cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2016.1.12.13 Par Nicolas Coolman (2016/01/12)
~ Démarré par maelle (Administrator) (2016/01/14 10:00:06)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\maelle\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\maelle\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Starter, 32-bit Service Pack 1 (Build 7601)

---\\ Navigateurs Internet (3) - 4s
GCIE: Google Chrome v31.0.1650.63
MFIE: Mozilla Firefox 22.0 (x86 fr)
MSIE: Internet Explorer v11.0.9600.16476

---\\ Informations sur les produits Windows (4) - 4s
~ Windows Server License Manager Script : OK
System - VBScript Engine not found
Windows Automatic Updates : OK
Windows Activation Technologies : KO

---\\ Logiciels de protection (1) - 132s
Windows Defender W7 (Activate)

---\\ Logiciels de protection et autres (Superflus) (1) - 134s
McAfee Security Scan Plus v3.11.266.3

---\\ Surveillance de Logiciels (2) - 136s
Adobe Flash Player 20 NPAPI
Adobe Reader 9.1 MUI

---\\ Informations sur le système (6) - 1s
~ Operating System: x86 Family 6 Model 28 Stepping 10, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 1038.52 MB (4% free)
System Restore: Activé (Enable)
System drive C: has 15 GB () free of 102 GB =>Alerte espace disque inférieur à 20 Go

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: MAELLE-PC
~ User Name: maelle
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 15 GB free of 102 GB (System)
~ Drive D: has 0 GB free of 187 GB

---\\ Etat du Centre de Sécurité Windows (11) - 2s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (24) - 25s
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - 25/02/2011 - (.Microsoft Corporation - Explorateur Windows.) -- C:\windows\Explorer.exe [2616320] =>.Microsoft Corporation
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\windows\System32\rundll32.exe [44544] =>.Microsoft Corporation
[MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\windows\System32\Wininit.exe [96256] =>.Microsoft Corporation
[MD5.927FA6456AD6D7630F6854828D2FD16B] - 26/11/2013 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\windows\System32\wininet.dll [1820160] =>.Microsoft Corporation
[MD5.6D13E1406F50C66E2A95D97F22C47560] - 20/11/2010 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\windows\System32\Winlogon.exe [286720] =>.Microsoft Corporation
[MD5.E3AE23569749DE12D45BA3B489A036AE] - 20/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\windows\System32\sppcomapi.dll [193536] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\windows\System32\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - 16/02/2011 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.F81BB7E487EDCEAB630A7EE66CF23913] - 14/09/2013 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\windows\System32\drivers\AFD.sys [338944] =>.Microsoft Corporation
[MD5.338C86357871C167A96AB976519BF59E] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\windows\System32\drivers\atapi.sys [21584] =>.Microsoft Windows®
[MD5.77EA11B065E0A8AB902D78145CA51E10] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\windows\System32\drivers\Cdfs.sys [70656] =>.Microsoft Corporation
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\windows\System32\drivers\Cdrom.sys [108544] =>.Microsoft Corporation
[MD5.F024449C97EC1E464AAFFDA18593DB88] - 20/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\windows\System32\drivers\DfsC.sys [78336] =>.Microsoft Corporation
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\windows\System32\drivers\HDAudBus.sys [108544] =>.Microsoft Corporation
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\windows\System32\drivers\i8042prt.sys [80896] =>.Microsoft Corporation
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\windows\System32\drivers\IpNat.sys [101888] =>.Microsoft Corporation
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - 27/04/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\windows\System32\drivers\MRxSmb.sys [123904] =>.Microsoft Corporation
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - 20/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\windows\System32\drivers\netBT.sys [187904] =>.Microsoft Corporation
[MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - 12/04/2013 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\windows\System32\drivers\ntfs.sys [1211752] =>.Microsoft Windows®
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\windows\System32\drivers\Parport.sys [79360] =>.Microsoft Corporation
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\windows\System32\drivers\Rasl2tp.sys [78848] =>.Microsoft Corporation
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\windows\System32\drivers\smb.sys [71168] =>.Microsoft Corporation
[MD5.B459575348C20E8121D6039DA063C704] - 20/11/2010 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\windows\System32\drivers\tdx.sys [74752] =>.Microsoft Corporation
[MD5.F497F67932C6FA693D7DE2780631CFE7] - 20/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\windows\System32\drivers\volsnap.sys [245632] =>.Microsoft Windows®

---\\ Liste des services NT non Microsoft et non désactivés (8) - 13s
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
O23 - Service: Asus Launcher Service (AsusService) . (...) - C:\Windows\System32\AsusService.exe =>.ASUSTeK Computer Inc.®
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: Browser Manager (Browser Manager) . (...) - C:\ProgramData\Browser Manager\2.6.1249.132\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\browsermngr.exe (.not file.) =>PUP.Optional.Babylon
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company - SolutionsFrameworkService.) - C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe =>.Hewlett-Packard Company®
O23 - Service: Online Games Manager (ogmservice) . (.RealNetworks, Inc. - Online Games Manager.) - C:\Program Files\Online Games Manager\ogmservice.exe =>.RealNetworks, Inc.®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe =>.Skype Technologies SA®

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (13) - 82s

SS - Demand [12/01/2016] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [27/02/2012] [ 55144] Apple Mobile Device (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
SR - Auto [07/12/2010] [ 224680] Asus Launcher Service (AsusService) . (...) - C:\Windows\System32\AsusService.exe =>.ASUSTeK Computer Inc.®
SR - Auto [30/08/2011] [ 390504] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SS - Auto [12/01/2016] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [12/01/2016] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [17/12/2013] [ 46904] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company.) - C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe =>.Hewlett-Packard Company®
SR - Demand [06/03/2012] [ 821608] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.®
SS - Demand [02/12/2015] [ 235696] McAfee Security Scan Component Host Service (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe =>.McAfee, Inc.®
SS - Demand [12/07/2013] [ 117144] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [12/03/2013] [ 559168] Online Games Manager (ogmservice) . (.RealNetworks, Inc..) - C:\Program Files\Online Games Manager\ogmservice.exe =>.RealNetworks, Inc.®
SS - Auto [28/02/2013] [ 161384] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe =>.Skype Technologies SA®

---\\ Processus lancés (38) - 34s
[MD5.7EF47644B74EBE721CC32211D3C35E76] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55144] [PID.1560] =>.Apple Inc.®
[MD5.BDEDD780A12E75AC5902CA6BB027EAB7] - (...) -- C:\Windows\System32\AsusService.exe [224680] [PID.1676] =>.ASUSTeK Computer Inc.®
[MD5.DB5BEA73EDAF19AC68B2C0FAD0F92B1A] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [390504] [PID.1712] =>.Apple Inc.®
[MD5.974A1F783ED34588B45FAD6375077BA6] - (.Hewlett-Packard Company - SolutionsFrameworkService.) -- C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [46904] [PID.1792] =>.Hewlett-Packard Company®
[MD5.F0F6BEE889236BB6D6A94560D7EEA2AC] - (.RealNetworks, Inc. - Online Games Manager.) -- C:\Program Files\Online Games Manager\ogmservice.exe [559168] [PID.1940] =>.RealNetworks, Inc.®
[MD5.0A70F4022EC2E14C159EFC4F69AA2477] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [1710464] [PID.1180] =>.Microsoft Corporation®
[MD5.9C879E1C3B27085FB46EFECCD7120D51] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [193408] [PID.2224] =>.Microsoft Corporation®
[MD5.FA4B3C3A301F29DBD6A3F11E0FA28B3C] - (.ASUSTek Computer Inc. - Eee Docking Application.) -- C:\Program Files\Asus\Eee Docking\Eee Docking.exe [414384] [PID.3560] =>.ASUSTek Computer Inc.
[MD5.D398A7354368DD84CA749D09C03A314D] - (.ASUS - CapsAndNumKeyNotify.) -- C:\Program Files\Asus\CapsHook\CapsHook.exe [445344] [PID.2924] =>.ASUSTeK Computer Inc.®
[MD5.BF668B92BA1A29A6327A452ADCEEDF22] - (.ASUSTeK Computer Inc. - Eee Super Hybrid Engine.) -- C:\Program Files\Asus\SHE\SuperHybridEngine.exe [412600] [PID.3604] =>.ASUSTeK Computer Inc.®
[MD5.D40BF506A7A56AD4B6F68FC6F8C715AD] - (.ASUSTeK Computer Inc. - HotKeyMon.) -- C:\Program Files\Asus\HotkeyService\HotKeyMon.exe [101288] [PID.3700] =>.ASUSTeK Computer Inc.®
[MD5.285FBAB6FACA1E3166FB352C34AAC762] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [141848] [PID.3708] =>.Intel Corporation®
[MD5.F7B4516BD05D0CCAA4E076AD9B4FA668] - (.ASUSTeK Computer Inc. - Asus Hotkey Service.) -- C:\Program Files\Asus\HotkeyService\HotkeyService.exe [1248176] [PID.3684] =>.ASUSTeK Computer Inc.®
[MD5.2A280847FDC2E18265A7EABF9D4A76CB] - (.AsusTek Computer Inc. - Asus EeePC LiveUpdate for Bios, Driver, Sof.) -- C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe [1095080] [PID.3780] =>.ASUSTeK Computer Inc.®
[MD5.DC8F297AC5D203AB8D3B70709740F29C] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [173592] [PID.3712] =>.Intel Corporation®
[MD5.D165F0D7BDCDE31BE4B1E2149E92AC2A] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [150552] [PID.3936] =>.Intel Corporation®
[MD5.41E7042F32E30363FCE1ABCCF630DDA4] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\System32\igfxsrvc.exe [252952] [PID.3944] =>.Intel Corporation®
[MD5.808B469BC03B39D735742D8D41D1C2C0] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9177632] [PID.3676] =>.Realtek Semiconductor Corp®
[MD5.D36DA0A5C531353C5FF5E29242649257] - (.Boingo Wireless, Inc. - Boingo Wi-Fi.) -- C:\Program Files\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe [365936] [PID.4084] {7EBEC80867FDD4EAE0781D6D78BBBA56}
[MD5.7746FF4871C7EE3C169D19B424A47710] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421736] [PID.548] =>.Apple Inc.®
[MD5.0524D4A3CF377BCDD6A379680AD3DC7D] - (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [3521424] [PID.1500] =>.Samsung Electronics CO., LTD.®
[MD5.CE5C9977DA751DDC30952AC4DCBCA788] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\hpwuschd2.exe [49208] [PID.3412] =>.Hewlett-Packard Company®
[MD5.CE004777B92DEA56FE14EC900D20BAA4] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [821608] [PID.1932] =>.Apple Inc.®
[MD5.070753E47E04181DD440EA2FEFE3115C] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [18678376] [PID.3132] =>.Skype Technologies SA®
[MD5.6A985762E78E0885E0B07902A78AFBCB] - (.TomTom - MyTomTom.) -- C:\Program Files\MyTomTom 3\MyTomTomSA.exe [451656] [PID.376] =>.TomTom International BV®
[MD5.4F9236BE13917B89F7A03DEA85F220FA] - (.Copyright 2012 - WebPlayer.) -- C:\Users\maelle\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe [202752] [PID.2408]
[MD5.231D9FD839CC79E65859D5F418F95B94] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe [277920] [PID.832] =>.McAfee, Inc.®
[MD5.376A9B411BF8B77D5BF84B24D0C7DACD] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [863184] [PID.1356] =>.Google Inc®
[MD5.376A9B411BF8B77D5BF84B24D0C7DACD] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [863184] [PID.1952] =>.Google Inc®
[MD5.376A9B411BF8B77D5BF84B24D0C7DACD] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [863184] [PID.944] =>.Google Inc®
[MD5.376A9B411BF8B77D5BF84B24D0C7DACD] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [863184] [PID.4304] =>.Google Inc®
[MD5.376A9B411BF8B77D5BF84B24D0C7DACD] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [863184] [PID.4848] =>.Google Inc®
[MD5.376A9B411BF8B77D5BF84B24D0C7DACD] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [863184] [PID.5348] =>.Google Inc®
[MD5.D5FB9FA3F75ED20E25336D325569B264] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\maelle\Downloads\ZHPDiag3 (1).exe [2068992] [PID.5652] =>.Nicolas Coolman
[MD5.88FBBB1C601A6BC42054E57C2897FA45] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] [PID.4204] =>.Google Inc®
[MD5.88FBBB1C601A6BC42054E57C2897FA45] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] [PID.2856] =>.Google Inc®
[MD5.2E18E815C07D5BB653511880FECCE813] - (.Google Inc. - Google Chrome Installer.) -- C:\Program Files\Google\Update\Install\{922CF656-B373-437C-9DAE-B3F137249687}\47.0.2526.106_chrome_installer.exe [43901520] [PID.2460] =>.Google Inc®
[MD5.3C5CC4AD507DEA6325D532406505A9C7] - (.Google Inc. - Google Chrome Installer.) -- C:\Windows\Temp\CR_A2121.tmp\setup.exe [1000264] [PID.5412] =>.Google Inc®

