - 17:53:18 - [5,573] ----D C:\Users\Meunier\AppData\Local\fontconfig
O43 - CFD: 24/11/2012 - 17:53:17 - [0,001] ----D C:\Users\Meunier\AppData\Local\gegl-0.2
O43 - CFD: 15/02/2013 - 19:33:32 - [0] ----D C:\Users\Meunier\AppData\Local\Giant Savings Extension =>Adware.VidSaver
O43 - CFD: 05/09/2012 - 20:48:22 - [4,781] ----D C:\Users\Meunier\AppData\Local\gladinet
O43 - CFD: 28/06/2013 - 09:20:02 - [819,515] ----D C:\Users\Meunier\AppData\Local\Google
O43 - CFD: 01/02/2013 - 16:41:26 - [0] -SH-D C:\Users\Meunier\AppData\Local\Historique
O43 - CFD: 15/12/2011 - 17:35:36 - [0,355] ----D C:\Users\Meunier\AppData\Local\HP
O43 - CFD: 16/12/2011 - 17:46:17 - [0,014] ----D C:\Users\Meunier\AppData\Local\Ilivid Player =>Adware.Bandoo
O43 - CFD: 11/01/2013 - 14:51:07 - [0] ----D C:\Users\Meunier\AppData\Local\Macromedia
O43 - CFD: 10/11/2012 - 20:00:04 - [0,001] ----D C:\Users\Meunier\AppData\Local\MAGIX_AG
O43 - CFD: 04/04/2013 - 10:50:11 - [1305,651] ----D C:\Users\Meunier\AppData\Local\Microsoft
O43 - CFD: 22/10/2012 - 16:54:45 - [0,388] ----D C:\Users\Meunier\AppData\Local\Microsoft Help
O43 - CFD: 11/05/2012 - 09:34:05 - [87,689] ----D C:\Users\Meunier\AppData\Local\Mozilla
O43 - CFD: 23/01/2013 - 18:43:17 - [0,198] ----D C:\Users\Meunier\AppData\Local\Notation
O43 - CFD: 16/12/2011 - 17:45:46 - [0] ----D C:\Users\Meunier\AppData\Local\PackageAware
O43 - CFD: 04/02/2013 - 10:11:22 - [273,925] ----D C:\Users\Meunier\AppData\Local\Packages
O43 - CFD: 19/12/2011 - 19:46:41 - [0,002] ----D C:\Users\Meunier\AppData\Local\PC_Drivers_Headquarters
O43 - CFD: 05/01/2012 - 08:03:44 - [634,326] ----D C:\Users\Meunier\AppData\Local\PowerCinema
O43 - CFD: 07/01/2013 - 21:12:00 - [0] ----D C:\Users\Meunier\AppData\Local\Programs
O43 - CFD: 05/09/2012 - 14:48:31 - [3,494] ----D C:\Users\Meunier\AppData\Local\ScanSoft
O43 - CFD: 22/06/2012 - 15:12:09 - [0] ----D C:\Users\Meunier\AppData\Local\Software
O43 - CFD: 16/10/2013 - 11:02:09 - [28,233] ----D C:\Users\Meunier\AppData\Local\Temp
O43 - CFD: 16/03/2013 - 17:54:04 - [0] ----D C:\Users\Meunier\AppData\Local\TempDIR
O43 - CFD: 01/02/2013 - 16:41:26 - [0] -SH-D C:\Users\Meunier\AppData\Local\Temporary Internet Files
O43 - CFD: 13/09/2013 - 12:52:58 - [6,445] ----D C:\Users\Meunier\AppData\Local\Thunderbird =>.Mozilla Corporation
O43 - CFD: 02/01/2012 - 18:35:19 - [0,004] ----D C:\Users\Meunier\AppData\Local\VDownloader
O43 - CFD: 24/02/2013 - 22:25:18 - [97,430] ----D C:\Users\Meunier\AppData\Local\VirtualStore
O43 - CFD: 06/02/2013 - 17:44:24 - [0,017] ----D C:\Users\Meunier\AppData\Local\webkit
O43 - CFD: 16/10/2013 - 09:16:33 - [0,125] ----D C:\Users\Meunier\AppData\Local\Windows Live
O43 - CFD: 08/12/2011 - 14:40:39 - [0,619] ----D C:\Users\Meunier\AppData\Local\Windows Live Writer
O43 - CFD: 26/07/2012 - 10:13:00 - [0,004] R---D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 01/02/2013 - 16:41:59 - [0,003] R---D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 14/10/2013 - 18:34:23 - [0] R---D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 01/02/2013 - 16:46:20 - [0,012] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adsl TV
O43 - CFD: 15/09/2012 - 22:15:37 - [0] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autopano Pro
O43 - CFD: 16/09/2013 - 16:37:26 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard =>PUP.BitGuard
O43 - CFD: 06/09/2013 - 14:33:44 - [0,002] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 16/02/2013 - 09:29:09 - [0] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
O43 - CFD: 01/02/2013 - 16:51:09 - [0] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 01/02/2013 - 16:41:59 - [0] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft GIF Animator
O43 - CFD: 01/02/2013 - 16:41:59 - [0,001] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyHeritage.com
O43 - CFD: 11/12/2011 - 19:38:35 - [0] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 01/01/2013 - 22:46:38 - [0] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoZoom Pro 4
O43 - CFD: 18/09/2013 - 18:44:15 - [0,005] ----D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 14/10/2013 - 18:34:23 - [0,003] R---D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 26/07/2012 - 10:13:00 - [0,005] R---D C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
~ 94 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 438 Scanned in 00mn 26s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.AFB0FFB0E349B72EB335BDE6FDFD164B] - 14/10/2013 - 13:42:46 ---A- . (.Microsoft Corporation - CMI tssdis plug-in.) -- C:\Windows\SysNative\tssdisai.dll [144896]
O44 - LFC:[MD5.AFB0FFB0E349B72EB335BDE6FDFD164B] - 14/10/2013 - 13:42:46 ---A- . (.Microsoft Corporation - CMI tssdis plug-in.) -- C:\Windows\System32\tssdisai.dll [144896]
O44 - LFC:[MD5.061BA3EE0D2BE17944990544008CF190] - 14/10/2013 - 13:46:39 ---A- . (.Microsoft Corporation - USB Controller Extension.) -- C:\Windows\System32\Drivers\UCX01000.SYS [213336]
O44 - LFC:[MD5.8DC398D7B8E02C929A2096E74A170970] - 14/10/2013 - 13:46:39 ---A- . (.Microsoft Corporation - USB XHCI Driver.) -- C:\Windows\System32\Drivers\USBXHCI.SYS [337752]
O44 - LFC:[MD5.B1E910DDC08A8536116214326124903C] - 14/10/2013 - 13:46:39 ---A- . (.Microsoft Corporation - USB3 HUB Driver.) -- C:\Windows\System32\Drivers\USBHUB3.SYS [447320]
O44 - LFC:[MD5.20E0FC5F724B85CA09C82D2776E84C5E] - 14/10/2013 - 13:46:39 ---A- . (.Microsoft Corporation - WinFX OpenType/CFF Rasterizer.) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll [124112]
O44 - LFC:[MD5.20E0FC5F724B85CA09C82D2776E84C5E] - 14/10/2013 - 13:46:39 ---A- . (.Microsoft Corporation - WinFX OpenType/CFF Rasterizer.) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll [124112]
O44 - LFC:[MD5.F8C2A832DF9403F5EA8080CBDBDA95FB] - 14/10/2013 - 13:46:43 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys [623448]
O44 - LFC:[MD5.B24FDEB1B18496F1B463782235AA3AF1] - 14/10/2013 - 13:46:43 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [79192]
O44 - LFC:[MD5.7CB7E04259F323D051A10515B8863564] - 14/10/2013 - 13:46:43 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys [498008]
O44 - LFC:[MD5.1ABF657259DB57F7E5558E4DF1357C0C] - 14/10/2013 - 13:46:43 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [32256]
O44 - LFC:[MD5.C976C4306F9AE133D6BBD47FDFC3BF92] - 14/10/2013 - 13:46:43 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [120832]
O44 - LFC:[MD5.9F83642C3709D1A4DD49EEE9F48F839D] - 14/10/2013 - 13:46:43 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [21848]
O44 - LFC:[MD5.86665E9EBE033CCF6A6041A025F56E6B] - 14/10/2013 - 13:46:45 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\SysNative\win32k.sys [4040192]
O44 - LFC:[MD5.86665E9EBE033CCF6A6041A025F56E6B] - 14/10/2013 - 13:46:45 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [4040192]
O44 - LFC:[MD5.469A5DCF1E51DC9AF03CE1B3B4360DEE] - 14/10/2013 - 13:46:46 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll [46080]
O44 - LFC:[MD5.469A5DCF1E51DC9AF03CE1B3B4360DEE] - 14/10/2013 - 13:46:46 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [46080]
O44 - LFC:[MD5.FD16BDF463EF68ADD48026ACCEA100B8] - 14/10/2013 - 13:46:46 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll [362496]
O44 - LFC:[MD5.FD16BDF463EF68ADD48026ACCEA100B8] - 14/10/2013 - 13:46:46 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [362496]
O44 - LFC:[MD5.2C2A9A4D53DC90A5195BB51F0A4B1E21] - 14/10/2013 - 13:46:49 ---A- . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\Drivers\hidclass.sys [83968]
O44 - LFC:[MD5.346DEF1A9DB0B4133CE0FA38AAF565C0] - 14/10/2013 - 13:46:49 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys [32768]
O44 - LFC:[MD5.9FDBA6982582A6F2354144980F641E7B] - 14/10/2013 - 13:46:49 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys [25600]
O44 - LFC:[MD5.AD91D1BBE5D3CF4501887DC1C09384FD] - 14/10/2013 - 13:46:49 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys [43008]
O44 - LFC:[MD5.11876881E87BACEBBCEE41A037614D48] - 14/10/2013 - 13:46:50 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys [54488]
O44 - LFC:[MD5.E2C933EDBC389386EBE6D2BA953F43D8] - 14/10/2013 - 13:46:50 ---A- . (.Microsoft Corporation - Runtime de l�infrastructure de pilotes en m.) -- C:\Windows\System32\Drivers\Wdf01000.sys [785624]
O44 - LFC:[MD5.9E9F21FF91D7ECC0BCCB94D3FE52A959] - 14/10/2013 - 13:46:50 ---A- . (.Microsoft Corporation - USB Audio Class Driver.) -- C:\Windows\System32\Drivers\USBAUDIO.sys [121984]
O44 - LFC:[MD5.427B6DB8C05A5A977E8C3525370A2595] - 14/10/2013 - 13:46:50 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys [99328]
O44 - LFC:[MD5.D383602755758FA81166B0FD8AFE6D40] - 14/10/2013 - 13:47:11 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript9.dll [3959296]
O44 - LFC:[MD5.D383602755758FA81166B0FD8AFE6D40] - 14/10/2013 - 13:47:11 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [3959296]
O44 - LFC:[MD5.199BD40B1890E1EEFF7438B59787534F] - 14/10/2013 - 13:47:11 ---A- . (.Microsoft Corporation - Utilitaire � l�ex�cution pour Internet Expl.) -- C:\Windows\SysNative\iertutil.dll [2647552]
O44 - LFC:[MD5.199BD40B1890E1EEFF7438B59787534F] - 14/10/2013 - 13:47:11 ---A- . (.Microsoft Corporation - Utilitaire � l�ex�cution pour Internet Expl.) -- C:\Windows\System32\iertutil.dll [2647552]
O44 - LFC:[MD5.F026C6F104758D0EB215B017016FAE27] - 14/10/2013 - 13:47:20 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysNative\mshtml.dll [19252224]
O44 - LFC:[MD5.F026C6F104758D0EB215B017016FAE27] - 14/10/2013 - 13:47:20 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [19252224]
O44 - LFC:[MD5.D28B35DE88D27EFB27DF4B1E8319E3C0] - 14/10/2013 - 13:47:21 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\SysNative\wininet.dll [2241024]
O44 - LFC:[MD5.D28B35DE88D27EFB27DF4B1E8319E3C0] - 14/10/2013 - 13:47:21 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2241024]
O44 - LFC:[MD5.194125E7839D4902F2490A70049E8F78] - 14/10/2013 - 13:47:21 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\SysNative\jsproxy.dll [53248]
O44 - LFC:[MD5.194125E7839D4902F2490A70049E8F78] - 14/10/2013 - 13:47:21 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [53248]
O44 - LFC:[MD5.38BEBBC4CF9FE6566262F0037DF843BF] - 14/10/2013 - 13:47:22 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\SysNative\iesysprep.dll [136704]
O44 - LFC:[MD5.38BEBBC4CF9FE6566262F0037DF843BF] - 14/10/2013 - 13:47:22 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\System32\iesysprep.dll [136704]
O44 - LFC:[MD5.901D4A3CB11BE92DE65FE52C6258B5FA] - 14/10/2013 - 13:47:24 ---A- . (.Microsoft Corporation - Biblioth�que de th�mes Ux Microsoft.) -- C:\Windows\SysNative\uxtheme.dll [915968]
O44 - LFC:[MD5.901D4A3CB11BE92DE65FE52C6258B5FA] - 14/10/2013 - 13:47:24 ---A- . (.Microsoft Corporation - Biblioth�que de th�mes Ux Microsoft.) -- C:\Windows\System32\uxtheme.dll [915968]
O44 - LFC:[MD5.7B4E06047031B2AAA4AE10F00C59BFC7] - 14/10/2013 - 13:47:24 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript.dll [855552]
O44 - LFC:[MD5.7B4E06047031B2AAA4AE10F00C59BFC7] - 14/10/2013 - 13:47:24 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll [855552]
O44 - LFC:[MD5.CCDB8FDC289AA9AFA5F8827A2ADB21AD] - 14/10/2013 - 13:47:24 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\SysNative\ieframe.dll [15404544]
O44 - LFC:[MD5.CCDB8FDC289AA9AFA5F8827A2ADB21AD] - 14/10/2013 - 13:47:24 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [15404544]
O44 - LFC:[MD5.547FFE0E4C267FAB1299F2334C728F59] - 14/10/2013 - 13:47:25 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\SysNative\iernonce.dll [39936]
O44 - LFC:[MD5.547FFE0E4C267FAB1299F2334C728F59] - 14/10/2013 - 13:47:25 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll [39936]
O44 - LFC:[MD5.C4DDAC3F3062739C4C2BB759B36E005D] - 14/10/2013 - 13:47:25 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\SysNative\ie4uinit.exe [51712]
O44 - LFC:[MD5.C4DDAC3F3062739C4C2BB759B36E005D] - 14/10/2013 - 13:47:25 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [51712]
O44 - LFC:[MD5.882AC0DD997CFC90FBB468D698BD55C6] - 14/10/2013 - 13:47:26 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysNative\urlmon.dll [1365504]
O44 - LFC:[MD5.882AC0DD997CFC90FBB468D698BD55C6] - 14/10/2013 - 13:47:26 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1365504]
O44 - LFC:[MD5.E80F66239BCA6CDECC360CA78CECAE61] - 14/10/2013 - 13:47:26 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\SysNative\iesetup.dll [67072]
O44 - LFC:[MD5.E80F66239BCA6CDECC360CA78CECAE61] - 14/10/2013 - 13:47:26 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll [67072]
O44 - LFC:[MD5.214E39F0A8E382F1889B26B46DE0AF81] - 14/10/2013 - 13:47:26 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\SysNative\msfeeds.dll [603136]
O44 - LFC:[MD5.214E39F0A8E382F1889B26B46DE0AF81] - 14/10/2013 - 13:47:26 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [603136]
O44 - LFC:[MD5.AD00E5D3B748150CF1A53A1ABB52E320] - 14/10/2013 - 13:47:27 ---A- . (.Microsoft Corporation - Windows User Experience Session Initializat.) -- C:\Windows\SysNative\UXInit.dll [53760]
O44 - LFC:[MD5.AD00E5D3B748150CF1A53A1ABB52E320] - 14/10/2013 - 13:47:27 ---A- . (.Microsoft Corporation - Windows User Experience Session Initializat.) -- C:\Windows\System32\UXInit.dll [53760]
O44 - LFC:[MD5.F827BD7A09F9FCDF76AB2C3E27650E71] - 14/10/2013 - 13:47:28 ---A- . (.Microsoft Corporation - Microsoft� MSHTML Typelib.) -- C:\Windows\SysNative\mshtml.tlb [2706432]
O44 - LFC:[MD5.F827BD7A09F9FCDF76AB2C3E27650E71] - 14/10/2013 - 13:47:28 ---A- . (.Microsoft Corporation - Microsoft� MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2706432]
O44 - LFC:[MD5.EEB55974CFE4DB0B4FC840E6101090B8] - 14/10/2013 - 13:47:32 ---A- . (.Microsoft Corporation - Contr�le du Moniteur syst�me.) -- C:\Windows\SysNative\sysmon.ocx [462336]
O44 - LFC:[MD5.EEB55974CFE4DB0B4FC840E6101090B8] - 14/10/2013 - 13:47:32 ---A- . (.Microsoft Corporation - Contr�le du Moniteur syst�me.) -- C:\Windows\System32\sysmon.ocx [462336]
O44 - LFC:[MD5.20E76634DE7792397261A8AC442B9ACB] - 14/10/2013 - 13:47:32 ---A- . (.Microsoft Corporation - Windows Visual Components.) -- C:\Windows\SysNative\wvc.dll [566784]
O44 - LFC:[MD5.20E76634DE7792397261A8AC442B9ACB] - 14/10/2013 - 13:47:32 ---A- . (.Microsoft Corporation - Windows Visual Components.) -- C:\Windows\System32\wvc.dll [566784]
O44 - LFC:[MD5.CA45D615BA0102CEDE9C25F4C6EE0983] - 14/10/2013 - 13:47:33 ---A- . (.Microsoft Corporation - Analyseur de performances.) -- C:\Windows\SysNative\wdc.dll [1374208]
O44 - LFC:[MD5.CA45D615BA0102CEDE9C25F4C6EE0983] - 14/10/2013 - 13:47:33 ---A- . (.Microsoft Corporation - Analyseur de performances.) -- C:\Windows\System32\wdc.dll [1374208]
O44 - LFC:[MD5.6A4B9FBC1E88C400AD671A50DADFA84D] - 14/10/2013 - 13:47:36 ---A- . (...) -- C:\Windows\SysNative\ApnDatabase.xml [386923]
O44 - LFC:[MD5.6A4B9FBC1E88C400AD671A50DADFA84D] - 14/10/2013 - 13:47:36 ---A- . (...) -- C:\Windows\System32\ApnDatabase.xml [386923]
O44 - LFC:[MD5.755059FD6A758EA4413B58A1B423E7D1] - 14/10/2013 - 13:47:36 ---A- . (.Microsoft Corporation - Setting Synchronization Information.) -- C:\Windows\SysNative\SettingSyncInfo.dll [128512]
O44 - LFC:[MD5.755059FD6A758EA4413B58A1B423E7D1] - 14/10/2013 - 13:47:36 ---A- . (.Microsoft Corporation - Setting Synchronization Information.) -- C:\Windows\System32\SettingSyncInfo.dll [128512]
O44 - LFC:[MD5.DFB8703836AF863A25FC55BF88176591] - 14/10/2013 - 13:47:38 ---A- . (.Microsoft Corporation - Biblioth�que d�objets et de contr�les de do.) -- C:\Windows\SysNative\shdocvw.dll [222208]
O44 - LFC:[MD5.DFB8703836AF863A25FC55BF88176591] - 14/10/2013 - 13:47:38 ---A- . (.Microsoft Corporation - Biblioth�que d�objets et de contr�les de do.) -- C:\Windows\System32\shdocvw.dll [222208]
O44 - LFC:[MD5.60CF5B27BBEF38F11729B847541E33A3] - 14/10/2013 - 13:47:38 ---A- . (.Microsoft Corporation - Microsoft Windows Mobile Broadband SMS API.) -- C:\Windows\SysNative\mbsmsapi.dll [225280]
O44 - LFC:[MD5.60CF5B27BBEF38F11729B847541E33A3] - 14/10/2013 - 13:47:38 ---A- . (.Microsoft Corporation - Microsoft Windows Mobile Broadband SMS API.) -- C:\Windows\System32\mbsmsapi.dll [225280]
O44 - LFC:[MD5.7D5FEB67505A6D983F5D8AE0B474581D] - 14/10/2013 - 13:47:39 ---A- . (.Microsoft Corporation - Interface utilisateur d�authentification Wi.) -- C:\Windows\SysNative\authui.dll [2304512]
O44 - LFC:[MD5.7D5FEB67505A6D983F5D8AE0B474581D] - 14/10/2013 - 13:47:39 ---A- . (.Microsoft Corporation - Interface utilisateur d�authentification Wi.) -- C:\Windows\System32\authui.dll [2304512]
O44 - LFC:[MD5.5690B3793FD93716EF4C5CE71D9FF156] - 14/10/2013 - 13:47:39 ---A- . (.Microsoft Corporation - Synchronisation des param�tres.) -- C:\Windows\SysNative\SettingSync.dll [448512]
O44 - LFC:[MD5.5690B3793FD93716EF4C5CE71D9FF156] - 14/10/2013 - 13:47:39 ---A- . (.Microsoft Corporation - Synchronisation des param�tres.) -- C:\Windows\System32\SettingSync.dll [448512]
O44 - LFC:[MD5.BD72916CC1E9FE5F29EC1A2682CBB0EB] - 14/10/2013 - 13:47:40 ---A- . (.Microsoft Corporation - Extension du composant logiciel enfichable.) -- C:\Windows\SysNative\appmgr.dll [459776]
O44 - LFC:[MD5.BD72916CC1E9FE5F29EC1A2682CBB0EB] - 14/10/2013 - 13:47:40 ---A- . (.Microsoft Corporation - Extension du composant logiciel enfichable.) -- C:\Windows\System32\appmgr.dll [459776]
O44 - LFC:[MD5.F85D33830D2655FB2916667579D45725] - 14/10/2013 - 13:47:41 ---A- . (.Microsoft Corporation - DLL de MSCTF Server.) -- C:\Windows\SysNative\msctf.dll [1125888]
O44 - LFC:[MD5.F85D33830D2655FB2916667579D45725] - 14/10/2013 - 13:47:41 ---A- . (.Microsoft Corporation - DLL de MSCTF Server.) -- C:\Windows\System32\msctf.dll [1125888]
O44 - LFC:[MD5.37D85E873C9531A2F88DD9C63D3F8A9E] - 14/10/2013 - 13:47:41 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [2233688]
O44 - LFC:[MD5.09B07DFC6792D49516073FEF024315C9] - 14/10/2013 - 13:47:43 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\SysNative\twinui.dll [10116608]
O44 - LFC:[MD5.09B07DFC6792D49516073FEF024315C9] - 14/10/2013 - 13:47:43 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\System32\twinui.dll [10116608]
O44 - LFC:[MD5.4416D7F0F05098711EA45C9D95610A6E] - 14/10/2013 - 13:47:58 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\SysNative\shell32.dll [19758080]
O44 - LFC:[MD5.4416D7F0F05098711EA45C9D95610A6E] - 14/10/2013 - 13:47:58 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll [19758080]
O44 - LFC:[MD5.8A8DB47DDF6B2118DF4D1561CEA586B3] - 14/10/2013 - 13:48:31 ---A- . (.Microsoft Corporation - Biblioth�que de contr�les de l�exp�rience u.) -- C:\Windows\SysNative\comctl32.dll [652288]
O44 - LFC:[MD5.8A8DB47DDF6B2118DF4D1561CEA586B3] - 14/10/2013 - 13:48:31 ---A- . (.Microsoft Corporation - Biblioth�que de contr�les de l�exp�rience u.) -- C:\Windows\System32\comctl32.dll [652288]
O44 - LFC:[MD5.C53BA50404665A17707D9D4FD78699CB] - 14/10/2013 - 14:01:41 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\SysNative\MRT.exe [80541720]
O44 - LFC:[MD5.C53BA50404665A17707D9D4FD78699CB] - 14/10/2013 - 14:01:41 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [80541720]
O44 - LFC:[MD5.5F1BE751FC8515C34BC307DE976F4BF9] - 14/10/2013 - 17:48:52 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [41664]
O44 - LFC:[MD5.286193DC28CFB4CEB8D378E20A0850A9] - 14/10/2013 - 17:49:08 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65336]
O44 - LFC:[MD5.9FE455C916C656144B004E3EB48507CE] - 14/10/2013 - 17:49:08 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [204880]
O44 - LFC:[MD5.5C40B8D77EBEE1DE0E7A8CDD0CD75773] - 14/10/2013 - 17:49:08 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [80816]
O44 - LFC:[MD5.58B93BA20D4693D0800D2B0A62B8059D] - 14/10/2013 - 17:49:08 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys [1030952]
O44 - LFC:[MD5.0E422E9CB7CD9C0AA6D4DFEAFA086EAA] - 14/10/2013 - 17:49:26 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\System32\Drivers\aswTdi.sys [64288]
O44 - LFC:[MD5.997F6977294B9ACB7F400431DF8E3A4A] - 14/10/2013 - 17:49:26 ---A- . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [72016]
O44 - LFC:[MD5.A83C9C15680BB9E270ACF7172068E287] - 14/10/2013 - 17:49:27 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\System32\Drivers\aswFsBlk.sys [33400]
O44 - LFC:[MD5.EC7148DB4D126C81426A67602822E62C] - 14/10/2013 - 17:49:27 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [378944]
O44 - LFC:[MD5.D518E5BA8B3AFF424874EE69D4755A86] - 15/10/2013 - 07:57:20 ---A- . (...) -- C:\Windows\PFRO.log [568]
O44 - LFC:[MD5.80844574A3E9845545DF6CC791B11C0C] - 15/10/2013 - 07:57:43 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [672432]
O44 - LFC:[MD5.80844574A3E9845545DF6CC791B11C0C] - 15/10/2013 - 07:57:43 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [672432]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/10/2013 - 07:58:01 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.AA88B6A19AA95DD598157E7AA6F7B9C2] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [2076734]
O44 - LFC:[MD5.C7D59F931BAA53593704262736C8CE1C] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [165738]
O44 - LFC:[MD5.A99BB7A010C0D3F0A55692D97427BA48] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [198078]
O44 - LFC:[MD5.14A9E7345383D69AF08BFE2E5B968C4F] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [803480]
O44 - LFC:[MD5.281C398E17652B7A7D18180A1514E92F] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [907774]
O44 - LFC:[MD5.AA88B6A19AA95DD598157E7AA6F7B9C2] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [2076734]
O44 - LFC:[MD5.C7D59F931BAA53593704262736C8CE1C] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\System32\perfc009.dat [165738]
O44 - LFC:[MD5.A99BB7A010C0D3F0A55692D97427BA48] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [198078]
O44 - LFC:[MD5.14A9E7345383D69AF08BFE2E5B968C4F] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\System32\perfh009.dat [803480]
O44 - LFC:[MD5.281C398E17652B7A7D18180A1514E92F] - 15/10/2013 - 08:03:22 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [907774]
O44 - LFC:[MD5.B4C6013CAA051B0EBAAB076DD59E5692] - 16/10/2013 - 08:08:38 ---A- . (...) -- C:\Windows\setupact.log [70232]
O44 - LFC:[MD5.0A78A16D2AF18E7A22B47E483E62DE5C] - 16/10/2013 - 08:10:21 ---A- . (...) -- C:\Windows\wininit.ini [2637]
O44 - LFC:[MD5.6C205C2E5332F7E93CBA0F6F4E58EB48] - 16/10/2013 - 08:10:31 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.0D28A4299E6D686C1A92107BFAEF8F44] - 16/10/2013 - 09:58:48 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1246747]
~ Files: 117 Scanned in 00mn 32s
---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.D5EE1B806B17CFF399467142239D741A] - 16/09/2013 - 08:08:33 ---A- - C:\Windows\Prefetch\AVBUGREPORT.EXE-90230411.pf
O45 - LFCP:[MD5.59CD6ACA4A01673B215098984B9A3CFC] - 16/09/2013 - 08:09:50 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-2C9109F9.pf
O45 - LFCP:[MD5.F2151E8B4F712453618BBFFF61F40408] - 16/09/2013 - 08:09:57 ---A- - C:\Windows\Prefetch\FABS.EXE-55D14A72.pf
O45 - LFCP:[MD5.2470CC61466EAFF69EE64D509D9EE7CB] - 16/09/2013 - 08:09:58 ---A- - C:\Windows\Prefetch\IASTORDATAMGRSVC.EXE-C93872B4.pf
O45 - LFCP:[MD5.E9792F063DDF92EA59B61C6BFC988D4E] - 16/09/2013 - 08:09:59 ---A- - C:\Windows\Prefetch\LMS.EXE-E687E9C2.pf
O45 - LFCP:[MD5.6415C4B7FDFAD29BE5BAD7145F5BAC48] - 16/09/2013 - 08:09:59 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-96070FE0.pf
O45 - LFCP:[MD5.A0092A1F2F1569F6472BA80DBDF55338] - 16/09/2013 - 08:10:00 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-1CF42BC6.pf
O45 - LFCP:[MD5.B47659D7784F0D282A53602526D2A637] - 16/09/2013 - 08:10:03 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf
O45 - LFCP:[MD5.1B52769F818352CC9A4250314282907A] - 16/09/2013 - 08:11:51 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-BB21CD77.pf
O45 - LFCP:[MD5.9D47FB5C99F9851A699794587054F5ED] - 16/09/2013 - 08:18:00 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-0129C0B2.pf
O45 - LFCP:[MD5.6436F4B5471207DD36FDF7F7DD3DC9FC] - 16/09/2013 - 08:18:13 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-2DABBD42.pf
O45 - LFCP:[MD5.FFB11C2AF6A29F6A8370AB7523E1BEAB] - 16/09/2013 - 08:18:14 ---A- - C:\Windows\Prefetch\NGEN.EXE-4A8DA13E.pf
O45 - LFCP:[MD5.4BBEEBFB131AE3A39AE4A55E1AD1EE4D] - 16/09/2013 - 08:18:14 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-849BFD75.pf
O45 - LFCP:[MD5.C0579CCF599907748635A27C86944066] - 16/09/2013 - 08:18:14 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6A4A44E7.pf
O45 - LFCP:[MD5.80BC1DDF7B7F272C6D87CD43C600A603] - 16/09/2013 - 08:18:15 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-8CE1A322.pf
O45 - LFCP:[MD5.C329E93D7A51495B2320AE661B9E7641] - 16/09/2013 - 08:18:15 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-0E6CEC17.pf
O45 - LFCP:[MD5.F9A805DE6008AD322211A5D887E291C1] - 16/09/2013 - 08:18:30 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-8FFB1633.pf
O45 - LFCP:[MD5.DD0EFCA1DFB5F5F7814A092F4F5C65A6] - 16/09/2013 - 08:22:29 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-699F4771.pf
O45 - LFCP:[MD5.86014B4386D2FFB11E5AFB174EC77F09] - 16/09/2013 - 08:29:22 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-4B98D760.pf
O45 - LFCP:[MD5.1AB7F2B6186D6FEF57D03F735826C774] - 16/09/2013 - 08:29:22 ---A- - C:\Windows\Prefetch\VSSVC.EXE-6C8F0C66.pf
O45 - LFCP:[MD5.384BAD1A7C69EFEC998BC2A7151F5132] - 16/09/2013 - 08:29:23 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-FB193036.pf
O45 - LFCP:[MD5.29795A2245F60BCE64FB44257A414BF1] - 16/09/2013 - 08:30:24 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-E8B8DD29.pf
O45 - LFCP:[MD5.B234CABCEE70EAA6D9435713D26EF59A] - 16/09/2013 - 08:38:07 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.7289CFD29933A1C88CAC0107EA0BFA03] - 16/09/2013 - 08:38:57 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-95797F8F.pf
O45 - LFCP:[MD5.7969BB1913C928A3F6689E4FEF48D753] - 16/09/2013 - 08:38:59 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-5CD29207.pf
O45 - LFCP:[MD5.C0368F4D3704517A6D351BF73D68F233] - 16/09/2013 - 08:39:01 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-0E1E7B82.pf
O45 - LFCP:[MD5.F1D4897DE37FDEB1D334B2545F0F3CFF] - 16/09/2013 - 08:39:02 ---A- - C:\Windows\Prefetch\TASKHOSTEX.EXE-4DB1A79B.pf
O45 - LFCP:[MD5.905E21C6EC971B517D6C845954CA0F68] - 16/09/2013 - 08:39:03 ---A- - C:\Windows\Prefetch\MBAMGUI.EXE-DE4DD695.pf
O45 - LFCP:[MD5.2938AD7D2D2A110AD6635D3F3161667F] - 16/09/2013 - 08:39:09 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-D5E97654.pf
O45 - LFCP:[MD5.71AB4C411178E32CA95D0FF82E1706B7] - 16/09/2013 - 08:39:09 ---A- - C:\Windows\Prefetch\USERINIT.EXE-5114915C.pf
O45 - LFCP:[MD5.24A5C3F3DBD1B148C528C67B0275E02F] - 16/09/2013 - 08:39:11 ---A- - C:\Windows\Prefetch\TASKENG.EXE-35FA9C06.pf
O45 - LFCP:[MD5.E6D55978DBF2438341C2F0D5AA6A396C] - 16/09/2013 - 08:39:16 ---A- - C:\Windows\Prefetch\RUNTIMEBROKER.EXE-4551A062.pf
O45 - LFCP:[MD5.EC42A11D9B380B287F40EEBDF90F7BEC] - 16/09/2013 - 08:39:33 ---A- - C:\Windows\Prefetch\THUMBNAILEXTRACTIONHOST.EXE-4EF83964.pf
O45 - LFCP:[MD5.6CA184C2742AC9D1BCA8C22C1D63759B] - 16/09/2013 - 08:39:37 ---A- - C:\Windows\Prefetch\MOBSYNC.EXE-B307E1CC.pf
O45 - LFCP:[MD5.01C774558D01CDF15C0DE7E09F983CCE] - 16/09/2013 - 08:39:41 ---A- - C:\Windows\Prefetch\WMDC.EXE-1FD0C961.pf
O45 - LFCP:[MD5.862C27E772CB387F479B59285CD4084D] - 16/09/2013 - 08:39:46 ---A- - C:\Windows\Prefetch\RAVCPL64.EXE-4BB80510.pf
O45 - LFCP:[MD5.2535F2D6FD4B39747895142E879529F9] - 16/09/2013 - 08:39:47 ---A- - C:\Windows\Prefetch\XTRCTRLEX.EXE-5B77575B.pf
O45 - LFCP:[MD5.D82C42A20ACEA19A2E64110E11838828] - 16/09/2013 - 08:39:49 ---A- - C:\Windows\Prefetch\CHROME.EXE-5349D2D7.pf
O45 - LFCP:[MD5.6F37560CFAE5FC1D65367FD41500CA42] - 16/09/2013 - 08:39:52 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-C5618119.pf
O45 - LFCP:[MD5.8600D1EE428989D5471855540BCBB2E8] - 16/09/2013 - 08:39:54 ---A- - C:\Windows\Prefetch\HKCMD.EXE-61FD4888.pf
O45 - LFCP:[MD5.87F1750C39486FB9D24B9CFF340F6118] - 16/09/2013 - 08:39:54 ---A- - C:\Windows\Prefetch\IGFXTRAY.EXE-F30110F3.pf
O45 - LFCP:[MD5.74CCCE302937903C64CDBF1F457B2E0E] - 16/09/2013 - 08:39:55 ---A- - C:\Windows\Prefetch\CSC.EXE-F8803EEA.pf
O45 - LFCP:[MD5.8C8D9601761E3AECB3B65EE770E7030A] - 16/09/2013 - 08:39:55 ---A- - C:\Windows\Prefetch\CVTRES.EXE-CB8485B0.pf
O45 - LFCP:[MD5.D8FA0FBF7F3181BC46AF69E41192C408] - 16/09/2013 - 08:39:55 ---A- - C:\Windows\Prefetch\IGFXPERS.EXE-540AA77D.pf
O45 - LFCP:[MD5.C9A6B86595E3727EAF105CDC733DE8F9] - 16/09/2013 - 08:39:57 ---A- - C:\Windows\Prefetch\SKYDRIVE.EXE-2250496D.pf
O45 - LFCP:[MD5.55A13CB411F8889573DA6C2B3A3E30F3] - 16/09/2013 - 08:39:58 ---A- - C:\Windows\Prefetch\GOOGLETOOLBARNOTIFIER.EXE-969E73DB.pf =>Toolbar.Google
O45 - LFCP:[MD5.13B218A1898081EAAB1F2BED144662A4] - 16/09/2013 - 08:39:58 ---A- - C:\Windows\Prefetch\SKYPE.EXE-A716A034.pf
O45 - LFCP:[MD5.8EE054C18149AA30BF3900E7A48FE193] - 16/09/2013 - 08:39:59 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-AF704A88.pf
O45 - LFCP:[MD5.BF4428D1D08224F89E98F43DF1963979] - 16/09/2013 - 08:39:59 ---A- - C:\Windows\Prefetch\UPDATER.EXE-A8C477C0.pf
O45 - LFCP:[MD5.9DBB60B864418495141806A6F2A2BA33] - 16/09/2013 - 08:40:03 ---A- - C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-A6285BB5.pf
O45 - LFCP:[MD5.EF8FBA33CB4B4050F19D7A655127242D] - 16/09/2013 - 08:40:05 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-69C456C3.pf
O45 - LFCP:[MD5.1CAED78FF61D35C70F28F43819822D9D] - 16/09/2013 - 08:40:06 ---A- - C:\Windows\Prefetch\STIKYNOT.EXE-DBD503C6.pf
O45 - LFCP:[MD5.54D3262622379C378BA46479618C4F44] - 16/09/2013 - 08:40:11 ---A- - C:\Windows\Prefetch\HPQTRA08.EXE-CEA16CB5.pf
O45 - LFCP:[MD5.500499C87BFE10C92EB453A9EAFD39DD] - 16/09/2013 - 08:40:11 ---A- - C:\Windows\Prefetch\READER_SL.EXE-736A84E3.pf
O45 - LFCP:[MD5.F315165F1F105A8B137111F3A8A0D4E8] - 16/09/2013 - 08:40:16 ---A- - C:\Windows\Prefetch\UPDATER.EXE-6E77EC38.pf
O45 - LFCP:[MD5.8B62D16647EF44F8294B4DAE27CDE05E] - 16/09/2013 - 08:40:18 ---A- - C:\Windows\Prefetch\APSDAEMON.EXE-688589D3.pf
O45 - LFCP:[MD5.9D87C58B9BF925B9E91A849D8876B241] - 16/09/2013 - 08:40:18 ---A- - C:\Windows\Prefetch\CONHOST.EXE-0C6456FB.pf
O45 - LFCP:[MD5.1D840D7F66487FB96EB4754D030F1BFD] - 16/09/2013 - 08:40:18 ---A- - C:\Windows\Prefetch\DWM.EXE-314E93C5.pf
O45 - LFCP:[MD5.09FA6F5D809183A5E960705EFF31CE03] - 16/09/2013 - 08:40:25 ---A- - C:\Windows\Prefetch\CLEAR.FIMOVIESERVICE.EXE-80711C0A.pf
O45 - LFCP:[MD5.57319B998356811127135F8129C27FBD] - 16/09/2013 - 08:40:25 ---A- - C:\Windows\Prefetch\QTTASK.EXE-64CB3CDA.pf
O45 - LFCP:[MD5.7A813D09CC9ABC5D64474FCB64586E42] - 16/09/2013 - 08:40:31 ---A- - C:\Windows\Prefetch\HPQSTE08.EXE-A880057E.pf
O45 - LFCP:[MD5.7073C499E8B620DEAACC298CFA22C99D] - 16/09/2013 - 08:40:31 ---A- - C:\Windows\Prefetch\PMMUPDATE.EXE-7508F507.pf
O45 - LFCP:[MD5.8B32D5F6332E3F3A089308FE5D416259] - 16/09/2013 - 08:40:32 ---A- - C:\Windows\Prefetch\AVASTUI.EXE-19622E35.pf
O45 - LFCP:[MD5.396A4C0FACBCDA8B5FA8601886CFD639] - 16/09/2013 - 08:40:36 ---A- - C:\Windows\Prefetch\SUITETRAY.EXE-42757614.pf
O45 - LFCP:[MD5.741B9F3A6889EDE5C3A2710823EDF290] - 16/09/2013 - 08:40:36 ---A- - C:\Windows\Prefetch\SWEETIM.EXE-2C25226B.pf =>PUP.SweetIM
O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 30/04/2146 - 23:35:01 ----D - C:\Windows\Prefetch\ReadyBoot
~ Prefetcher: 66 Scanned in 00mn 03s
---\\ Export de cl� d'application autoris�e (O47)
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orbitdownloader\orbitdm.exe" [Enabled] .(.Orbitdownloader.com.) -- C:\Program Files (x86)\Orbitdownloader\orbitdm.exe
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orbitdownloader\orbitnet.exe" [Enabled] .(.Orbitdownloader.com.) -- C:\Program Files (x86)\Orbitdownloader\orbitnet.exe
~ Keys Export: 2 Scanned in 00mn 00s
---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de s�curit� TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 17 Scanned in 00mn 00s
---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\AdobeUpdater6 [Key] . (...) -- C:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\DATAMNGR [Key] . (...) -- C:\Program Files (x86)\WIA6EB~1\Datamngr\DATAMN~1.exe (.not file.) =>PUP.Datamngr
O53 - SMSR:HKLM\...\startupreg\EgisUpdate [Key] . (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
O53 - SMSR:HKLM\...\startupreg\GoogleChromeAutoLaunch_A7E31F99DE1AB07DA9783C80B4E432EB [Key] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O53 - SMSR:HKLM\...\startupreg\HP Software Update [Key] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co
O53 - SMSR:HKLM\...\startupreg\hpqSRMon [Key] . (...) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Iminent [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.exe (.not file.) =>Adware.IMBooster
O53 - SMSR:HKLM\...\startupreg\IminentMessenger [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.) =>Adware.IMBooster
O53 - SMSR:HKLM\...\startupreg\LMDVoxPro [Key] . (.L'Aventure Multimedia - Pas de description.) -- C:\Program Files (x86)\Micro Application\Votre PC parle\LMDVoxLight.exe
O53 - SMSR:HKLM\...\startupreg\swg [Key] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
~ SMSR Keys: 10 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 17 Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
~ MWPE Keys: 3 Scanned in 00mn 00s
---\\ Liste des pilotes du syst�me (SDL) (O58)
O58 - SDL:[MD5.4F18D4C7EA14F11A7211F60D553C03DB] - 26/07/2012 - 06:00:49 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [106736]
O58 - SDL:[MD5.6CCD1135320109D6B219F1A6E04AD9F6] - 14/11/2006 - 11:31:00 ---A- . (.Arcsoft, Inc. - Arcsoft(R) ASPI Shell.) -- C:\Windows\SysWOW64\drivers\afc.sys [22784]
~ Drivers: 17 Scanned in 00mn 00s
---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 13/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\ArcSoft\Connection Service\InfoCenterFile.txt [191]