---\\ Google Chrome, Démarrage,Recherche,Extensions (8) - 192s
G2 - GCE: Preference [User Data\Default] [algmakeomkafjglfhpomolfhjppoojff] [https://w9u6a2p6.ssl.hwcdn.net/plugin/chrome/updat] Pricora =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__ =>.AdblocPlus Plugin
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (25) - 17s
M0 - MFSP: prefs.js [maelle - vq8vjjwt.default] ^http://www\\.claro-search\\.com/\\?affID=114508.* =>PUP.Optional.ClaroSearch
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
P2 - EXT FILE: (...) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
P2 - EXT FILE: (...) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\searchplugins\babylon.xml =>PUP.Optional.Babylon
P2 - EXT FILE: (...) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\searchplugins\bing.xml
P2 - EXT FILE: (...) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\searchplugins\conduit.xml =>PUP.Optional.Conduit
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla
P2 - EXT: (.Corporate Inc - Pricora.) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\94ae0976-89df-4347-9771-5371c6e203bf@3796dc63-d06d-4575-a997-9b5c935fe915.com =>PUP.Optional.CrossRider
P2 - EXT: (.mywebsearch - My Web Search.) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\m3ffxtbr@mywebsearch.com =>PUP.Optional.SimpleSearches
P2 - EXT: (...) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\staged
P2 - EXT: (.Conduit Ltd. - DVDVideoSoftTB .) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
P2 - EXT: (. - Apps Hat.) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\{97A78363-B868-4B48-AC91-A783A31215AF}
P2 - EXT: (.IMinent - IMinent Toolbar.) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444} =>PUP.Optional.IMBooster
P2 - EXT: (.Conduit Ltd. - FileConverter 1.5 .) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\{cfcb809c-3a22-4616-a916-6c007bd9d920}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_20_0_0_267.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll =>.Apple Inc.
P2 - FPN: [HKLM] [@exent.com/npExentCtl,version=7.0.0.0] - (.Exent Technologies Ltd..) -- C:\Program Files\Free Ride Games\npExentCtl.dll
P2 - FPN: [HKLM] [@mcafee.com/McAfeeMssPlugin] - (.McAfee.) -- C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll =>.McAfee

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (13) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com/ =>PUP.Optional.Conduit
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} Orphean
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (5) - 1s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation

---\\ Etude du fichier hosts (2) - 0s
0
~ Le fichier hôte est sain (The hosts file is clean) (23)

---\\ Browser Helper Object de navigateur (BHO) (7) - 3s
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} . (...) -- C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (.not file.)
O2 - BHO: CrossriderApp0035329 - {11111111-1111-1111-1111-110311531129} . (.Corporate Inc - Pricora BHO.) -- C:\Program Files\Pricora\Pricora-bho.dll =>PUP.Optional.CrossRider
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll =>.Adobe Systems, Incorporated®
O2 - BHO: DVDVideoSoftTB - {872b5b88-9db5-4310-bdd0-ac189557e5f5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\DVDVideoSoftTB\prxtbDVDV.dll =>.Conduit Ltd.®
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll =>.Microsoft Corporation®
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll =>.Skype Technologies SA®
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL =>.Microsoft Corporation®

---\\ Internet Explorer, Barre d'outil (4) - 1s
O3 - Toolbar: 0xCCE97A9783AFE8459E03E2798216E2D5 - [HKCU]{977AE9CC-AF83-45E8-9E03-E2798216E2D5} . (...) -- (.not file.)
O3 - Toolbar: 0x885B2B87B59D1043BDD0AC189557E5F5 - [HKCU]{872B5B88-9DB5-4310-BDD0-AC189557E5F5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\DVDVideoSoftTB\prxtbDVDV.dll =>.Conduit Ltd.®
O3 - Toolbar: DVDVideoSoftTB Toolbar - [HKLM]{872b5b88-9db5-4310-bdd0-ac189557e5f5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\DVDVideoSoftTB\prxtbDVDV.dll =>.Conduit Ltd.®
O3 - Toolbar: Claro LTD Toolbar - [HKLM]{9E131A93-EED7-4BEB-B015-A0ADB30B5646} . (.Conduit Ltd. - Conduit Toolbar.) -- (.not file.) =>PUP.Optional.ClaroSearch

---\\ Applications lancées au démarrage du système (36) - 18s
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe =>.Adobe Systems, Incorporated®
O4 - HKLM\..\Run: [HotkeyMon] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe =>.ASUSTeK Computer Inc.®
O4 - HKLM\..\Run: [HotkeyService] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe =>.ASUSTeK Computer Inc.®
O4 - HKLM\..\Run: [SuperHybridEngine] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe =>.ASUSTeK Computer Inc.®
O4 - HKLM\..\Run: [LiveUpdate] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe =>.ASUSTeK Computer Inc.®
O4 - HKLM\..\Run: [CapsHook] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe =>.ASUSTeK Computer Inc.®
O4 - HKLM\..\Run: [Eee Docking] . (.ASUSTek Computer Inc. - Eee Docking Application.) -- C:\Program Files\Asus\Eee Docking\Eee Docking.exe =>.ASUSTek Computer Inc.
O4 - HKLM\..\Run: [ASUSWebStorage] . (.ecareme - AsusWebStorage.) -- C:\Program Files\Asus\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe =>.eCareme Technologies, Inc.®
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [Boingo Wi-Fi] . (...) -- C:\Program Files\Boingo\Boingo Wi-Fi\Boingo.lnk
O4 - HKLM\..\Run: [ASUSPRP] . (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files\Asus\APRP\aprp.exe =>.ASUSTek Computer Inc.
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe =>.Apple Inc.®
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe =>.Apple Inc.®
O4 - HKLM\..\Run: [KiesTrayAgent] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe =>.Samsung Electronics CO., LTD.®
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Company®
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\maelle\AppData\Local\Facebook\Update\FacebookUpdate.exe =>.Facebook, Inc.®
O4 - HKCU\..\Run: [KiesHelper] . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\KiesHelper.exe =>.Samsung Electronics CO., LTD.®
O4 - HKCU\..\Run: [KiesPDLR] . (.Copyright © 2011 - KiesPDLR.) -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe =>.Samsung Electronics CO., LTD.®
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies SA®
O4 - HKCU\..\Run: [MyTomTomSA.exe] . (.TomTom - MyTomTom.) -- C:\Program Files\MyTomTom 3\MyTomTomSA.exe =>.TomTom International BV®
O4 - HKCU\..\Run: [SearchProtect] C:\Users\maelle\AppData\Roaming\SearchProtect\bin\cltmng.exe (.not file.) =>PUP.Optional.SearchProtect
O4 - HKCU\..\Run: [FLV Player] . (.Copyright 2012 - WebPlayer.) -- C:\Users\maelle\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-727067340-2563500783-485603846-1000\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\maelle\AppData\Local\Facebook\Update\FacebookUpdate.exe =>.Facebook, Inc.®
O4 - HKUS\S-1-5-21-727067340-2563500783-485603846-1000\..\Run: [KiesHelper] . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\KiesHelper.exe =>.Samsung Electronics CO., LTD.®
O4 - HKUS\S-1-5-21-727067340-2563500783-485603846-1000\..\Run: [KiesPDLR] . (.Copyright © 2011 - KiesPDLR.) -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe =>.Samsung Electronics CO., LTD.®
O4 - HKUS\S-1-5-21-727067340-2563500783-485603846-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies SA®
O4 - HKUS\S-1-5-21-727067340-2563500783-485603846-1000\..\Run: [MyTomTomSA.exe] . (.TomTom - MyTomTom.) -- C:\Program Files\MyTomTom 3\MyTomTomSA.exe =>.TomTom International BV®
O4 - HKUS\S-1-5-21-727067340-2563500783-485603846-1000\..\Run: [SearchProtect] C:\Users\maelle\AppData\Roaming\SearchProtect\bin\cltmng.exe (.not file.) =>PUP.Optional.SearchProtect
O4 - HKUS\S-1-5-21-727067340-2563500783-485603846-1000\..\Run: [FLV Player] . (.Copyright 2012 - WebPlayer.) -- C:\Users\maelle\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe

---\\ Raccourcis Global Startup (22) - 26s
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\maelle\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: Samsung Kies.lnk . (.Samsung - Kies.) C:\Program Files\Samsung\Kies\Kies.exe =>.Samsung Electronics CO., LTD.®
O4 - GS\sendTo [Administrateur]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies SA®
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Skype.lnk . (...) C:\windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O4 - GS\Desktop [maelle]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\maelle\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [maelle]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [maelle]: Samsung Kies.lnk . (.Samsung - Kies.) C:\Program Files\Samsung\Kies\Kies.exe =>.Samsung Electronics CO., LTD.®
O4 - GS\sendTo [maelle]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies SA®
O4 - GS\TaskBar [maelle]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [maelle]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [maelle]: Skype.lnk . (...) C:\windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee.) C:\Program Files\McAfee Security Scan\3.11.266\McUICnt.exe =>.McAfee, Inc.®
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O4 - GS\Startup [Public]: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee Security Scanner Scheduler.) C:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe =>.McAfee, Inc.®
O4 - GS\Programs [Public]: Webplayer.lnk . (...) C:\Users\maelle\AppData\Roaming\Microsoft\Installer\{9937E55B-6331-4804-93EF-77E992F204BD}\_3F7CDAE07E1639C4AEA7A8.exe
O4 - GS\Programs [Public]: WebPlayerV2.lnk . (...) C:\Users\maelle\AppData\Roaming\Microsoft\Installer\{77236F9C-987C-40EC-832B-5BD6181E4846}\_0F0DE1EC70B630F221EA82.exe
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\windows\system32\taskschd.msc

---\\ Modification Domaine/Adresses DNS (2) - 1s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8CEA85E6-4BE1-4F1F-A704-6951351BD349}: DhcpNameServer = 192.168.1.1 192.168.1.1

---\\ Protocole additionnel (27) - 3s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll =>.Microsoft Corporation®
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll =>.Microsoft Corporation®
O18 - Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll =>.Skype Technologies SA®
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\Program Files\Common Files\Skype\Skype4COM.dll =>.Skype Technologies SA®
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll =>.Microsoft Corporation®
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll =>.Microsoft Corporation®
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s
O20 - AppInit_DLLs: . (...) - c:\progra~2\browse~1\261249~1.132\{61d8b~1\browse~1.dll (.not file.)