O61 - LFC: 13/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\ArcSoft\Connection Service\index.txt [73]
O61 - LFC: 13/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\ArcSoft\Connection Service\timecfg.txt [53]
O61 - LFC: 13/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.8_0\dependencies.js [96806]
O61 - LFC: 13/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.8_0\events.js [799]
O61 - LFC: 13/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.8_0\icon.png [21554]
O61 - LFC: 13/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.8_0\manifest.json [507]
O61 - LFC: 13/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk\0.8_0\offermosquito.js [16123] =>Toolbar.OfferMosquito
O61 - LFC: 13/10/2013 - 11:04:38 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Toolbar Cache\7.5.4209.2358\fr\translate_element.js.content [2381]
O61 - LFC: 13/10/2013 - 11:04:38 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Toolbar Cache\7.5.4209.2358\fr\translate_languages.json.content [1497]
O61 - LFC: 13/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\INetCookies\Q5BQ7YCD.txt [193]
O61 - LFC: 13/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\1DAF2884EC4DFA96BA4A58D4DBC9C406 [1393]
O61 - LFC: 13/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\AC9005F5466BD463DF06D711B370595F [29026]
O61 - LFC: 13/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\1DAF2884EC4DFA96BA4A58D4DBC9C406 [268]
O61 - LFC: 13/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506 [290]
O61 - LFC: 13/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\Security\services_rdr.dat [10240]
O61 - LFC: 13/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\Security\services_rdri.dat [24152]
O61 - LFC: 13/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\ServicesRdr\com_2E_adobe_2E_acrobat_2E_services_2E_DEXShare_5F_10_2E_1_2E_8_2E_1.spi [1356250]
O61 - LFC: 13/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\ServicesRdr\com_2E_adobe_2E_acrobat_2E_services_2E_cfg_5F_10_2E_1_2E_8_2E_1.cfg [586356]
O61 - LFC: 13/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\aggregation.dbx [4096]
O61 - LFC: 13/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\l\525abd4a [145456]
O61 - LFC: 13/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\l\525abd64 [82128]
O61 - LFC: 13/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\l\525abda1 [81392]
O61 - LFC: 13/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525abd1f [124]
O61 - LFC: 13/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525afd0d [156]
O61 - LFC: 13/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\sigstore.dbx [3743744]
O61 - LFC: 13/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\MyHeritage\Cfg\ChartNew.cfg [3855]
O61 - LFC: 13/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\MyHeritage\Cfg\Main.cfg [6313]
O61 - LFC: 13/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\MyHeritage\Cfg\Report.cfg [658]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Cookies [26624]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\128.png [3524]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ar\messages.json [401]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\bg\messages.json [427]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ca\messages.json [250]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\cs\messages.json [255]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\da\messages.json [242]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\de\messages.json [226]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\el\messages.json [475]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\en\messages.json [227]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\es\messages.json [240]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\fi\messages.json [222]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\fil\messages.json [236]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\fr\messages.json [249]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\he\messages.json [419]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\hi\messages.json [408]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\hr\messages.json [220]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\hu\messages.json [253]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\id\messages.json [231]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\it\messages.json [224]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ja\messages.json [349]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ko\messages.json [323]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\lt\messages.json [266]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\lv\messages.json [245]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\nl\messages.json [225]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\no\messages.json [216]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\pl\messages.json [274]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\pt_BR\messages.json [237]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\pt_PT\messages.json [236]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ro\messages.json [248]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ru\messages.json [394]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\sk\messages.json [241]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\sl\messages.json [245]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\sr\messages.json [437]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\sv\messages.json [238]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\th\messages.json [365]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\tr\messages.json [255]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\uk\messages.json [442]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\vi\messages.json [310]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\zh_CN\messages.json [257]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\zh_TW\messages.json [269]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\manifest.json [785]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\128.png [5367]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\16.png [499]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\32.png [1154]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\48.png [1872]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ar\messages.json [423]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\bg\messages.json [515]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ca\messages.json [330]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\cs\messages.json [355]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\da\messages.json [328]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\de\messages.json [307]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\el\messages.json [569]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\en\messages.json [314]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\en_GB\messages.json [314]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\en_US\messages.json [314]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\es\messages.json [340]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\es_419\messages.json [341]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\et\messages.json [314]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\fi\messages.json [305]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\fil\messages.json [337]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\fr\messages.json [329]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\he\messages.json [471]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\hi\messages.json [326]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\hr\messages.json [340]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\hu\messages.json [336]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\id\messages.json [319]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\it\messages.json [324]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ja\messages.json [388]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ko\messages.json [380]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\lt\messages.json [359]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\lv\messages.json [360]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\nl\messages.json [323]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\no\messages.json [300]
O61 - LFC: 14/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\manifest.json [817]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\pl\messages.json [336]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\pt_BR\messages.json [332]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\pt_PT\messages.json [331]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ro\messages.json [332]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ru\messages.json [471]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\sk\messages.json [338]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\sl\messages.json [329]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\sr\messages.json [483]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\sv\messages.json [333]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\th\messages.json [472]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\tr\messages.json [330]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\uk\messages.json [501]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\vi\messages.json [363]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\zh_CN\messages.json [346]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\zh_TW\messages.json [346]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\de\messages.json [1326]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\en\messages.json [1291]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\es\messages.json [1331]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\fr\messages.json [1403]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\it\messages.json [1303]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\ja\messages.json [1633]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\nl\messages.json [1302]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\pl\messages.json [1320]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\pt\messages.json [1341]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\ru\messages.json [1754]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\tr\messages.json [1368]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\zh_CN\messages.json [1405]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\_locales\zh_TW\messages.json [1370]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\background.html [409]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\background.js [9460]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\dvs_freeyoutubedownload.css [4313]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\dvs_freeyoutubedownload.js [10845]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\dvs_logo.ico [452]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\dvs_logo_128.png [11082]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\dvs_logo_32.png [1083]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\dvs_logo_48.png [2410]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\errorRunProgramm.html [461]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\YoutubeDownloader.png [2641] =>PUP.SoftwareEngine
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\YoutubeToMp3.png [2796]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\backbar.png [219]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\download.png [1003]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\fs.png [3046]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\headphone.png [1083]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\logo.png [1755]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\images\manager.png [341142]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\manifest.json [1407]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\options.html [1630]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\options.js [1334]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\page_action.html [341]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa\1.6_0\background.js [1007]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa\1.6_0\manifest.json [992]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa\1.6_0\smartdisplay.js [936]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa\1.6_0\smartdisplay.png [3232]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa\1.6_0\utils.html [823]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Favicons [30720]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\History [90112]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\QuotaManager [13312]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Shortcuts [12288]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\fr-FR-2-0.bdic [924593]
O61 - LFC: 14/10/2013 - 11:04:36 ---A- . (.DVDVideoSoft Ltd..) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.2_0\np_dvs_plugin.dll [109704]
O61 - LFC: 14/10/2013 - 11:04:39 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\BrowserChoice_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingMaps_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\LocalState\InstrumentationData.xml [2161]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\LocalState\_sessionState.json [33]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\LocalState\navigationHistory\PlatformJS.Navigation.standard.state1381774373417 [4024]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingTravel_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.Bing_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.Camera_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.Media.PlayReadyClient_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.Reader_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.VCLibs.110.00_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.WinJS.1.0_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.microsoftskydrive_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC: 14/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\4309200C3DBAD0F6F0DFACE9165FD092 [727]
O61 - LFC: 14/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\7D1F03728133589A90656A87E482B21F [45123]
O61 - LFC: 14/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\4309200C3DBAD0F6F0DFACE9165FD092 [262]
O61 - LFC: 14/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\7D1F03728133589A90656A87E482B21F [256]
O61 - LFC: 14/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\AC9005F5466BD463DF06D711B370595F [316]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\05e252d2-c28e-4fa2-93a7-9e62fa371327[1].png [11906]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\2cf4a179-292f-4e3a-8bc8-efb66259b267[1].png [224128]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\3efea92b-2c60-4704-9292-154699ea030c[1].png [23221]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\5251273c-4d42-4ff1-84b2-fdbe481fc855[1].png [27901]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\5cba6702-bace-41f9-8feb-e27676ff729e[1].png [13662]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\64fd1083-1206-4be0-8926-a99fbd897e13[1].png [22539]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\66b8017b-0b14-4a80-85c5-b7eedf0dcd87[1].png [31513]
O61 - LFC: 14/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\Icon.120052[1].png [7432]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\Icon.19243[1].png [3164]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\Icon.26180[1].png [7120]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\Icon.55347[1].png [3464]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\Icon.56095[1].png [3511]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\WinStore[1].css [76821]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\base[1].js [109096]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\cc5a0f63-587d-4d76-9091-9fb5722dcb66[1].png [24794]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\d0ba5be2-5513-4cbc-a973-7ec6c5e64c33[1].png [32418]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\d3f56b33-91f5-4278-9cc0-83fb93b03480[1].png [117667]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\dc0533b6-72c2-47a7-9c49-286a747ba000[1].png [30366]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\f59ed0a6-042f-49d3-9a65-90aefbb0c7d8[1].png [33472]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\f5d8ada0-0f1b-4ce7-b2bf-e8108f14a198[1].png [41395]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\f8973086-ba83-4816-b721-d4d1034c7c4d[1].png [17616]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\ui-light[1].css [94629]
O61 - LFC: 14/10/2013 - 11:04:44 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\3URENMKB\wol.contentinstrumentation.logging[1].js [29883]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\2f2505e4-30b8-4ae5-a410-c39ce4b577e9[1].png [38704]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\51c8b3dd-61f3-4575-b1a4-9136b0bc5c6d[1].png [59926]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\57ee42ef-be2c-4ae2-a396-24d5f033538c[1].png [292316]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\913f142e-8814-4d3e-8afd-b5795e1a3b3d[1].png [22641]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\97a1136e-087a-47b1-a4b7-9425cc815ac7[1].png [64132]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\ClientBISettings[1].js [525]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.101067[1].png [2204]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.161053[1].png [2114]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.164704[1].png [5935]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.17101[1].png [2923]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.26167[1].png [7120]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.31126[1].png [2382]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.31617[1].png [3544]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.63285[1].png [7551]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.64546[1].png [7551]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.82170[1].png [1662]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\d03d2db7-f07d-4da2-b33f-30a9bea9974b[1].png [31240]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\f2ad7329-f81f-4a36-ac8a-38faf9bdd13c[1].png [254324]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\f5150e40-6d8b-44e9-b60d-92ab418305ae[1].png [14572]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\f6b8161b-28f8-40ea-a580-3584031b806d[1].png [39196]
O61 - LFC: 14/10/2013 - 11:04:45 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\frame[1].htm [2940]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5KU9TCMQ\Icon.96193[1].png [1819]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\03266722-51d4-468c-b0f8-2d7b3cc334c4[1].png [100584]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\2931c1f9-24a2-4a0c-8fef-872cad0eaa35[1].png [89461]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\3d937097-e629-489a-bda7-ba6f6b9167f4[1].png [13065]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\5e26cb6d-1905-4abd-91f2-7aa6018b0e62[1].png [283350]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\8e5f26e7-0c78-4ded-b6ba-c4aa7688cc7d[1].png [78718]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\8fbae820-df23-4b26-a427-629b4fd0e520[1].png [491673]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\91c6a1f5-1689-46be-a8d3-a9c86a453149[1].png [120019]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\Icon.12659[1].png [3920]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\Icon.151243[1].png [5935]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\Icon.160819[1].png [5935]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\b452c089-90a2-4dea-a015-cd2f9b05744f[1].png [22686]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\b5af8cdb-f496-4ad2-9591-2489756af3d5[1].png [644561]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\eb941e31-89d9-40c0-8fdc-bd242c88b5ca[1].png [6995]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\f0b45dcd-0408-401c-8f21-a1f58fd5c906[1].png [28718]
O61 - LFC: 14/10/2013 - 11:04:46 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\f3c122ba-33c8-4d79-8be7-e48250ad4fbe[1].png [44408]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\Icon.26177[1].png [7120]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\Icon.32565[1].png [3464]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\Icon.63715[1].png [7551]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\WinStore[1].js [342808]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\jquery-1.5.min[1].js [84378]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\N98IOX84\ui[1].js [471937]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\00740925-a783-4c7e-867d-1492a7ee722d[1].png [10605]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\1f29bdb6-c133-4f85-a96e-48049875314d[1].png [151971]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\34abc9ba-1672-46c8-b225-f3620a8ccb1c[1].png [202645]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\42df5781-57dd-43ab-bde9-f2044f49d45c[1].png [14510]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\441a930f-b3bc-4c0c-9c3a-7f6374339c6c[1].png [66817]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\5cc54218-4588-4b32-bb7b-c86881e30817[1].png [254767]
O61 - LFC: 14/10/2013 - 11:04:47 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\70183b86-12e6-45e5-91e1-ee429deb3798[1].png [77897]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\7bac312e-d897-4ec4-8eee-6c21cd81064b[1].png [39914]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\7c24c176-3708-47af-b74c-b25b1aa1295f[1].png [6868]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\9457fc3e-8a51-41bf-a91d-546885b91b88[1].png [8066]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\9b49e9f5-e19c-4c4e-b140-1566426516a5[1].png [35958]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\Icon.101061[1].png [2204]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\Icon.40975[1].png [3657]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\Icon.41717[1].png [4721]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\Icon.78053[1].png [6832]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\Icon.82289[1].png [3168]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\Icon.84594[1].png [6627]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\ae11161b-5816-4e57-bb1e-a32c3399c81b[1].png [13397]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\d90cb32e-bb3d-424f-9740-11a57019c0d9[1].png [205026]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\d9199798-f5e8-411f-b382-c5310f726931[1].png [9851]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\features399c9f06-14e9-4823-9eba-3ae514af61d4[1].json [13033]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\S1QXTFTZ\features[2].json [2251]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCookies\41X39ADQ.txt [370]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-Channel-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?Channel.dat [24]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-DiscoveryService-https???go.microsoft.com?fwlink??LinkID=195324&clcid=0x409.dat [10483]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-Featured-https???next-services.apps.microsoft.com?browse?6.2.9200-1?670?c?FR?Featured?10852150.dat [7834]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\1\1-GetOSEditionInfo.dat [648]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\2\2-GetUpdateList.dat [360]
O61 - LFC: 14/10/2013 - 11:04:48 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\3\3-DigitalMarker.dat [5218]
O61 - LFC: 14/10/2013 - 11:04:48 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\Content\AC9005F5466BD463DF06D711B370595F [29026]
O61 - LFC: 14/10/2013 - 11:04:48 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157 [302]
O61 - LFC: 14/10/2013 - 11:04:48 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506 [290]
O61 - LFC: 14/10/2013 - 11:04:48 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\AC9005F5466BD463DF06D711B370595F [316]
O61 - LFC: 14/10/2013 - 11:04:49 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\5\5-https???wscont.apps.microsoft.com?winstore?6.2?670?WW?fr-fr?0?17?Home.htm.dat [1538]
O61 - LFC: 14/10/2013 - 11:04:49 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\5\5-https???wscont.apps.microsoft.com?winstore?6.2?670?WW?fr-fr?0?17?Results.htm.dat [837]
O61 - LFC: 14/10/2013 - 11:04:49 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\5\5-https???wscont.apps.microsoft.com?winstore?6.2?670?WW?fr-fr?0?17?Settings.htm.dat [5322]
O61 - LFC: 14/10/2013 - 11:04:49 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\cachemetadata.dat [6029360]
O61 - LFC: 14/10/2013 - 11:04:49 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\WinStore_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\10140856-000012c4-232kochfg2\Logs.CAB [9117]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\10142056-000015a0-gejhkv73a3\Logs.CAB [9226]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\MSIf8775.LOG [612144]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\Pin.xml [99]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\Trans.xml [95]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\dd_vcredistMSI6334.txt [390104]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\dd_vcredistUI6334.txt [11482]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\Cookies [6144]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\Cookies-journal [1544]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\data_0 [45056]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\data_1 [270336]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\data_2 [1056768]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\data_3 [8192]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4280_7422\index [524656]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\Cookies [6144]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\Cookies-journal [1544]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\data_0 [45056]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\data_1 [270336]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\data_2 [1056768]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\data_3 [8192]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5084_22724\index [524656]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\Cookies [6144]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\Cookies-journal [1544]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\data_0 [45056]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\data_1 [270336]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\data_2 [1056768]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\data_3 [8192]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5348_9633\index [524656]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\tmp-fs6.xpi [60290]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\42E3E97F8301\Writer_Config.cab [26214]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\682BB42AA896\index.htm [2376]
O61 - LFC: 14/10/2013 - 11:04:53 ---A- . (.Ask.) -- C:\Users\Meunier\AppData\Local\Temp\setup.exe [4001416]
O61 - LFC: 14/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles85F611\SpellingContext\context.tlx [2]
O61 - LFC: 14/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Windows Live Writer\ResourceCache\live\Writer_Config.cab [26214]
O61 - LFC: 14/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Windows Live\uxcore_WLXPhotoGallery_00.etl [8192]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525b953a [124]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525b97cd [124]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525baeec [164]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525bb363 [156]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525bb659 [164]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525bbd6c [164]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525bfdb2 [144]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525c16ee [164]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525c1d24 [124]
O61 - LFC: 14/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525c21f1 [152]
O61 - LFC: 14/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-10-14 (20-18-49).txt [4154]
O61 - LFC: 14/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Excel12.pip [1556]
O61 - LFC: 14/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\6 AIDE Logiciels.LNK [1081]
O61 - LFC: 14/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Word12.pip [1684]
O61 - LFC: 14/10/2013 - 11:05:12 ---A- . (...) -- C:\Users\Meunier\Downloads\avast_free_antivirus_setup(1).exe [131918888]
O61 - LFC: 14/10/2013 - 11:05:12 ---A- . (...) -- C:\Users\Meunier\Downloads\avast_free_antivirus_setup(2).exe [117478104]
O61 - LFC: 14/10/2013 - 11:05:12 ---A- . (...) -- C:\Users\Meunier\Downloads\avast_free_antivirus_setup(3).exe [117478104]
O61 - LFC: 14/10/2013 - 11:05:12 ---A- . (...) -- C:\Users\Meunier\Downloads\avast_free_antivirus_setup.exe [131918888]
O61 - LFC: 14/10/2013 - 11:05:17 ---A- . (...) -- C:\Users\Meunier\Links\Desktop.lnk [487]
O61 - LFC: 14/10/2013 - 11:05:17 ---A- . (...) -- C:\Users\Meunier\Links\Downloads.lnk [946]
O61 - LFC: 14/10/2013 - 11:05:17 ---A- . (...) -- C:\Users\Meunier\Links\RecentPlaces.lnk [383]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101513.000\3891E230-EF04-4E49-BF2C-A1DD2FB6437B.Diagnose.0.etl [327680]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101513.000\NetworkConfiguration.cab [1565]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101513.000\NetworkDiagnostics.debugreport.xml [153944]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101513.000\ResultReport.xml [41720]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101513.000\results.xml [237]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101513.000\results.xsl [49097]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Archived History [57344]
O61 - LFC: 15/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Archived History-journal [512]
O61 - LFC: 15/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache [614]
O61 - LFC: 15/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\History-journal [8720]
O61 - LFC: 15/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Visited Links [131072]
O61 - LFC: 15/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Web Data [75776]
O61 - LFC: 15/10/2013 - 11:04:38 --HA- . (...) -- C:\Users\Meunier\AppData\Local\IconCache.db [164614]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\AppEx.Sport10fd5d4e#\74d55c344b2f58433a9b21a6bbd47913\AppEx.Sports.Services.ni.dll.aux [6492]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\AppEx.Sport3e03b917#\4fd8e6cb470aa2cea156863058a147e9\AppEx.Sports.AzureServices.ni.dll.aux [2924]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Microsoft.A46d31238#\f4b62859a632385758850824b688ad15\Microsoft.AppEx.Sports.Schemas.ni.dll [2000384]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Microsoft.A46d31238#\f4b62859a632385758850824b688ad15\Microsoft.AppEx.Sports.Schemas.ni.dll.aux [2592]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Microsoft.S282a141d#\d756b693886ac4e81e56f8360e7f5e9d\Microsoft.SpeechService.Client.ni.dll.aux [4528]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Platform\f8fd27e3e4e647f2d66d35467e85ac09\Platform.ni.dll.aux [6900]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (.Microsoft.) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\AppEx.Sport10fd5d4e#\74d55c344b2f58433a9b21a6bbd47913\AppEx.Sports.Services.ni.dll [8220160]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (.Microsoft.) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\AppEx.Sport3e03b917#\4fd8e6cb470aa2cea156863058a147e9\AppEx.Sports.AzureServices.ni.dll [505856]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (.Microsoft.) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Microsoft.S282a141d#\d756b693886ac4e81e56f8360e7f5e9d\Microsoft.SpeechService.Client.ni.dll [953856]
O61 - LFC: 15/10/2013 - 11:04:40 ---A- . (.Microsoft.) -- C:\Users\Meunier\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Platform\f8fd27e3e4e647f2d66d35467e85ac09\Platform.ni.dll [3164672]
O61 - LFC: 15/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveCommLast.etl [917504]
O61 - LFC: 15/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\944E5B697BC46FE14AB888AE8A1EBB99_2269679B991E7B74D029ADC1DCE94782 [1480]
O61 - LFC: 15/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157 [302]