---\\ Logiciels installés (87) - 88s
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {0A5B39D2-7ED6-4779-BCC9-37F381139DB3} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 20 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 20 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader 9.1 MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EB879750-CCBD-4013-BFD5-0294D4DA5BD0} =>.Apple Inc.
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {EFC04D3F-A152-47E7-8517-EE0F6201AFEF} =>.Apple Inc.
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc.
O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM] -- ASUS WebStorage =>.eCareme Technologies, Inc.
O42 - Logiciel: ASUSUpdate for Eee PC - (.ASUSTeK Computer Inc..) [HKLM] -- {587178E7-B1DF-494E-9838-FA4DD36E873C} =>.ASUSTek Computer Inc.
O42 - Logiciel: Atheros Client Installation Program - (.Atheros.) [HKLM] -- {28006915-2739-4EBE-B5E8-49B25D32EB33} =>.Macrovision Corporation®
O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549} =>.Atheros Communications Inc.®
O42 - Logiciel: Boingo Wi-Fi - (.Boingo Wireless, Inc..) [HKLM] -- {7E49ED48-B67E-4A27-839D-EE08590A96BB}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {79155F2B-9895-49D7-8612-D92580E0DE5B} =>.Apple Inc.
O42 - Logiciel: Bundled software uninstaller - (...) [HKLM] -- bi_uninstaller {00841D099D16B738F34172FEEFE1D2574F}
O42 - Logiciel: CapsHook - (.AsusTek Computer.) [HKLM] -- {4B5092B6-F231-4D18-83BC-2618B729CA45} =>.ASUSTeK Computer Inc.®
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640} =>.Cisco Systems, Inc.
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} =>.Microsoft
O42 - Logiciel: DVDVideoSoftTB Toolbar - (.DVDVideoSoftTB.) [HKLM] -- DVDVideoSoftTB Toolbar =>.Conduit Ltd.®
O42 - Logiciel: E-Cam - (.AzureWave.) [HKLM] -- {185AFA7A-F63E-450B-94AA-011CAC18090E} =>.Macrovision Corporation®
O42 - Logiciel: Eee Docking 3.8.3 - (.ASUSTek Computer Inc..) [HKLM] -- Eee Docking_is1 =>.ASUSTek Computer Inc.
O42 - Logiciel: EeeSplendid - (.ASUS.) [HKLM] -- {6333FC29-BFE5-4024-AC78-958A1A7555D1} =>.ASUS
O42 - Logiciel: EeeSplendid - (.ASUS.) [HKLM] -- {D802DD00-16A8-4A58-AFC9-020C2380ECDA} =>.ASUS
O42 - Logiciel: Étude pour l'amélioration du produit HP Deskjet 1050 J410 series - (.Hewlett-Packard Co..) [HKLM] -- {D498A577-2FCE-41C9-8D5A-9F5938A2A211} =>.Hewlett-Packard Co.
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7} =>.Skype Limited
O42 - Logiciel: FilesFrog Update Checker - (...) [HKLM] -- FilesFrog Update Checker
O42 - Logiciel: FLV Player - (.Somoto Ltd..) [HKCU] -- FLV Player =>PUP.Optional.MegaSearch
O42 - Logiciel: FontResizer - (.ASUSTek.) [HKLM] -- {17780F99-A9DF-450B-81B3-6781B20A17A8} =>.ASUSTeK
O42 - Logiciel: FontResizer - (.ASUSTek.) [HKLM] -- InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8} =>.ASUSTeK
O42 - Logiciel: Free Ride Games Player - (...) [HKLM] -- {2B7BDADB-EC8C-4C54-B5DD-CE45A016D3A7}
O42 - Logiciel: Game Park Console - (.Oberon Media, Inc..) [HKLM] -- {D44AA979-47C2-4BC0-A860-09A54224EA44}_is1 =>.Oberon Media, Inc.
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM] -- {1C3D2F92-D25E-4D98-B810-3F3B0857BF26} =>.Google, Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc.
O42 - Logiciel: Hotkey Service - (.AsusTek Computer Inc..) [HKLM] -- {71C0E38E-09F2-4386-9977-404D4F6640CD} =>.ASUSTeK Computer Inc.®
O42 - Logiciel: HP Deskjet 1050 J410 series Aide - (.Hewlett Packard.) [HKLM] -- {5C90D8CF-F12A-41C6-9007-3B651A1F0D78} =>.Hewlett Packard
O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM] -- HP Photo Creations =>.Visan Industries®
O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM] -- {23CCE784-A812-4647-AEFF-1DCCD4E57478} =>.Hewlett-Packard Company
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5} =>.Hewlett-Packard
O42 - Logiciel: InstantOn - (.ASUS.) [HKLM] -- {749F674B-2674-47E8-879C-5626A06B2A91} =>.ASUS
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI =>.Intel Corporation®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} =>.Intel Corporation®
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {8B92D97D-DB3D-4926-A8F7-718FE7C5EE18} =>.Apple Inc.
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} =>.Microsoft Corporation
O42 - Logiciel: LiveUpdate - (.AsusTek Computer Inc..) [HKLM] -- {38E5A3B1-ADF1-47E0-8024-76310A30EB36} =>.ASUSTek Computer Inc.
O42 - Logiciel: LocaleMe - (.ASUS.) [HKLM] -- {F58C1D44-4AC9-48E8-9049-7A6CDFCB415C} =>.ASUS
O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 1050 J410 series - (.Hewlett-Packard Co..) [HKLM] -- {F082A75C-5B40-445D-9A71-3CD797534497} =>.Hewlett-Packard Co.
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM] -- McAfee Security Scan =>.McAfee, Inc.®
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM] -- {95120000-00B9-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation
O42 - Logiciel: Mozilla Firefox 22.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 22.0 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} =>.Microsoft
O42 - Logiciel: MyFreeCodec - (...) [HKCU] -- MyFreeCodec
O42 - Logiciel: MyTomTom 3.2.0.906 - (.TomTom.) [HKLM] -- MyTomTom =>.TomTom International BV®
O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM] -- {90150000-008C-0000-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM] -- {90150000-007E-0000-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM] -- {90150000-008C-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Online Games Manager v1.20 - (.Real Networks, Inc..) [HKLM] -- Online Games Manager =>.Real Networks, Inc.
O42 - Logiciel: Outil de notification de cadeaux MSN - (.Microsoft Corporation.) [HKCU] -- {CAD9C0EB-457D-49BB-A6AD-389304C38B2A} =>.Microsoft Corporation®
O42 - Logiciel: Pricora - (.Corporate Inc.) [HKLM] -- Pricora =>PUP.Optional.Pricora
O42 - Logiciel: Ralink RT2860 Wireless LAN Card - (.Ralink.) [HKLM] -- {8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF} =>.Macrovision Corporation®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.
O42 - Logiciel: REALTEK Wireless LAN Driver - (.REALTEK Semiconductor Corp..) [HKLM] -- {9D3D8C60-A55F-4fed-B2B9-173F09590E16} =>.Realtek Semiconductor Corp®
O42 - Logiciel: RegClean Pro - (.Systweak Inc.) [HKLM] -- RegClean Pro_is1 {2F57407B1F0C3DF506BB71A0E3F0EFD2} =>PUP.Optional.RegistryPowerCleaner
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM] -- {758C8301-2696-4855-AF45-534B1200980A} =>.Samsung Electronics Co., Ltd.
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A} =>.Samsung Electronics Co., Ltd.
O42 - Logiciel: Search Protect by conduit - (.Conduit.) [HKLM] -- SearchProtect {3A82654719D8F75B59134F7B66465210} =>PUP.Optional.SearchProtect
O42 - Logiciel: Skype Click to Call - (.Skype Technologies S.A..) [HKLM] -- {B6CF2967-C81E-40C0-9815-C05774FEF120} =>.Skype Technologies S.A.
O42 - Logiciel: Skype™ 6.3 - (.Skype Technologies S.A..) [HKLM] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D} =>.Skype Technologies S.A.
O42 - Logiciel: Super Hybrid Engine - (.AsusTek Computer.) [HKLM] -- {88F08F98-12BC-4613-81A2-8F9B88CFC73E} =>.ASUSTeK Computer Inc.®
O42 - Logiciel: Text Express 2 Deluxe - (.zylom.) [HKLM] -- f77b5bdbfd3d0aac9e5836ddbb29adf8 =>.RealNetworks, Inc.®
O42 - Logiciel: Times Reader - (.The New York Times Company.) [HKLM] -- {491ADA37-04EE-2ECE-9F86-DDC0106047AC}
O42 - Logiciel: Times Reader - (.The New York Times Company.) [HKLM] -- com.nyt.timesreader.78C54164786ADE80CB31E1C5D95607D0938C987A.1
O42 - Logiciel: Video Downloader version 2.0 - (...) [HKLM] -- Video Downloader_is1 =>PUP.Optional.VideoDownloader
O42 - Logiciel: Visual Studio C++ 10.0 Runtime - (.TomTom International B.V..) [HKLM] -- {4412F224-3849-4461-A3E9-DEEF8D252790} =>.TomTom International B.V.
O42 - Logiciel: Webplayer - (.Kreapixel.) [HKLM] -- {9937E55B-6331-4804-93EF-77E992F204BD} =>PUP.Optional.WebPlayer
O42 - Logiciel: WebPlayerV2 - (.Kreapixel.) [HKLM] -- {77236F9C-987C-40EC-832B-5BD6181E4846} =>PUP.Optional.SocialSkinz
O42 - Logiciel: Wedding Salon - (.zylom.) [HKLM] -- 38e70cd42be60b6c958bb06b4f116c74 =>.RealNetworks, Inc.®
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/17/2009 6.2.0.9403) - (.Broadcom.) [HKLM] -- B41C7C96D83162A676DA7365ADEFD6C1AF62A4EE =>.Microsoft Windows Component Publisher®
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/29/2009 6.1.7100.0) - (.Broadcom.) [HKLM] -- B5C82F3814F82FB37F1513B3185399BD88892B08 =>.Microsoft Windows Component Publisher®
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM] -- BF20603967CFDCB2BBF91950E8A56DFBC5C833FE =>.Microsoft Windows Component Publisher®

---\\ HKCU & HKLM Software Keys (114) - 89s
HKLM\SOFTWARE\59e88dbbc6eeb43 =>PUP.Optional.Heuristic
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc.
HKLM\SOFTWARE\ASUS
HKLM\SOFTWARE\AsusTek Computer
HKLM\SOFTWARE\AsusTek Computer Inc.
HKLM\SOFTWARE\Atheros
HKLM\SOFTWARE\Atheros Communications Inc.
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\AVAST Software
HKLM\SOFTWARE\AzureWave
HKLM\SOFTWARE\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\BrowserChoice
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\CoreSecurity
HKLM\SOFTWARE\DataMngr =>PUP.Optional.Datamngr
HKLM\SOFTWARE\DVDVideoSoftTB
HKLM\SOFTWARE\E-Cam
HKLM\SOFTWARE\ECAREME
HKLM\SOFTWARE\Exent
HKLM\SOFTWARE\GameInstaller
HKLM\SOFTWARE\GEAR Software
HKLM\SOFTWARE\GoBoingo
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\Hewlett-Packard
HKLM\SOFTWARE\HP
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\mcafeeupdater
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\Myfree Codec
HKLM\SOFTWARE\Oberon Media
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Pricora =>PUP.Optional.Pricora
HKLM\SOFTWARE\Ralink
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\REALTEK Semiconductor Corp.
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\RocketLife
HKLM\SOFTWARE\SAMSUNG
HKLM\SOFTWARE\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\Systweak =>.Superfluous.Systweak
HKLM\SOFTWARE\Tarma Installer =>.Superfluous.Tarma
HKLM\SOFTWARE\TomTom
HKLM\SOFTWARE\Trymedia Systems =>PUP.Optional.Trymedia
HKLM\SOFTWARE\Visan
HKLM\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\59e88dbbc6eeb43 =>PUP.Optional.Heuristic
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ASUS
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\BI =>PUP.Optional.MegaSearch
HKCU\SOFTWARE\BrowserChoice
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DataMngr =>PUP.Optional.Datamngr
HKCU\SOFTWARE\DataMngr_Toolbar =>PUP.Optional.Datamngr
HKCU\SOFTWARE\ECAREME
HKCU\SOFTWARE\Exent
HKCU\SOFTWARE\Facebook
HKCU\SOFTWARE\GoBoingo
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\HookNetwork
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Iminent =>PUP.Optional.IMBooster
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Macrovision
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MyFree Codec
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Northcode Inc
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\SearchProtect =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SkypeRS
HKCU\SOFTWARE\Softonic =>.Superfluous.Softonic
HKCU\SOFTWARE\Somoto =>PUP.Optional.MegaSearch
HKCU\SOFTWARE\Systweak =>.Superfluous.Systweak
HKCU\SOFTWARE\TomTom
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Visan
HKCU\SOFTWARE\WebPlayer =>PUP.Optional.WebPlayer
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\Zylom
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Toolbar
HKCU\SOFTWARE\AppDataLow\Software\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\DVDVideoSoftTB
HKCU\SOFTWARE\AppDataLow\Software\Exent
HKCU\SOFTWARE\AppDataLow\Software\FunWebProducts =>PUP.Optional.MyWebSearch
HKCU\SOFTWARE\AppDataLow\Software\MarkAny
HKCU\SOFTWARE\AppDataLow\Software\PriceGong =>PUP.Optional.PriceGong
HKCU\SOFTWARE\AppDataLow\Software\Pricora =>PUP.Optional.Pricora
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar

---\\ Contenu des dossiers Programmes (254) - 109s
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 22/03/2012 - [] D -- C:\Program Files\Apple Software Update =>.Apple Inc.®
O43 - CFD: 26/03/2012 - [] D -- C:\Program Files\Asus =>.ASUSTeK Computer Inc.®
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\Atheros
O43 - CFD: 26/05/2013 - [] D -- C:\Program Files\AVAST Software
O43 - CFD: 22/03/2012 - [] D -- C:\Program Files\Boingo {7EBEC80867FDD4EAE0781D6D78BBBA56}
O43 - CFD: 22/03/2012 - [] D -- C:\Program Files\Bonjour =>.Apple Inc.®
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\Cisco
O43 - CFD: 13/01/2016 - [] D -- C:\Program Files\Common Files
O43 - CFD: 15/09/2012 - [] D -- C:\Program Files\Conduit
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\DIFX =>.Microsoft Windows Component Publisher®
O43 - CFD: 02/12/2013 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 15/09/2012 - [] D -- C:\Program Files\DVDVideoSoftTB =>.Conduit Ltd.®
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\E-Cam
O43 - CFD: 23/03/2012 - [] D -- C:\Program Files\Free Ride Games
O43 - CFD: 26/05/2013 - [] D -- C:\Program Files\Google =>.Google Inc®
O43 - CFD: 08/01/2014 - [] D -- C:\Program Files\Hewlett-Packard =>.Hewlett-Packard Company®
O43 - CFD: 12/01/2014 - [] D -- C:\Program Files\Hp =>.Hewlett-Packard Company®
O43 - CFD: 12/01/2014 - [] D -- C:\Program Files\HP Photo Creations =>.Visan Industries®
O43 - CFD: 16/04/2012 - [] HD -- C:\Program Files\InstallShield Installation Information =>.Macrovision Corporation®
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\Intel =>.Intel Corporation®
O43 - CFD: 14/12/2013 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 22/03/2012 - [] D -- C:\Program Files\iPod =>.Apple Inc.®
O43 - CFD: 22/03/2012 - [] D -- C:\Program Files\iTunes =>.Apple Inc.®
O43 - CFD: 16/04/2012 - [] D -- C:\Program Files\MarkAny
O43 - CFD: 13/01/2016 - [] D -- C:\Program Files\McAfee Security Scan =>.McAfee, Inc.®
O43 - CFD: 13/01/2016 - [0] D -- C:\Program Files\Microsoft
O43 - CFD: 11/09/2013 - [] D -- C:\Program Files\Microsoft Application Virtualization Client =>.Microsoft Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 15/01/2014 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 12/01/2014 - [] D -- C:\Program Files\Microsoft Office 15 =>.Microsoft Corporation®
O43 - CFD: 11/10/2013 - [] D -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation®
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 15/01/2014 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 12/07/2013 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 04/09/2013 - [] D -- C:\Program Files\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 10/09/2012 - [] D -- C:\Program Files\MSECache
O43 - CFD: 29/04/2012 - [] D -- C:\Program Files\MyFree Codec
O43 - CFD: 10/04/2013 - [] D -- C:\Program Files\MyTomTom 3 =>.TomTom International BV®
O43 - CFD: 26/02/2013 - [] D -- C:\Program Files\Online Games Manager =>.RealNetworks, Inc.®
O43 - CFD: 16/11/2013 - [] D -- C:\Program Files\Pricora =>PUP.Optional.Pricora
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\Ralink
O43 - CFD: 13/01/2016 - [] D -- C:\Program Files\RealArcade =>.RealNetworks, Inc.®
O43 - CFD: 22/03/2012 - [] D -- C:\Program Files\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\REALTEK PCIE Wireless LAN Driver
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 16/09/2012 - [] D -- C:\Program Files\RegClean Pro {2F57407B1F0C3DF506BB71A0E3F0EFD2} =>PUP.Optional.RegistryPowerCleaner
O43 - CFD: 16/04/2012 - [] D -- C:\Program Files\Samsung =>.Samsung Electronics CO., LTD.®
O43 - CFD: 24/05/2013 - [] D -- C:\Program Files\SearchProtect {3A82654719D8F75B59134F7B66465210} =>PUP.Optional.SearchProtect
O43 - CFD: 20/05/2013 - [] RD -- C:\Program Files\Skype =>.Skype Technologies SA®
O43 - CFD: 22/03/2012 - [0] HD -- C:\Program Files\Temp
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\Times Reader
O43 - CFD: 10/04/2013 - [] D -- C:\Program Files\TomTom International B.V
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 02/12/2013 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\Windows Live =>.Microsoft Corporation®
O43 - CFD: 02/12/2013 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 12/12/2013 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 02/12/2013 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 11/02/2011 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 02/12/2013 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 22/03/2012 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 26/03/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 22/03/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Boingo
O43 - CFD: 02/04/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\E-Cam
O43 - CFD: 21/04/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Park
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 28/02/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 12/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
O43 - CFD: 12/01/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 22/03/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 13/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
O43 - CFD: 12/01/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 25/12/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)
O43 - CFD: 11/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 29/04/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
O43 - CFD: 09/10/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
O43 - CFD: 16/04/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
O43 - CFD: 02/04/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ralink Wireless
O43 - CFD: 16/09/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
O43 - CFD: 16/04/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
O43 - CFD: 06/02/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 13/01/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 10/04/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
O43 - CFD: 02/04/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 13/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zylom
O43 - CFD: 10/10/2012 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 22/03/2012 - [] D -- C:\ProgramData\Apple
O43 - CFD: 22/03/2012 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 02/04/2011 - [] D -- C:\ProgramData\Atheros
O43 - CFD: 13/01/2016 - [0] D -- C:\ProgramData\AVAST Software
O43 - CFD: 09/10/2012 - [0] D -- C:\ProgramData\Babylon =>PUP.Optional.Babylon
O43 - CFD: 03/06/2013 - [] D -- C:\ProgramData\Browser Manager =>PUP.Optional.SpeedBrowser
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 23/03/2012 - [] D -- C:\ProgramData\Free Ride Games
O43 - CFD: 22/03/2012 - [] D -- C:\ProgramData\GoBoingo
O43 - CFD: 12/01/2014 - [] D -- C:\ProgramData\HP
O43 - CFD: 12/01/2014 - [] D -- C:\ProgramData\HP Photo Creations
O43 - CFD: 09/10/2012 - [] D -- C:\ProgramData\IBUpdaterService =>PUP.Optional.InstallBrain
O43 - CFD: 26/02/2013 - [] D -- C:\ProgramData\JollyBear
O43 - CFD: 22/03/2012 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 13/01/2016 - [] D -- C:\ProgramData\McAfee Security Scan
O43 - CFD: 13/01/2016 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 21/11/2012 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 04/05/2012 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 02/04/2011 - [] D -- C:\ProgramData\OberonGameConsole
O43 - CFD: 23/03/2012 - [] D -- C:\ProgramData\PlayFirst
O43 - CFD: 09/03/2013 - [] D -- C:\ProgramData\Playrix Entertainment
O43 - CFD: 02/04/2011 - [] D -- C:\ProgramData\Ralink Driver
O43 - CFD: 15/01/2014 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 16/04/2012 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 20/05/2013 - [] D -- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 16/03/2013 - [] D -- C:\ProgramData\SugarGames
O43 - CFD: 13/01/2016 - [] D -- C:\ProgramData\Systweak =>.Superfluous.Systweak
O43 - CFD: 12/01/2016 - [] D -- C:\ProgramData\Tarma Installer =>.Superfluous.Tarma
O43 - CFD: 25/04/2012 - [] AD -- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 12/01/2016 - [] D -- C:\ProgramData\Trend Micro
O43 - CFD: 28/02/2013 - [] D -- C:\ProgramData\Trymedia =>PUP.Optional.Trymedia
O43 - CFD: 05/11/2012 - [] D -- C:\ProgramData\VirtualizedApplications
O43 - CFD: 12/01/2014 - [] D -- C:\ProgramData\Visan
O43 - CFD: 09/03/2013 - [] D -- C:\ProgramData\Zylom
O43 - CFD: 22/03/2012 - [] D -- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 04/10/2013 - [] D -- C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 22/03/2012 - [] D -- C:\Program Files\Common Files\Apple
O43 - CFD: 15/01/2014 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 22/03/2012 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\Common Files\InstantOn
O43 - CFD: 15/01/2014 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\Common Files\Oberon Media
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 05/05/2013 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 02/12/2013 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\Common Files\Windows Live
O43 - CFD: 22/03/2012 - [] D -- C:\Users\maelle\AppData\Roaming\Adobe
O43 - CFD: 02/02/2013 - [] D -- C:\Users\maelle\AppData\Roaming\Apple Computer
O43 - CFD: 23/03/2012 - [] D -- C:\Users\maelle\AppData\Roaming\ASUS WebStorage
O43 - CFD: 09/10/2012 - [] D -- C:\Users\maelle\AppData\Roaming\Babylon =>PUP.Optional.Babylon
O43 - CFD: 23/03/2012 - [] D -- C:\Users\maelle\AppData\Roaming\com.nyt.timesreader.78C54164786ADE80CB31E1C5D95607D0938C987A.1
O43 - CFD: 15/09/2012 - [] D -- C:\Users\maelle\AppData\Roaming\DVDVideoSoft
O43 - CFD: 15/09/2012 - [] D -- C:\Users\maelle\AppData\Roaming\DVDVideoSoftIEHelpers
O43 - CFD: 02/04/2011 - [] D -- C:\Users\maelle\AppData\Roaming\E-Cam
O43 - CFD: 12/01/2016 - [] D -- C:\Users\maelle\AppData\Roaming\HpUpdate
O43 - CFD: 16/04/2012 - [] D -- C:\Users\maelle\AppData\Roaming\Identities
O43 - CFD: 02/04/2011 - [] D -- C:\Users\maelle\AppData\Roaming\InstallShield
O43 - CFD: 02/04/2011 - [] D -- C:\Users\maelle\AppData\Roaming\Macromedia
O43 - CFD: 09/02/2013 - [] SD -- C:\Users\maelle\AppData\Roaming\Microsoft
O43 - CFD: 22/03/2012 - [] D -- C:\Users\maelle\AppData\Roaming\Mozilla
O43 - CFD: 23/03/2012 - [] D -- C:\Users\maelle\AppData\Roaming\PlayFirst
O43 - CFD: 16/04/2012 - [] D -- C:\Users\maelle\AppData\Roaming\Samsung
O43 - CFD: 24/05/2013 - [] D -- C:\Users\maelle\AppData\Roaming\SearchProtect =>PUP.Optional.SearchProtect
O43 - CFD: 13/01/2016 - [] D -- C:\Users\maelle\AppData\Roaming\Skype
O43 - CFD: 12/01/2014 - [] D -- C:\Users\maelle\AppData\Roaming\SoftGrid Client
O43 - CFD: 13/01/2016 - [] D -- C:\Users\maelle\AppData\Roaming\Systweak =>.Superfluous.Systweak
O43 - CFD: 16/04/2012 - [0] D -- C:\Users\maelle\AppData\Roaming\Temp
O43 - CFD: 03/11/2012 - [0] D -- C:\Users\maelle\AppData\Roaming\TP
O43 - CFD: 02/11/2012 - [] D -- C:\Users\maelle\AppData\Roaming\WebPlayerBdd =>PUP.Optional.SocialSkinz
O43 - CFD: 07/05/2012 - [] D -- C:\Users\maelle\AppData\Roaming\Windows Live Writer
O43 - CFD: 26/02/2013 - [0] D -- C:\Users\maelle\AppData\Roaming\WinRAR
O43 - CFD: 14/01/2016 - [] D -- C:\Users\maelle\AppData\Roaming\ZHP
O43 - CFD: 10/03/2013 - [0] SHD -- C:\Users\maelle\AppData\Local\.#
O43 - CFD: 31/03/2012 - [] D -- C:\Users\maelle\AppData\Local\Adobe
O43 - CFD: 22/03/2012 - [] D -- C:\Users\maelle\AppData\Local\Apple
O43 - CFD: 22/03/2012 - [] D -- C:\Users\maelle\AppData\Local\Apple Computer
O43 - CFD: 22/03/2012 - [0] SHD -- C:\Users\maelle\AppData\Local\Application Data
O43 - CFD: 23/03/2012 - [] D -- C:\Users\maelle\AppData\Local\ASUS
O43 - CFD: 15/11/2013 - [] D -- C:\Users\maelle\AppData\Local\Bundled software uninstaller =>PUP.Optional.MegaSearch
O43 - CFD: 12/01/2016 - [] D -- C:\Users\maelle\AppData\Local\Conduit
O43 - CFD: 22/11/2012 - [0] D -- C:\Users\maelle\AppData\Local\Diagnostics
O43 - CFD: 16/04/2012 - [] D -- C:\Users\maelle\AppData\Local\Downloaded Installations
O43 - CFD: 22/11/2012 - [0] D -- C:\Users\maelle\AppData\Local\ElevatedDiagnostics
O43 - CFD: 22/03/2012 - [] D -- C:\Users\maelle\AppData\Local\Facebook
O43 - CFD: 15/11/2013 - [] D -- C:\Users\maelle\AppData\Local\FilesFrog Update Checker =>PUP.Optional.MegaSearch
O43 - CFD: 26/05/2013 - [] D -- C:\Users\maelle\AppData\Local\Google
O43 - CFD: 22/03/2012 - [0] SHD -- C:\Users\maelle\AppData\Local\Historique
O43 - CFD: 12/01/2014 - [] D -- C:\Users\maelle\AppData\Local\HP
O43 - CFD: 26/02/2013 - [] D -- C:\Users\maelle\AppData\Local\JollyBear
O43 - CFD: 10/10/2012 - [] D -- C:\Users\maelle\AppData\Local\Macromedia
O43 - CFD: 02/12/2013 - [] D -- C:\Users\maelle\AppData\Local\Microsoft
O43 - CFD: 23/05/2013 - [] D -- C:\Users\maelle\AppData\Local\Microsoft Games
O43 - CFD: 21/11/2012 - [0] D -- C:\Users\maelle\AppData\Local\Microsoft Help
O43 - CFD: 22/03/2012 - [] D -- C:\Users\maelle\AppData\Local\Mozilla
O43 - CFD: 19/05/2013 - [] D -- C:\Users\maelle\AppData\Local\Programs
O43 - CFD: 07/05/2012 - [] D -- C:\Users\maelle\AppData\Local\Samsung
O43 - CFD: 03/11/2012 - [] D -- C:\Users\maelle\AppData\Local\SoftGrid Client
O43 - CFD: 14/01/2016 - [] D -- C:\Users\maelle\AppData\Local\Temp
O43 - CFD: 22/03/2012 - [0] SHD -- C:\Users\maelle\AppData\Local\Temporary Internet Files
O43 - CFD: 10/04/2013 - [] D -- C:\Users\maelle\AppData\Local\TomTom
O43 - CFD: 26/02/2013 - [] D -- C:\Users\maelle\AppData\Local\VirtualStore
O43 - CFD: 14/01/2016 - [] D -- C:\Users\maelle\AppData\Local\WebPlayer
O43 - CFD: 08/04/2013 - [] D -- C:\Users\maelle\AppData\Local\Windows Live
O43 - CFD: 07/05/2012 - [] D -- C:\Users\maelle\AppData\Local\Windows Live Writer
O43 - CFD: 17/05/2013 - [0] D -- C:\Users\maelle\AppData\Local\{044456E0-C664-42CF-8A93-75545384FF32} =>.Empty
O43 - CFD: 20/04/2013 - [0] D -- C:\Users\maelle\AppData\Local\{067F8EFC-0F02-423E-B429-1AB44EB49B91} =>.Empty
O43 - CFD: 07/09/2013 - [0] D -- C:\Users\maelle\AppData\Local\{0686893E-0BE3-4C2C-8735-81F9A0D644F8} =>.Empty
O43 - CFD: 02/05/2012 - [0] D -- C:\Users\maelle\AppData\Local\{0BCEB390-6F8D-4901-B8BB-DB08436F3DD6} =>.Empty
O43 - CFD: 12/07/2013 - [0] D -- C:\Users\maelle\AppData\Local\{1330A69D-0D7D-4893-9F47-032E980B2EA3} =>.Empty
O43 - CFD: 15/07/2012 - [0] D -- C:\Users\maelle\AppData\Local\{14C8858D-1057-4B52-BA45-4E4BFE528169} =>.Empty
O43 - CFD: 07/09/2013 - [0] D -- C:\Users\maelle\AppData\Local\{15A167DB-2486-4550-8C0A-F4EA160E0A3F} =>.Empty
O43 - CFD: 15/09/2013 - [0] D -- C:\Users\maelle\AppData\Local\{1AFBD030-E180-449A-AC36-041FAE1943D0} =>.Empty
O43 - CFD: 10/09/2012 - [0] D -- C:\Users\maelle\AppData\Local\{1C96CBED-B3FA-4C3B-8412-18EE85B072C1} =>.Empty
O43 - CFD: 21/10/2012 - [0] D -- C:\Users\maelle\AppData\Local\{1E14B076-5D0A-4967-A62A-DC36966622C1} =>.Empty
O43 - CFD: 08/09/2013 - [0] D -- C:\Users\maelle\AppData\Local\{1E221390-0D36-4960-B4EE-21769E736CA7} =>.Empty
O43 - CFD: 02/05/2012 - [0] D -- C:\Users\maelle\AppData\Local\{1F096D35-FE29-4D93-815C-E80C583C54D9} =>.Empty
O43 - CFD: 16/09/2013 - [0] D -- C:\Users\maelle\AppData\Local\{1FBF6632-1469-4ED7-A872-9B546EB7E4FF} =>.Empty
O43 - CFD: 01/09/2014 - [0] D -- C:\Users\maelle\AppData\Local\{207FDFC4-3280-454C-AABD-BAFF33C698DA} =>.Empty
O43 - CFD: 23/03/2012 - [0] D -- C:\Users\maelle\AppData\Local\{20ED4260-6718-4489-B4F5-983611B048F6} =>.Empty
O43 - CFD: 05/05/2013 - [0] D -- C:\Users\maelle\AppData\Local\{2CAD2E9E-2936-45FA-9BE8-12D6DC93B8D0} =>.Empty
O43 - CFD: 31/08/2012 - [0] D -- C:\Users\maelle\AppData\Local\{2EDDF3DF-1F9E-4FA4-A723-77F6298A2356} =>.Empty
O43 - CFD: 13/01/2016 - [0] D -- C:\Users\maelle\AppData\Local\{3005C481-707F-48FC-A923-0352C605F82A} =>.Empty
O43 - CFD: 03/02/2013 - [0] D -- C:\Users\maelle\AppData\Local\{36E7A3CF-73EC-4D34-A9C4-170CC9A0DD23} =>.Empty
O43 - CFD: 20/09/2013 - [0] D -- C:\Users\maelle\AppData\Local\{3C84D75A-AAE2-45B9-ABBA-167547F69FA1} =>.Empty
O43 - CFD: 07/05/2012 - [0] D -- C:\Users\maelle\AppData\Local\{4C6FD875-4558-4F87-B887-22F8E156BED7} =>.Empty
O43 - CFD: 16/04/2013 - [0] D -- C:\Users\maelle\AppData\Local\{577BD702-23B1-4760-9C7F-262D33718D0E} =>.Empty
O43 - CFD: 04/11/2013 - [0] D -- C:\Users\maelle\AppData\Local\{603113FA-2626-497D-91EA-C341070E31CF} =>.Empty
O43 - CFD: 08/09/2013 - [0] D -- C:\Users\maelle\AppData\Local\{6B12976E-5427-4375-8F2F-E7C1198A5479} =>.Empty
O43 - CFD: 16/09/2012 - [0] D -- C:\Users\maelle\AppData\Local\{6D592F3F-BBA6-484B-B86C-189CA29644AE} =>.Empty
O43 - CFD: 02/11/2012 - [0] D -- C:\Users\maelle\AppData\Local\{7481F236-766C-4AA1-AB7A-22BAEF960404} =>.Empty
O43 - CFD: 19/04/2013 - [0] D -- C:\Users\maelle\AppData\Local\{7A810FE3-5432-4DB6-B14E-601F8DAF45D7} =>.Empty
O43 - CFD: 17/11/2013 - [0] D -- C:\Users\maelle\AppData\Local\{80CAD6E9-90A4-4330-91BD-9DECC70288F4} =>.Empty
O43 - CFD: 14/04/2013 - [0] D -- C:\Users\maelle\AppData\Local\{950EC8EE-08D2-4036-8774-CC13F0917CF7} =>.Empty
O43 - CFD: 16/09/2013 - [0] D -- C:\Users\maelle\AppData\Local\{9726CA18-2544-4A13-A056-E9965DD956B6} =>.Empty
O43 - CFD: 21/04/2013 - [0] D -- C:\Users\maelle\AppData\Local\{983800D1-F744-4215-BCA4-63A59778C65C} =>.Empty
O43 - CFD: 07/10/2012 - [0] D -- C:\Users\maelle\AppData\Local\{9DA3068A-3FF1-4BE4-94BD-23FC8254FB9D} =>.Empty
O43 - CFD: 29/10/2013 - [0] D -- C:\Users\maelle\AppData\Local\{A697098B-B429-4C7A-B66F-20B556309A9B} =>.Empty
O43 - CFD: 14/02/2013 - [0] D -- C:\Users\maelle\AppData\Local\{B48E9DC2-4E10-4C5B-AEC5-E5A975A12CD9} =>.Empty
O43 - CFD: 07/02/2013 - [0] D -- C:\Users\maelle\AppData\Local\{CC974DE4-3D03-481D-A259-0DDD84E96C23} =>.Empty
O43 - CFD: 06/01/2014 - [0] D -- C:\Users\maelle\AppData\Local\{D0138E88-E8FD-44F7-B899-D29774E0D6D1} =>.Empty
O43 - CFD: 12/09/2013 - [0] D -- C:\Users\maelle\AppData\Local\{D5EF09E3-FBEB-447E-8A20-E17625E7534F} =>.Empty
O43 - CFD: 05/05/2013 - [0] D -- C:\Users\maelle\AppData\Local\{DAB6B8AE-27FD-4918-8BC6-181F73D12630} =>.Empty
O43 - CFD: 22/03/2012 - [0] D -- C:\Users\maelle\AppData\Local\{DBF9BA7A-F27E-4B11-9E5A-CBD417482C25} =>.Empty
O43 - CFD: 02/07/2012 - [0] D -- C:\Users\maelle\AppData\Local\{E0642A17-F1E1-48AE-A515-A1D29713B10B} =>.Empty
O43 - CFD: 16/09/2012 - [0] D -- C:\Users\maelle\AppData\Local\{E14B0B20-5802-4615-85CB-21A325D4BDB5} =>.Empty
O43 - CFD: 23/03/2012 - [0] D -- C:\Users\maelle\AppData\Local\{E7ED3D7D-622F-4631-B9F5-64FC06BAECFE} =>.Empty
O43 - CFD: 27/05/2013 - [0] D -- C:\Users\maelle\AppData\Local\{EAE737C7-8005-4479-B1DE-24546D11185D} =>.Empty
O43 - CFD: 12/09/2013 - [0] D -- C:\Users\maelle\AppData\Local\{FB395925-0208-400C-972C-E86B271F7BC3} =>.Empty
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\maelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 12/09/2013 - [] RD -- C:\Users\maelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 15/11/2013 - [] D -- C:\Users\maelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker =>PUP.Optional.MegaSearch
O43 - CFD: 15/11/2013 - [] D -- C:\Users\maelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player
O43 - CFD: 23/03/2012 - [] D -- C:\Users\maelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free Ride Games
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\maelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 12/09/2013 - [] RD -- C:\Users\maelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 12/01/2016 - [] D -- C:\Users\maelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Titanium