O61 - LFC: 15/10/2013 - 11:04:41 -S-A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\944E5B697BC46FE14AB888AE8A1EBB99_2269679B991E7B74D029ADC1DCE94782 [482]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\18823484.od [134]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\3891E230-EF04-4E49-BF2C-A1DD2FB6437B.Diagnose.0.etl [327680]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\708000.od [134]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\CVR393C.tmp.cvr [0]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\CVRCDA0.tmp.cvr [0]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\au-descriptor-1.7.0_40-b43.xml [8891]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\msohtmlclip1\01\clip_colorschememapping.xml [314]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\msohtmlclip1\01\clip_themedata.thmx [3086]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\ojYGQ7eB.exe.part [73888]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\Cookies [6144]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\Cookies-journal [1544]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\data_0 [45056]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\data_1 [270336]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\data_2 [1056768]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\data_3 [8192]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir3516_28633\index [524656]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\Cookies [6144]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\Cookies-journal [1544]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\data_0 [45056]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\data_1 [270336]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\data_2 [1056768]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\data_3 [8192]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir4704_934\index [524656]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\Cookies [6144]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\Cookies-journal [1544]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\data_0 [45056]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\data_1 [270336]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\data_2 [1056768]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\data_3 [8192]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5972_2837\index [524656]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\233DAB88C022\index.htm [2376]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\3BC7ED2B4670\index.htm [2384]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\5008AC221B2F\index.htm [2376]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\6CB81DE32A43\index.htm [2443]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\B385024F885B\index.htm [2376]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\B767C7058097\index.htm [4013]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\F76EA6706D9E\index.htm [2384]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\FB451E6633E1\index.htm [4013]
O61 - LFC: 15/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles115EC60\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles11AC5A6\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles1856424\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles4A8DD0\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles4A9300\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles72D76\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfiles7FF6D9\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfilesD51C36\SpellingContext\context.tlx [2]
O61 - LFC: 15/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\Security\CRLCache\0FDED5CEB68C302B1CDB2BDDD9D0000E76539CB0.crl [637]
O61 - LFC: 15/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\Security\CRLCache\CE338828149963DCEA4CD26BB86F0363B4CA0BA5.crl [425]
O61 - LFC: 15/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\TMDocs.sav [36]
O61 - LFC: 15/10/2013 - 11:04:55 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Adobe\Acrobat\10.0\TMGrpPrm.sav [54]
O61 - LFC: 15/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525ce83a [124]
O61 - LFC: 15/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525cf06e [124]
O61 - LFC: 15/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525d3bc1 [164]
O61 - LFC: 15/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525d3ce1 [124]
O61 - LFC: 15/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525d5d99 [164]
O61 - LFC: 15/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525d9f54 [164]
O61 - LFC: 15/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525d9ffa [156]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\PowerP12.pip [1468]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\4 INTERNET.LNK [1063]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\Connexion internet impossible oct 2013.LNK [1267]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\MUTIEG.LNK [1115]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\Normal.LNK [1267]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\Templates.LNK [1135]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\lt MUTIEG 18 octobre 2012.LNK [1280]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\lt MUTIEG 18 octobre 2013.LNK [1280]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Spelling\fr-FR\default.acl [2]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Spelling\fr-FR\default.dic [2]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Spelling\fr-FR\default.exc [2]
O61 - LFC: 15/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Templates\Normal.dotm [22464]
O61 - LFC: 15/10/2013 - 11:04:58 --H-- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Office\Recent\index.dat [218]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\73C1407F-67E9-4B34-B66A-574FD3A1F060.Diagnose.3.etl [196608]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\FBDE97AB-20C0-4576-9DE4-D8911EFA5656.Diagnose.0.etl [262144]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\FBDE97AB-20C0-4576-9DE4-D8911EFA5656.Repair.1.etl [196608]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\FBDE97AB-20C0-4576-9DE4-D8911EFA5656.Verify.2.etl [131072]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\NetworkConfiguration.cab [954]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\NetworkDiagnostics.debugreport.xml [149715]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\ResultReport.xml [42827]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\results.xml [263]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\2013101607.000\results.xsl [49097]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Diagnostics\460911090\latest.cab [35112]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [263033]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT [16]
O61 - LFC: 16/10/2013 - 11:04:35 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-000449 [521]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gbmdkmlcnbapgegninelmjbfibaghdmk_0.localstorage [451584]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gbmdkmlcnbapgegninelmjbfibaghdmk_0.localstorage-journal [16384]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Managed Mode Settings [8]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Preferences [77441]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Local State [38462]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom [10582860]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Filter 2 [2413468]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies [6144]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal [2576]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist [135236]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Download [807808]
O61 - LFC: 16/10/2013 - 11:04:36 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist [19592]
O61 - LFC: 16/10/2013 - 11:04:39 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Notation\config.dat [834]
O61 - LFC: 16/10/2013 - 11:04:41 ----- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm.etl [262144]
O61 - LFC: 16/10/2013 - 11:04:41 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\3a8057358d1fee7b\120712-0049\DBStore\edb.chk [8192]
O61 - LFC: 16/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\windows_ie_ac_001\AC\INetCache\AntiPhishing\7A7E08C8-3FF5-45F2-873D-A84D669DC82F.dat [151000]
O61 - LFC: 16/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\windows_ie_ac_001\AC\INetCache\AntiPhishing\D7DB4501-61B9-4432-99BB-1413522F74DC.dat [151000]
O61 - LFC: 16/10/2013 - 11:04:43 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Packages\windows_ie_ac_001\AC\INetCache\MSIMGSIZ.DAT [49120]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\73C1407F-67E9-4B34-B66A-574FD3A1F060.Diagnose.3.etl [196608]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\CRX_75DAF8CB7768\crl-set [1399]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\CRX_75DAF8CB7768\manifest.json [34]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\FBDE97AB-20C0-4576-9DE4-D8911EFA5656.Diagnose.0.etl [262144]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\FBDE97AB-20C0-4576-9DE4-D8911EFA5656.Repair.1.etl [196608]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\FBDE97AB-20C0-4576-9DE4-D8911EFA5656.Verify.2.etl [131072]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\RedboxLog.txt [12210]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5148_17617\Cookies [6144]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\scoped_dir5148_17617\Cookies-journal [1544]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\3DE7D411DE5F\index.htm [6253]
O61 - LFC: 16/10/2013 - 11:04:53 ---A- . (.Nicolas Coolman.) -- C:\Users\Meunier\AppData\Local\Temp\70VgvSzZ.exe.part [6835755]
O61 - LFC: 16/10/2013 - 11:04:54 ----- . (...) -- C:\Users\Meunier\AppData\Local\Windows Live\uxcore_wlmail_00.etl [4096]
O61 - LFC: 16/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Temp\wlmail-352555430\supfilesB0C4E\SpellingContext\context.tlx [2]
O61 - LFC: 16/10/2013 - 11:04:54 ---A- . (...) -- C:\Users\Meunier\AppData\Local\Windows Live\uxcore_WLXPGSS_00.etl [8192]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\ArcSoft\Global Deploy\ArcUpdateService.inf [524]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\PENDING_jl5omk [6144]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\config.dbx [5120]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\deleted.dbx [22528]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\filecache.dbx [479232]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\host.db [73]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\host.dbx [205]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\notifications.dbx [2048]
O61 - LFC: 16/10/2013 - 11:04:56 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\photo.dbx [19456]
O61 - LFC: 16/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\TO_HASH_nx15qp [0]
O61 - LFC: 16/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\UPDATED_xjlq5j [6144]
O61 - LFC: 16/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\shellext\l\525e3ba6 [124]
O61 - LFC: 16/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Dropbox\unlink.db [216]
O61 - LFC: 16/10/2013 - 11:04:57 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Google\Local Search History\google%2Eweb.w [2302]
O61 - LFC: 16/10/2013 - 11:04:58 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Microsoft\Sticky Notes\StickyNotes.snt [5120]
O61 - LFC: 16/10/2013 - 11:05:05 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\DbTemp\temp-dp9XdbS639cGOqthEhFUyX05 [8720]
O61 - LFC: 16/10/2013 - 11:05:05 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\DbTemp\temp-eSK4NcibE0bqCNkQSrHt0kmm [20480]
O61 - LFC: 16/10/2013 - 11:05:05 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\bistats.db [131072]
O61 - LFC: 16/10/2013 - 11:05:05 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\bistats.db-journal [45656]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\config.xml [14850]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\dc.db [118784]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\eas.db [65536]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\eas.db-journal [41552]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\main.db [1794048]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\meumeu45\main.db-journal [185192]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\shared.xml [87898]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\shared_dynco\dc.db [1961984]
O61 - LFC: 16/10/2013 - 11:05:08 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Skype\shared_dynco\dc.db-journal [1166048]
O61 - LFC: 16/10/2013 - 11:05:09 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\ProxyFile.dat [4]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\AnimEff.dat [920]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\DiGen.dat [401]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Curve.dat [281600]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Drop.dat [177152]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Fade.dat [249344]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Fly.dat [260608]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Moving Path.dat [1133056]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Popup.dat [322048]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Turn.dat [231936]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\Title\AnimEff\Zoom.dat [295936]
O61 - LFC: 16/10/2013 - 11:05:11 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\Ulead Systems\Ulead VideoStudio SE\10.0\pfm.dat [6656]
O61 - LFC: 16/10/2013 - 11:05:12 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\ZHP\Log.txt [20947] =>.Nicolas Coolman
O61 - LFC: 16/10/2013 - 11:05:12 ---A- . (...) -- C:\Users\Meunier\AppData\Roaming\ZHP\TestsZHPDiag.txt [2860] =>.Nicolas Coolman
~ 91 Fichiers temporaires (Temporary files)
~ Files: 535 Scanned in 00mn 55s
---\\ Liste des outils de d�sinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s
---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
~ FASS Keys: 19 Scanned in 00mn 00s
---\\ Menu de d�marrage Internet (SMI) (O68)
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {006ee092-9658-4fd6-bd8e-a21a348e59f5} - (Web Search) - http://feed.helperbar.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Search the web (Babylon)) - http://isearch.babylon.com =>Adware.IMBooster
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {95B7759C-8C7F-4BF1-B163-73684A933233} [DefaultScope] - (Search) - http://search.fbdownloader.com
~ Keys: Scanned in 00mn 00s
---\\ Enum�re les service demarr�s par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [190976]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [309248]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [1366016]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1156096]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99840]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d�acc�s � distance.) -- C:\Windows\System32\rasmans.dll [358400]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [107520]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [62976]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [438784]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [305664]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3275776]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [826368]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [565760]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [894464]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151552]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [105472]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1285632]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [219648]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [80896]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [134144]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [291328]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [97792]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [190976]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft�.) -- C:\Windows\System32\wlidsvc.dll [1964544]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [47104]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d�installation de p�riph�rique.) -- C:\Windows\System32\DeviceSetupManager.dll [207872]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivit� r�seau Microsoft.) -- C:\Windows\System32\ncasvc.dll [161792]
O83 - Search Svchost Services: SystemEventsBroker (SystemEventsBroker) . (.Microsoft Corporation - Service Broker pour les �v�nements syst�me.) -- C:\Windows\System32\SystemEventsBrokerServer.dll [180224]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [187392]
~ Services: 35 Scanned in 00mn 00s
---\\ Recherche particuli�re � la racine du syst�me (SPRF) (O84)
[MD5.0D3B680986310AE5540578C0E481C6A0] [SPRF][02/03/2010] (...) -- C:\ProgramData\FullRemove.exe [131984]
[MD5.65E3DA498B523915F8F87D1FE74A1F8B] [SPRF][21/01/2013] (...) -- C:\Users\Meunier\AppData\Local\ext_piccshare_uninst.exe [44136]
[MD5.88AD25D0E014FFAB9E9CAD34ECB6D247] [SPRF][14/10/2013] (.Ask - Wrapper Application.) -- C:\Users\Meunier\AppData\Local\Temp\setup.exe [4001416]
[MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll [24576]
[MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe [196608]
[MD5.0C78701C6F42345DFF2B2B6C3C3D01EF] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll [172032]