---\\ Derniers fichiers créés dans Windows Prefetcher (1) - 40s
O45 - LFCP:[MD5.473C77592CD1BDDD49E46ED79FA28F1B] 03/06/2013 A -- C:\windows\Prefetch\BROWSERMNGR.EXE-95EA759A.pf =>PUP.Optional.Babylon

---\\ ShellIconOverlayIdentifiers (SIOI) (7) - 1s
O106 - SIOI: Google Drive Shell extension [ GoogleDriveBlacklisted] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}. (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\googledrivesync32.dll =>.Google Inc®
O106 - SIOI: Google Drive Shell extension [ GoogleDriveSynced] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}. (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\googledrivesync32.dll =>.Google Inc®
O106 - SIOI: Google Drive Shell extension [ GoogleDriveSyncing] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}. (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\googledrivesync32.dll =>.Google Inc®
O106 - SIOI: AsusWSShellExt_B Class [AsusWSShellExt_B] - {CC5FC992-B0AA-47CD-9DC2-83445083CBB8}. (.Copyright 2009 - AsusWSShellExt Module.) -- C:\Program Files\Asus\ASUS WebStorage\3.0.84.161\AsusWSShellExt.dll
O106 - SIOI: AsusWSShellExt_O Class [AsusWSShellExt_O] - {618A47A2-528B-4D9A-AFC8-97D3233511E2}. (.Copyright 2009 - AsusWSShellExt Module.) -- C:\Program Files\Asus\ASUS WebStorage\3.0.84.161\AsusWSShellExt.dll
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation

---\\ Liste des pilotes du système (74) - 22s
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\windows\System32\drivers\adp94xx.sys [422976] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\windows\System32\drivers\adpahci.sys [297552] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\windows\System32\drivers\adpu320.sys [146512] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\windows\System32\drivers\aliide.sys [14400] =>.Microsoft Windows®
O58 - SDL:2011/03/11 06:38:37 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\windows\System32\drivers\amdsata.sys [80256] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\windows\System32\drivers\amdsbs.sys [159312] =>.Microsoft Windows®
O58 - SDL:2011/03/11 06:38:37 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\windows\System32\drivers\amdxata.sys [22400] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\windows\System32\drivers\arc.sys [76368] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\windows\System32\drivers\arcsas.sys [86608] =>.Microsoft Windows®
O58 - SDL:2010/06/28 06:24:00 A . (...) -- C:\windows\System32\drivers\AsIO.sys [11456] =>.ASUSTeK Computer Inc.®
O58 - SDL:2010/08/03 06:20:56 A . (...) -- C:\windows\System32\drivers\AsUpIO.sys [11832] =>.ASUSTeK Computer Inc.®
O58 - SDL:2009/10/05 17:31:50 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\windows\System32\drivers\athr.sys [1221632] =>.Atheros Communications, Inc.
O58 - SDL:2009/07/13 23:02:49 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gi.) -- C:\windows\System32\drivers\b57nd60x.sys [229888] =>.Broadcom Corporation
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\windows\System32\drivers\BrFiltLo.sys [13568] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\windows\System32\drivers\BrFiltUp.sys [5248] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 01:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\windows\System32\drivers\BrSerId.sys [272128] =>.Brother Industries Ltd.
O58 - SDL:2009/07/13 23:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\windows\System32\drivers\BrSerWdm.sys [62336] =>.Brother Industries Ltd.
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\windows\System32\drivers\BrUsbMdm.sys [12160] =>.Brother Industries Ltd.
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\windows\System32\drivers\BrUsbSer.sys [11904] =>.Brother Industries Ltd.
O58 - SDL:2009/07/01 05:46:20 A . (.Broadcom Corporation. - Widcomm Bluetooth USB Filter for Windows XP.) -- C:\windows\System32\drivers\btusbflt.sys [43944] =>.Broadcom Corporation®
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\windows\System32\drivers\bxvbdx.sys [430080] =>.Broadcom Corporation
O58 - SDL:2009/07/14 02:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\windows\System32\drivers\cmdide.sys [15952] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\windows\System32\drivers\djsvs.sys [70720] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\windows\System32\drivers\elxstor.sys [453712] =>.Microsoft Windows®
O58 - SDL:2010/07/21 06:34:28 A . (.ELAN Microelectronic Corp. - ETD Control Center.) -- C:\windows\System32\drivers\ETD.sys [102912] =>.ELAN Microelectronic Corp.
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\windows\System32\drivers\evbdx.sys [3100160] =>.Broadcom Corporation
O58 - SDL:2009/05/18 13:17:00 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\windows\System32\drivers\GEARAspiWDM.sys [26600] =>.GEAR Software Inc.®
O58 - SDL:2009/07/13 23:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\windows\System32\drivers\hcw85cir.sys [26624] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2009/07/14 02:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\windows\System32\drivers\HpSAMD.sys [67152] =>.Microsoft Windows®
O58 - SDL:2010/06/08 18:23:34 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x86.) -- C:\windows\System32\drivers\iaStor.sys [435736] =>.Intel Corporation®
O58 - SDL:2011/03/11 06:38:51 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\windows\System32\drivers\iaStorV.sys [332160] =>.Microsoft Windows®
O58 - SDL:2010/05/10 19:10:16 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\windows\System32\drivers\igdkmd32.sys [4806144] =>.Intel Corporation
O58 - SDL:2009/07/14 02:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\windows\System32\drivers\iirsp.sys [41040] =>.Microsoft Windows®
O58 - SDL:2009/07/20 10:29:40 A . (. - Keyboard Filter Driver.) -- C:\windows\System32\drivers\kbfiltr.sys [13880] =>.ASUSTeK Computer Inc.®
O58 - SDL:2010/08/24 10:55:51 A . (.Atheros Communications, Inc. - Atheros L1c PCI-E Gigabit Ethernet Controll.) -- C:\windows\System32\drivers\L1C62x86.sys [68208] =>.Atheros Communications Inc.®
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\windows\System32\drivers\lsi_fc.sys [95824] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas.sys [89168] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas2.sys [54864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\windows\System32\drivers\lsi_scsi.sys [96848] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\windows\System32\drivers\megasas.sys [30800] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\windows\System32\drivers\MegaSR.sys [235584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\windows\System32\drivers\nfrd960.sys [44624] =>.Microsoft Windows®
O58 - SDL:2011/03/11 06:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\windows\System32\drivers\nvraid.sys [117120] =>.Microsoft Windows®
O58 - SDL:2011/03/11 06:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\windows\System32\drivers\nvstor.sys [143744] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\windows\System32\drivers\ql2300.sys [1383488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\windows\System32\drivers\ql40xx.sys [106064] =>.Microsoft Windows®
O58 - SDL:2010/04/27 09:12:48 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\windows\System32\drivers\RTKVHDA.sys [3084256] =>.Realtek Semiconductor Corp®
O58 - SDL:2010/07/02 02:14:00 A . (.Realtek Semiconductor Corporation - Realtek RTL81892SE NDIS Driverr.) -- C:\windows\System32\drivers\rtl8192se.sys [1015912] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/07/13 21:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\windows\System32\drivers\secdrv.sys [20480] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\windows\System32\drivers\sisraid2.sys [40016] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\windows\System32\drivers\sisraid4.sys [77888] =>.Microsoft Windows®
O58 - SDL:2011/06/02 06:47:22 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\windows\System32\drivers\ssadcm.sys [10472] =>.MCCI Corporation
O58 - SDL:2011/06/02 06:47:22 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\windows\System32\drivers\ssadwh.sys [10344] =>.MCCI Corporation
O58 - SDL:2009/07/14 02:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\windows\System32\drivers\stexstor.sys [21072] =>.Microsoft Windows®
O58 - SDL:2013/04/30 09:51:09 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\windows\System32\drivers\tap0901.sys [35088] =>.AVAST Software®
O58 - SDL:2012/02/15 11:01:50 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\windows\System32\drivers\usbaapl.sys [43520] =>.Apple, Inc.
O58 - SDL:2009/07/14 02:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\windows\System32\drivers\viaide.sys [16976] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\windows\System32\drivers\vsmraid.sys [141904] =>.Microsoft Windows®
O58 - SDL:2009/07/13 22:40:41 A . (...) -- C:\windows\System32\ANSI.SYS [9029]
O58 - SDL:2009/10/05 17:31:50 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\windows\System32\athr.sys [1221632] =>.Atheros Communications, Inc.
O58 - SDL:2009/07/13 22:40:44 A . (...) -- C:\windows\System32\country.sys [27097]
O58 - SDL:2009/07/13 22:40:40 A . (...) -- C:\windows\System32\HIMEM.SYS [4768]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\windows\System32\KEY01.SYS [42809]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2009/07/13 22:40:23 A . (...) -- C:\windows\System32\NTDOS.SYS [27866]
O58 - SDL:2009/07/13 22:40:31 A . (...) -- C:\windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2009/07/13 22:40:35 A . (...) -- C:\windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2009/07/13 22:40:39 A . (...) -- C:\windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2009/07/13 22:40:27 A . (...) -- C:\windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2009/07/13 22:40:11 A . (...) -- C:\windows\System32\NTIO.SYS [33952]
O58 - SDL:2009/07/13 22:40:15 A . (...) -- C:\windows\System32\NTIO404.SYS [34672]
O58 - SDL:2009/07/13 22:40:17 A . (...) -- C:\windows\System32\NTIO411.SYS [35776]
O58 - SDL:2009/07/13 22:40:19 A . (...) -- C:\windows\System32\NTIO412.SYS [35536]
O58 - SDL:2009/07/13 22:40:13 A . (...) -- C:\windows\System32\NTIO804.SYS [34672]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (4) - 66s
O61 - LFC: 2016/01/12 21:24:34 A . (.ClientConnect Ltd..) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\staged\{cfcb809c-3a22-4616-a916-6c007bd9d920}\Plugins\npFirefoxPlugin.dll [216384] {43E7738E282F77369A5A4C0ED31A3C9F} =>PUP.Optional.ClientConnect
O61 - LFC: 2016/01/12 21:24:27 A . (.ClientConnect Ltd..) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\staged\{cfcb809c-3a22-4616-a916-6c007bd9d920}\ctypes\FirefoxCtype.dll [372000] {43E7738E282F77369A5A4C0ED31A3C9F} =>PUP.Optional.ClientConnect
O61 - LFC: 2016/01/12 21:23:57 A . (.ClientConnect Ltd..) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\staged\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\Plugins\npFirefoxPlugin.dll [216384] {43E7738E282F77369A5A4C0ED31A3C9F} =>PUP.Optional.ClientConnect
O61 - LFC: 2016/01/12 21:23:47 A . (.ClientConnect Ltd..) -- C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\staged\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\ctypes\FirefoxCtype.dll [372000] {43E7738E282F77369A5A4C0ED31A3C9F} =>PUP.Optional.ClientConnect

---\\ Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (12) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation

---\\ Recherche d'infection sur les navigateurs (266) - 170s
O69 - SBI: C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\searchplugins\conduit.xml
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.1000082.isDisplayHidden", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.1000082.isPlayDisplay", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.1000082.shrinkState", "shrinked"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.1000082.state", "{\"state\":\"stopped\",\"text\":\"Hotmix 108\",\"description\":\"Hotmix 108\",\"url\":\"http[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.1000234.TWC_TMP_city", ""); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.1000234.TWC_TMP_country", "FR"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.1000234.TWC_locId", "USNY0996"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.1000234.TWC_location", "New York, NY"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.1000234.TWC_region", "FR"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.1000234.TWC_temp_dis", "c"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.1000234.TWC_wind_dis", "kmh"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.1000234.weatherData", "{\"icon\":\"28.png\",\"temperature\":\"24°C\",\"temperatureClear\":\"24°C\",\"highTemp[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.CBOpenMAMSettings.enc", "MA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.FirstTime", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.FirstTimeFF3", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.LoginRevertSettingsEnabled", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.PG_ENABLE", "dHJ1ZQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.PG_ENABLE.enc", "ZEhKMVpRPT0="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.RevertSettingsEnabled", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.SF_JUST_INSTALLED.enc", "RkFMU0U="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.SF_STATUS.enc", "RU5BQkxFRA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.SF_USER_ID.enc", "Y2lkXzE1MjAxMzE4MTEyNTEzNDUwMg=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.SearchAppState.enc", "Mw=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.SearchAppTracking.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?SSPV=FFB2&ctid=CT2269050&SearchSource=2&[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.UserID", "UN81365917524757085"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.addressBarTakeOverEnabledInHidden", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.autoDisableScopes", 14); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.browser.search.defaultthis.engineName", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.cb_experience_000.enc", "ODk="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.cb_firstuse0100.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.cb_user_id_000.enc", "Q0I0NDY5NDY4ODU2NTlfMTM1Nzc2MzcwODk2NV9GaXJlZm94"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.cbcountry_001.enc", "RlI="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.cbfirsttime.enc", "VGh1IE5vdiAxNSAyMDEyIDE3OjMzOjUyIEdNVCswMTAw"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.embeddedsData", "[{\"appId\":\"128834881989343895\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFra[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.enableAlerts", "always"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.enableFix404ByUser", "TRUE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.firstTimeDialogOpened", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.fixPageNotFoundErrorByUser", "TRUE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.fixPageNotFoundErrorInHidden", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.fixUrls", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.fullUserID", "UN81365917524757085.UP.20130623215724"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.ground-country-code.enc", "IkZSIg=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.http___storage_conduit_com_marketplace_83_6d_8399d181_be98_42f2_b035_1616f617316d_.PriceSparrowUuid.enc", "YW[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.http___www_socialgrowthtechnologies_com_couponbuddy_v001.APP_WIN_FEATURES.enc", "b3BlbnBvc2l0aW9uPW9mZnNldDo1[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.isCheckedStartAsHidden", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.isFirstTimeToolbarLoading", "false"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.isNewTabEnabled", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.isPerformedSmartBarTransition", "true"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.keyword", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"http://search.conduit.com/?ctid=CT2269050&octid=CT2[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.lastVersion", "10.20.1.508"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_appStateReportTime.enc", "MTM4MDgxNjExMTY2MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_appState_CouponBuddy.enc", "b24="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_appState_PriceGong.enc", "b24="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_appsData.enc", "eyJhcHBzIjpbeyJpZCI6IlByaWNlR29uZyIsInVybCI6Imh0dHA6Ly9wcmljZWdvbmcuY29uZHVpdGFwcHMuY2[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_appsDefaultEnabled.enc", "bnVsbA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_calledSetupService.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_configuration.enc", "eyJjb25maWd1cmF0aW9uIjpbeyJpZCI6ImVUb3JvIiwiY3JpdGVyaWFzIjpbeyJjcml0ZXJpYUlkIjoiN[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_currentBadgeValue.enc", "MA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_currentVersion.enc", "MS4xMC40LjA="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_existingUsersRecoveryDone.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_first_time.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_installer_preapproved.enc", "RkFMU0U="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_lastLoginTime.enc", "MTM4MDgxNjExMjQ1NA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_localization.enc", "eyJkbWJveDEiOnsiVGV4dCI6IlByb21vXG5kdSBqb3VyIn0sImRtYm94MiI6eyJUZXh0IjoiTGl2cmFpc2[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_mamEnabled.enc", "ZmFsc2U="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_newApps.enc", "W10="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_pgUnloadedOnce.enc", "dHJ1ZQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_settings1.10.4.0.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVydmFsIjoyNDAsInN0YW1wIjoiNDZfMC[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_settings1.4.4.6.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVydmFsIjoyNDAsInN0YW1wIjoiNjFfLTE[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_settings1.6.0.1.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVydmFsIjoyNDAsInN0YW1wIjoiMzAzXzA[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_settings1.8.0.4.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVydmFsIjoyNDAsInN0YW1wIjoiNDZfMCI[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_showCloseButton.enc", "dHJ1ZQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_showWelcomeGadget.enc", "ZmFsc2U="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_userId.enc", "ZDQ4M2M4ZWUtMmE2MS00NDQ3LWI0MzctNmY5YmJiMTU5MTg1"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_user_approval_interacted.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.mam_gk_welcomeDialogMode.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.migrateAppsAndComponents", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"about%3Ablank\",\"EB_MAIN_FRAME_TITLE\":\"Erreur%20de%20cha[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.openThankYouPage", "FALSE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.openUninstallPage", "FALSE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.originalSearchAddressUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3241952&SearchSource=2&CUI=UN097[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.price-gong.isManagedApp", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.sac-country-code.enc", "IkZSIg=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.sac-experiments-aaTest.enc", "eyJuYW1lIjoiYTIiLCJ2ZXJzaW9uIjoxfQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.sac-experiments-animation.enc", "eyJuYW1lIjoiMC43NSIsInZlcnNpb24iOjN9"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.sac-experiments-hover_effect.enc", "eyJuYW1lIjoic2hvcnQiLCJ2ZXJzaW9uIjoyfQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.sac-experiments-image_analysis.enc", "eyJuYW1lIjoid2l0aG91dFN1YnRpdGxlIiwidmVyc2lvbiI6MX0="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.sac-experiments-peoplebar_call_to_action.enc", "eyJuYW1lIjoiMyIsInZlcnNpb24iOjR9"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.sac-experiments-placement.enc", "eyJuYW1lIjoiYnJhbmRlZC1iYXIiLCJ2ZXJzaW9uIjoxM30="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.sac-experiments-play_icon.enc", "eyJuYW1lIjoibm8iLCJ2ZXJzaW9uIjoyfQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.sac-experiments-taboola_config.enc", "eyJuYW1lIjoiYWxsVHlwZXMiLCJ2ZXJzaW9uIjozfQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.sac-periodic-reports.enc", "eyJwaW5nXzAiOlsxMzcwNzk3MTY2NzQ0LDE0NDAwMDAwXX0="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.sac-yt-first-ping.enc", "MTM3MDc5NzE2NjU0MA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.search.searchAppId", "128834881989343895"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.search.searchCount", "1"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.searchInNewTabEnabledByUser", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.searchInNewTabEnabledInHidden", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.searchSuggestEnabledByUser", "false"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.searchUserMode", "UM_ID"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2269050\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"http://DVDVideo[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"DVDVideoSoftTB [...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_Configuration_lastUpdate", "1378310100887"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1378310103750"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_appsMetadata_lastUpdate", "1378310116658"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_clientErrorLog_lastUpdate", "1365267306205"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1378310101884"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_location_lastUpdate", "1371979475393"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_login_10.10.28.11_lastUpdate", "1352743892515"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_login_10.13.40.15_lastUpdate", "1358361981708"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_login_10.14.40.128_lastUpdate", "1359294686537"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_login_10.14.42.7_lastUpdate", "1361555244409"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_login_10.14.65.43_lastUpdate", "1363893631505"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_login_10.15.0.562_lastUpdate", "1365617109985"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_login_10.15.2.523_lastUpdate", "1367943458533"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_login_10.16.1.521_lastUpdate", "1368562250655"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_login_10.16.2.509_lastUpdate", "1371979426098"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_login_10.16.4.519_lastUpdate", "1378310098424"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_optimizer_lastUpdate", "1352744141102"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1378310102199"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_searchAPI_lastUpdate", "1378310101429"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_serviceMap_lastUpdate", "1378310102330"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_setupAPI_lastUpdate", "1363897989469"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_toolbarContextMenu_lastUpdate", "1378310102959"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_toolbarSettings_lastUpdate", "1378310114160"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_translation_lastUpdate", "1378310103349"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.serviceLayer_services_userApps_lastUpdate", "1365944304254"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.settingsINI", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.shouldFirstTimeDialog", "FALSE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.showToolbarPermission", "false"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.smartbar.CTID", "CT2269050"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.smartbar.Uninstall", "0"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.smartbar.homepage", true); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.smartbar.toolbarName", "DVDVideoSoftTB "); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.toolbarBornServerTime", "16-9-2012"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.toolbarCurrentServerTime", "11-6-2013"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.toolbarDisabled", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.toolbarLoginClientTime", "Thu Mar 21 2013 22:25:37 GMT+0100"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.upgradeFromClearSBVersion", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.url_history0001.enc", "aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tLyM6OjpjbGlja2hhbmRsZXI6OjoxMzcwOTgyNzU5MTA2LCwsaHR0cH[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.whitelist.enc", "W3sibmFtZSI6IlRpbWUiLCJkb21haW5fcmVneCI6IiguKlxcLik/dGltZS5jb20iLCJkb21haW5fY2xhc3MiOiJOZXdz[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.whitelist_ts.enc", "MTM3MDc5NzQ3NjI4Mg=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.wreck-experiments-design.enc", "eyJuYW1lIjoibGlnaHQiLCJ2ZXJzaW9uIjo0fQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.wreck-experiments-feed.enc", "eyJuYW1lIjoidHJ1ZmZsZXMiLCJ2ZXJzaW9uIjozfQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.wreck-experiments-hover_effect.enc", "eyJuYW1lIjoiaGFsZiIsInZlcnNpb24iOjF9"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.wreck-experiments-trigger.enc", "eyJuYW1lIjoieDAuNSIsInZlcnNpb24iOjF9"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.wreck-periodic-reports.enc", "eyJwaW5nXzAiOlsxMzcwNzk3MTY5ODc1LDE0NDAwMDAwXX0="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050.wreck-user-id.enc", "Ijg5NDFjZWFhLTA3YTMtNGI2YS04MDc2LTA4ZDEwNzBhZTRhYiI="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT2269050_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1452629758090,\"isWithState\"[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT3241952.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3241952&SearchSource=2&q="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT3241952.isPerformedSmartBarTransition", "true"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT3241952.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"http://search.conduit.com/?ctid=CT3241952&octid=CT3[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT3241952.mam_gk_appState_PriceGong.enc", "b24="); =>PUP.Optional.PriceGong
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT3241952.mam_gk_appState_WindowShopper.enc", "b24="); =>PUP.Optional.ShoppingReport
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT3241952.originalHomepage", "^http://www\\.claro-search\\.com/\\?affID=114508.*"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT3241952.originalSearchAddressUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3241952&SearchSource=2&UM=UM_ID&[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT3241952.smartbar.CTID", "CT3241952"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT3241952.smartbar.Uninstall", "0"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT3241952.smartbar.homepage", true); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("CT3241952.smartbar.toolbarName", "FileConverter 1.5 "); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT3241952&SearchSource=13&UP=SP7141BC26-58B9-45B9-82DE[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("Smartbar.ConduitSearchEngineList", ""); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("Smartbar.ConduitSearchUrlList", ""); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("Smartbar.SearchFromAddressBarSavedUrl", "http://www.bing.com/search?mkt=fr-FR&form=MOAWA1&q="); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("Smartbar.keywordURLSelectedCTID", "CT3241952"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("avg.install.userHPSettings", "^http://www\\.claro-search\\.com/\\?affID=114508.*"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("avg.install.userSPSettings", "Claro Search"); =>Toolbar.AVGSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("browser.startup.homepage", "^http://www\\.claro-search\\.com/\\?affID=114508.*"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.BabylonToolbar_i.newTab", true); =>PUP.Optional.Babylon
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.BabylonToolbar_i.newTabUrl", "about:home"); =>PUP.Optional.Babylon
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.a94ae097689df434797715371c6e203bf3796dc63d06d4575a9979b5c935fe915com35329.35329.name", "Pricora"); =>PUP.Optional.Pricora
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.admin", false); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.aflt", "babsst"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.bbDpng", "30"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.cntry", "FR"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.dfltLng", "en"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.envrmnt", "production"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.excTlbr", false); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.hdrMd5", "B64954BA5645CC2C7CFE1044C89A1C91"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.hmpg", false); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.id", "28f28b720000000000005404a6482281"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.instlDay", "15623"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.instlRef", "sst"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.lastVrsnTs", "1.6.4.121:30:24"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.mntrvrsn", "1.3.1"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.newTab", false); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.prdct", "claro"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.prtnrId", "claro"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.sg", "none"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.smplGrp", "none"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.tlbrId", "base"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.vrsn", "1.6.4.1"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.vrsnTs", "1.6.4.121:30:24"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro.vrsni", "1.6.4.1"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro_i.smplGrp", "none"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.claro_i.vrsnTs", "1.6.4.121:30:24"); =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.crossrider.bic", "14265f148113e091f6e8307d4eeac5b9"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("extensions.enabledAddons", "m3ffxtbr%40mywebsearch.com:1.3,%7BC9B68337-E93A-44EA-94DC-CB300EC06444%7D:5.30.4,%7BACAA314[...] =>PUP.Optional.MyWebSearch
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.Var1", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.Var10", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.Var2", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.Var3", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.Var4", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.Var5", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.Var6", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.Var7", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.Var8", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.Var9", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.bubble_height", "500"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.bubble_screenx", "347"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.bubble_screeny", 100); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.bubble_scroll", ""); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.bubble_src", "http%3A//toolbar.iminent.com/Games/%3FvToolbar%3DIminent"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.bubble_type", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.bubble_width", "210"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.cache.tbs_include_xml_006938", "15/21/12/0/116"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.firstlaunch", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.guid", "%7B8657617E-C85A-E8DC-DCEE-92E8B910DE9E%7D"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.popupblockedcnt", "44"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.stored_historysearch", "////%20%20%20%20Universit%E9%20Rennes%202%20Haute%20Bretagne"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6.userId", "%12"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("id_imbooster4web_v6_installed_version", "1.0.1018.0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent0", "1350916673918"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent100", "1351452474862"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent101", "1349028231176"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent102", "1350916673903"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent109", "1354744297276"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent110", "1354744300488"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent111", "1354744297225"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent112", "1354744297310"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent122", "1354744297340"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent134", "1354142411936"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent140", "1353872522049"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent0", "1350916390750"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent102", "1350916390724"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent109", "1354744272950"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent110", "1354744273439"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent111", "1354744272922"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent112", "1354744272972"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent122", "1354744272989"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("keyword.URL", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3241952&SearchSource=2&CUI=UN09721399301239664&UM=&q=")[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("smartBar.searchInNewTabOwner", "CT3241952"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("smartbar.addressBarOwnerCTID", "CT3241952"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("smartbar.conduitHomepageList", "http://search.conduit.com/?ctid=CT3241952&SearchSource=13,http://search.conduit.com/?ct[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("smartbar.conduitSearchAddressUrlList", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3241952&SearchSource=2&q=,http[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("smartbar.homePageOwnerCTID", "CT3241952"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("smartbar.machineId", "IMCF9JEATL6W6RCRSLV41ZFWRYWEY+/NUITRBMPO7DGVTDCIXUZLGYJI2GFA31POXSWQFTHBMQWTGXI23OMXRA"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("smartbar.originalHomepage", "http://search.iminent.com/?appId=ecdb5970-468c-484e-afde-7843ca813d82&ref=homepage"); =>PUP.Optional.IMBooster
O69 - SBI: prefs.js [maelle - vq8vjjwt.default] user_pref("smartbar.originalSearchAddressUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3241952&SearchSource=2&q="); =>PUP.Optional.Conduit
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Claro Search) - http://www.claro-search.com/ =>PUP.Optional.ClaroSearch
O69 - SBI: SearchScopes [HKCU] {0F518A44-727D-4E35-BA6F-EC58541AAFD5} [DefaultScope] - (Vgrabber V1.6 Customized Web Search) - http://search.conduit.com/ =>PUP.Optional.Conduit
O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/