~ Files: 6 Scanned in 00mn 00s
---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "vm-monitoring-rpc" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "vm-monitoring-dcom" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-In-UDP" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-TCP" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de d�marrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC-EPMapper" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de d�marrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Netlogon-TCP-RPC-In" | In - None - P6 - FALSE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "ProximityUxHost-Sharing-In-TCP-NoScope" | In - None - P6 - TRUE | .(.Microsoft Corporation - H�te UX de proximit�.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "ProximityUxHost-Sharing-Out-TCP-NoScope" | Out - None - P6 - TRUE | .(.Microsoft Corporation - H�te UX de proximit�.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-DAS-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-DAS-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-In-UDP-NoScope" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-LocalSubnetScope" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-NoScope" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-LocalSubnetScope" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-NoScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-LocalSubnetScope" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-SSDP-Discovery-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-In-TCP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-Out-TCP-PlayToScope" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TPMVSCMGR-Server-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TPMVSCMGR-Server-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteDesktop-UserMode-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "SPPSVC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - KMS Connection Broker.) -- C:\Windows\system32\sppextcomobj.exe
O87 - FAEL: "SPPSVC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - KMS Connection Broker.) -- C:\Windows\system32\sppextcomobj.exe
O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-In" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-Out" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-TERMSRV-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSMQ-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Message Queuing Service.) -- C:\Windows\system32\mqsvc.exe
O87 - FAEL: "MSMQ-Out-TCP" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Message Queuing Service.) -- C:\Windows\system32\mqsvc.exe
O87 - FAEL: "MSMQ-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Message Queuing Service.) -- C:\Windows\system32\mqsvc.exe
O87 - FAEL: "MSMQ-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Message Queuing Service.) -- C:\Windows\system32\mqsvc.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-Out-TCP_1" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-DAS-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP_1" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{31D1834E-DD1A-4813-AE0E-685DF9AADCCA}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
O87 - FAEL: "UDP Query User{9DA114FC-D877-4203-AFEF-1512766AB287}C:\program files (x86)\orbitdownloader\orbitdm.exe" | In - Private - P17 - TRUE | .(.Orbitdownloader.com - Orbit Downloader.) -- C:\program files (x86)\orbitdownloader\orbitdm.exe
O87 - FAEL: "TCP Query User{05CD5569-8FD0-486A-9C96-139942E39E86}C:\program files (x86)\orbitdownloader\orbitdm.exe" | In - Private - P6 - TRUE | .(.Orbitdownloader.com - Orbit Downloader.) -- C:\program files (x86)\orbitdownloader\orbitdm.exe
O87 - FAEL: "{AECB243E-3B87-4043-BBA2-6410123BAFC5}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\Meunier\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation
O87 - FAEL: "UDP Query User{AAA519D9-E57D-4585-8659-A69CC9019937}C:\program files (x86)\orbitdownloader\orbitnet.exe" | In - Private - P17 - TRUE | .(.Orbitdownloader.com.) -- C:\program files (x86)\orbitdownloader\orbitnet.exe
O87 - FAEL: "TCP Query User{4141D672-71DA-4462-9028-57D26E2852B4}C:\program files (x86)\orbitdownloader\orbitnet.exe" | In - Private - P6 - TRUE | .(.Orbitdownloader.com.) -- C:\program files (x86)\orbitdownloader\orbitnet.exe
O87 - FAEL: "{BC56B8F5-70E5-4365-AC27-CC97EFA52E64}" | In - None - P6 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O87 - FAEL: "{896A28E0-FEC5-459E-A3C2-0A3B99B0370A}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Apowersoft\YouTube Downloader Suite\ApowersoftDump.dll =>PUP.Dealio
O87 - FAEL: "{4C27C0CE-2F55-424C-9C5E-A5989135DBBB}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Apowersoft\YouTube Downloader Suite\ApowersoftSrv.dll =>PUP.Dealio
O87 - FAEL: "{36D2DC19-F17F-4386-8670-A75931AE6859}" | In - None - P6 - TRUE | .(.dotnetVM - ??dotnet???.) -- C:\Program Files (x86)\Apowersoft\YouTube Downloader Suite\YouTubeDownloaderSuite.exe =>PUP.Dealio
O87 - FAEL: "{D3E28ECE-A34A-431E-8BD9-03B8469207DF}" | In - None - P6 - TRUE | .(.Apowersoft - YouTube Downloader Suite.) -- C:\Program Files (x86)\Apowersoft\YouTube Downloader Suite\YouTube-Downloader-Suite.exe =>PUP.Dealio
O87 - FAEL: "{3E408BAD-360A-440D-AD5A-394B7434CD0C}" | In - None - P6 - FALSE | .(.Microsoft Corporation - SMSvcHost.exe.) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
O87 - FAEL: "{A6B4321A-131D-467E-AC0E-541D181B5620}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{F8D616D3-8811-48C9-ADD4-866CE41D3FEC}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{ADFBBDC8-D6BD-4E4F-9866-039860FC56E8}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{3250845B-F97F-4962-AE5A-A80F4C20C18A}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{25BB3131-2722-49BE-8C9C-46831ECF9B6D}" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{922011B6-D48F-4098-8F35-032D4551A5BF}" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{0B8C678E-58DB-4272-BAFF-386EF020E4D6}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{8D407C5F-C736-42F5-9028-0B7BBE0D0F9D}" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{191C2A66-C99F-4A1E-8E3D-FD28A83D52A9}" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{A467F1A3-C8D2-4D91-9868-6096EA5754AF}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - ActiveSync Application.) -- C:\Program Files (x86)\Microsoft ActiveSync\WCESMgr.exe
O87 - FAEL: "{4381E601-7682-4C71-9C72-84EA29DFE243}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - ActiveSync Application.) -- C:\Program Files (x86)\Microsoft ActiveSync\WCESMgr.exe
O87 - FAEL: "{FB6CB309-99D4-4C64-B766-33704A33A25E}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - ActiveSync Connection Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\wcescomm.exe
O87 - FAEL: "{422D4437-DB8E-4574-9838-F81D1010B789}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - ActiveSync Connection Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\wcescomm.exe
O87 - FAEL: "{B1165D56-1159-43BE-9F0A-6A22F0F27937}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - ActiveSync RAPI Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\rapimgr.exe
O87 - FAEL: "{115619B2-6334-4FF4-AAE5-28E081E35DFE}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - ActiveSync RAPI Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\rapimgr.exe
O87 - FAEL: "{9CD6D7C5-CAD1-49D8-804A-707D433378C9}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - ActiveSync Application.) -- C:\Program Files (x86)\Microsoft ActiveSync\WCESMgr.exe
O87 - FAEL: "{8A89B49A-6B25-4F0A-843F-8B589D4D2CB2}" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - ActiveSync Application.) -- C:\Program Files (x86)\Microsoft ActiveSync\WCESMgr.exe
O87 - FAEL: "{BB44812F-C235-4613-ADDC-B3E9AAB34A57}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - ActiveSync Connection Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\wcescomm.exe
O87 - FAEL: "{A0D94162-0408-415E-B542-873636C7CACC}" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - ActiveSync Connection Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\wcescomm.exe
O87 - FAEL: "{1E864E7A-2566-45C6-AB57-FBFAD30F763A}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - ActiveSync RAPI Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\rapimgr.exe
O87 - FAEL: "{64C857BF-CA67-4042-A052-1F49404D0437}" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - ActiveSync RAPI Manager.) -- C:\Program Files (x86)\Microsoft ActiveSync\rapimgr.exe
O87 - FAEL: "UDP Query User{097C8450-AF1F-47FC-9F3A-164CC0FE5BCA}C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe" | In - Public - P17 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe
O87 - FAEL: "TCP Query User{9FF9362F-20BA-473A-BD22-31ED267EAD91}C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe" | In - Public - P6 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe
O87 - FAEL: "UDP Query User{752C29DE-AA77-45C6-BEAA-5F450445D63F}C:\program files (x86)\emule\emule.exe" | In - Private - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe
O87 - FAEL: "TCP Query User{61987DE8-7387-4F4F-8A51-51D8AA439850}C:\program files (x86)\emule\emule.exe" | In - Private - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe
O87 - FAEL: "UDP Query User{3861F0E2-D91D-4F98-A055-79A8024A37C6}C:\program files (x86)\hercules\webcam station evolution\stationev.exe" | In - Private - P17 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\webcam station evolution\stationev.exe
O87 - FAEL: "TCP Query User{FF9BE42F-B623-4884-BE41-C7C90CB708B0}C:\program files (x86)\hercules\webcam station evolution\stationev.exe" | In - Private - P6 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\webcam station evolution\stationev.exe
O87 - FAEL: "UDP Query User{D451FBC7-0C2E-4648-9114-69CD03C6366A}C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe" | In - Private - P17 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe
O87 - FAEL: "TCP Query User{D6B98E98-2CE2-46CF-9D2B-3B318396BCA3}C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe" | In - Private - P6 - TRUE | .(.Guillemot Corporation S.A..) -- C:\program files (x86)\hercules\hercules hd exchange\xtrctrlex.exe
O87 - FAEL: "UDP Query User{77AAB9B3-9AE2-4EE6-8009-5A6DB7EBC9CA}E:\fscommand\updater.exe" |In - Private - P17 - TRUE | .(...) -- E:\fscommand\updater.exe (.not file.)
O87 - FAEL: "TCP Query User{0F7B9843-4EC2-45CD-8CA1-D7F9E5F6451D}E:\fscommand\updater.exe" |In - Private - P6 - TRUE | .(...) -- E:\fscommand\updater.exe (.not file.)
O87 - FAEL: "{8347A5D8-D9BF-41DF-B467-33F824C99440}" | In - Private - P17 - TRUE | .(.Visicom Media Inc. - DTX broker.) -- C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe =>Adware.Bandoo
O87 - FAEL: "{BBAE78D6-91CF-4DC5-BBF0-73D69E6FF173}" | In - Private - P6 - TRUE | .(.Visicom Media Inc. - DTX broker.) -- C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe =>Adware.Bandoo
O87 - FAEL: "{5E8A0504-0E44-4AD0-9C0A-DF280B61826B}" | In - None - P6 - TRUE | .(.Hewlett-Packard - HP Software Update Client.) -- C:\Program Files (x86)\HP\hp software update\hpwucli.exe =>.Hewlett-Packard Co
O87 - FAEL: "{F28463FF-CD95-42F3-9716-4291EC7B422F}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe
O87 - FAEL: "{2D2B6937-8C7A-41F9-96D4-CA358620E6E9}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe
O87 - FAEL: "{DE74AF1E-F53A-4368-B1C8-54726F9BC540}" | In - Private - P17 - TRUE | .(.adsl TV / FM - adsl TV.) -- C:\Program Files (x86)\adslTV\adsltv.exe
O87 - FAEL: "{F3CAF25F-646F-4AD6-BA6D-C4CB2DE49AA7}" | In - Private - P6 - TRUE | .(.adsl TV / FM - adsl TV.) -- C:\Program Files (x86)\adslTV\adsltv.exe
O87 - FAEL: "UDP Query User{F55934A3-88A7-40DD-8C82-39C992B30DF9}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe
O87 - FAEL: "TCP Query User{A7FEF475-9E3F-413A-A1D4-9BC71920EE98}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe
O87 - FAEL: "{CB3F9EBA-A750-4B4E-9FD4-0408C762B0A8}" | In - None - P6 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{053FAA63-CA37-4C39-8ED6-5CAC889EC96D}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
O87 - FAEL: "{B23BC726-A94C-4FC8-88A0-1544E7D90F6C}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files (x86)\Microsoft Office\Office12\outlook.exe =>.Microsoft Corporation
O87 - FAEL: "{01F0D38A-0CA5-4415-9461-6C2B5E110A58}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "{4CE4402B-A8E3-4165-B18A-1D356A618F5D}" | In - Public - P17 - TRUE | .(.CyberLink - DMREngine.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
O87 - FAEL: "{07941D9E-E55C-4F81-936A-6487CC9A2812}" | In - Private - P17 - TRUE | .(.CyberLink - DMREngine.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
O87 - FAEL: "{B2BAA2D1-16E2-4218-B82F-E794A47A2228}" | In - Domain - P17 - TRUE | .(.CyberLink - DMREngine.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
O87 - FAEL: "{82367CE1-AA26-4A8E-AE28-24BEF1F1A0B5}" | In - None - P17 - TRUE | .(.CyberLink Corp. - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\CLML\CLMLSvc.exe
O87 - FAEL: "{1FDD08F9-E4A2-49C1-9B0A-C52223232933}" | In - None - P17 - TRUE | .(.CyberLink Corp. - clear.fi Resident Program.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
O87 - FAEL: "{0A83C674-0E7E-4682-9B6F-396D3F50C24E}" | In - None - P17 - TRUE | .(.Acer Incorporated - clear.fi.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe
O87 - FAEL: "{886579F5-08D3-4E80-A191-467836AB5C66}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{8DC631E2-E81E-4F01-B720-CC218FE21DB3}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "{69FEEA12-4959-4966-A421-5D41A1BB0E12}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "{4D5A2B81-57FC-42F2-836E-53DF272D39E8}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "{3FBC5928-2283-4233-B40C-97749DD673B7}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "{3C4F0372-378E-4B30-A2A8-0A6742712151}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{35E99F10-5A02-499C-BB01-7C8FB622BCD7}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{466ACDD5-0A52-4FA9-BFC8-7913698F3B2A}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{08CFD0CE-B270-4B86-8317-E6405A199E58}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{04AEA558-AF56-4CD8-B9EC-4F6740C3B78B}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{0616E738-1345-4EBD-8024-EE1D560A726F}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{867C2137-6B10-42E8-9D9C-4A1DA62ED809}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{1FEC1B4E-A728-47BC-B1D3-D84C2056DC57}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{67ADF32F-94E0-4497-B4F4-E82EC08C4ADA}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TCP Query User{E30FF55E-B117-4F59-BB50-DBDEF442120C}C:\program files (x86)\nero\nero 7\nero home\nerohome.exe" | In - Public - P6 - TRUE | .(.Nero AG - Nero Home.) -- C:\program files (x86)\nero\nero 7\nero home\nerohome.exe
O87 - FAEL: "UDP Query User{1029597C-4B97-46CA-A7C2-8B951E6982F3}C:\program files (x86)\nero\nero 7\nero home\nerohome.exe" | In - Public - P17 - TRUE | .(.Nero AG - Nero Home.) -- C:\program files (x86)\nero\nero 7\nero home\nerohome.exe
O87 - FAEL: "{AF41AF9D-02B6-4A07-95EA-E3E1C274D049}" | In - Public - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Meunier\AppData\Roaming\Dropbox\bin\Dropbox.exe
O87 - FAEL: "{EE18457A-1EB1-440E-B4B6-D6777BB15EDC}" | In - Public - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Meunier\AppData\Roaming\Dropbox\bin\Dropbox.exe
~ Firewall: 293 Scanned in 00mn 01s
---\\ Enum�re les codes produits des logiciels (PUC) (O90)
O90 - PUC: "00004159A700C0400000000000F01FEC" . (.Microsoft Office Outlook Connector.) -- C:\Windows\Installer\{95140000-007A-040C-0000-0000000FF1CE}\OLCIcon.exe =>.Microsoft Corporation
O90 - PUC: "0212CE3624715264AA746C8AEA9C6CC4" . (.Apple Application Support.) -- C:\Windows\Installer\{63EC2120-1742-4625-AA47-C6A8AEC9C64C}\WinInstall.ico
O90 - PUC: "05B51F93779A6AC41B3CA67842DC0A52" . (.MyWinLocker 4.) -- C:\Windows\Installer\{39F15B50-A977-4CA6-B1C3-6A8724CDA025}\ARPPRODUCTICON.exe
O90 - PUC: "0BCE87B0B6A1D6E4987DE0C77EF74072" . (.MyWinLocker.) -- C:\Windows\Installer\{0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}\ARPPRODUCTICON.exe
O90 - PUC: "1271C3A5DE8F0E11A8BF8BCAF6798BE8" . (.Google�Earth.) -- C:\Windows\Installer\{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}\ARPPRODUCTICON.exe
O90 - PUC: "1B641C2DD849FE743878D5C1B689F0C7" . (.Windows Live Writer.) -- C:\Windows\Installer\{D2C146B1-948D-47EF-8387-5D1C6B980F7C}\ApplicationIcon.ico
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "1EAD96AE2CB1DE84BAA9425A8CCA0817" . (.Boxore Client.) -- C:\WINDOWS\Installer\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}\boxore.ico =>Adware.Boxore
O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico
O90 - PUC: "3058F5C62D55893458C863B2A7A75FC1" . (.Firebird SQL Server - MAGIX Edition.) -- C:\Windows\Installer\{6C5F8503-55D2-4398-858C-362B7A7AF51C}\ProgramIcon.exe
O90 - PUC: "38E5962CD1FC1D3448EF3BEB5C1610A2" . (.Shredder.) -- C:\Windows\Installer\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}\ARPPRODUCTICON.exe
O90 - PUC: "4179FD719C069C349A2C23CBEA4DC4EB" . (.MyWinLocker Suite.) -- C:\Windows\Installer\{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}\ARPPRODUCTICON.exe
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico =>.Apple Inc
O90 - PUC: "482AA67AD25E6E74E9F48BD5FBE8533C" . (.IMinent Toolbar.) -- C:\Documents and Settings\CATA\My Documents\My Received Files\icon.ico =>Adware.IMBooster
O90 - PUC: "4A71778417DF1E64594EB6B50FF5B3BC" . (.Votre PC parle dans Word.) -- C:\Windows\Installer\{487717A4-FD71-46E1-95E4-6B5BF05F3BCB}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "5CA0C31676A349B4B8311967DA385FFB" . (.newsXpresso.) -- C:\Windows\Installer\{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}\ARPPRODUCTICON.exe
O90 - PUC: "613755F10CFCDB14FA7FB84CC94E447D" . (.Shredder.) -- C:\Windows\Installer\{1F557316-CFC0-41BD-AFF7-8BC49CE444D7}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.8) - Fran�ais.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "6B3C4C414F1FF104C868308E1EA9CAC8" . (.MediaEspresso.) -- C:\Windows\Installer\{14C4C3B6-F1F4-401F-8C86-03E8E19AAC8C}\ARPPRODUCTICON.exe
O90 - PUC: "743C7362DAD96D11E92A0050D5C07A16" . (.PowerCinema.) -- C:\Windows\Installer\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\ARPPRODUCTICON.exe
O90 - PUC: "7692FC6BE18C0C0489510C7547EF1F02" . (.Skype Click to Call.) -- C:\Windows\Installer\{B6CF2967-C81E-40C0-9815-C05774FEF120}\IconUninstallIco
O90 - PUC: "7E685771E24E83F4381D1DB5A45F7B41" . (.Delta Chrome Toolbar.) -- C:\Windows\Installer\{177586E7-E42E-4F38-83D1-D15B4AF5B714}\Delta.ico =>Toolbar.DeltaSearch
O90 - PUC: "890B46E081086524AB323C614AA39D0B" . (.QuickTime.) -- C:\Windows\Installer\{0E64B098-8018-4256-BA23-C316A43AD9B0}\Installer.ico
O90 - PUC: "907018673D7AD86419761A87C0E167C6" . (.Windows Live FolderShare.) -- C:\Windows\Installer\{76810709-A7D3-468D-9167-A1780C1E766C}\FolderShare48x48.ico
O90 - PUC: "97CD5CCB57221714C8AE930FDDA9FD85" . (.USB TV Device Driver.) -- C:\Windows\Installer\{BCC5DC79-2275-4171-8CEA-39F0DD9ADF58}\ARPPRODUCTICON.exe
O90 - PUC: "A11C609B391D3414F97A2EEEA8A5F812" . (.ArcadeMovie.) -- C:\Windows\Installer\{B906C11A-D193-4143-9FA7-E2EE8A5A8F21}\ARPPRODUCTICON.exe
O90 - PUC: "B2BBB5D0440F3C6478B7A6B61E0ED891" . (.SweetIM for Messenger 3.6.) -- C:\Windows\Installer\{0D5BBB2B-F044-46C3-877B-6A6BE1E08D19}\ARPPRODUCTICON.exe =>PUP.SweetIM
O90 - PUC: "CA98B4D33B4B4D74C8EE589350803F6D" . (.SHARP GSM GPRS USB Driver Ver2.1.0.) -- C:\Windows\Installer\{3D4B89AC-B4B3-47D4-8CEE-85390508F3D6}\ARPPRODUCTICON.exe
O90 - PUC: "D4ADF7A47D4F94A439A460D6954AC3E7" . (.SmartSound Quicktracks Plugin.) -- C:\Windows\Installer\{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "D73F4D92A419E8B4BBEC1C182399952F" . (.eDownloader.) -- C:\Windows\Installer\{29D4F37D-914A-4B8E-BBCE-C181329959F2}\softwareinstaller.exe =>PUP.SoftwareEngine
O90 - PUC: "D8EF64479F1C24D4AAEAD5CB5E68506A" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}\Installer.ico
O90 - PUC: "DC276626FCFB9A94EAEFBAF0DEB3CFB5" . (.Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\Installer\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}\wmdc.exe
O90 - PUC: "E57C80942E5E7F341BFD20C3AB380163" . (.Nero 7 Ultra Edition.) -- C:\Windows\Installer\{4908C75E-E5E2-43F7-B1DF-023CBA831036}\ARPPRODUCTICON.exe
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype� 6.3.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O90 - PUC: "EA2B394116202D741BAA4FAD0D6F4CB8" . (.iTunes.) -- C:\Windows\Installer\{1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}\Installer.ico
O90 - PUC: "FA20CB7A821113A4CB8FA1E38E303D3B" . (.SweetIM Toolbar for Internet Explorer 4.2.) -- C:\Windows\Installer\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}\ARPPRODUCTICON.exe =>PUP.SweetIM
~ Update Products: 147 Scanned in 00mn 00s
---\\ Export de cl�s de registre al�atoires (O91)
[HKCU\Software\592d8dbb23cea14]:GUID="{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:HPCHREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:HPFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:HPIEREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:INSTALL_FOLDER_NAME="BitGuard" =>PUP.BitGuard
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:KWFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:NTCHREGEXP0="FO81jovjQUF+5S6+haV7vGe3TMfw8oqWAhSaKzFS9OtdgZ1j5X+B4jW/459R"
[HKCU\Software\592d8dbb23cea14]:NTCHREGEXP1="FO81jovjQUF+5S6+hbF0tnG4Tc/u94SDBhydJTxS8+ldnZRi5niE4Dm49Yxb"
[HKCU\Software\592d8dbb23cea14]:NTCHREGEXP2="FO81jovjQUF+5S6+hbF/tG24SsHn9oyWDBuXLj1U8e1fjIJv8XSE4Dy75IlV"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:NTFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:PROTECTOR_DLL_NAME="BitGuard.dll" =>PUP.BitGuard
[HKCU\Software\592d8dbb23cea14]:PROTECT_EXE_NAME="BitGuard.exe" =>PUP.BitGuard
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:SECHREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:SEFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKCU\Software\592d8dbb23cea14]:SEIEREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKCU\Software\592d8dbb23cea14]:SERVICE_NAME="BitGuard" =>PUP.BitGuard
[HKCU\Software\592d8dbb23cea14]:usrcheckbox="1"
[HKCU\Software\592d8dbb23cea14]:version="2.6.1673.238"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:GUID="{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPCHREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:HPIEREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:INSTALL_FOLDER_NAME="BitGuard" =>PUP.BitGuard
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:KWFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTCHREGEXP0="FO81jovjQUF+5S6+haV7vGe3TMfw8oqWAhSaKzFS9OtdgZ1j5X+B4jW/459R"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTCHREGEXP1="FO81jovjQUF+5S6+hbF0tnG4Tc/u94SDBhydJTxS8+ldnZRi5niE4Dm49Yxb"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTCHREGEXP2="FO81jovjQUF+5S6+hbF/tG24SsHn9oyWDBuXLj1U8e1fjIJv8XSE4Dy75IlV"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:NTFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:PROTECTOR_DLL_NAME="BitGuard.dll" =>PUP.BitGuard
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:PROTECT_EXE_NAME="BitGuard.exe" =>PUP.BitGuard
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SECHREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEFFREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP0="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41YG65LTMswjv2p+BbY"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP10="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tcC7Z7DtYJweyl/WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP11="FO81jovjQUF+5S6+hb1oqXHuCob28bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4PgTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP12="FO81jovjQUF+5S6+hb1oqXHuCobi7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4bnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP13="FO81jovjQUF+5S6+hb1oqXHuCobh7bvIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4YnTyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP14="FO81jovjQUF+5S6+hb1oqXHuCobp+7vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Qizyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP15="FO81jovjQUF+5S6+hb1oqXHuCobq77vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Tnzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP16="FO81jovjQUF+5S6+hb1oqXHuCob097vIARmacmgOwqhSgp8k3Sia4We454NmCbZefM0c/670ylCTeqKqVQ4Nhzyj"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP17="FO81jovjQUF+5S6+hf10qXWkH4avttjOR1OpbXMX8/9twJ1l7X6A6gb39opYC7RPf4sPz/Povw=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP18="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5tLEKdLRvlB0/un51uaSb37CTxXxQ=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP1="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4xVGKVIf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP2="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tcFaNGf4gfxf+09lCuO/D3C39T"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP3="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr41MHLlIUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP4="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES/lBx/Gn+WTcdvz1SHs="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP5="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5xcGKVES8IDzMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP6="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4dWFbZURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP7="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4hWFaRCQtcPyMLo9lefO7k="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP8="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr4tYFbJURsQew/aau1udeL2y"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SEIEREGEXP9="FO81jovjQUF+5S6+hf10qXWkDdqpoN3JRlHKawFcs/wBwMtXrErF03Tzr5pXFosKUMAN0v2uyRaRev62TA=="
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:SERVICE_NAME="BitGuard" =>PUP.BitGuard
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:usrcheckbox="1"
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:version="2.6.1673.238"
~ Export Key Software: Scanned in 00mn 00s
---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.7AE5FF598B22E4F65558BAF73107FA7E] [WIS][14/05/2009] (.Builds the Destinations MSI - Builds the Destinations MSI.) -- C:\Windows\Installer\113344.msi [459264]
[MD5.8A1EAA47F0DDD9BFCA3D70BBB774B4D6] [WIS][08/06/2013] (.Linkury Inc. - Linkury Smartbar (Powered by Linkury Inc.).) -- C:\Windows\Installer\156d223.msi [8888320] =>Hijacker.SmartBar
[MD5.33B7498D562214AF350351413ECFB9F4] [WIS][14/01/2013] (.Advernet - eDownloader.) -- C:\Windows\Installer\170c1.msi [894976] =>PUP.SoftwareEngine
[MD5.B67811645C5A3B8E4E4B1A1DB1EE271C] [WIS][19/09/2012] (.Boxore OU. - Software Update Helper.) -- C:\Windows\Installer\1a632f1.msi [45056] =>Adware.Boxore
[MD5.3E765C9DA387C8C8C067266C3AE3FB9B] [WIS][24/10/2012] (.Skype Technologies S.A. - Skype Click to Call.) -- C:\Windows\Installer\1b458.msi [10137600]
[MD5.35C918348CBB0877BCD5A3CF24C13761] [WIS][25/11/2012] (.DeltaInstaller - Delta Chrome Toolbar.) -- C:\Windows\Installer\1d419.msi [573440] =>Toolbar.DeltaSearch
[MD5.4F85EDB09C3A683405B28267915885F3] [WIS][30/01/2012] (.EETI - Blank Project Template.) -- C:\Windows\Installer\202dfa9.msi [20961280]
[MD5.B06712BF5643BB55600A040F210DC218] [WIS][14/04/2013] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\38334.msi [20586496]
[MD5.066CE7A861C7B83197D92E07FA1EE16C] [WIS][08/12/2011] (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Windows\Installer\5fbfd.msi [28160] =>Toolbar.Google
[MD5.CB08263B7B5C9BB753901E81A5748990] [WIS][05/08/2004] (.SHARP - SHARP GSM GPRS USB Driver Ver2.1.0.) -- C:\Windows\Installer\7957c.msi [5619656]
[MD5.C6AE71164A8A5138045327623BBCF12B] [WIS][03/02/2012] (.Micro Application - LauncherMA.) -- C:\Windows\Installer\901acc.msi [623616]
[MD5.384D0D94B59B93157E0A2C5A32DB4754] [WIS][24/03/2011] (.esobi Inc. - newsXpresso.) -- C:\Windows\Installer\bd617.msi [5219328]
[MD5.A672E4C77ED7CCC851575B10B46CC8AD] [WIS][08/12/2011] (.IMinent - IMinent Toolbar.) -- C:\Windows\Installer\c1514.msi [1019392] =>Adware.IMBooster
~ WIS: 153 Scanned in 00mn 17s
---\\ Etat g�n�ral des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/03/2010 113152 | (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
SR - | Auto 10/05/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 13/10/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 11/08/2012 55184 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 30/08/2013 46808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Demand 14/12/2012 277616 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Demand 28/09/2010 172912 | (EgisTec Ticket Service) . (.Egis Technology Inc..) - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
SR - | Auto 24/05/2011 1840128 | (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
SS - | Demand 26/04/2011 2702848 | (FirebirdServerMAGIXInstance) . (.MAGIX�.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
SR - | Auto 08/01/2010 23584 | (GREGService) . (.Acer Incorporated.) - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
SS - | Auto 08/12/2011 136176 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 08/12/2011 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 24/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Demand 20/09/2012 29696 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\system32\svchost.exe
SR - | Auto 20/09/2012 29696 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\system32\svchost.exe
SR - | Auto 20/09/2012 29696 | C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.dll (HPSLPSVC) . (.Hewlett-Packard Co..) - C:\Windows\system32\svchost.exe
SR - | Auto 05/11/2010 13336 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SS - | Demand 14/11/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
SR - | Demand 09/09/2012 936848 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 31/01/2011 244624 | (Live Updater Service) . (.Acer Incorporated.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
SR - | Auto 20/12/2010 325656 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 04/04/2013 418376 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 04/04/2013 701512 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 11/05/2013 117144 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 10/11/2006 774144 | (NBService) . (.Nero AG.) - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
SR - | Auto 20/09/2012 29696 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 28/12/2012 54912 | (Notation) . (.Advernet.) - C:\Program Files (x86)\Notation\Notation.exe =>Hijacker.Proxy
SR - | Auto 28/12/2012 33920 | (NotationMonitor) . (.Advernet.) - C:\Program Files (x86)\Notation\NotationMonitor.exe =>Hijacker.Proxy
SR - | Auto 20/09/2012 29696 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 02/10/2012 3064000 | (Skype C2C Service) . (.Skype Technologies S.A..) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
SS - | Auto 28/02/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 28/09/2006 49152 | (UleadBurningHelper) . (.Ulead Systems, Inc..) - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
SR - | Auto 20/12/2010 2656280 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 09/12/2009 76320 | (USBS3S4Detection) . (...) - C:\OEM\USBDECTION\USBS3S4Detection.exe
SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Demand 20/09/2012 29696 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 21s
---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by Meunier at 16/10/2013 11:06:28
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s
---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Meunier at 16/10/2013 11:06:30
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s
---\\ Scan Additionnel (O88)
Database Version : 12948 - (15/10/2013)
Cl�s trouv�es (Keys found) : 416
Valeurs trouv�es (Values found) : 4
Dossiers trouv�s (Folders found) : 25
Fichiers trouv�s (Files found) : 22
[HKLM\Software\Google\Chrome\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk] =>Toolbar.OfferMosquito^
[HKLM\Software\Google\Chrome\Extensions\pbpohikckhbcljgombipcdoinkaedlfa] =>Spyware.SmartDisplay^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4D91-8333-CF10577473F7}] =>Toolbar.Google^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo^
[HKLM\SYSTEM\CurrentControlSet\Services\Notation] =>Hijacker.Proxy^
[HKLM\SYSTEM\CurrentControlSet\Services\NotationMonitor] =>Hijacker.Proxy^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{177586E7-E42E-4F38-83D1-D15B4AF5B714}] =>Toolbar.DeltaSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}] =>Toolbar.Google^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] =>Toolbar.Google^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}] =>Adware.IMBooster^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F04C4F83-D9C7-408C-9DEB-D5526E72108C}] =>Hijacker.SmartBar^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{75e9a48b-068c-403f-b877-fa5890bde80c}] =>Hijacker.SmartBar^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Funmoods] =>PUP.Funmoods^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{29633E53-BF13-41B5-9E10-19D7843BD9C3}] =>Hijacker.Proxy^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0D5BBB2B-F044-46C3-877B-6A6BE1E08D19}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Windows Searchqu Toolbar] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}] =>Adware.Yontoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3FF2F54D-FA3A-406F-9F9E-6CDD95B9A1A9}_is1] =>PUP.Dealio^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\eDownloader 1.0.1] =>PUP.SoftwareEngine^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{29D4F37D-914A-4B8E-BBCE-C181329959F2}] =>PUP.SoftwareEngine^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\DATAMNGR] =>PUP.Datamngr^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Iminent] =>Adware.IMBooster^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\IminentMessenger] =>Adware.IMBooster^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\swg] =>Toolbar.Google^
[HKLM\Software\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{006E6A46-8D55-4F10-BBA8-2C9653B4278B}] =>Adware.Boxore
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>Hijacker.SmartBar
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>Hijacker.SmartBar
[HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}] =>Adware.IMBooster
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{177586E7-E42E-4F38-83D1-D15B4AF5B714}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}] =>Adware.Agent
[HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{32451DFC-C23B-4E12-866C-FC7982238504}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{32451DFC-C23B-4E12-866C-FC7982238504}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{44B619BC-3D2B-4990-AA4F-9AA366921792}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\Interface\{44B619BC-3D2B-4990-AA4F-9AA366921792}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}] =>PUP.RewardsArcade
[HKLM\Software\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}] =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{5B4144E1-B61D-495A-9A50-CD1A95D86D15}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{CCB08265-B35D-30B2-A6AF-6986CA957358}] =>Hijacker.SmartBar
[HKLM\Software\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{E041E037-FA4B-364A-B440-7A1051EA0301}] =>Hijacker.SmartBar
[HKLM\Software\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{56561B2A-FB5D-363A-9631-4C03D6054209}] =>Hijacker.SmartBar
[HKLM\Software\Classes\CLSID\{CD92622E-49B9-33B7-98D1-EC51049457D7}] =>Hijacker.SmartBar
[HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{736EF78E-5A04-46F9-893E-EDEC6EA5DF45}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{7A1BCE27-099C-4628-B63A-AEC00C6376B3}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{841D5A49-E48D-413C-9C28-EB3D9081D705}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}] =>PUP.Funmoods
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}] =>PUP.RewardsArcade
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}] =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKLM\Software\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Classes\Interface\{AF3AFF7C-B9E9-48DD-9002-212B6DEAAC02}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}] =>PUP.RewardsArcade
[HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}] =>Hijacker.Seeearch
[HKLM\Software\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{A717364F-69F3-3A24-ADD5-3901A57F880E}] =>Hijacker.SmartBar
[HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}] =>Hijacker.Seeearch
[HKLM\Software\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}] =>Adware.Yontoo
[HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}] =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{DBE82879-914A-422F-BAE9-2ECC80BE536F}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{E12D7149-73EF-45E4-A1E9-99FD7DAE62D3}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}] =>Adware.BullseyeToolbar
[HKLM\Software\Wow6432Node\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}] =>Adware.BullseyeToolbar
[HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}] =>PUP.RewardsArcade
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635] =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{F2B184F1-547C-4EE9-BFC4-AC489C7077D9}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo
[HKLM\Software\Classes\AppID\BrowserConnection.dll] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\DNSBHO.dll] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\escort.dll] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\escortapp.dll] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\escorteng.dll] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\esrv.EXE] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\TbCommonUtils.DLL] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\TbHelper.EXE] =>Toolbar.Agent
[HKLM\Software\Classes\sim-packages] =>Toolbar.Agent
[HKLM\Software\Classes\Software.OneClickCtrl.8] =>Adware.Agent
[HKLM\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh] =>PUP.Funmoods
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852] =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster
[HKLM\Software\Classes\Installer\Products\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Installer\Features\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Installer\Products\482AA67AD25E6E74E9F48BD5FBE8533C] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\BA086F2D38A8E1A47912955A68B3AD24] =>Adware.PredictAd
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E] =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\B2BBB5D0440F3C6478B7A6B61E0ED891] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\B2BBB5D0440F3C6478B7A6B61E0ED891] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2BBB5D0440F3C6478B7A6B61E0ED891] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\B2BBB5D0440F3C6478B7A6B61E0ED891] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\B2BBB5D0440F3C6478B7A6B61E0ED891] =>PUP.SweetIM
[HKCU\Software\APN PIP] =>Toolbar.Ask
[HKCU\Software\AppDataLow\Software\ConduitSearchScopes] =>Toolbar.Conduit
[HKLM\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\funmoods] =>PUP.Funmoods
[HKCU\Software\ilivid] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKCU\Software\PIP] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\PIP] =>Toolbar.Ask
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKLM\Software\Wow6432Node\SearchquMediabarTb] =>Adware.Bandoo
[HKCU\Software\AppDataLow\Software\searchqutoolbar] =>Adware.Bandoo
[HKCU\Software\SmartbarBackup] =>Hijacker.SmartBar
[HKCU\Software\SmartbarLog] =>Hijacker.SmartBar
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\Tarma Installer] =>PUP.Tarma
[HKCU\Software\AppDataLow\Toolbar] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0D5BBB2B-F044-46C3-877B-6A6BE1E08D19}] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110211181110}] =>Adware.VidSaver
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Windows Searchqu Toolbar] =>Adware.Bandoo
[HKLM\Software\Classes\Installer\Features\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Installer\Products\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Features\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Products\7E685771E24E83F4381D1DB5A45F7B41] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{29633E53-BF13-41B5-9E10-19D7843BD9C3}] =>Hijacker.Proxy
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKLM\Software\Classes\Installer\Features\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Classes\Installer\Features\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Classes\Installer\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0] =>PUP.SweetIM
[HKLM\Software\Classes\MediaPlayer.GraphicsUtils] =>PUP.SweetIM
[HKLM\Software\Classes\MediaPlayer.GraphicsUtils.1] =>PUP.SweetIM
[HKLM\Software\Classes\MgMediaPlayer.GifAnimator] =>PUP.SweetIM
[HKLM\Software\Classes\MgMediaPlayer.GifAnimator.1] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420] =>PUP.SweetIM
[HKCU\Software\Protector] =>PUP.AdvancedSystemProtector
[HKLM\Software\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Installer\Features\FA20CB7A821113A4CB8FA1E38E303D3B] =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\FA20CB7A821113A4CB8FA1E38E303D3B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\FA20CB7A821113A4CB8FA1E38E303D3B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\FA20CB7A821113A4CB8FA1E38E303D3B] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\FA20CB7A821113A4CB8FA1E38E303D3B] =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E5C8B5FB7CB5DD447A0BAAAF637FBD77] =>PUP.ClaroSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF96568971BEAC14B8815883832BD484] =>PUP.ClaroSearch
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EA69DAE1-1BC2-48ED-AB9A-24A5C8AC8071}] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Features\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Classes\Installer\Features\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Classes\Installer\Products\1EAD96AE2CB1DE84BAA9425A8CCA0817] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Companion] =>Toolbar.Yahoo
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\OfferMosquito] =>Toolbar.OfferMosquito
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}] =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}] =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}] =>Toolbar.Yahoo
[HKLM\Software\Classes\YontooIEClient.Api] =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Api.1] =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Layers] =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Layers.1] =>Adware.Yontoo
[HKLM\Software\Classes\AppID\escorTlbr.DLL] =>PUP.Funmoods
[HKLM\Software\Classes\AppID\YontooIEClient.DLL] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Api] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Api.1] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Layers] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Layers.1] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110211181110}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\AppID\escort.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escortApp.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escortEng.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escorTlbr.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\TbHelper.EXE] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\AppID\YontooIEClient.DLL] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110211181110}] =>PUP.CrossRider
[HKLM\Software\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156] =>PUP.SweetIM^
[HKLM\Software\Wow6432Node\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{ae07101b-46d4-4a98-af68-0333ea26e113} =>Hijacker.SmartBar^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:swg =>Toolbar.Google^
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Toolbar.Avira
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{EF99BD32-C1FB-11D2-892F-0090271D4F88} =>Toolbar.Yahoo
C:\Program Files (x86)\Boxore =>Adware.Boxore^
C:\Program Files (x86)\iLivid =>Adware.Bandoo^
C:\Program Files (x86)\Windows iLivid Toolbar =>Adware.Bandoo^
C:\ProgramData\Babylon =>Toolbar.Babylon^
C:\ProgramData\BitGuard =>PUP.BitGuard^
C:\ProgramData\DSearchLink =>Toolbar.DeltaSearch^
C:\ProgramData\SweetIM =>PUP.SweetIM^
C:\Users\Meunier\AppData\Roaming\Advernet =>Hijacker.Proxy^
C:\Users\Meunier\AppData\Roaming\Funmoods =>PUP.Funmoods^
C:\Users\Meunier\AppData\Local\Giant Savings Extension =>Adware.VidSaver^
C:\Users\Meunier\AppData\Local\Ilivid Player =>Adware.Bandoo^
C:\Users\Meunier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard =>PUP.BitGuard^
C:\Program Files (x86)\Conduit =>Toolbar.Conduit
C:\Program Files (x86)\Software =>Adware.Boxore
C:\Users\Meunier\AppData\Roaming\DataMgr =>PUP.Datamngr
C:\Users\Meunier\AppData\Local\Conduit =>Toolbar.Conduit
C:\Users\Meunier\AppData\Local\Software =>Adware.Boxore
C:\Users\Meunier\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\Meunier\AppData\LocalLow\PriceGong =>Adware.PriceGong
C:\Users\Meunier\AppData\LocalLow\searchquband =>Adware.Bandoo
C:\Users\Meunier\AppData\LocalLow\searchqutoolbar =>Adware.Bandoo
C:\Users\Meunier\AppData\LocalLow\Smartbar =>Hijacker.SmartBar
C:\Users\Meunier\AppData\LocalLow\Toolbar4 =>Toolbar.Conduit
C:\Users\Meunier\AppData\LocalLow\WhiteSmoke_US_New =>PUP.Whitesmoke
C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa =>Spyware.SmartDisplay
C:\Program Files (x86)\Notation\NotationSysTray.exe =>Hijacker.Proxy^
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe =>Toolbar.Google^
C:\Users\Meunier\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbmdkmlcnbapgegninelmjbfibaghdmk =>Toolbar.OfferMosquito^
[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit^
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar^
[HKCU\Software\AppDataLow\Software\WhiteSmoke_US_New] =>PUP.WhiteSmoke^
[HKCU\Software\Smartbar] =>Hijacker.SmartBar^
[HKCU\Software\YouTube Downloader Suite] =>PUP.Dealio^
[HKCU\Software\iLivid] =>Adware.Bandoo^
[HKLM\Software\Wow6432Node\Advernet] =>Hijacker.Proxy^
[HKLM\Software\Wow6432Node\Babylon] =>Toolbar.Babylon^
[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit^
[HKLM\Software\Wow6432Node\Funmoods] =>PUP.Funmoods^
[HKLM\Software\Wow6432Node\WhiteSmoke_US_New] =>PUP.WhiteSmoke^
[HKCU\Software\592d8dbb23cea14]:GUID="{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel^
[HKLM\Software\Wow6432Node\592d8dbb23cea14]:GUID="{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel^
C:\Windows\Installer\156d223.msi =>Hijacker.SmartBar^
C:\Windows\Installer\170c1.msi =>PUP.SoftwareEngine^
C:\Windows\Installer\1a632f1.msi =>Adware.Boxore^
C:\Windows\Installer\1d419.msi =>Toolbar.DeltaSearch^
C:\Windows\Installer\5fbfd.msi =>Toolbar.Google^
C:\Windows\Installer\c1514.msi =>Adware.IMBooster^
~ Additionnel Scan: 445673 Items scanned in 00mn 22s
---\\ R�capitulatif des d�tections trouv�es sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/27232411-hijacker-proxy =>Hijacker.Proxy
~ http://nicolascoolman.webs.com/apps/blog/show/32384220-toolbar-google =>Toolbar.Google
~ http://nicolascoolman.webs.com/apps/blog/show/32662245-spyware-smartdisplay =>Spyware.SmartDisplay
~ http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon =>Toolbar.Babylon
~ http://nicolascoolman.webs.com/apps/blog/show/26811836-adware-yontoo =>Adware.Yontoo
~ http://nicolascoolman.webs.com/apps/blog/show/26990375-hijacker-smartbar =>Hijacker.SmartBar
~ http://nicolascoolman.webs.com/apps/blog/show/33263878-hijacker-browser =>Hijacker.Browsers
~ http://nicolascoolman.webs.com/apps/blog/show/27583992-pup-datamngr =>PUP.Datamngr
~ http://nicolascoolman.webs.com/apps/blog/show/26678994-hijacker-babsolution =>Hijacker.BabSolution
~ http://nicolascoolman.webs.com/apps/blog/show/26626977-adware-boxore =>Adware.Boxore
~ http://nicolascoolman.webs.com/apps/blog/show/29637859-toolbar-tarma =>PUP.Tarma
~ http://nicolascoolman.webs.com/apps/blog/show/27875657-toolbar-deltasearch =>Toolbar.DeltaSearch
~ http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster =>Adware.IMBooster
~ http://nicolascoolman.webs.com/apps/blog/show/27630986-pup-funmoods =>PUP.Funmoods
~ http://nicolascoolman.webs.com/apps/blog/show/29216159-pup-sweetim =>PUP.SweetIM
~ http://nicolascoolman.webs.com/apps/blog/show/26611092-adware-bandoo =>Adware.Bandoo
~ http://nicolascoolman.webs.com/apps/blog/show/27443462-pup-dealio =>PUP.Dealio
~ http://nicolascoolman.webs.com/apps/blog/show/29758660-pup-softwareengine =>PUP.SoftwareEngine
~ http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit =>Toolbar.Conduit
~ http://nicolascoolman.webs.com/apps/blog/show/27583526-pup-crossrider =>PUP.CrossRider
~ http://nicolascoolman.webs.com/apps/blog/show/26666995-adware-pricegong =>Adware.PriceGong
~ http://nicolascoolman.webs.com/apps/blog/show/27636417-pup-whitesmoke =>PUP.WhiteSmoke
~ http://nicolascoolman.webs.com/apps/blog/show/32979753-pup-bitguard =>PUP.BitGuard
~ http://nicolascoolman.webs.com/apps/blog/show/27557062-adware-vidsaver =>Adware.VidSaver
~ http://nicolascoolman.webs.com/apps/blog/show/27161672-hijacker-eazel =>Hijacker.Eazel
~ http://nicolascoolman.webs.com/apps/blog/show/27480243-adware-socialskinz =>Adware.SocialSkinz
~ http://nicolascoolman.webs.com/apps/blog/show/28000037-pup-rewardsarcade =>PUP.RewardsArcade
~ http://nicolascoolman.webs.com/apps/blog/show/30898245-toolbar-skype =>Toolbar.Skype
~ http://nicolascoolman.webs.com/apps/blog/show/27674245-adware-bullseyetoolbar =>Adware.BullseyeToolbar
~ http://nicolascoolman.webs.com/apps/blog/show/28927746-toolbar-ask =>Toolbar.Ask
~ http://nicolascoolman.webs.com/apps/blog/show/27229962-adware-predictad =>Adware.PredictAd
~ http://nicolascoolman.webs.com/apps/blog/show/30268689-toolbar-yahoo =>Toolbar.Yahoo
~ http://nicolascoolman.webs.com/apps/blog/show/26630283-pup-advancedsystemprotector =>PUP.AdvancedSystemProtector
~ http://nicolascoolman.webs.com/apps/blog/show/27563212-pup-clarosearch =>PUP.ClaroSearch
~ http://nicolascoolman.webs.com/apps/blog/show/28419247-toolbar-avira =>Toolbar.Avira
~ MSI: 35 link(s) detected in 00mn 22s
End of the scan (3645 lines in 04mn 02s)(0)