---\\ Enumère les services démarrés par Svchost (32) - 3s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [593408] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [679424] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [473600] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [286208] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [242176] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [521216] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [1973728] =>.Microsoft Windows Component Publisher®
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [585728] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [499712] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [47104] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164352] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [750592] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [113664] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102912] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800] =>.Microsoft Corporation

---\\ Liste des exceptions du parefeu Windows (10) - 9s
O87 - FAEL: "TCP Query User{B34A1049-3684-4540-8EF2-4791EBD1B795}C:\program files\voicemaster\voicemaster.exe" [In-None-P6-TRUE] .(...) -- C:\program files\voicemaster\voicemaster.exe (.not file.)
O87 - FAEL: "UDP Query User{C33804E1-21F7-4CC4-ABAF-857F1C6D53BA}C:\program files\voicemaster\voicemaster.exe" [In-None-P17-TRUE] .(...) -- C:\program files\voicemaster\voicemaster.exe (.not file.)
O87 - FAEL: "TCP Query User{1A8CA7F0-0C86-42EB-BB78-376232749343}C:\program files\voicemaster\voicemaster.exe" [In-None-P6-TRUE] .(...) -- C:\program files\voicemaster\voicemaster.exe (.not file.)
O87 - FAEL: "UDP Query User{F6D69C5A-7A44-41EE-A09E-52892896A834}C:\program files\voicemaster\voicemaster.exe" [In-None-P17-TRUE] .(...) -- C:\program files\voicemaster\voicemaster.exe (.not file.)
O87 - FAEL: "{552EDD5A-27FA-4945-ABA7-49DF02093D0E}" [In-None-P6-TRUE] .(...) -- C:\Users\maelle\AppData\Local\Temp\7zS0D67\hppiw.exe (.not file.)
O87 - FAEL: "{640FBD1B-86F3-402A-94FD-C11F08F3BF8B}" [In-None-P17-TRUE] .(...) -- C:\Users\maelle\AppData\Local\Temp\7zS0D67\hppiw.exe (.not file.)
O87 - FAEL: "{072AB2D5-25E2-4F68-8C9E-A6A7383BDEAA}" [In-None-P6-TRUE] .(...) -- C:\Users\maelle\AppData\Local\Temp\7zS1215\hppiw.exe (.not file.)
O87 - FAEL: "{B6EC523E-C3EC-48F3-9A51-3533DB84F394}" [In-None-P17-TRUE] .(...) -- C:\Users\maelle\AppData\Local\Temp\7zS1215\hppiw.exe (.not file.)
O87 - FAEL: "{9E8AC6C5-6680-475F-BCE9-6F9C2534FA4C}" [In-None-P6-TRUE] .(...) -- C:\Users\maelle\AppData\Local\Temp\7zS14E0\hppiw.exe (.not file.)
O87 - FAEL: "{671CA4A8-EFF8-4D56-AF85-372603957F4A}" [In-None-P17-TRUE] .(...) -- C:\Users\maelle\AppData\Local\Temp\7zS14E0\hppiw.exe (.not file.)

---\\ Recherche de clés de registre Tracing (10) - 22s
HKLM\SOFTWARE\Microsoft\Tracing\20120702IminentSetup_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\20120702IminentSetup_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\appshat-distribution_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\appshat-distribution_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\MyBabylonTB_RASAPI32 =>PUP.Optional.Babylon
HKLM\SOFTWARE\Microsoft\Tracing\MyBabylonTB_RASMANCS =>PUP.Optional.Babylon

---\\ Scan Additionnel (85) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\Browser Manager =>PUP.Optional.Babylon
C:\Users\maelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\algmakeomkafjglfhpomolfhjppoojff =>Hijacker.Browser
C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\searchplugins\babylon.xml =>PUP.Optional.Babylon
C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\searchplugins\conduit.xml =>PUP.Optional.Conduit
C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\94ae0976-89df-4347-9771-5371c6e203bf@3796dc63-d06d-4575-a997-9b5c935fe915.com =>PUP.Optional.CrossRider
C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\m3ffxtbr@mywebsearch.com =>PUP.Optional.SimpleSearches
C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444} =>PUP.Optional.IMBooster
C:\Program Files\Pricora\Pricora-bho.dll =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311531129} =>PUP.Optional.CrossRider
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Pricora =>PUP.Optional.Pricora
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1 =>PUP.Optional.RegistryPowerCleaner
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect =>PUP.Optional.SearchProtect
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Video Downloader_is1 =>PUP.Optional.VideoDownloader
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{77236F9C-987C-40EC-832B-5BD6181E4846} =>PUP.Optional.SocialSkinz
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{9937E55B-6331-4804-93EF-77E992F204BD} =>PUP.Optional.WebPlayer
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Pricora =>PUP.Optional.Pricora
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1 =>PUP.Optional.RegistryPowerCleaner
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Video Downloader_is1 =>PUP.Optional.VideoDownloader
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{77236F9C-987C-40EC-832B-5BD6181E4846} =>PUP.Optional.SocialSkinz
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{9937E55B-6331-4804-93EF-77E992F204BD} =>PUP.Optional.WebPlayer
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FLV Player =>PUP.Optional.MegaSearch
HKLM\SOFTWARE\59e88dbbc6eeb43 =>PUP.Optional.Heuristic
HKLM\SOFTWARE\Babylon =>PUP.Optional.Babylon
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\DataMngr =>PUP.Optional.Datamngr
HKLM\SOFTWARE\Iminent =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Pricora =>PUP.Optional.Pricora
HKLM\SOFTWARE\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Systweak =>.Superfluous.Systweak
HKLM\SOFTWARE\Tarma Installer =>.Superfluous.Tarma
HKLM\SOFTWARE\Trymedia Systems =>PUP.Optional.Trymedia
HKCU\SOFTWARE\59e88dbbc6eeb43 =>PUP.Optional.Heuristic
HKCU\SOFTWARE\BI =>PUP.Optional.MegaSearch
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\DataMngr =>PUP.Optional.Datamngr
HKCU\SOFTWARE\DataMngr_Toolbar =>PUP.Optional.Datamngr
HKCU\SOFTWARE\Iminent =>PUP.Optional.IMBooster
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\SearchProtect =>PUP.Optional.SearchProtect
HKCU\SOFTWARE\Softonic =>.Superfluous.Softonic
HKCU\SOFTWARE\Somoto =>PUP.Optional.MegaSearch
HKCU\SOFTWARE\Systweak =>.Superfluous.Systweak
HKCU\SOFTWARE\WebPlayer =>PUP.Optional.WebPlayer
HKCU\SOFTWARE\AppDataLow\Software\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\FunWebProducts =>PUP.Optional.MyWebSearch
HKCU\SOFTWARE\AppDataLow\Software\PriceGong =>PUP.Optional.PriceGong
HKCU\SOFTWARE\AppDataLow\Software\Pricora =>PUP.Optional.Pricora
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar
C:\Program Files\Pricora =>PUP.Optional.Pricora
C:\Program Files\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
C:\Program Files\SearchProtect =>PUP.Optional.SearchProtect
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
C:\ProgramData\Babylon =>PUP.Optional.Babylon
C:\ProgramData\Browser Manager =>PUP.Optional.SpeedBrowser
C:\ProgramData\IBUpdaterService =>PUP.Optional.InstallBrain
C:\ProgramData\Systweak =>.Superfluous.Systweak
C:\ProgramData\Tarma Installer =>.Superfluous.Tarma
C:\ProgramData\Trymedia =>PUP.Optional.Trymedia
C:\Users\maelle\AppData\Roaming\Babylon =>PUP.Optional.Babylon
C:\Users\maelle\AppData\Roaming\SearchProtect =>PUP.Optional.SearchProtect
C:\Users\maelle\AppData\Roaming\Systweak =>.Superfluous.Systweak
C:\Users\maelle\AppData\Roaming\WebPlayerBdd =>PUP.Optional.SocialSkinz
C:\Users\maelle\AppData\Local\Bundled software uninstaller =>PUP.Optional.MegaSearch
C:\Users\maelle\AppData\Local\FilesFrog Update Checker =>PUP.Optional.MegaSearch
C:\Users\maelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker =>PUP.Optional.MegaSearch
C:\windows\Prefetch\BROWSERMNGR.EXE-95EA759A.pf =>PUP.Optional.Babylon
C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\staged\{cfcb809c-3a22-4616-a916-6c007bd9d920}\Plugins\npFirefoxPlugin.dll =>PUP.Optional.ClientConnect
C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\staged\{cfcb809c-3a22-4616-a916-6c007bd9d920}\ctypes\FirefoxCtype.dll =>PUP.Optional.ClientConnect
C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\staged\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\Plugins\npFirefoxPlugin.dll =>PUP.Optional.ClientConnect
C:\Users\maelle\AppData\Roaming\Mozilla\Firefox\Profiles\vq8vjjwt.default\extensions\staged\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\ctypes\FirefoxCtype.dll =>PUP.Optional.ClientConnect
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} =>PUP.Optional.ClaroSearch
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0F518A44-727D-4E35-BA6F-EC58541AAFD5} =>PUP.Optional.Conduit
HKLM\SOFTWARE\Microsoft\Tracing\20120702IminentSetup_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\20120702IminentSetup_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\appshat-distribution_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\appshat-distribution_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32 =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS =>PUP.Optional.IMBooster
HKLM\SOFTWARE\Microsoft\Tracing\MyBabylonTB_RASAPI32 =>PUP.Optional.Babylon
HKLM\SOFTWARE\Microsoft\Tracing\MyBabylonTB_RASMANCS =>PUP.Optional.Babylon

---\\ Récapitulatif des éléments trouvés sur votre station (31) - 1s
http://www.nicolascoolman.fr/?p=170 =>PUP.Optional.Babylon
http://www.nicolascoolman.fr/?p=180 =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/?p=558 =>PUP.Optional.RegistryPowerCleaner
http://www.nicolascoolman.fr/?p=431 =>PUP.Optional.MegaSearch
http://www.nicolascoolman.fr/?p=4664 =>Hijacker.Browser
http://www.nicolascoolman.fr/?p=356 =>PUP.Optional.ClaroSearch
http://www.nicolascoolman.fr/?p=210 =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SimpleSearches
http://www.nicolascoolman.fr/?p=224 =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/?p=1633 =>PUP.Optional.SearchProtect
http://www.nicolascoolman.fr/?p=993 =>PUP.Optional.Pricora
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.VideoDownloader
http://www.nicolascoolman.fr/?p=195 =>PUP.Optional.SocialSkinz
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.WebPlayer
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Heuristic
http://www.nicolascoolman.fr/?p=270 =>PUP.Optional.Datamngr
http://www.nicolascoolman.fr/pup-systweak/ =>.Superfluous.Systweak
http://www.nicolascoolman.fr/?p=259 =>.Superfluous.Tarma
http://www.nicolascoolman.fr/?p=564 =>PUP.Optional.Trymedia
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.Softonic
http://www.nicolascoolman.fr/?p=220 =>PUP.Optional.MyWebSearch
http://www.nicolascoolman.fr/?p=387 =>PUP.Optional.PriceGong
http://www.nicolascoolman.fr/?p=308 =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SpeedBrowser
http://www.nicolascoolman.fr/?p=600 =>PUP.Optional.InstallBrain
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.ClientConnect
http://www.nicolascoolman.fr/?p=436 =>PUP.Optional.ShoppingReport
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.AVGSearch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Boost
http://www.nicolascoolman.fr/?p=336 =>PUP.Optional.AdvancedSystemProtector

~ End of the scan, 62660 items in 00h19mn17s (1309)(0)

Publicité


Signaler le contenu de ce document

Publicité